├── .editorconfig
├── .eslintignore
├── .eslintrc
├── .github
    └── workflows
    │   └── release.yml
├── .gitignore
├── .npmrc
├── .nuxtrc
├── README.md
├── middleware.d.ts
├── package.json
├── playground
    ├── app.vue
    ├── components
    │   ├── Form.vue
    │   └── Header.vue
    ├── composables
    │   └── useAuth.ts
    ├── middleware
    │   ├── protected.ts
    │   └── public.ts
    ├── nuxt.config.ts
    ├── package.json
    ├── pages
    │   ├── index.vue
    │   ├── login.vue
    │   └── profile.vue
    ├── public
    │   └── GitHub-Mark-32px.png
    └── server
    │   └── api
    │       ├── events.get.ts
    │       ├── login.post.ts
    │       └── logout.get.ts
├── pnpm-lock.yaml
├── src
    ├── module.ts
    └── runtime
    │   ├── handler.ts
    │   └── middleware.ts
├── tsconfig.json
└── vercel.json


/.editorconfig:
--------------------------------------------------------------------------------
 1 | root = true
 2 | 
 3 | [*]
 4 | indent_size = 2
 5 | indent_style = space
 6 | end_of_line = lf
 7 | charset = utf-8
 8 | trim_trailing_whitespace = true
 9 | insert_final_newline = true
10 | 
11 | [*.md]
12 | trim_trailing_whitespace = false
13 | 


--------------------------------------------------------------------------------
/.eslintignore:
--------------------------------------------------------------------------------
1 | dist
2 | node_modules
3 | package.json
4 | tsconfig.json
5 | vercel.json
6 | 


--------------------------------------------------------------------------------
/.eslintrc:
--------------------------------------------------------------------------------
 1 | {
 2 |   "extends": [
 3 |     "@nuxtjs/eslint-config-typescript"
 4 |   ],
 5 |   "rules": {
 6 |     "@typescript-eslint/no-unused-vars": [
 7 |       "off"
 8 |     ],
 9 |     "vue/multi-word-component-names": "off",
10 |     "vue/no-multiple-template-root": "off"
11 |   }
12 | }
13 | 


--------------------------------------------------------------------------------
/.github/workflows/release.yml:
--------------------------------------------------------------------------------
 1 | name: Release
 2 | 
 3 | on:
 4 |   push:
 5 |     tags:
 6 |       - 'v*'
 7 | 
 8 | jobs:
 9 |   release:
10 |     runs-on: ubuntu-latest
11 |     steps:
12 |       - uses: actions/checkout@v3
13 |         with:
14 |           fetch-depth: 0
15 | 
16 |       - uses: actions/setup-node@v3
17 |         with:
18 |           node-version: 16.x
19 | 
20 |       - run: npx changelogithub
21 |         env:
22 |           GITHUB_TOKEN: ${{secrets.GITHUB_TOKEN}}
23 | 


--------------------------------------------------------------------------------
/.gitignore:
--------------------------------------------------------------------------------
 1 | # Dependencies
 2 | node_modules
 3 | 
 4 | # Logs
 5 | *.log*
 6 | 
 7 | # Temp directories
 8 | .temp
 9 | .tmp
10 | .cache
11 | 
12 | # Yarn
13 | **/.yarn/cache
14 | **/.yarn/*state*
15 | 
16 | # Generated dirs
17 | dist
18 | 
19 | # Nuxt
20 | .nuxt
21 | .output
22 | .vercel_build_output
23 | .build-*
24 | .env
25 | .netlify
26 | 
27 | # Env
28 | .env
29 | 
30 | # Testing
31 | reports
32 | coverage
33 | *.lcov
34 | .nyc_output
35 | 
36 | # VSCode
37 | .vscode
38 | 
39 | # Intellij idea
40 | *.iml
41 | .idea
42 | 
43 | # OSX
44 | .DS_Store
45 | .AppleDouble
46 | .LSOverride
47 | .AppleDB
48 | .AppleDesktop
49 | Network Trash Folder
50 | Temporary Items
51 | .apdisk
52 | 
53 | .vercel
54 | 


--------------------------------------------------------------------------------
/.npmrc:
--------------------------------------------------------------------------------
1 | ignore-workspace-root-check=true
2 | shamefully-hoist=true
3 | 


