Raxol.Security.SessionManager (Raxol v2.0.1)
View SourceSecure session management with built-in security features.
Features:
- Cryptographically secure session tokens
- Session expiration and renewal
- Concurrent session limiting
- Session fixation protection
- Secure session storage
Summary
Functions
Returns a specification to start this module under a supervisor.
Creates a new secure session.
Generates a secure CSRF token for a session.
Gets active sessions for a user.
Callback implementation for Raxol.Core.Behaviours.BaseManager.handle_manager_call/3.
Callback implementation for Raxol.Core.Behaviours.BaseManager.handle_manager_cast/2.
Callback implementation for Raxol.Core.Behaviours.BaseManager.handle_manager_info/2.
Invalidates a session.
Invalidates all sessions for a user.
Regenerates session ID to prevent fixation attacks.
Refreshes session activity timestamp.
Validates a CSRF token.
Validates a session token and returns session info.
Functions
Returns a specification to start this module under a supervisor.
See Supervisor.
Creates a new secure session.
Options
:ip_address- Client IP address:user_agent- Client user agent:metadata- Additional session metadata
Generates a secure CSRF token for a session.
Gets active sessions for a user.
Callback implementation for Raxol.Core.Behaviours.BaseManager.handle_manager_call/3.
Callback implementation for Raxol.Core.Behaviours.BaseManager.handle_manager_cast/2.
Callback implementation for Raxol.Core.Behaviours.BaseManager.handle_manager_info/2.
Invalidates a session.
Invalidates all sessions for a user.
Regenerates session ID to prevent fixation attacks.
Refreshes session activity timestamp.
Validates a CSRF token.
Validates a session token and returns session info.