tls-session-manager-0.0.5: In-memory TLS session DB and session ticket
Safe HaskellSafe-Inferred
LanguageHaskell2010

Network.TLS.SessionTicket

Description

A manager for TLS 1.2/1.3 session ticket.

Tracking client hello is not implemented yet. So, if this is used for TLS 1.3 0-RTT, replay attack is possible. If your application data in 0-RTT changes the status of server side, use SessionManager instead.

A dedicated thread is running repeatedly to replece secret keys. So, energy saving is not achieved.

Synopsis

Documentation

newSessionTicketManager :: Config -> IO SessionManager Source #

Creating a session ticket manager.

data Config Source #

Configuration for session tickets.

defaultConfig :: Config Source #

ticketLifetime: 2 hours (7200 seconds), secretKeyInterval: 30 minutes (1800 seconds)

ticketLifetime :: Config -> Int Source #

Ticket lifetime in seconds.