zitadel/apps/login/utils/cookies.ts

"use server";

import { cookies } from "next/headers";

export type SessionCookie = {
  id: string;
  token: string;
  loginName: string;
  changeDate: string;
  authRequestId?: string; // if its linked to an OIDC flow
};

function setSessionHttpOnlyCookie(sessions: SessionCookie[]) {
  const cookiesList = cookies();
  // @ts-ignore
  return cookiesList.set({
    name: "sessions",
    value: JSON.stringify(sessions),
    httpOnly: true,
    path: "/",
  });
}

export async function addSessionToCookie(session: SessionCookie): Promise<any> {
  const cookiesList = cookies();
  const stringifiedCookie = cookiesList.get("sessions");

  let currentSessions: SessionCookie[] = stringifiedCookie?.value
    ? JSON.parse(stringifiedCookie?.value)
    : [];

  const index = currentSessions.findIndex(
    (s) => s.loginName === session.loginName
  );

  if (index > -1) {
    currentSessions[index] = session;
  } else {
    currentSessions = [...currentSessions, session];
  }

  return setSessionHttpOnlyCookie(currentSessions);
}

export async function updateSessionCookie(
  id: string,
  session: SessionCookie
): Promise<any> {
  const cookiesList = cookies();
  const stringifiedCookie = cookiesList.get("sessions");

  const sessions: SessionCookie[] = stringifiedCookie?.value
    ? JSON.parse(stringifiedCookie?.value)
    : [session];

  const foundIndex = sessions.findIndex((session) => session.id === id);
  if (foundIndex > -1) {
    sessions[foundIndex] = session;
    return setSessionHttpOnlyCookie(sessions);
  } else {
    throw "updateSessionCookie: session id now found";
  }
}

export async function removeSessionFromCookie(
  session: SessionCookie
): Promise<any> {
  const cookiesList = cookies();
  const stringifiedCookie = cookiesList.get("sessions");

  const sessions: SessionCookie[] = stringifiedCookie?.value
    ? JSON.parse(stringifiedCookie?.value)
    : [session];

  const filteredSessions = sessions.filter((s) => s.id !== session.id);

  return setSessionHttpOnlyCookie(filteredSessions);
}

export async function getMostRecentSessionCookie(): Promise<any> {
  const cookiesList = cookies();
  const stringifiedCookie = cookiesList.get("sessions");

  if (stringifiedCookie?.value) {
    const sessions: SessionCookie[] = JSON.parse(stringifiedCookie?.value);

    const latest = sessions.reduce((prev, current) => {
      return new Date(prev.changeDate).getTime() >
        new Date(current.changeDate).getTime()
        ? prev
        : current;
    });

    return latest;
  } else {
    return Promise.reject("no session cookie found");
  }
}

export async function getSessionCookieById(id: string): Promise<SessionCookie> {
  const cookiesList = cookies();
  const stringifiedCookie = cookiesList.get("sessions");

  if (stringifiedCookie?.value) {
    const sessions: SessionCookie[] = JSON.parse(stringifiedCookie?.value);

    const found = sessions.find((s) => s.id === id);
    if (found) {
      return found;
    } else {
      return Promise.reject();
    }
  } else {
    return Promise.reject();
  }
}

export async function getSessionCookieByLoginName(
  loginName: string
): Promise<SessionCookie> {
  const cookiesList = cookies();
  const stringifiedCookie = cookiesList.get("sessions");

  if (stringifiedCookie?.value) {
    const sessions: SessionCookie[] = JSON.parse(stringifiedCookie?.value);

    const found = sessions.find((s) => s.loginName === loginName);
    if (found) {
      return found;
    } else {
      return Promise.reject("no cookie found with loginName: " + loginName);
    }
  } else {
    return Promise.reject("no session cookie found");
  }
}

export async function getAllSessionIds(): Promise<any> {
  const cookiesList = cookies();
  const stringifiedCookie = cookiesList.get("sessions");

  if (stringifiedCookie?.value) {
    const sessions: SessionCookie[] = JSON.parse(stringifiedCookie?.value);
    return sessions.map((session) => session.id);
  } else {
    return [];
  }
}

export async function getAllSessions(): Promise<SessionCookie[]> {
  const cookiesList = cookies();
  const stringifiedCookie = cookiesList.get("sessions");

  if (stringifiedCookie?.value) {
    const sessions: SessionCookie[] = JSON.parse(stringifiedCookie?.value);
    return sessions;
  } else {
    return [];
  }
}

