NAME

MVC::Neaf::X::Session::Cookie - Stateless cookie-based session for Neaf

DESCRIPTION

Use this module as a session handler in a Neaf app.

The session data is stored within user's cookies without encryption. However, it is signed with a key only known to the application owner. So the session can be read, but not tampered with.

Please take these concern into account, or better use server-side storage.

METHODS

new( %options )

%options may include:

  • key (required) - a secret text string used to sign session data. This should be the same throughout the application.

  • hmac_function - HMAC to be used, default is hmac_sha224_base64

store( $id, $data )

Create a cookie from $data hash. Given $id is ignored.

fetch

Restore session data from cookie.

get_session_id

Replaced by a stub - we'll generate ID from data anyway.