Merge pull request #172 from supertokens/session-container-to-pointer

fix: Session container to pointer

Author: rishabhpoddar

examples/with-labstack-echo/main.go

@@ -144,7 +144,7 @@ func verifySession(options *sessmodels.VerifySessionOptions) echo.MiddlewareFunc
 }
 
 func sessioninfo(c echo.Context) error {
-	sessionContainer := c.Get("session").(*sessmodels.SessionContainer)
+	sessionContainer := c.Get("session").(sessmodels.SessionContainer)
 
 	if sessionContainer == nil {
 		return errors.New("no session found")

recipe/emailpassword/emailExistsAndVerificationCheck_test.go

@@ -931,7 +931,7 @@ func TestThatTheHandlePostEmailVerificationCallBackIsCalledOnSuccessFullVerifica
 				Override: &evmodels.OverrideStruct{
 					APIs: func(originalImplementation evmodels.APIInterface) evmodels.APIInterface {
 						originalVerifyEmailPost := *originalImplementation.VerifyEmailPOST
-						*originalImplementation.VerifyEmailPOST = func(token string, sessionContainer *sessmodels.SessionContainer, options evmodels.APIOptions, userContext supertokens.UserContext) (evmodels.VerifyEmailPOSTResponse, error) {
+						*originalImplementation.VerifyEmailPOST = func(token string, sessionContainer sessmodels.SessionContainer, options evmodels.APIOptions, userContext supertokens.UserContext) (evmodels.VerifyEmailPOSTResponse, error) {
 							res, err := originalVerifyEmailPost(token, sessionContainer, options, userContext)
 							if err != nil {
 								log.Fatal(err.Error())
@@ -1191,7 +1191,7 @@ func TestTheEmailVerifyAPIwithValidInputOverridingAPIs(t *testing.T) {
 				Override: &evmodels.OverrideStruct{
 					APIs: func(originalImplementation evmodels.APIInterface) evmodels.APIInterface {
 						originalVerifyEmailPost := *originalImplementation.VerifyEmailPOST
-						*originalImplementation.VerifyEmailPOST = func(token string, sessionContainer *sessmodels.SessionContainer, options evmodels.APIOptions, userContext supertokens.UserContext) (evmodels.VerifyEmailPOSTResponse, error) {
+						*originalImplementation.VerifyEmailPOST = func(token string, sessionContainer sessmodels.SessionContainer, options evmodels.APIOptions, userContext supertokens.UserContext) (evmodels.VerifyEmailPOSTResponse, error) {
 							res, err := originalVerifyEmailPost(token, sessionContainer, options, userContext)
 							if err != nil {
 								log.Fatal(err.Error())
@@ -1397,7 +1397,7 @@ func TestTheEmailVerifyAPIwithValidInputThrowsErrorOnSuchOverriding(t *testing.T
 				Override: &evmodels.OverrideStruct{
 					APIs: func(originalImplementation evmodels.APIInterface) evmodels.APIInterface {
 						originalVerifyEmailPost := *originalImplementation.VerifyEmailPOST
-						*originalImplementation.VerifyEmailPOST = func(token string, sessionContainer *sessmodels.SessionContainer, options evmodels.APIOptions, userContext supertokens.UserContext) (evmodels.VerifyEmailPOSTResponse, error) {
+						*originalImplementation.VerifyEmailPOST = func(token string, sessionContainer sessmodels.SessionContainer, options evmodels.APIOptions, userContext supertokens.UserContext) (evmodels.VerifyEmailPOSTResponse, error) {
 							res, err := originalVerifyEmailPost(token, sessionContainer, options, userContext)
 							if err != nil {
 								log.Fatal(err.Error())

