golang会话变量不起作用。我做错了什么?

时间:2013-06-16 22:29:57

标签: session go

我正在使用gorilla / sessions包来实现会话。相关代码(或至少我认为唯一相关的部分)如下:

// Function handler for executing HTML code
func lobbyHandler(w http.ResponseWriter, req *http.Request)  {
    if isLoggedIn := validateSession(w, req); isLoggedIn {
        lobbyTempl.Execute(w, req.Host)
    } else {
        homeTempl.Execute(w, map[string]string{
            "loginErrors": "Must log in first",
        })
    } 
}

// Serves the files as needed, whenever they are requested
//      used for all images, js, css, and other static files
func sourceHandler(w http.ResponseWriter, r *http.Request) {
    http.ServeFile(w, r, r.URL.Path[1:])
}

func loginHandler(w http.ResponseWriter, r *http.Request) {
    un, pw := r.FormValue("lUn"), r.FormValue("lPw")
    if usr := findUser(un, pw); usr != nil {
        if createSession(w, r) {
            http.Redirect(w, req, "/lobby.html", http.StatusFound)
        }
    } else {
        homeTempl.Execute(w, map[string]string{
            "loginErrors": "User not found",
        }) 
    }
}

func createSession(w http.ResponseWriter, r *http.Request) bool {
    session, _ := store.Get(r, sessionName)
    session.Values["isAuthorized"] = true
    if err := session.Save(r, w); err != nil {
        fmt.Println("saving error: ", err.Error())
        return false
    }

    return true
}

func validateSession(w http.ResponseWriter, r *http.Request) bool {
    if session, err := store.Get(r, sessionName); err == nil {
        if v, ok := session.Values["isAuthorized"]; ok && v == true {
            fmt.Println("Authorized user identified!")
            return true
        } else {
            fmt.Println("Unauthorized user detected!")
            return false
        }
    }

    return false
}

func main() {
    //...

    // serving files for the game
    http.HandleFunc("/", homeHandler)    
    http.Handle("/ws", websocket.Handler(wsLobbyHandler))
    http.HandleFunc("/lobby.html", lobbyHandler)
    http.HandleFunc("/formlogin", loginHandler)
    //...
    //http.HandleFunc("/*.html", SourceHandler)
    if err := http.ListenAndServeTLS(*addr, "cert.pem", "key.pem", nil); err != nil {
        log.Fatal("ListenAndServe:", err)
    }
}`

在我的HTML中我有:

<form id="login_form" action="/formlogin" method="post">

登录时,请求在loginHandler

中处理

从数据库中正确识别用户,并创建会话(通过createSession())并将其放入cookie存储区。

但是在重定向到lobby.html之后,回到loginHandler 

http.Redirect(w, req, "/lobby.html", http.StatusFound)

lobbyHandler中的验证不起作用。这与store.Save(...)改变标题有关吗?

我很新,以及一般的网络应用程序,所以我真的很感激反馈。

1 个答案:

答案 0 :(得分:0)

感谢您的评论,我能够偶然发现一个适合我的search

session.Options = &sessions.Options{
    Path: "/lobby.html",
}

我需要确保cookie知道它们将被正确重定向到哪里。

相关问题
最新问题