安全审计>> request-cookie-store>> 返回
项目作者: worker-tools

项目描述 :
An implementation of the Cookie Store API for request handlers.
高级语言: TypeScript
项目地址: git://github.com/worker-tools/request-cookie-store.git
创建时间: 2021-01-01T04:44:44Z
项目社区:https://github.com/worker-tools/request-cookie-store
开源协议:MIT License
下载


Request Cookie Store

An implementation of the Cookie Store API for request handlers.

It uses the Cookie header of a request to populate the store and
keeps a record of changes that can be exported as a list of Set-Cookie headers.

It is intended as a cookie middleware for Cloudflare Workers or other Worker Runtimes, but perhaps there are other uses as well.
It is best combined with Signed Cookie Store or Encrypted Cookie Store.

Recipes

The following snippets should convey how this is intended to be used.
Aso see the interface for more usage options.

Creating a New Store

  1. import { RequestCookieStore } from '@worker-tools/request-cookie-store';
  3. // Creating a request on the fly. Typically it will be provided by CF Workers, etc.
  4. const request = new Request('/', { headers: { 'cookie': 'foo=bar; fizz=buzz' } });
  6. const cookieStore = new RequestCookieStore(request);

We can now access cookie values from the store like so:

  1. const value = (await cookieStore.get(name))?.value;

This is a bit verbose, so we’ll make it more ergonomic in the next step.

Fast Read Access

To avoid using await for every read, we can parse all cookies into a Map once:

  1. type Cookies = ReadonlyMap<string, string>;
  3. const all = await cookieStore.getAll();
  5. new Map(all.map(({ name, value }) => [name, value])) as Cookies;
  6. // => Map { "foo" => "bar", "fizz" => "buzz" }

Exporting Headers

Use set on the cookie store to add cookies and include them in a response.

  1. await cookieStore.set('foo', 'buzz');
  2. await cookieStore.set('fizz', 'bar');
  4. event.respondWith(new Response(null, cookieStore));

Will produce the following HTTP headers in Worker Runtimes that support multiple Set-Cookie headers:

  1. HTTP/1.1 200 OK
  2. content-length: 0
  3. set-cookie: foo=buzz
  4. set-cookie: fizz=bar

Combine With Other Headers

The above example above uses the fact that the cookie store will correctly destructure the headers key.
To add additional headers to a response, you can do the following:

  1. const response = new Response('{}', {
  2.   headers: [
  3.     ['content-type': 'application/json'],
  4.     ...cookieStore.headers,
  5.   ],
  6. });

Disclaimers

This is not a polyfill! It is intended as a cookie middleware for Cloudflare Workers or other Worker Runtimes!

Due to the weirdness of the Fetch API Headers class w.r.t Set-Cookie (or rather, the lack of special treatment), it is not likely to work in a Service Worker.



This module is part of the Worker Tools collection

Worker Tools are a collection of TypeScript libraries for writing web servers in Worker Runtimes such as Cloudflare Workers, Deno Deploy and Service Workers in the browser.

If you liked this module, you might also like:

  • 🧭 Worker Router —- Complete routing solution that works across CF Workers, Deno and Service Workers
  • 🔋 Worker Middleware —- A suite of standalone HTTP server-side middleware with TypeScript support
  • 📄 Worker HTML —- HTML templating and streaming response library
  • 📦 Storage Area —- Key-value store abstraction across Cloudflare KV, Deno and browsers.
  • 🆗 Response Creators —- Factory functions for responses with pre-filled status and status text
  • 🎏 Stream Response —- Use async generators to build streaming responses for SSE, etc…
  • 🥏 JSON Fetch —- Drop-in replacements for Fetch API classes with first class support for JSON.
  • 🦑 JSON Stream —- Streaming JSON parser/stingifier with first class support for web streams.

Worker Tools also includes a number of polyfills that help bridge the gap between Worker Runtimes:

Fore more visit workers.tools.