recipe/emailverification/api/emailverify.go

@@ -42,7 +42,7 @@ func EmailVerify(apiImplementation evmodels.APIInterface, options evmodels.APIOp
 			options.Req, options.Res,
 			&sessmodels.VerifySessionOptions{
 				SessionRequired: &sessionRequired,
-				OverrideGlobalClaimValidators: func(globalClaimValidators []claims.SessionClaimValidator, sessionContainer *sessmodels.SessionContainer, userContext supertokens.UserContext) ([]claims.SessionClaimValidator, error) {
+				OverrideGlobalClaimValidators: func(globalClaimValidators []claims.SessionClaimValidator, sessionContainer sessmodels.SessionContainer, userContext supertokens.UserContext) ([]claims.SessionClaimValidator, error) {
 					validators := []claims.SessionClaimValidator{}
 					return validators, nil
 				},
@@ -100,7 +100,7 @@ func EmailVerify(apiImplementation evmodels.APIInterface, options evmodels.APIOp
 			options.Req,
 			options.Res,
 			&sessmodels.VerifySessionOptions{
-				OverrideGlobalClaimValidators: func(globalClaimValidators []claims.SessionClaimValidator, sessionContainer *sessmodels.SessionContainer, userContext supertokens.UserContext) ([]claims.SessionClaimValidator, error) {
+				OverrideGlobalClaimValidators: func(globalClaimValidators []claims.SessionClaimValidator, sessionContainer sessmodels.SessionContainer, userContext supertokens.UserContext) ([]claims.SessionClaimValidator, error) {
 					validators := []claims.SessionClaimValidator{}
 					return validators, nil
 				},

recipe/emailverification/api/generateEmailVerifyToken.go

@@ -35,7 +35,7 @@ func GenerateEmailVerifyToken(apiImplementation evmodels.APIInterface, options e
 	sessionContainer, err := session.GetSessionWithContext(
 		options.Req, options.Res,
 		&sessmodels.VerifySessionOptions{
-			OverrideGlobalClaimValidators: func(globalClaimValidators []claims.SessionClaimValidator, sessionContainer *sessmodels.SessionContainer, userContext supertokens.UserContext) ([]claims.SessionClaimValidator, error) {
+			OverrideGlobalClaimValidators: func(globalClaimValidators []claims.SessionClaimValidator, sessionContainer sessmodels.SessionContainer, userContext supertokens.UserContext) ([]claims.SessionClaimValidator, error) {
 				validators := []claims.SessionClaimValidator{}
 				return validators, nil
 			},

recipe/emailverification/api/implementation.go

@@ -27,7 +27,7 @@ import (
 )
 
 func MakeAPIImplementation() evmodels.APIInterface {
-	verifyEmailPOST := func(token string, sessionContainer *sessmodels.SessionContainer, options evmodels.APIOptions, userContext supertokens.UserContext) (evmodels.VerifyEmailPOSTResponse, error) {
+	verifyEmailPOST := func(token string, sessionContainer sessmodels.SessionContainer, options evmodels.APIOptions, userContext supertokens.UserContext) (evmodels.VerifyEmailPOSTResponse, error) {
 		resp, err := (*options.RecipeImplementation.VerifyEmailUsingToken)(token, userContext)
 		if err != nil {
 			return evmodels.VerifyEmailPOSTResponse{}, err
@@ -49,7 +49,7 @@ func MakeAPIImplementation() evmodels.APIInterface {
 		}
 	}
 
-	isEmailVerifiedGET := func(sessionContainer *sessmodels.SessionContainer, options evmodels.APIOptions, userContext supertokens.UserContext) (evmodels.IsEmailVerifiedGETResponse, error) {
+	isEmailVerifiedGET := func(sessionContainer sessmodels.SessionContainer, options evmodels.APIOptions, userContext supertokens.UserContext) (evmodels.IsEmailVerifiedGETResponse, error) {
 		if sessionContainer == nil {
 			return evmodels.IsEmailVerifiedGETResponse{}, supertokens.BadInputError{Msg: "Session is undefined. Should not come here."}
 		}
@@ -70,7 +70,7 @@ func MakeAPIImplementation() evmodels.APIInterface {
 		}, nil
 	}
 
