BSD-3-Clause licensed by Al Zohali
This version can be pinned in stack with:servant-auth-cookie-0.6.0.3@sha256:06151cc6205eb1d5696ff4e282eda4e28f332bc8d03059a155b6ba2c46bf70b2,7513
Module documentation for 0.6.0.3
ServantServant.ServerServant.Server.ExperimentalServant.Server.Experimental.Auth
Depends on 21 packages
(full list with versions ) :
base ,
base64-bytestring ,
blaze-builder ,
bytestring ,
cereal ,
cereal-time ,
cookie ,
cryptonite ,
data-default ,
exceptions ,
http-api-data ,
http-types ,
memory ,
mtl ,
servant ,
servant-server ,
tagged ,
text ,
time ,
transformers ,
wai Authentication via encrypted client-side cookies,
inspired by client-session library by Michael Snoyman and based on
ideas of the paper "A Secure Cookie Protocol" by Alex Liu et al.
Change Log
Changed
Fixed dependencies’ bounds.
Added
CookiedWrapperClass
supports MonadIO
- and MonadThrow
-constrained monads.
Changed
Fixed dependencies’ bounds.
AuthCookieExceptionHandler
requires type of underlying monad as parameter.
Changed
Fixed module tests/Utils
export.
0.6.0 - 2017-11-08
Added
getHeaderSession
function to access session data without denying access to a route (issue #30).
cookied
function:
support for multiple-parametered handlers (issue #34).
CookiedWrapper
type synonym and CookieWrapperClass
class to ease work with the function (issue #38).
Support for session cookies (issue #35):
ssExpirationType
of SessionSetting
record
ExpirationType
datatype
Support for refreshing cookies (issue #37):
ssAutoRenew
of SessionSetting
record
Type synonyms for common boilerplates:
AuthCookieExceptionHandler
AuthCookieHandler
Changed
cookied
function’s signature, added argument of type Proxy Session
.
addSession*
functions’ signatures, added argument of SessionSettings
type. Use def
(from Data.Default
) for fallback mode.
Fixed bug with wrong time format in removeSession*
functions (issue #39).
Refactored internals:
Format of encoding cookies is different.
Cookie
record is completely changed.
WithMetadata
replaced with PayloadWrapper
/ExtendedPayloadWrapper
. Use the latter one in cookie handlers.
encryptCookie
/decryptCookie
merged with their session counterparts.
Removed
acsExpirationFormat
field and CannotParseExpirationTime
exception constructor are no longer needed.
Changed
Fixed dependencies’ bounds.
Changed
Fixed dependencies’ bounds.
Changed
Fixed dependencies’ bounds.
Changed
Fixed dependencies’ bounds.
Changed
Fixed dependencies’ bounds.
Changed
Fixed dependencies’ bounds.
Changed
Fixed incompatibility with older versions of GHC.
0.5.0 - 2017-04-15
Changed
Server keys management:
ServerKey
becomes ServerKeySet
.
mkServerKeyFromBytes
becomes mkPersistentServerKey
.
Deleted
mkServerKey
(instead use custom instance of ServerKeySet
.
Added
class Cookied
and function cookied
to faciliate usage of mutable server keys.
0.4.4 - 2017-04-15
Added
Tests for the example.
parseSessionRequest
and parseSessionResponse
functions.
removeSessionFromErr
function.
Changed
Fixed constraint for removeSession
.
Added
Changed
Fixed dependencies’ bounds.
Changed
Fixed dependencies’ bounds.
Changed
Fixed dependencies’ bounds.
0.4.3 - 2016-01-30
Changed
Fixed draining of /dev/random
.
Refactored the example.
Changed
Fixed dependencies’ bounds.
0.4.2 - 2016-12-23
Added
0.4.0 - 2016-09-25
Added
Support for servant-0.9
.
Tags for bytestrings.
Changed
0.3.2 - 2016-09-17
Added
mkServerKeyFromBytes
function.
0.3.1 - 2016-08-19
Added
addSessionToErr
function.
Changed
Fixed dependencies’ bounds.
Changed
Fixed dependencies’ bounds.
0.3.0 - 2016-07-27
Changed
Relicensed to BSD3
The great and glorious refactoring of everything ;)
0.2.0 - 2016-07-08
Added
Parameters:
hash algorithm
encryption/decryption algorithms
…and many others.
Tests
Documentation
Changed
RandomKey
and ServerKey
initialization (without unsafePerformIO
).
Changed
More user-friendly example.
0.1.0 - 2016-06-05
Added
Initial version of the package.
Stackage is a service provided by the
Haskell Foundation
│ Originally developed by
FP Complete