/**
 * Returns most recent session filtered by optinal loginName
 * @param loginName
 * @returns most recent session
 */
export async function getMostRecentCookieWithLoginname(
  loginName?: string
): Promise<any> {
  const cookiesList = cookies();
  const stringifiedCookie = cookiesList.get("sessions");

  if (stringifiedCookie?.value) {
    const sessions: SessionCookie[] = JSON.parse(stringifiedCookie?.value);
    const filtered = sessions.filter((cookie) => {
      return !!loginName ? cookie.loginName === loginName : true;
    });

    const latest =
      filtered && filtered.length
        ? filtered.reduce((prev, current) => {
            return new Date(prev.changeDate).getTime() >
              new Date(current.changeDate).getTime()
              ? prev
              : current;
          })
        : undefined;

    if (latest) {
      return latest;
    } else {
      return Promise.reject("Could not get the context or retrieve a session");
    }
  } else {
    return Promise.reject("Could not read session cookie");
  }
}

export async function clearSessions() {}
cookie and session handling, password UI 2023-05-17 13:46:44 +02:00			`"use server";`

			`import { cookies } from "next/headers";`

			`export type SessionCookie = {`
			`id: string;`
			`token: string;`
			`loginName: string;`
			`changeDate: string;`
/login route, extend session cookie for authRequestId 2023-08-21 15:14:12 +02:00			`authRequestId?: string; // if its linked to an OIDC flow`
cookie and session handling, password UI 2023-05-17 13:46:44 +02:00			`};`

wrap cookie set 2023-05-24 18:00:45 +02:00			`function setSessionHttpOnlyCookie(sessions: SessionCookie[]) {`
cookies 2023-05-24 22:57:45 +02:00			`const cookiesList = cookies();`
cookieset 2023-05-24 18:47:30 +02:00			`// @ts-ignore`
wrap cookie set 2023-05-24 18:00:45 +02:00			`return cookiesList.set({`
			`name: "sessions",`
			`value: JSON.stringify(sessions),`
			`httpOnly: true,`
			`path: "/",`
			`});`
			`}`
fetch authmethods on loginname page and redirect 2023-06-29 14:54:07 +02:00
cookie and session handling, password UI 2023-05-17 13:46:44 +02:00			`export async function addSessionToCookie(session: SessionCookie): Promise<any> {`
			`const cookiesList = cookies();`
			`const stringifiedCookie = cookiesList.get("sessions");`

password error, unique loginName 2023-05-23 09:22:15 +02:00			`let currentSessions: SessionCookie[] = stringifiedCookie?.value`
cookie and session handling, password UI 2023-05-17 13:46:44 +02:00			`? JSON.parse(stringifiedCookie?.value)`
			`: [];`

password error, unique loginName 2023-05-23 09:22:15 +02:00			`const index = currentSessions.findIndex(`
			`(s) => s.loginName === session.loginName`
			`);`

			`if (index > -1) {`
			`currentSessions[index] = session;`
			`} else {`
			`currentSessions = [...currentSessions, session];`
			`}`

fetch authmethods on loginname page and redirect 2023-06-29 14:54:07 +02:00			`return setSessionHttpOnlyCookie(currentSessions);`
cookie and session handling, password UI 2023-05-17 13:46:44 +02:00			`}`

			`export async function updateSessionCookie(`
			`id: string,`
			`session: SessionCookie`
			`): Promise<any> {`
			`const cookiesList = cookies();`
			`const stringifiedCookie = cookiesList.get("sessions");`

			`const sessions: SessionCookie[] = stringifiedCookie?.value`
			`? JSON.parse(stringifiedCookie?.value)`
			`: [session];`

			`const foundIndex = sessions.findIndex((session) => session.id === id);`
fix client error 2023-06-30 14:13:03 +02:00			`if (foundIndex > -1) {`
			`sessions[foundIndex] = session;`
			`return setSessionHttpOnlyCookie(sessions);`
			`} else {`
			`throw "updateSessionCookie: session id now found";`
			`}`
cookie and session handling, password UI 2023-05-17 13:46:44 +02:00			`}`

			`export async function removeSessionFromCookie(`
			`session: SessionCookie`
			`): Promise<any> {`
			`const cookiesList = cookies();`
			`const stringifiedCookie = cookiesList.get("sessions");`

			`const sessions: SessionCookie[] = stringifiedCookie?.value`
			`? JSON.parse(stringifiedCookie?.value)`
			`: [session];`

theme, cookie 2023-05-24 14:12:38 +02:00			`const filteredSessions = sessions.filter((s) => s.id !== session.id);`
cookie and session handling, password UI 2023-05-17 13:46:44 +02:00
wrap cookie set 2023-05-24 18:00:45 +02:00			`return setSessionHttpOnlyCookie(filteredSessions);`
cookie and session handling, password UI 2023-05-17 13:46:44 +02:00			`}`

			`export async function getMostRecentSessionCookie(): Promise<any> {`
			`const cookiesList = cookies();`
			`const stringifiedCookie = cookiesList.get("sessions");`

			`if (stringifiedCookie?.value) {`
			`const sessions: SessionCookie[] = JSON.parse(stringifiedCookie?.value);`