--------------------------------------------------------------------------------
/.nuxtrc:
--------------------------------------------------------------------------------
1 | imports.autoImport=true
2 | 


--------------------------------------------------------------------------------
/README.md:
--------------------------------------------------------------------------------
  1 | # nuxt-iron-session
  2 | 
  3 | [![Version](https://img.shields.io/npm/v/nuxt-iron-session?style=flat&colorA=000000&colorB=000000)](https://www.npmjs.com/package/nuxt-iron-session)
  4 | 
  5 | 🛠 Add stateless session support for Nuxt apps using signed and encrypted cookies. Powered by [iron-session](https://github.com/vvo/iron-session).
  6 | 
  7 | The session data is stored in encrypted cookies ("seals"). And only your server can decode the session data. There are no session ids, making iron sessions "stateless" from the server point of view.
  8 | 
  9 | Demo https://nuxt-iron-session.vercel.app
 10 | 
 11 | ## Installation
 12 | 
 13 | ```bash
 14 | npm install nuxt-iron-session
 15 | ```
 16 | 
 17 | ## Usage
 18 | 
 19 | ```ts
 20 | // nuxt.config.ts
 21 | export default defineNuxtConfig({
 22 |   modules: ['nuxt-iron-session'],
 23 |   session: {
 24 |     cookieName: 'yourapp_cookiename',
 25 |     password: 'complex_password_at_least_32_characters_long',
 26 |     cookieOptions: {
 27 |       secure: process.env.NODE_ENV === 'production'
 28 |     }
 29 |   }
 30 | })
 31 | ```
 32 | 
 33 | ### API Routes
 34 | 
 35 | ```ts
 36 | // ~/server/api/login.ts
 37 | export default defineEventHandler((event) => {
 38 |   // get user from database then:
 39 |   event.context.session.user = {
 40 |     id: 69,
 41 |     admin: true,
 42 |   }
 43 |   await event.context.session.save()
 44 |   return { ok: true }
 45 | })
 46 | ```
 47 | 
 48 | ```ts
 49 | // ~/server/api/user.ts
 50 | export default defineEventHandler((event) => {
 51 |   return { user: event.context.session.user }
 52 | })
 53 | ```
 54 | 
 55 | ```ts
 56 | // ~/server/api/logout.ts
 57 | export default defineEventHandler((event) => {
 58 |   await event.context.session.destroy()
 59 |   return { ok: true }
 60 | })
 61 | ```
 62 | 
 63 | ### Components
 64 | 
 65 | ```html
 66 | <script lang="ts">
 67 | const { ssrContext } = useNuxtApp()
 68 | 
 69 | // Available in client and server. Unique to each request.
 70 | const session = useState('session', () => ssrContext?.event?.context?.session)
 71 | </script>
 72 | ```
 73 | 
 74 | ## Typing session data with TypeScript
 75 | 
 76 | ```ts
 77 | declare module 'iron-session' {
 78 |   interface IronSessionData {
 79 |     user?: {
 80 |       id: number
 81 |       admin?: boolean
 82 |     }
 83 |   }
 84 | }
 85 | ```
 86 | 
 87 | ## Usage with h3
 88 | 
 89 | ```ts
 90 | import { createIronSessionMiddleware } from 'nuxt-iron-session/middleware'
 91 | 
 92 | const app = createApp()
 93 | 
 94 | app.use(createIronSessionMiddleware({}))
 95 | app.use('/api/user', eventHandler((event) => ({ user: event.context.session.user })))
 96 | ```
 97 | 
 98 | Visit the [iron-session docs](https://github.com/vvo/iron-session) to see the complete configuration.
 99 | 
100 | ## Development
101 | 
102 | - Run `npm run dev:prepare` to generate type stubs.
103 | - Use `npm run dev` to start [playground](./playground) in development mode.
104 | 
105 | ## License
106 | 
107 | MIT
108 | 


--------------------------------------------------------------------------------
/middleware.d.ts:
--------------------------------------------------------------------------------
1 | export * from './dist/runtime/middleware'
2 | 