-	generateEmailVerifyTokenPOST := func(sessionContainer *sessmodels.SessionContainer, options evmodels.APIOptions, userContext supertokens.UserContext) (evmodels.GenerateEmailVerifyTokenPOSTResponse, error) {
+	generateEmailVerifyTokenPOST := func(sessionContainer sessmodels.SessionContainer, options evmodels.APIOptions, userContext supertokens.UserContext) (evmodels.GenerateEmailVerifyTokenPOSTResponse, error) {
 		if sessionContainer == nil {
 			return evmodels.GenerateEmailVerifyTokenPOSTResponse{}, supertokens.BadInputError{Msg: "Session is undefined. Should not come here."}
 		}

recipe/emailverification/evmodels/apiInterface.go

@@ -36,9 +36,9 @@ type APIOptions struct {
 }
 
 type APIInterface struct {
-	VerifyEmailPOST              *func(token string, sessionContainer *sessmodels.SessionContainer, options APIOptions, userContext supertokens.UserContext) (VerifyEmailPOSTResponse, error)
-	IsEmailVerifiedGET           *func(sessionContainer *sessmodels.SessionContainer, options APIOptions, userContext supertokens.UserContext) (IsEmailVerifiedGETResponse, error)
-	GenerateEmailVerifyTokenPOST *func(sessionContainer *sessmodels.SessionContainer, options APIOptions, userContext supertokens.UserContext) (GenerateEmailVerifyTokenPOSTResponse, error)
+	VerifyEmailPOST              *func(token string, sessionContainer sessmodels.SessionContainer, options APIOptions, userContext supertokens.UserContext) (VerifyEmailPOSTResponse, error)
+	IsEmailVerifiedGET           *func(sessionContainer sessmodels.SessionContainer, options APIOptions, userContext supertokens.UserContext) (IsEmailVerifiedGETResponse, error)
+	GenerateEmailVerifyTokenPOST *func(sessionContainer sessmodels.SessionContainer, options APIOptions, userContext supertokens.UserContext) (GenerateEmailVerifyTokenPOSTResponse, error)
 }
 
 type VerifyEmailPOSTResponse struct {

recipe/session/api/implementation.go

@@ -28,7 +28,7 @@ func MakeAPIImplementation() sessmodels.APIInterface {
 		return (*options.RecipeImplementation.RefreshSession)(options.Req, options.Res, userContext)
 	}
 
-	verifySession := func(verifySessionOptions *sessmodels.VerifySessionOptions, options sessmodels.APIOptions, userContext supertokens.UserContext) (*sessmodels.SessionContainer, error) {
+	verifySession := func(verifySessionOptions *sessmodels.VerifySessionOptions, options sessmodels.APIOptions, userContext supertokens.UserContext) (sessmodels.SessionContainer, error) {
 		method := options.Req.Method
 		if method == http.MethodOptions || method == http.MethodTrace {
 			return nil, nil
@@ -42,7 +42,7 @@ func MakeAPIImplementation() sessmodels.APIInterface {
 		refreshTokenPath := options.Config.RefreshTokenPath
 		if incomingPath.Equals(refreshTokenPath) && method == http.MethodPost {
 			session, err := (*options.RecipeImplementation.RefreshSession)(options.Req, options.Res, userContext)
-			return &session, err
+			return session, err
 		} else {
 			sessionContainer, err := (*options.RecipeImplementation.GetSession)(options.Req, options.Res, verifySessionOptions, userContext)
 			if err != nil {
@@ -53,7 +53,7 @@ func MakeAPIImplementation() sessmodels.APIInterface {
 				return nil, nil
 			}
 
-			var overrideGlobalClaimValidators func(globalClaimValidators []claims.SessionClaimValidator, sessionContainer *sessmodels.SessionContainer, userContext supertokens.UserContext) ([]claims.SessionClaimValidator, error) = nil
+			var overrideGlobalClaimValidators func(globalClaimValidators []claims.SessionClaimValidator, sessionContainer sessmodels.SessionContainer, userContext supertokens.UserContext) ([]claims.SessionClaimValidator, error) = nil
 			if verifySessionOptions != nil {
 				overrideGlobalClaimValidators = verifySessionOptions.OverrideGlobalClaimValidators
 			}
@@ -81,7 +81,7 @@ func MakeAPIImplementation() sessmodels.APIInterface {
 		}
 	}
 
