PNG  IHDR!@ PLTE>O`jqv 7'tEXtPage
cookie.scm - metalympiada
git clone git://metalympiada.org/
Log | Files | README | LICENSE

cookie.scm (3693B)

   1 ;;; guile-webutils -- Web application utilities for Guile
   2 ;;; Copyright © 2016  Christopher Allan Webber <cwebber@dustycloud.org>
   3 (define-module (cookie)
   4   #:export (set-cookie delete-cookie))
   5 (use-modules (srfi srfi-1)
   6              (srfi srfi-19)
   7              (srfi srfi-26)
   8              (ice-9 control)
   9              (ice-9 match)
  10              (web http))
  11 
  12 (define cookie-val-char-set
  13   (char-set-difference (char-set-delete char-set:ascii #\, #\;)
  14                        char-set:iso-control))
  15 
  16 (define cookie-name-char-set
  17   (char-set-delete cookie-val-char-set #\=))
  18 
  19 (define (parse-cookie cookie-text)
  20   (let ((parts (string-split cookie-text #\;)))
  21     (define (split-cookie-pair cookie-pair)
  22       (let* ((trimmed (string-trim cookie-pair))
  23              (delim (string-index trimmed #\=))
  24              (attrib (if delim
  25                          (substring trimmed 0 delim)
  26                          trimmed))
  27              (val (if delim
  28                       (substring trimmed (+ delim 1))
  29                       #t)))
  30         (cons attrib val)))
  31     (map split-cookie-pair parts)))
  32 
  33 (define (date->http-date-string date)
  34   (call-with-output-string (cut (@@ (web http) write-date) date <>)))
  35 
  36 (define (write-cookie cookie-alist port)
  37   (let ((cookie-str
  38          (string-join 
  39           (map (match-lambda
  40                  ((name . (? string? val))
  41                   (string-append name "=" val))
  42                  ((name . (? date? val))
  43                   (string-append name "=" (date->http-date-string val)))
  44                  ((name . #t)
  45                   name))
  46                cookie-alist)
  47           "; ")))
  48     (display cookie-str port)))
  49 
  50 (define (valid-cookie-name? str)
  51   (and (string? str)
  52        (string-every cookie-name-char-set str)))
  53 
  54 (define (valid-cookie-val? str)
  55   (or (eq? str #t)
  56       (and (string? str)
  57            (string-every cookie-val-char-set str))
  58       (date? str)))
  59 
  60 (define (validate-cookie cookie-alist)
  61   (match cookie-alist
  62     ((((? valid-cookie-name? name) . (or #t (? valid-cookie-val? _))) ...)
  63      #t)
  64     (_ #f)))
  65 
  66 (declare-header! "Cookie"
  67                  parse-cookie validate-cookie write-cookie)
  68 
  69 (define (parse-set-cookie str)
  70   (match (parse-cookie str)
  71     (((name . val) attrs ...)
  72      (list name val attrs))))
  73 
  74 (define (validate-set-cookie obj)
  75   (match obj
  76     ((name val (attrs ...))
  77      (validate-cookie
  78       (cons (cons name val)
  79             attrs)))
  80     (_ #f)))
  81 
  82 (define (write-set-cookie obj port)
  83   (match obj
  84     ((name val (attrs ...))
  85      (write-cookie
  86       (cons (cons name val)
  87             attrs)
  88       port))))
