stash/pkg/session/session.go

package session

import (
	"context"
	"errors"
	"net/http"

	"github.com/gorilla/sessions"
	"github.com/stashapp/stash/pkg/logger"
)

type key int

const (
	contextUser key = iota
	contextVisitedPlugins
)

const (
	userIDKey             = "userID"
	visitedPluginHooksKey = "visitedPluginsHooks"
)

const (
	ApiKeyHeader    = "ApiKey"
	ApiKeyParameter = "apikey"
)

const (
	cookieName      = "session"
	usernameFormKey = "username"
	passwordFormKey = "password"
)

type InvalidCredentialsError struct {
	Username string
}

func (e InvalidCredentialsError) Error() string {
	// don't leak the username
	return "invalid credentials"
}

var ErrUnauthorized = errors.New("unauthorized")

type Store struct {
	sessionStore *sessions.CookieStore
	config       SessionConfig
}

func NewStore(c SessionConfig) *Store {
	ret := &Store{
		sessionStore: sessions.NewCookieStore(c.GetSessionStoreKey()),
		config:       c,
	}

	ret.sessionStore.MaxAge(c.GetMaxSessionAge())
	ret.sessionStore.Options.SameSite = http.SameSiteLaxMode

	return ret
}

func (s *Store) Login(w http.ResponseWriter, r *http.Request) error {
	// ignore error - we want a new session regardless
	newSession, _ := s.sessionStore.Get(r, cookieName)

	username := r.FormValue(usernameFormKey)
	password := r.FormValue(passwordFormKey)

	// authenticate the user
	if !s.config.ValidateCredentials(username, password) {
		return &InvalidCredentialsError{Username: username}
	}

	// since we only have one user, don't leak the name
	logger.Info("User logged in")

	newSession.Values[userIDKey] = username

	err := newSession.Save(r, w)
	if err != nil {
		return err
	}

	return nil
}

func (s *Store) Logout(w http.ResponseWriter, r *http.Request) error {
	session, err := s.sessionStore.Get(r, cookieName)
	if err != nil {
		return err
	}

	delete(session.Values, userIDKey)
	session.Options.MaxAge = -1

	err = session.Save(r, w)
	if err != nil {
		return err
	}

	// since we only have one user, don't leak the name
	logger.Infof("User logged out")

	return nil
}

func (s *Store) GetSessionUserID(w http.ResponseWriter, r *http.Request) (string, error) {
	session, err := s.sessionStore.Get(r, cookieName)
	// ignore errors and treat as an empty user id, so that we handle expired
	// cookie
	if err != nil {
		return "", nil
	}

	if !session.IsNew {
		val := session.Values[userIDKey]

		// refresh the cookie
		err = session.Save(r, w)
		if err != nil {
			return "", err
		}

		ret, _ := val.(string)

		return ret, nil
	}

	return "", nil
}

func SetCurrentUserID(ctx context.Context, userID string) context.Context {
	return context.WithValue(ctx, contextUser, userID)
}

// GetCurrentUserID gets the current user id from the provided context
func GetCurrentUserID(ctx context.Context) *string {
	userCtxVal := ctx.Value(contextUser)
	if userCtxVal != nil {
		currentUser := userCtxVal.(string)
		return &currentUser
	}

	return nil
}

func (s *Store) Authenticate(w http.ResponseWriter, r *http.Request) (userID string, err error) {
	c := s.config

	// translate api key into current user, if present
	apiKey := r.Header.Get(ApiKeyHeader)

	// try getting the api key as a query parameter
	if apiKey == "" {
		apiKey = r.URL.Query().Get(ApiKeyParameter)
	}

	if apiKey != "" {
		// match against configured API and set userID to the
		// configured username. In future, we'll want to
		// get the username from the key.
		if c.GetAPIKey() != apiKey {
			return "", ErrUnauthorized
		}

		userID = c.GetUsername()
	} else {
		// handle session
		userID, err = s.GetSessionUserID(w, r)
	}

	if err != nil {
		return "", err
	}

	return
}
Plugin hooks (#1452) * Refactor session and plugin code * Add context to job tasks * Show hooks in plugins page * Refactor session management 2021-06-11 07:24:58 +00:00			`package session`

			`import (`
			`"context"`
			`"errors"`
			`"net/http"`

			`"github.com/gorilla/sessions"`
			`"github.com/stashapp/stash/pkg/logger"`
			`)`

			`type key int`

			`const (`
			`contextUser key = iota`
			`contextVisitedPlugins`
			`)`

			`const (`
Improve plugin hook cyclic detection (#4625) * Move and rename HookTriggerEnum into separate package * Move visited plugin hook handler code * Allow up to ten plugin hook loops 2024-02-27 21:29:25 +00:00			`userIDKey = "userID"`
			`visitedPluginHooksKey = "visitedPluginsHooks"`
Plugin hooks (#1452) * Refactor session and plugin code * Add context to job tasks * Show hooks in plugins page * Refactor session management 2021-06-11 07:24:58 +00:00			`)`