-	signOutPOST := func(sessionContainer *sessmodels.SessionContainer, options sessmodels.APIOptions, userContext supertokens.UserContext) (sessmodels.SignOutPOSTResponse, error) {
+	signOutPOST := func(sessionContainer sessmodels.SessionContainer, options sessmodels.APIOptions, userContext supertokens.UserContext) (sessmodels.SignOutPOSTResponse, error) {
 		if sessionContainer != nil {
 			err := sessionContainer.RevokeSessionWithContext(userContext)
 			if err != nil {

recipe/session/api/signout.go

@@ -32,7 +32,7 @@ func SignOutAPI(apiImplementation sessmodels.APIInterface, options sessmodels.AP
 	False := false
 	sessionContainer, err := (*options.RecipeImplementation.GetSession)(options.Req, options.Res, &sessmodels.VerifySessionOptions{
 		SessionRequired: &False,
-		OverrideGlobalClaimValidators: func(globalClaimValidators []claims.SessionClaimValidator, sessionContainer *sessmodels.SessionContainer, userContext supertokens.UserContext) ([]claims.SessionClaimValidator, error) {
+		OverrideGlobalClaimValidators: func(globalClaimValidators []claims.SessionClaimValidator, sessionContainer sessmodels.SessionContainer, userContext supertokens.UserContext) ([]claims.SessionClaimValidator, error) {
 			return []claims.SessionClaimValidator{}, nil
 		},
 	}, userContext)

