Signed Cookie-Based HTTP sessions for Muffin framework
Project description
Muffin-Session – Cookie-Based HTTP sessions for Muffin framework
Features
Supports base64 sessions
Supports JWT signed sessions
Supports Fernet encrypted sessions
Requirements
python >= 3.7
Installation
Muffin-Session should be installed using pip:
pip install muffin-session
Usage
Use it manually
from muffin import Application, ResponseHTML
from muffin_session import Plugin as Session
# Create Muffin Application
app = Application('example')
# Initialize the plugin
# As alternative: session = Session(app, **options)
session = Session()
session.setup(app, secret_key='REALLY_SECRET_KEY_FOR_SIGN_YOUR_SESSIONS')
# Use it inside your handlers
@app.route('/update')
async def update_session(request):
ses = session.load_from_request(request)
ses['var'] = 'value'
response = ResponseHTML('Session has been updated')
session.save_to_response(ses, response)
return res
@app.route('/load')
async def load_session(request):
ses = session.load_from_request(request)
return ses.get('var')Auto manage sessions (with middleware)
from muffin import Application, ResponseHTML
from muffin_session import Plugin as Session
# Create Muffin Application
app = Application('example')
# Initialize the plugin
# As alternative: session = Session(app, **options)
session = Session()
session.setup(app, secret_key='REALLY_SECRET_KEY_FOR_SIGN_YOUR_SESSIONS', auto_manage=True)
# Use it inside your handlers
@app.route('/update')
async def update_session(request):
request.session['var'] = 'value'
return 'Session has been updated'
@app.route('/load')
async def load_session(request):
return request.session.get('var')Options
Name |
Default value |
Description |
session_type |
"jwt" |
Session type (base64|jwt|fernet) |
secret_key |
"InsecureSecret" |
A secret code to sign sessions |
auto_manage |
False |
Load/Save sessions automatically. Session will be loaded into request.session |
cookie_name |
"session" |
Sessions’s cookie name (session) |
cookie_params |
Sessions’s cookie params ({'path': '/', 'max-age': None, 'samesite': 'lax', 'secure': False}) |
|
default_user_checker |
lambda x: True |
A function to check a logged user |
login_url |
"/login" |
An URL to redirect anonymous users (it may be a function which accept Request and returns a string) |
You are able to provide the options when you are initiliazing the plugin:
session.setup(app, secret_key='123455', cookie_name='info')Or setup it inside Muffin.Application config using the SESSION_ prefix:
SESSION_SECRET_KEY = '123455'
SESSION_COOKIE_NAME = 'info'Muffin.Application configuration options are case insensitive
Examples
from muffin import Application, ResponseHTML
from muffin_session import Plugin as Session
# Create Muffin Application
app = Application('example')
# Initialize the plugin
# As alternative: session = Session(app, **options)
session = Session()
session.setup(app, secret_key='REALLY_SECRET_KEY_FOR_SIGN_YOUR_SESSIONS', auto_manage=True)
@session.user_loader
async def load_user(ident):
"""Define your own user loader. """
return await my_database_load_user_by_id(ident)
@app.register('/session')
async def get_session(request):
""" Load session and return it as JSON. """
return dict(request.session)
@app.register('/admin')
@session.user_pass(lambda user: user.is_admin)
async def admin(request):
"""Awailable for admins only. """
return 'TOP SECRET'
@app.register('/login')
async def login(request):
"""Save user id into the current session. """
# ...
session.login(request, current_user.pk)
return 'OK'
@app.register('/logout')
async def logout(request):
""" Logout user. """
# ...
session.logout(request)
return 'OK'
@app.register('/somewhere')
async def somewhere(request):
""" Do something and leave a flash message """
# ...
request.session.clear()
return 'OK'Bug tracker
If you have any suggestions, bug reports or annoyances please report them to the issue tracker at https://github.com/klen/muffin-session/issues
Contributing
Development of Muffin-Session happens at: https://github.com/klen/muffin-session
Contributors
klen (Kirill Klenov)
License
Licensed under a MIT license.
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Built Distribution
File details
Details for the file muffin-session-2.3.2.tar.gz.
File metadata
- Download URL: muffin-session-2.3.2.tar.gz
- Upload date:
- Size: 7.0 kB
- Tags: Source
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/4.0.2 CPython/3.9.16
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 | bb0c1d8472a497d1afe6c2cc75f0613ed900178bf09f033168b519bd5af31c79 |
|
| MD5 | d5172ecb08b69a46e401073f5878b32f |
|
| BLAKE2b-256 | 7b7806bfb19f38683e866adac210f21634a0372ba448914baaa82c32b0a80259 |
Provenance
File details
Details for the file muffin_session-2.3.2-py3-none-any.whl.
File metadata
- Download URL: muffin_session-2.3.2-py3-none-any.whl
- Upload date:
- Size: 6.9 kB
- Tags: Python 3
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/4.0.2 CPython/3.9.16
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 | 9696bb0518fd9e50bc1fa24bfb85a435314d0c44c6c0e51726624dcc1df86d60 |
|
| MD5 | 78dd7dfdbed52e4c387b49a553710b57 |
|
| BLAKE2b-256 | b6c9640b7bab7695b9167b9b667054cc2131e8126bb3b4ca25e139fa1d1f15f0 |
