From 887ed241d64ba5db3fd3d87194fb5595e5ad7d73 Mon Sep 17 00:00:00 2001
From: r <r@freesoftwareextremist.com>
Date: Tue, 25 Oct 2022 13:40:49 +0000
Subject: Use cookies for session storage

Remove the server side session storage and store all the session related data
in the client side cookies. This decreases the exposure of the auth tokens.
It also simplifies the installation process as bloat no longer requires write
access to the filesystem.

This is a breaking change, all the existing sessions will stop working.
---
 repo/appRepo.go     | 42 ------------------------------------------
 repo/sessionRepo.go | 47 -----------------------------------------------
 2 files changed, 89 deletions(-)
 delete mode 100644 repo/appRepo.go
 delete mode 100644 repo/sessionRepo.go

(limited to 'repo')

diff --git a/repo/appRepo.go b/repo/appRepo.go
deleted file mode 100644
index d97ac1f..0000000
--- a/repo/appRepo.go
+++ /dev/null
@@ -1,42 +0,0 @@
-package repo
-
-import (
-	"encoding/json"
-
-	"bloat/util"
-	"bloat/model"
-)
-
-type appRepo struct {
-	db *util.Database
-}
-
-func NewAppRepo(db *util.Database) *appRepo {
-	return &appRepo{
-		db: db,
-	}
-}
-
-func (repo *appRepo) Add(a model.App) (err error) {
-	data, err := json.Marshal(a)
-	if err != nil {
-		return
-	}
-	err = repo.db.Set(a.InstanceDomain, data)
-	return
-}
-
-func (repo *appRepo) Get(instanceDomain string) (a model.App, err error) {
-	data, err := repo.db.Get(instanceDomain)
-	if err != nil {
-		err = model.ErrAppNotFound
-		return
-	}
-
-	err = json.Unmarshal(data, &a)
-	if err != nil {
-		return
-	}
-
-	return
-}
diff --git a/repo/sessionRepo.go b/repo/sessionRepo.go
deleted file mode 100644
index 2097c3e..0000000
--- a/repo/sessionRepo.go
+++ /dev/null
@@ -1,47 +0,0 @@
-package repo
-
-import (
-	"encoding/json"
-
-	"bloat/util"
-	"bloat/model"
-)
-
-type sessionRepo struct {
-	db *util.Database
-}
-
-func NewSessionRepo(db *util.Database) *sessionRepo {
-	return &sessionRepo{
-		db: db,
-	}
-}
-
-func (repo *sessionRepo) Add(s model.Session) (err error) {
-	data, err := json.Marshal(s)
-	if err != nil {
-		return
-	}
-	err = repo.db.Set(s.ID, data)
-	return
-}
-
-func (repo *sessionRepo) Get(id string) (s model.Session, err error) {
-	data, err := repo.db.Get(id)
-	if err != nil {
-		err = model.ErrSessionNotFound
-		return
-	}
-
-	err = json.Unmarshal(data, &s)
-	if err != nil {
-		return
-	}
-
-	return
-}
-
-func (repo *sessionRepo) Remove(id string) {
-	repo.db.Remove(id)
-	return
-}
-- 
cgit v1.2.3