PNG  IHDR!@ PLTE>O`jqv 7'tEXtPage
cookie.scm - metalympiada
git clone git://metalympiada.org/
Log | Files | README | LICENSE

cookie.scm (3693B)

   1 ;;; guile-webutils -- Web application utilities for Guile
   2 ;;; Copyright © 2016  Christopher Allan Webber <cwebber@dustycloud.org>
   3 (define-module (cookie)
   4   #:export (set-cookie delete-cookie))
   5 (use-modules (srfi srfi-1)
   6              (srfi srfi-19)
   7              (srfi srfi-26)
   8              (ice-9 control)
   9              (ice-9 match)
  10              (web http))
  11 
  12 (define cookie-val-char-set
  13   (char-set-difference (char-set-delete char-set:ascii #\, #\;)
  14                        char-set:iso-control))
  15 
  16 (define cookie-name-char-set
  17   (char-set-delete cookie-val-char-set #\=))
  18 
  19 (define (parse-cookie cookie-text)
  20   (let ((parts (string-split cookie-text #\;)))
  21     (define (split-cookie-pair cookie-pair)
  22       (let* ((trimmed (string-trim cookie-pair))
  23              (delim (string-index trimmed #\=))
  24              (attrib (if delim
  25                          (substring trimmed 0 delim)
  26                          trimmed))
  27              (val (if delim
  28                       (substring trimmed (+ delim 1))
  29                       #t)))
  30         (cons attrib val)))
  31     (map split-cookie-pair parts)))
  32 
  33 (define (date->http-date-string date)
  34   (call-with-output-string (cut (@@ (web http) write-date) date <>)))
  35 
  36 (define (write-cookie cookie-alist port)
  37   (let ((cookie-str
  38          (string-join 
  39           (map (match-lambda
  40                  ((name . (? string? val))
  41                   (string-append name "=" val))
  42                  ((name . (? date? val))
  43                   (string-append name "=" (date->http-date-string val)))
  44                  ((name . #t)
  45                   name))
  46                cookie-alist)
  47           "; ")))
  48     (display cookie-str port)))
  49 
  50 (define (valid-cookie-name? str)
  51   (and (string? str)
  52        (string-every cookie-name-char-set str)))
  53 
  54 (define (valid-cookie-val? str)
  55   (or (eq? str #t)
  56       (and (string? str)
  57            (string-every cookie-val-char-set str))
  58       (date? str)))
  59 
  60 (define (validate-cookie cookie-alist)
  61   (match cookie-alist
  62     ((((? valid-cookie-name? name) . (or #t (? valid-cookie-val? _))) ...)
  63      #t)
  64     (_ #f)))
  65 
  66 (declare-header! "Cookie"
  67                  parse-cookie validate-cookie write-cookie)
  68 
  69 (define (parse-set-cookie str)
  70   (match (parse-cookie str)
  71     (((name . val) attrs ...)
  72      (list name val attrs))))
  73 
  74 (define (validate-set-cookie obj)
  75   (match obj
  76     ((name val (attrs ...))
  77      (validate-cookie
  78       (cons (cons name val)
  79             attrs)))
  80     (_ #f)))
  81 
  82 (define (write-set-cookie obj port)
  83   (match obj
  84     ((name val (attrs ...))
  85      (write-cookie
  86       (cons (cons name val)