--------------------------------------------------------------------------------
/package.json:
--------------------------------------------------------------------------------
 1 | {
 2 |   "name": "nuxt-iron-session",
 3 |   "version": "0.2.0",
 4 |   "type": "module",
 5 |   "author": "Robert Soriano <sorianorobertc@gmail.com>",
 6 |   "license": "MIT",
 7 |   "homepage": "https://github.com/wobsoriano/nuxt-iron-session#readme",
 8 |   "repository": {
 9 |     "type": "git",
10 |     "url": "git+https://github.com/wobsoriano/nuxt-iron-session.git"
11 |   },
12 |   "bugs": "https://github.com/wobsoriano/nuxt-iron-session/issues",
13 |   "keywords": [
14 |     "session",
15 |     "nuxt",
16 |     "h3",
17 |     "middleware"
18 |   ],
19 |   "exports": {
20 |     ".": {
21 |       "import": "./dist/module.mjs",
22 |       "require": "./dist/module.cjs"
23 |     },
24 |     "./middleware": {
25 |       "import": "./dist/runtime/middleware.mjs",
26 |       "types": "./dist/runtime/middleware.d.ts"
27 |     }
28 |   },
29 |   "main": "./dist/module.cjs",
30 |   "types": "./dist/types.d.ts",
31 |   "files": [
32 |     "dist",
33 |     "middleware.d.ts"
34 |   ],
35 |   "scripts": {
36 |     "prepublishOnly": "pnpm prepack",
37 |     "lint": "eslint .",
38 |     "prepack": "nuxt-module-build",
39 |     "dev": "nuxi dev playground",
40 |     "dev:build": "nuxi build playground",
41 |     "dev:prepare": "nuxt-module-build --stub && nuxi prepare playground",
42 |     "dev:vercel:deploy": "NITRO_PRESET=vercel rm -rf .vercel && pnpm dev:prepare && pnpm prepack && pnpm dev:build && mv ./playground/.vercel .",
43 |     "release": "bumpp && npm publish"
44 |   },
45 |   "dependencies": {
46 |     "@nuxt/kit": "^3.5.0",
47 |     "defu": "^6.1.2",
48 |     "iron-session": "^6.3.1"
49 |   },
50 |   "devDependencies": {
51 |     "@nuxt/module-builder": "^0.3.1",
52 |     "@nuxt/schema": "^3.5.0",
53 |     "@nuxtjs/eslint-config-typescript": "^12.0.0",
54 |     "bumpp": "^9.1.0",
55 |     "eslint": "^8.41.0",
56 |     "nuxt": "^3.5.0",
57 |     "octokit": "^2.0.16"
58 |   }
59 | }
60 | 


--------------------------------------------------------------------------------
/playground/app.vue:
--------------------------------------------------------------------------------
 1 | <script setup lang="ts"></script>
 2 | 
 3 | <template>
 4 |   <Head>
 5 |     <title>Nuxt Iron Session</title>
 6 |   </Head>
 7 |   <Header />
 8 |   <main>
 9 |     <div class="container">
10 |       <NuxtPage />
11 |     </div>
12 |   </main>
13 | </template>
14 | 
15 | <style>
16 | *,
17 | *::before,
18 | *::after {
19 |   box-sizing: border-box;
20 | }
21 | 
22 | body {
23 |   margin: 0;
24 |   color: #333;
25 |   font-family: -apple-system, BlinkMacSystemFont, "Segoe UI", Roboto,
26 |     "Helvetica Neue", Arial, Noto Sans, sans-serif, "Apple Color Emoji",
27 |     "Segoe UI Emoji", "Segoe UI Symbol", "Noto Color Emoji";
28 | }
29 | 
30 | .container {
31 |   max-width: 65rem;
32 |   margin: 1.5rem auto;
33 |   padding-left: 1rem;
34 |   padding-right: 1rem;
35 | }
36 | </style>
37 | 


