BSD-3-Clause licensed by Al Zohali
This version can be pinned in stack with:servant-auth-cookie-0.6.0.1@sha256:e2510d5ad11fb51f7c6a97db6253d04c0842a3fbdfa5e2b609fda3f1db7a0928,7513
Module documentation for 0.6.0.1
ServantServant.ServerServant.Server.ExperimentalServant.Server.Experimental.Auth
Depends on 21 packages
(full list with versions ) :
base ,
base64-bytestring ,
blaze-builder ,
bytestring ,
cereal ,
cereal-time ,
cookie ,
cryptonite ,
data-default ,
exceptions ,
http-api-data ,
http-types ,
memory ,
mtl ,
servant ,
servant-server ,
tagged ,
text ,
time ,
transformers ,
wai Authentication via encrypted client-side cookies,
inspired by client-session library by Michael Snoyman and based on
ideas of the paper "A Secure Cookie Protocol" by Alex Liu et al.
Change Log
Changed
Fixed module tests/Utils export.
0.6.0 - 2017-11-08Added
getHeaderSession function to access session data without denying access to a route (issue #30).
cookiedfunction:
support for multiple-parametered handlers (issue #34).
CookiedWrapper type synonym and CookieWrapperClass class to ease work with the function (issue #38).
Support for session cookies (issue #35):
ssExpirationType of SessionSetting recordExpirationType datatype
Support for refreshing cookies (issue #37):
ssAutoRenew of SessionSetting record
Type synonyms for common boilerplates:
AuthCookieExceptionHandlerAuthCookieHandler
Changed
cookied function’s signature, added argument of type Proxy Session.addSession* functions’ signatures, added argument of SessionSettings type. Use def (from Data.Default) for fallback mode.Fixed bug with wrong time format in removeSession* functions (issue #39).
Refactored internals:
Format of encoding cookies is different.
Cookie record is completely changed.WithMetadata replaced with PayloadWrapper/ExtendedPayloadWrapper. Use the latter one in cookie handlers.encryptCookie/decryptCookie merged with their session counterparts.
Removed
acsExpirationFormat field and CannotParseExpirationTime exception constructor are no longer needed.
Changed
Fixed dependencies’ bounds.
Changed
Fixed dependencies’ bounds.
Changed
Fixed dependencies’ bounds.
Changed
Fixed dependencies’ bounds.
Changed
Fixed dependencies’ bounds.
Changed
Fixed dependencies’ bounds.
Changed
Fixed incompatibility with older versions of GHC.
0.5.0 - 2017-04-15Changed
Server keys management:
ServerKey becomes ServerKeySet.mkServerKeyFromBytes becomes mkPersistentServerKey.
Deleted
mkServerKey (instead use custom instance of ServerKeySet.
Added
class Cookied and function cookied to faciliate usage of mutable server keys.
0.4.4 - 2017-04-15Added
Tests for the example.
parseSessionRequest and parseSessionResponse functions.removeSessionFromErr function.
Changed
Fixed constraint for removeSession.
Added
Changed
Fixed dependencies’ bounds.
Changed
Fixed dependencies’ bounds.
Changed
Fixed dependencies’ bounds.
0.4.3 - 2016-01-30Changed
Fixed draining of /dev/random.
Refactored the example.
Changed
Fixed dependencies’ bounds.
0.4.2 - 2016-12-23Added
0.4.0 - 2016-09-25Added
Support for servant-0.9.
Tags for bytestrings.
Changed
0.3.2 - 2016-09-17Added
mkServerKeyFromBytes function.
0.3.1 - 2016-08-19Added
addSessionToErr function.
Changed
Fixed dependencies’ bounds.
Changed
Fixed dependencies’ bounds.
0.3.0 - 2016-07-27Changed
Relicensed to BSD3
The great and glorious refactoring of everything ;)
0.2.0 - 2016-07-08Added
Parameters:
hash algorithm
encryption/decryption algorithms
…and many others.
Tests
Documentation
Changed
RandomKey and ServerKey initialization (without unsafePerformIO).
Changed
More user-friendly example.
0.1.0 - 2016-06-05
Added
Initial version of the package.
Stackage is a service provided by the
Haskell Foundation
│ Originally developed by
FP Complete