recipe/session/claimsWithJWT_test.go

@@ -7,6 +7,7 @@ import (
 
 	"github.com/golang-jwt/jwt/v4"
 	"github.com/stretchr/testify/assert"
+	"github.com/supertokens/supertokens-golang/recipe/session/claims"
 	"github.com/supertokens/supertokens-golang/recipe/session/sessmodels"
 	"github.com/supertokens/supertokens-golang/supertokens"
 	"github.com/supertokens/supertokens-golang/test/unittesting"
@@ -37,7 +38,7 @@ func TestJWTShouldCreateRightAccessTokenPayloadWithClaims(t *testing.T) {
 							claim, _ := TrueClaim()
 							accessTokenPayload, err := claim.Build(userID, accessTokenPayload, userContext)
 							if err != nil {
-								return sessmodels.SessionContainer{}, err
+								return nil, err
 							}
 							return oCreateNewSession(res, userID, accessTokenPayload, sessionData, userContext)
 						}
@@ -79,10 +80,93 @@ func TestJWTShouldCreateRightAccessTokenPayloadWithClaims(t *testing.T) {
 	sessInfo, err := GetSessionInformation(sessionContainer.GetHandle())
 	assert.NoError(t, err)
 	jwtPayloadStr := sessInfo.AccessTokenPayload["jwt"].(string)
-	token, _ := jwt.Parse(jwtPayloadStr, func(t *jwt.Token) (interface{}, error) {
-		return nil, nil
-	})
-	jwtPayload := token.Claims.(jwt.MapClaims)
+	jwtPayload := jwt.MapClaims{}
+
+	_, _, err = (&jwt.Parser{}).ParseUnverified(jwtPayloadStr, jwtPayload)
+	assert.NoError(t, err)
+
 	assert.Equal(t, true, jwtPayload["st-true"].(map[string]interface{})["v"])
 	assert.Equal(t, "rope", jwtPayload["sub"])
 }
+
+func TestAssertClaimsWithPayloadWithJWTAndCallRightUpdateAccessTokenPayload(t *testing.T) {
+	configValue := supertokens.TypeInput{
+		Supertokens: &supertokens.ConnectionInfo{
+			ConnectionURI: "http://localhost:8080",
+		},
+		AppInfo: supertokens.AppInfo{
+			AppName:       "SuperTokens",
+			WebsiteDomain: "supertokens.io",
+			APIDomain:     "api.supertokens.io",
+		},
+		RecipeList: []supertokens.Recipe{
+			Init(&sessmodels.TypeInput{
+				Jwt: &sessmodels.JWTInputConfig{Enable: true},
+			}),
+		},
+	}
+	BeforeEach()
+	unittesting.StartUpST("localhost", "8080")
+	defer AfterEach()
+	err := supertokens.Init(configValue)
+	if err != nil {
+		t.Error(err.Error())
+	}
+
+	mux := http.NewServeMux()
+	var sessionContainer sessmodels.SessionContainer
+	accessTokenPayload := map[string]interface{}{
+		"hello": "world",
+	}
+
+	mux.HandleFunc("/create", func(rw http.ResponseWriter, r *http.Request) {
+		var err error
+		sessionContainer, err = CreateNewSession(rw, "rope", accessTokenPayload, map[string]interface{}{})
+		assert.NoError(t, err)
+	})
+
+	testServer := httptest.NewServer(supertokens.Middleware(mux))
+	defer func() {
+		testServer.Close()
+	}()
+	req, err := http.NewRequest(http.MethodGet, testServer.URL+"/create", nil)
+	assert.NoError(t, err)
+	res, err := http.DefaultClient.Do(req)
+	assert.NoError(t, err)
+	assert.Equal(t, 200, res.StatusCode)
+
+	validateCallCount := 0
+	var validationPayload map[string]interface{}
+
+	validate := func(payload map[string]interface{}, userContext supertokens.UserContext) claims.ClaimValidationResult {
+		validateCallCount += 1
+
+		validationPayload = payload
+
+		return claims.ClaimValidationResult{
+			IsValid: true,
+		}
+	}
+
+	_, validators := StubClaimWithRefetch(validate)
+	err = sessionContainer.AssertClaims([]claims.SessionClaimValidator{
+		validators.Stub(),
+	})
+	assert.NoError(t, err)
+	assert.Equal(t, 1, validateCallCount)
+	assert.Equal(t, "world", validationPayload["hello"])
+	assert.NotNil(t, validationPayload, "st-stub")
+	assert.Equal(t, "stub", validationPayload["st-stub"].(map[string]interface{})["v"])
+
+	// Check if claim was updated in jwt
+	sessInfo, err := GetSessionInformation(sessionContainer.GetHandle())
+	assert.NoError(t, err)
+	jwtPayloadStr := sessInfo.AccessTokenPayload["jwt"].(string)
+	jwtPayload := jwt.MapClaims{}
+
+	_, _, err = (&jwt.Parser{}).ParseUnverified(jwtPayloadStr, jwtPayload)
+	assert.NoError(t, err)
+
+	assert.Equal(t, "stub", jwtPayload["st-stub"].(map[string]interface{})["v"])
+	assert.Equal(t, "rope", jwtPayload["sub"])
+}

recipe/session/claimsutils_test.go

@@ -50,6 +50,32 @@ func StubClaim(validate func(payload map[string]interface{}, userContext superto
 	}
 }
 
+func StubClaimWithRefetch(validate func(payload map[string]interface{}, userContext supertokens.UserContext) claims.ClaimValidationResult) (*claims.TypeSessionClaim, StubValidator) {
+	claim, validators := claims.PrimitiveClaim(
+		"st-stub",
+		func(userId string, userContext supertokens.UserContext) (interface{}, error) {
+			return "stub", nil
+		},
+		nil,
+	)
+
+	return claim, StubValidator{
+		PrimitiveClaimValidators: validators,
+		Stub: func() claims.SessionClaimValidator {
+			return claims.SessionClaimValidator{
+				ID:    claim.Key,
+				Claim: claim,
+				Validate: func(payload map[string]interface{}, userContext supertokens.UserContext) claims.ClaimValidationResult {
+					return validate(payload, userContext)
+				},
+				ShouldRefetch: func(payload map[string]interface{}, userContext supertokens.UserContext) bool {
+					return true
+				},
+			}
+		},
+	}
+}
+
 type StubValidator struct {
 	claims.PrimitiveClaimValidators
 	Stub func() claims.SessionClaimValidator