			`const (`
			`ApiKeyHeader = "ApiKey"`
			`ApiKeyParameter = "apikey"`
			`)`

			`const (`
			`cookieName = "session"`
			`usernameFormKey = "username"`
			`passwordFormKey = "password"`
			`)`

Log errors returned from graphql (#3562) * Add func methods to logger * Log errors returned from the graphql interface * Log authentication * Log when credentials changed 2023-04-17 05:27:25 +00:00			`type InvalidCredentialsError struct {`
			`Username string`
			`}`

			`func (e InvalidCredentialsError) Error() string {`
			`// don't leak the username`
			`return "invalid credentials"`
			`}`

Plugin hooks (#1452) * Refactor session and plugin code * Add context to job tasks * Show hooks in plugins page * Refactor session management 2021-06-11 07:24:58 +00:00			`var ErrUnauthorized = errors.New("unauthorized")`

			`type Store struct {`
			`sessionStore *sessions.CookieStore`
Restructure go project (#2356) * Move main to cmd * Move api to internal * Move logger and manager to internal * Move shell hiding code to separate package * Decouple job from desktop and utils * Decouple session from config * Move static into internal * Decouple config from dlna * Move desktop to internal * Move dlna to internal * Decouple remaining packages from config * Move config into internal * Move jsonschema and paths to models * Make ffmpeg functions private * Move file utility methods into fsutil package * Move symwalk into fsutil * Move single-use util functions into client package * Move slice functions to separate packages * Add env var to suppress windowsgui arg * Move hash functions into separate package * Move identify to internal * Move autotag to internal * Touch UI when generating backend 2022-03-17 00:33:59 +00:00			`config SessionConfig`
Plugin hooks (#1452) * Refactor session and plugin code * Add context to job tasks * Show hooks in plugins page * Refactor session management 2021-06-11 07:24:58 +00:00			`}`

Restructure go project (#2356) * Move main to cmd * Move api to internal * Move logger and manager to internal * Move shell hiding code to separate package * Decouple job from desktop and utils * Decouple session from config * Move static into internal * Decouple config from dlna * Move desktop to internal * Move dlna to internal * Decouple remaining packages from config * Move config into internal * Move jsonschema and paths to models * Make ffmpeg functions private * Move file utility methods into fsutil package * Move symwalk into fsutil * Move single-use util functions into client package * Move slice functions to separate packages * Add env var to suppress windowsgui arg * Move hash functions into separate package * Move identify to internal * Move autotag to internal * Touch UI when generating backend 2022-03-17 00:33:59 +00:00			`func NewStore(c SessionConfig) *Store {`
Plugin hooks (#1452) * Refactor session and plugin code * Add context to job tasks * Show hooks in plugins page * Refactor session management 2021-06-11 07:24:58 +00:00			`ret := &Store{`
Restructure go project (#2356) * Move main to cmd * Move api to internal * Move logger and manager to internal * Move shell hiding code to separate package * Decouple job from desktop and utils * Decouple session from config * Move static into internal * Decouple config from dlna * Move desktop to internal * Move dlna to internal * Decouple remaining packages from config * Move config into internal * Move jsonschema and paths to models * Make ffmpeg functions private * Move file utility methods into fsutil package * Move symwalk into fsutil * Move single-use util functions into client package * Move slice functions to separate packages * Add env var to suppress windowsgui arg * Move hash functions into separate package * Move identify to internal * Move autotag to internal * Touch UI when generating backend 2022-03-17 00:33:59 +00:00			`sessionStore: sessions.NewCookieStore(c.GetSessionStoreKey()),`
Plugin hooks (#1452) * Refactor session and plugin code * Add context to job tasks * Show hooks in plugins page * Refactor session management 2021-06-11 07:24:58 +00:00			`config: c,`
			`}`

Restructure go project (#2356) * Move main to cmd * Move api to internal * Move logger and manager to internal * Move shell hiding code to separate package * Decouple job from desktop and utils * Decouple session from config * Move static into internal * Decouple config from dlna * Move desktop to internal * Move dlna to internal * Decouple remaining packages from config * Move config into internal * Move jsonschema and paths to models * Make ffmpeg functions private * Move file utility methods into fsutil package * Move symwalk into fsutil * Move single-use util functions into client package * Move slice functions to separate packages * Add env var to suppress windowsgui arg * Move hash functions into separate package * Move identify to internal * Move autotag to internal * Touch UI when generating backend 2022-03-17 00:33:59 +00:00			`ret.sessionStore.MaxAge(c.GetMaxSessionAge())`
Set explicit SameSite=Lax on session cookie (#2926) 2022-09-19 04:56:05 +00:00			`ret.sessionStore.Options.SameSite = http.SameSiteLaxMode`
Plugin hooks (#1452) * Refactor session and plugin code * Add context to job tasks * Show hooks in plugins page * Refactor session management 2021-06-11 07:24:58 +00:00
			`return ret`
			`}`

