Atex.OAuth.SessionStore behaviour
(atex v0.9.1)
View Source
Storage interface for OAuth sessions.
Provides a behaviour for implementing session storage backends, and functions
to operate the backend using Atex.OAuth.Session
Configuration
The default implementation for the store is Atex.OAuth.SessionStore.DETS;
this can be changed to a custom implementation in your config.exs:
config :atex, :session_store, Atex.OAuth.SessionStore.ETSDETS is the default implementation as it provides simple, on-disk storage for sessions so they don't get discarded on an application restart, but a regular ETS implementation is also provided out-of-the-box for testing or other circumstances.
For multi-node deployments, you can write your own implementation using a custom backend, such as Redis, by implementing the behaviour callbacks.
Usage
Sessions are keyed by a composite "<sub>:<nonce>" string, where sub is
the user's DID and nonce is the per-device, per-account random value stored
on the session. This allows multiple independent sessions for the same user
(e.g. different devices or accounts) to coexist in the store.
session = %Atex.OAuth.Session{
iss: "https://bsky.social",
aud: "https://puffball.us-east.host.bsky.network",
sub: "did:plc:abc123",
nonce: "random-device-nonce",
access_token: "...",
refresh_token: "...",
expires_at: ~N[2026-01-04 12:00:00],
dpop_key: dpop_key,
dpop_nonce: "server-nonce"
}
# Insert a new session
:ok = Atex.OAuth.SessionStore.insert(session)
# Retrieve a session by composite key
{:ok, session} = Atex.OAuth.SessionStore.get("did:plc:abc123:random-device-nonce")
# Update an existing session (e.g., after token refresh)
updated_session = %{session | access_token: new_token}
:ok = Atex.OAuth.SessionStore.update(updated_session)
# Delete a session
Atex.OAuth.SessionStore.delete(session)Summary
Callbacks
Delete a session.
Retrieve a session by composite key ("<sub>:<nonce>").
Insert a new session.
Update an existing session.
Functions
Delete a session. The store key is derived from session.sub and session.nonce.
Retrieve a session by composite key ("<sub>:<nonce>").
Insert a new session. The store key is derived from session.sub and session.nonce.
Build the composite store key for a session.
Update an existing session. The store key is derived from session.sub and session.nonce.
Callbacks
@callback child_spec(any()) :: Supervisor.child_spec()
@callback delete(key :: String.t()) :: :ok | :error | :noop
Delete a session.
Returns :ok if deleted, :noop if the session didn't exist, :error if it failed.
@callback get(key :: String.t()) :: {:ok, Atex.OAuth.Session.t()} | {:error, atom()}
Retrieve a session by composite key ("<sub>:<nonce>").
Returns {:ok, session} if found, {:error, :not_found} otherwise.
@callback insert(key :: String.t(), session :: Atex.OAuth.Session.t()) :: :ok | {:error, atom()}
Insert a new session.
The key is derived from the session's sub and nonce fields. Returns :ok on success.
@callback update(key :: String.t(), session :: Atex.OAuth.Session.t()) :: :ok | {:error, atom()}
Update an existing session.
Replaces the existing session data for the given key. Returns :ok on success.
Functions
@spec delete(Atex.OAuth.Session.t()) :: :ok | :error | :noop
Delete a session. The store key is derived from session.sub and session.nonce.
@spec get(String.t()) :: {:ok, Atex.OAuth.Session.t()} | {:error, atom()}
Retrieve a session by composite key ("<sub>:<nonce>").
@spec insert(Atex.OAuth.Session.t()) :: :ok | {:error, atom()}
Insert a new session. The store key is derived from session.sub and session.nonce.
@spec session_key(Atex.OAuth.Session.t()) :: String.t()
Build the composite store key for a session.
The key is "<sub>:<nonce>", combining the user's DID with the per-device
nonce to allow multiple independent sessions for the same user.
Examples
iex> session = %Atex.OAuth.Session{sub: "did:plc:abc123", nonce: "xyz", ...}
iex> Atex.OAuth.SessionStore.session_key(session)
"did:plc:abc123:xyz"@spec update(Atex.OAuth.Session.t()) :: :ok | {:error, atom()}
Update an existing session. The store key is derived from session.sub and session.nonce.