			`const latest = sessions.reduce((prev, current) => {`
			`return new Date(prev.changeDate).getTime() >`
			`new Date(current.changeDate).getTime()`
			`? prev`
			`: current;`
			`});`

			`return latest;`
			`} else {`
session put 2023-06-29 17:04:34 +02:00			`return Promise.reject("no session cookie found");`
cookie and session handling, password UI 2023-05-17 13:46:44 +02:00			`}`
			`}`

session put 2023-06-29 17:04:34 +02:00			`export async function getSessionCookieById(id: string): Promise<SessionCookie> {`
delete account api 2023-06-06 17:11:49 +02:00			`const cookiesList = cookies();`
			`const stringifiedCookie = cookiesList.get("sessions");`

			`if (stringifiedCookie?.value) {`
			`const sessions: SessionCookie[] = JSON.parse(stringifiedCookie?.value);`

			`const found = sessions.find((s) => s.id === id);`
			`if (found) {`
			`return found;`
			`} else {`
			`return Promise.reject();`
			`}`
			`} else {`
			`return Promise.reject();`
			`}`
			`}`

session put 2023-06-29 17:04:34 +02:00			`export async function getSessionCookieByLoginName(`
			`loginName: string`
			`): Promise<SessionCookie> {`
			`const cookiesList = cookies();`
			`const stringifiedCookie = cookiesList.get("sessions");`

			`if (stringifiedCookie?.value) {`
			`const sessions: SessionCookie[] = JSON.parse(stringifiedCookie?.value);`

			`const found = sessions.find((s) => s.loginName === loginName);`
			`if (found) {`
			`return found;`
			`} else {`
			`return Promise.reject("no cookie found with loginName: " + loginName);`
			`}`
			`} else {`
			`return Promise.reject("no session cookie found");`
			`}`
			`}`

accounts page, list all sessions 2023-05-17 15:25:25 +02:00			`export async function getAllSessionIds(): Promise<any> {`
			`const cookiesList = cookies();`
			`const stringifiedCookie = cookiesList.get("sessions");`

			`if (stringifiedCookie?.value) {`
			`const sessions: SessionCookie[] = JSON.parse(stringifiedCookie?.value);`
			`return sessions.map((session) => session.id);`
			`} else {`
fix: local config, empty accounts page 2023-05-25 08:40:53 +02:00			`return [];`
accounts page, list all sessions 2023-05-17 15:25:25 +02:00			`}`
			`}`

/login route, extend session cookie for authRequestId 2023-08-21 15:14:12 +02:00			`export async function getAllSessions(): Promise<SessionCookie[]> {`
			`const cookiesList = cookies();`
			`const stringifiedCookie = cookiesList.get("sessions");`

			`if (stringifiedCookie?.value) {`
			`const sessions: SessionCookie[] = JSON.parse(stringifiedCookie?.value);`
			`return sessions;`
			`} else {`
			`return [];`
			`}`
			`}`

accounts page, list all sessions 2023-05-17 15:25:25 +02:00			`/**`
			`* Returns most recent session filtered by optinal loginName`
			`* @param loginName`
			`* @returns most recent session`
			`*/`
cookie and session handling, password UI 2023-05-17 13:46:44 +02:00			`export async function getMostRecentCookieWithLoginname(`
accounts page, list all sessions 2023-05-17 15:25:25 +02:00			`loginName?: string`
cookie and session handling, password UI 2023-05-17 13:46:44 +02:00			`): Promise<any> {`
			`const cookiesList = cookies();`
			`const stringifiedCookie = cookiesList.get("sessions");`

			`if (stringifiedCookie?.value) {`
			`const sessions: SessionCookie[] = JSON.parse(stringifiedCookie?.value);`
fix search params 2023-05-19 10:13:05 +02:00			`const filtered = sessions.filter((cookie) => {`
			`return !!loginName ? cookie.loginName === loginName : true;`
			`});`
cookie and session handling, password UI 2023-05-17 13:46:44 +02:00
fix search params 2023-05-19 10:13:05 +02:00			`const latest =`
			`filtered && filtered.length`
			`? filtered.reduce((prev, current) => {`
			`return new Date(prev.changeDate).getTime() >`
			`new Date(current.changeDate).getTime()`
			`? prev`
			`: current;`
			`})`
			`: undefined;`

			`if (latest) {`
			`return latest;`
			`} else {`
throw custom error when context could not be read 2023-06-21 13:13:51 +02:00			`return Promise.reject("Could not get the context or retrieve a session");`
fix search params 2023-05-19 10:13:05 +02:00			`}`
cookie and session handling, password UI 2023-05-17 13:46:44 +02:00			`} else {`
throw custom error when context could not be read 2023-06-21 13:13:51 +02:00			`return Promise.reject("Could not read session cookie");`
cookie and session handling, password UI 2023-05-17 13:46:44 +02:00			`}`
			`}`

			`export async function clearSessions() {}`