--------------------------------------------------------------------------------
/playground/components/Form.vue:
--------------------------------------------------------------------------------
 1 | <script setup lang="ts">
 2 | import { ref } from 'vue'
 3 | 
 4 | const username = ref('')
 5 | 
 6 | defineProps<{
 7 |   errorMessage: string
 8 | }>()
 9 | 
10 | const emit = defineEmits<{
11 |   (e: 'submit', username: string): void
12 | }>()
13 | </script>
14 | 
15 | <template>
16 |   <form @submit.prevent="emit('submit', username)">
17 |     <label>
18 |       <span>Type your GitHub username</span>
19 |       <input v-model="username" type="text" name="username" required>
20 |     </label>
21 | 
22 |     <button type="submit">
23 |       Login
24 |     </button>
25 | 
26 |     <p v-if="errorMessage" class="error">
27 |       {{ errorMessage }}
28 |     </p>
29 |   </form>
30 | </template>
31 | 
32 | <style scoped>
33 | form,
34 | label {
35 |   display: flex;
36 |   flex-flow: column;
37 | }
38 | 
39 | label > span {
40 |   font-weight: 600;
41 | }
42 | 
43 | input {
44 |   padding: 8px;
45 |   margin: 0.3rem 0 1rem;
46 |   border: 1px solid #ccc;
47 |   border-radius: 4px;
48 | }
49 | 
50 | .error {
51 |   color: brown;
52 |   margin: 1rem 0 0;
53 | }
54 | </style>
55 | 


--------------------------------------------------------------------------------
/playground/components/Header.vue:
--------------------------------------------------------------------------------
 1 | <script setup lang="ts">
 2 | import { useRouter, useAuth } from '#imports'
 3 | 
 4 | const router = useRouter()
 5 | const { user, logout } = useAuth()
 6 | 
 7 | async function handleLogout () {
 8 |   await logout()
 9 |   router.push('/login')
10 | }
11 | </script>
12 | 
13 | <template>
14 |   <header>
15 |     <nav>
16 |       <ul>
17 |         <li>
18 |           <NuxtLink to="/">
19 |             Home
20 |           </NuxtLink>
21 |         </li>
22 |         <li v-if="!user?.isLoggedIn">
23 |           <NuxtLink to="/login">
24 |             Login
25 |           </NuxtLink>
26 |         </li>
27 |         <template v-else>
28 |           <li>
29 |             <NuxtLink to="/profile" style="display: flex; align-items: center; justify-content: center;">
30 |               <img
31 |                 style="border-radius: 50%"
32 |                 :src="user.avatarUrl"
33 |                 width="32"
34 |                 height="32"
35 |                 alt=""
36 |               >
37 |               <span>Profile</span>
38 |             </NuxtLink>
39 |           </li>
40 |           <li>
41 |             <a href="/api/logout" @click.prevent="handleLogout">
42 |               Log out
43 |             </a>
44 |           </li>
45 |         </template>
46 |       </ul>
47 |     </nav>
48 |   </header>
49 | </template>
50 | 
51 | <style scoped>
52 | ul {
53 |   display: flex;
54 |   list-style: none;
55 |   margin-left: 0;
56 |   padding-left: 0;
57 | }
58 | 
59 | li {
60 |   margin-right: 1rem;
61 |   display: flex;
62 | }
63 | 
64 | li:first-child {
65 |   margin-left: auto;
66 | }
67 | 
68 | a {
69 |   color: #fff;
70 |   text-decoration: none;
71 |   display: flex;
72 |   align-items: center;
73 | }
74 | 
75 | a img {
76 |   margin-right: 1em;
77 | }
78 | 
79 | header {
80 |   padding: 0.2rem;
81 |   color: #fff;
82 |   background-color: #333;
83 | }
84 | </style>
85 | 


--------------------------------------------------------------------------------
/playground/composables/useAuth.ts:
--------------------------------------------------------------------------------
 1 | import { useNuxtApp, useState } from '#imports'
 2 | 
 3 | interface User {
 4 |   isLoggedIn: boolean;
 5 |   login: string;
 6 |   avatarUrl: string;
 7 | }
 8 | 
 9 | export default function useAuth () {
10 |   const { ssrContext } = useNuxtApp()
11 |   const user = useState<User>('user', () => ssrContext?.event?.context?.session?.user)
12 | 
13 |   async function login (username: string) {
14 |     const result = await $fetch('/api/login', {
15 |       method: 'POST',
16 |       body: {
17 |         username
18 |       }
19 |     })
20 | 
21 |     user.value = result
22 |   }
23 | 
24 |   async function logout () {
25 |     const resp = await $fetch('/api/logout')
26 |     user.value = resp
27 |   }
28 | 
29 |   return {
30 |     user,
31 |     login,
32 |     logout
33 |   }
34 | }
35 | 


