chore(webui): rewrite the web session code again while preparing for csrf tokens

#60
2025-04-30 22:31:25 +02:00 · 2025-04-30 22:31:25 +02:00 · 895615ad6e
commit 895615ad6e
parent 3bb5e735c6
20 changed files with 162 additions and 149 deletions
--- a/pkg/model/session.go
+++ b/pkg/model/session.go
@ -1,20 +1,40 @@
 package model

 import (
-	"encoding/json"
+	"fmt"
 	"time"

 	"go.n16f.net/uuid"
 )

+type SessionData struct {
+	Account   *Account  `json:"account"`
+	CsrfToken uuid.UUID `json:"csrf_token"`
+	Settings  *Settings `json:"settings"`
+}
+
+func NewSessionData(account *Account, previousSessionSettings *Settings) (*SessionData, error) {
+	data := SessionData{Account: account}
+	if err := data.CsrfToken.Generate(uuid.V4); err != nil {
+		return nil, fmt.Errorf("failed to generate csrf token uuid: %w", err)
+	}
+	if account != nil {
+		data.Settings = account.Settings
+	} else if previousSessionSettings != nil {
+		data.Settings = previousSessionSettings
+	} else {
+		data.Settings = &Settings{}
+	}
+	return &data, nil
+}
+
 type SessionContextKey struct{}

 type Session struct {
-	Id        []byte
-	AccountId *uuid.UUID
-	Created   time.Time
-	Updated   time.Time
-	Settings  json.RawMessage
+	Id      []byte
+	Created time.Time
+	Updated time.Time
+	Data    *SessionData
 }

 func (session *Session) IsExpired() bool {