  89 
  90 (declare-header! "Set-Cookie"
  91                  parse-set-cookie validate-set-cookie write-set-cookie
  92                  #:multiple? #t)
  93 
  94 (define* (set-cookie name #:optional (val "")
  95                      #:key expires max-age domain
  96                      path secure http-only
  97                      (extensions '())) 
  98   (define (maybe-append name val)
  99     (lambda (prev)
 100       (if val
 101           (cons (cons name val)
 102                 prev)
 103           prev)))
 104   (define basic-prop-alist
 105     ((compose
 106       (maybe-append "Expires" expires)
 107       (maybe-append "Max-Age" max-age)
 108       (maybe-append "Domain" domain)
 109       (maybe-append "Path" path)
 110       (maybe-append "Secure" secure)
 111       (maybe-append "HttpOnly" http-only))
 112      '()))
 113   (define prop-alist
 114     (append basic-prop-alist
 115             extensions))
 116   (cons 'set-cookie (list name val prop-alist)))
 117 
 118 (define %the-epoch
 119   (time-monotonic->date (make-time 'time-monotonic 0 0) 0))
 120 
 121 (define (delete-cookie name)
 122   (set-cookie name
 123               #:expires %the-epoch
 124               #:path "/"
 125               #:secure #t
 126               #:http-only #t))
@JIDATx[M},]VM:T]ҋ,sRн+b&jCPh;UP9fϡ˕&=چ8=좖Eػwr4Y͗C-̐?=rew G0ndƎ&EI<=dIp45p5ȍ"EcV0ߍNA fSu? %8 `0l"/CȫWЙE,: nLken4᥈]c`/[|c!P"`B))iFPQS ;C-RD6Ttʡ _$Qz 8 HKK0%j;"υWWF(Ǯe? e,pҹȨXs\ ̧6(ي[=x|/S,XX(-Xr"geBԚp*9z DOv+Ɓ"DV[{j PZ]AB JL1|s cyzTpmPNz0b2h `Ud@jk+sKZ!UVs *!/R7sjQ!b)Ax1"E9ܙZTu +h*-8:< , pʃiZw*MyjSi4ȵr +K]",VF4;&Qo{w {NM {w',aJ2 Njr(͞ l՟P r=upHB%T0V0aɄIaT0gOr 7m'͙@ rS N~VsN3,46ּi2*4 6,DC{M7* O1($F3xBtDtĘY.YxW h)W#y-dQ 1BI6F$5V_d$Jfj9nu8ww1 3Ԣсr?ZF܋j1k#E%x*-8ĵGXGJAP)+ Ƃ-;Fd4"dKY.3+ mcz>6[ɣhdx$}m}󑩅*|z\n%36y1ӆ Zå(7ҟg&%m0"'7.Ey+'Y,Y#YBd4W$;l GPwZ32 !oeEB2Y}Ѕ>w߉y\Mi{ՇJ_ag;&Q܍z= Kwއ`o+;]Z`mwJv!Oܸ 2Bsl[\ E-/4~Em@]"d׭iۇ2o74sHN,vZ-|$lk)WNwg[3ۄ?w.q7N ߾ԵuG$w ɷ;wςGe48i-rVN «I6?˼c~;K;?pxUwcVZ6mgFc_01JD# ŝI˻_67З)$JaC>6 8Ʃpq'Emwr+͉>i9qcrƌkqlҚ ٦{X(c]/x4gN)cm2J f}b@kc @$SQJ_Q 1tX`ڭk?1*E}]0@<*Tqtg RS1UC1f[a\v]ܳd!]o}ϋ|ə!r}Rjܝ+w٠!|+JqZA3^"ͤԘn}PVPx{]ޗBD0$Uv!+Hwv252 AI˿{CſI9dO:| jĚw|.[t4+(CԗJ%Ň=!PWB Yhu$iP۝}N@e1x4Mh sE0_Fmfn[vG Q)(Oݪg{Kv<ي7DY^ |:ijBn2 ,sC5/aqK9@ {TXt ϭD޹ Q'"u6,Mgj)Ӱo~g/ρk%T+Sd0*v POݏ*Qy/owm sLKb5n|`i15ZZ޾s8b2Js,x(sxz~mIĚZlI?؊5'~). \ *Koy~c;iobV򻴼`?ys,TtGK>Dc26p0e_$6mn%'y>3R>s@f?~0ͯ-G%&8Ɩ{ytޠ?xL MP ɰ sYXq;AgS X>kcr&I[DݼsWB=2zVI*]{y]صZCR8L&#g~4u)<+Yg!ԠfHj3תp0+5`S}Ĭ&ffl]mJ cˋIs\L Jvniq;9(hGĶ s":qƳ]}KjhvpIGzƐDADytmXo~jETCL{53+-YŽn8gÁ-d`Bo@*@]-Q,\5`#@N@q`ù""aT)r@ ` >uҚF㶻~ay̧B;RD4eB=ΟK\pbeĐ)~{QS@)*WmS"KxtbJ№DPI%Q.D4$QnuJw+رC\YABys.TLRt&E+Ʋn@YwJ%~gvy"ѯ1P 6p"7 ~w3VݸY#طzȋPVkEfEQ]vlH܁-z2!So"q-C#^$Qe= +&|>%HdF`# 72 >)NM)DC<835[d|_p쩛ǞjҤr(JӶ[#hB&Z9O[ y-0<^ ?jt[Yᴸ>.dɆ10DŽqA$[9C 6g(JE@EΜ♦3濫Fb;GFF `CFW+f`y/H (|L`iKVuxxe]d'4XFX+D<alp It2!Y` -`*}c Wyk-]T/$X$HKlQ% 㖢Gbcy]FC*}B6p*9a:åSar_oFid ̇\IG4~䆢׀VyCh-q{df,l'*)ʵ B:;)uEEuVs`As']ۭz-Jѫ#ۯܵxd-<6:;kA=zĢ[c~p湥ۊ=LJ8p=odL )hD%_W zzclͮd˸L*'%+P(NVwy]Oz׽tPYFFGsFfZH'. ę26ѧ2\80Gzq2mdOSz>J4CASsF9 !X͑ 5Rw5Řm8QG!)@YJwx}6Ng >r^$$V2V4.*&cӋ}`xHPm)B(@"NJCN24 @>KG)z _26Da$؟Og_{ϵRVQ#ZR"tB tC_OPLao= {VːMe ID$1Frn97p($KrlTf6eTLt#Å1jʽ9:@IENDB`