  87             attrs)
  88       port))))
  89 
  90 (declare-header! "Set-Cookie"
  91                  parse-set-cookie validate-set-cookie write-set-cookie
  92                  #:multiple? #t)
  93 
  94 (define* (set-cookie name #:optional (val "")
  95                      #:key expires max-age domain
  96                      path secure http-only
  97                      (extensions '())) 
  98   (define (maybe-append name val)
  99     (lambda (prev)
 100       (if val
 101           (cons (cons name val)
 102                 prev)
 103           prev)))
 104   (define basic-prop-alist
 105     ((compose
 106       (maybe-append "Expires" expires)
 107       (maybe-append "Max-Age" max-age)
 108       (maybe-append "Domain" domain)
 109       (maybe-append "Path" path)
 110       (maybe-append "Secure" secure)
 111       (maybe-append "HttpOnly" http-only))
 112      '()))
 113   (define prop-alist
 114     (append basic-prop-alist
 115             extensions))
 116   (cons 'set-cookie (list name val prop-alist)))
 117 
 118 (define %the-epoch
 119   (time-monotonic->date (make-time 'time-monotonic 0 0) 0))
 120 
 121 (define (delete-cookie name)
 122   (set-cookie name
 123               #:expires %the-epoch
 124               #:path "/"
 125               #:secure #t
 126               #:http-only #t))
@JIDATxo#u 5dbDY'Cbw H^&Cy.m@;9R*K@k;sh,R KՅQ-<~>tSdӘTtX\ܙ(RCZ2ֻ3;b_^?=8#<+ 3 g 1 - *lp0a,3 g C!80^:#@ɟ% :F@? G[w1`: Aua:> 0A_` gNt57 r/Taͱ15few )7ЭssN*/ w;&A1`uXaPʽHUۏ$^Еqon`XۉϏ#% Q]RÚ# :^y?`Xx67-K'd̨.]F:Rm- w8tԩH@]~%.^==9T\ 稶Fa/40\ɇxJׯnUkb.o{Uԓ+_jlp9eI t!S_)e>͞2 p1QO QưrgBspJӄA stbnb mMTL8pў:ML3A_o*s* ;܊.ӄߵ)lxGz0VSPo@RptQ*a5G/͍ P; m 3|`鎌@ jG\e&Àvb7Gd mR}FE>m;1bt ~FT/6: !{=wFTZrK:L) "4K7B@ T۷hGڮWh"+NFmʵiG&X=JSX>S$DYiRHbrp;&a8bQxўD x2gѮf_Ġ2d h2B:zo'iWa0O4IæV8K¿( yR<ƞa-l~\o0SbќhAbq 3|R@R0K4=Jeak|bE>^։ ?ݎ'*vgӓLnIt??aT1ڳݺCC( dN2m3cf? _.OɜTX)ĀontXe?ćpBUez& MԚzuQÊ-'NNjH8l@qG NMuUp|E)k="+6u)A x,#tem:s<[X f0 11ְ-pjJ`Iz$dӂzhu}Pɦ*>k Ac#^lDŨoϦe ҞD1TZp61x0td4W f}?|ǸĐ lN3Es`U=gc|R -D(ˤKԷulNv%6kM1YCH=ku_Es`{`2ףÀXM%k` Հ1;p-ʧ_|xoDQNώjP搣=N`6xϏ( g`16*9(ɵX=5ˮgjilw2a:jJԍ/3s2Nt ϒ|wn7XQR!jCXކ^-խ S:=k_dGgI5ɉ =&F ͩB#% h4Do L;w6BכpRp-`AңqP;X5[~d'R]=萸 j|,S9T1u  +09<`>`':Sr{SIʪ!xB![. s|hH:(IW7縫{%N |4 JGvrxk[{` A|L8JB9Ci@}y0ͲcU M6%Z6Н0}]8D4NuxPg-&M2gu2{PƘ5:nܠ#шk֠2}/'aǬnj%~~:Y2T]?* ߭sK-2b{Z @^AP/d˭ e OzTC?k[41 nPT@gkx0; ƚWe"m*Ŏ:F70{k5(,M+W+tQ4-*fӢs=˴}Vgݛrew3t]0^O\p0q2]rՇ Gmr?%dU5uX]w\bAu54X. ۍ* C>w1Tʼntþ[Lzwl}Xj~2 7{ a%?7;SB4_źp @al_wLs#dA@2F7k!̪lt#oW A<z!HցbtLhU+eZ>9A/5J}@dG fhߤ#dr+mqގvߣ=w.\]i( ;7P_"-DŽp >Ew"p/\Ѱ?!,'Q~A%gD 9/\cCߓ3Q(*p-JR3o]xn﷧$Qf̒(3ǐM8g%v"ou*gO 9Q\;+*7N d+A Od4ol$M{#.KF1 UcgK; nw%%T'$4nQCEJ:l[uK|+є,oh3LgWbYGL'2,:u m哹K|B{^< E+$A8I~e%;~VCht?|:?@'m=Z.4O6I4ʤ %_R@$6^˓6Le=k"%A# h~C)XWY("|6#7 Z4+s3(BfjS_y)0i/^y>M0va5), qWY[b/U61mg r.M+|&aW꛴Ý gB7tI&|6]{T &,4>0Gs?YzK3=tRj[f(\mf1(qw}q 7ן= {4!Ȑ񘘭šmɧ\~[?򸫀ZɃIJ2/9k}~+\LISibSp~"ѳ?v0IwQ~Z;vΧ,MxS0NVG]|Kَ_ 4iBJ$ԚkwV PC^.֥$gl~jΡ5/9.^41kMz>f,_1_W $YKOn^2% ⥾ t2h%%p0Y7L<׳BdQ?BFNfViJO 9ft?|zύ*pXm>]KnkY3P a .^;YnO0鲝sZ&40mEʒc6L\ 0(%vhc-V^ܧ?ӤAOE q`2 I߫gX}wfxB`V(Ap0-tcIlțb::4 %R"ZO7c+v?aeD:(cw%\5[K,MIs6wTرmdI,mW ?+V\wқr/}Þϥ2nн%p+~ٻNlqhp*{'_qh