Safe Haskell	None
Language	Haskell2010

Web.Apiary.ClientSession

Contents

Synopsis

Documentation

config

Constructors

SessionConfig
Fields sessionKey :: KeySource sessionMaxAge :: DiffTime sessionPath :: Maybe ByteString sessionDomain :: Maybe ByteString sessionHttpOnly :: Bool sessionSecure :: Bool sessionTimeoutAction :: forall e m. MonadIO m => ActionT e m () angularXsrfCookieName :: Maybe ByteString csrfTokenCookieName :: ByteString csrfTokenCheckingName :: Either HeaderName ByteString csrfTokenLength :: Int

Instances

Constructors

KeyFile FilePath
KeyByteString ByteString

Instances

generate and embed key at compile time. since 0.13.2.

This function embed as SessionsessionConfig with default sessionConfig. so you can sessionConfigure it. but DON'T sessionConfigure sessionKey.

this function is convenient when create heroku project.

embedsessionConfig = $embedDefaultKeysessionConfig { csrfTokenCookieName = "foo" }

create crypto random (generate random by AES CTR(cprng-aes package) and encode by base64),

set it client session cookie, set XSRF-TOKEN header(when Just angularXsrfCookieName),

and return value. since 0.9.0.0.

session :: (Has Session exts, Query a, Strategy w, MonadIO actM) => ByteString -> w a -> ApiaryT exts (SNext w prms a) actM m () -> ApiaryT exts prms actM m () Source

checkToken :: (Has Session exts, MonadIO actM) => ApiaryT exts prms actM m () -> ApiaryT exts prms actM m () Source

check csrf token. since 0.9.0.0.

deleteCookie