			`func (s Store) Login(w http.ResponseWriter, r http.Request) error {`
			`// ignore error - we want a new session regardless`
			`newSession, _ := s.sessionStore.Get(r, cookieName)`

			`username := r.FormValue(usernameFormKey)`
			`password := r.FormValue(passwordFormKey)`

			`// authenticate the user`
Restructure go project (#2356) * Move main to cmd * Move api to internal * Move logger and manager to internal * Move shell hiding code to separate package * Decouple job from desktop and utils * Decouple session from config * Move static into internal * Decouple config from dlna * Move desktop to internal * Move dlna to internal * Decouple remaining packages from config * Move config into internal * Move jsonschema and paths to models * Make ffmpeg functions private * Move file utility methods into fsutil package * Move symwalk into fsutil * Move single-use util functions into client package * Move slice functions to separate packages * Add env var to suppress windowsgui arg * Move hash functions into separate package * Move identify to internal * Move autotag to internal * Touch UI when generating backend 2022-03-17 00:33:59 +00:00			`if !s.config.ValidateCredentials(username, password) {`
Log errors returned from graphql (#3562) * Add func methods to logger * Log errors returned from the graphql interface * Log authentication * Log when credentials changed 2023-04-17 05:27:25 +00:00			`return &InvalidCredentialsError{Username: username}`
Plugin hooks (#1452) * Refactor session and plugin code * Add context to job tasks * Show hooks in plugins page * Refactor session management 2021-06-11 07:24:58 +00:00			`}`

Log errors returned from graphql (#3562) * Add func methods to logger * Log errors returned from the graphql interface * Log authentication * Log when credentials changed 2023-04-17 05:27:25 +00:00			`// since we only have one user, don't leak the name`
			`logger.Info("User logged in")`

Plugin hooks (#1452) * Refactor session and plugin code * Add context to job tasks * Show hooks in plugins page * Refactor session management 2021-06-11 07:24:58 +00:00			`newSession.Values[userIDKey] = username`

			`err := newSession.Save(r, w)`
			`if err != nil {`
			`return err`
			`}`

			`return nil`
			`}`

			`func (s Store) Logout(w http.ResponseWriter, r http.Request) error {`
			`session, err := s.sessionStore.Get(r, cookieName)`
			`if err != nil {`
			`return err`
			`}`

			`delete(session.Values, userIDKey)`
			`session.Options.MaxAge = -1`

			`err = session.Save(r, w)`
			`if err != nil {`
			`return err`
			`}`

Log errors returned from graphql (#3562) * Add func methods to logger * Log errors returned from the graphql interface * Log authentication * Log when credentials changed 2023-04-17 05:27:25 +00:00			`// since we only have one user, don't leak the name`
			`logger.Infof("User logged out")`

Plugin hooks (#1452) * Refactor session and plugin code * Add context to job tasks * Show hooks in plugins page * Refactor session management 2021-06-11 07:24:58 +00:00			`return nil`
			`}`

			`func (s Store) GetSessionUserID(w http.ResponseWriter, r http.Request) (string, error) {`
			`session, err := s.sessionStore.Get(r, cookieName)`
			`// ignore errors and treat as an empty user id, so that we handle expired`
			`// cookie`
			`if err != nil {`
			`return "", nil`
			`}`

			`if !session.IsNew {`
			`val := session.Values[userIDKey]`

			`// refresh the cookie`
			`err = session.Save(r, w)`
			`if err != nil {`
			`return "", err`
			`}`

			`ret, _ := val.(string)`

			`return ret, nil`
			`}`

			`return "", nil`
			`}`

			`func SetCurrentUserID(ctx context.Context, userID string) context.Context {`
			`return context.WithValue(ctx, contextUser, userID)`
			`}`

			`// GetCurrentUserID gets the current user id from the provided context`
			`func GetCurrentUserID(ctx context.Context) *string {`
			`userCtxVal := ctx.Value(contextUser)`
			`if userCtxVal != nil {`
			`currentUser := userCtxVal.(string)`
			`return &currentUser`
			`}`

			`return nil`
			`}`

			`func (s Store) Authenticate(w http.ResponseWriter, r http.Request) (userID string, err error) {`
			`c := s.config`

			`// translate api key into current user, if present`
			`apiKey := r.Header.Get(ApiKeyHeader)`

			`// try getting the api key as a query parameter`
			`if apiKey == "" {`
			`apiKey = r.URL.Query().Get(ApiKeyParameter)`
			`}`

			`if apiKey != "" {`
			`// match against configured API and set userID to the`
			`// configured username. In future, we'll want to`
			`// get the username from the key.`
			`if c.GetAPIKey() != apiKey {`
			`return "", ErrUnauthorized`
			`}`

			`userID = c.GetUsername()`
			`} else {`
			`// handle session`
			`userID, err = s.GetSessionUserID(w, r)`
			`}`

			`if err != nil {`
			`return "", err`
			`}`

			`return`
			`}`