--------------------------------------------------------------------------------
/playground/middleware/protected.ts:
--------------------------------------------------------------------------------
 1 | import { defineNuxtRouteMiddleware, navigateTo, useAuth } from '#imports'
 2 | 
 3 | export default defineNuxtRouteMiddleware(() => {
 4 |   const { user } = useAuth()
 5 | 
 6 |   if (!user.value?.isLoggedIn) {
 7 |     return navigateTo('/login')
 8 |   }
 9 | })
10 | 


--------------------------------------------------------------------------------
/playground/middleware/public.ts:
--------------------------------------------------------------------------------
 1 | import { defineNuxtRouteMiddleware, navigateTo, useAuth } from '#imports'
 2 | 
 3 | export default defineNuxtRouteMiddleware(() => {
 4 |   const { user } = useAuth()
 5 | 
 6 |   if (user.value?.isLoggedIn) {
 7 |     return navigateTo('/profile')
 8 |   }
 9 | })
10 | 


--------------------------------------------------------------------------------
/playground/nuxt.config.ts:
--------------------------------------------------------------------------------
 1 | import { defineNuxtConfig } from 'nuxt/config'
 2 | import MyModule from '..'
 3 | 
 4 | export default defineNuxtConfig({
 5 |   modules: [
 6 |     MyModule
 7 |   ],
 8 |   myModule: {
 9 |     addPlugin: true
10 |   }
11 | })
12 | 


--------------------------------------------------------------------------------
/playground/package.json:
--------------------------------------------------------------------------------
1 | {
2 |   "private": true,
3 |   "name": "my-module-playground"
4 | }
5 | 


--------------------------------------------------------------------------------
/playground/pages/index.vue:
--------------------------------------------------------------------------------
 1 | <script setup lang="ts"></script>
 2 | 
 3 | <template>
 4 |   <div>
 5 |     <h1>
 6 |       <span style="margin-right: .3rem; vertical-align: middle;">
 7 |         <img src="/GitHub-Mark-32px.png" width="32" height="32" alt="">
 8 |       </span>
 9 |       <a href="https://github.com/wobsoriano/nuxt-iron-session">nuxt-iron-session</a> - Authentication example
10 |     </h1>
11 | 
12 |     <p>
13 |       This example creates an authentication system that uses a
14 |       <b>signed and encrypted cookie to store session data</b>.
15 |     </p>
16 | 
17 |     <h2>Features</h2>
18 | 
19 |     <ul>
20 |       <li>Logged in status synchronized between browser windows/tabs</li>
21 |       <li>Layout based on logged in status</li>
22 |       <li>Session data is signed and encrypted in a cookie</li>
23 |     </ul>
24 | 
25 |     <h2>Steps to test the functionality:</h2>
26 | 
27 |     <ol>
28 |       <li>Click login and enter your GitHub username.</li>
29 |       <li>
30 |         Click home and click profile again, notice how your session is being
31 |         used through a token stored in a cookie.
32 |       </li>
33 |       <li>
34 |         Click logout and try to go to profile again. You&apos;ll get
35 |         redirected to the `/login` route.
36 |       </li>
37 |     </ol>
38 |   </div>
39 | </template>
40 | 
41 | <style>
42 | li {
43 |   margin-bottom: 0.5rem;
44 | }
45 | </style>
46 | 


--------------------------------------------------------------------------------
/playground/pages/login.vue:
--------------------------------------------------------------------------------
 1 | <script setup lang="ts">
 2 | import { ref, useAuth, useRouter, definePageMeta } from '#imports'
 3 | 
 4 | const router = useRouter()
 5 | const { login } = useAuth()
 6 | 
 7 | const errorMessage = ref('')
 8 | 
 9 | async function handleSubmit (payload: string) {
10 |   try {
11 |     await login(payload)
12 |     router.push('/profile')
13 |   } catch (error) {
14 |     errorMessage.value = error?.data?.message
15 |   }
16 | }
17 | 
18 | definePageMeta({
19 |   middleware: ['public']
20 | })
21 | </script>
22 | 
23 | <template>
24 |   <div class="login">
25 |     <Form :error-message="errorMessage" @submit="handleSubmit" />
26 |   </div>
27 | </template>
28 | 
29 | <style>
30 | .login {
31 |   max-width: 21rem;
32 |   margin: 0 auto;
33 |   padding: 1rem;
34 |   border: 1px solid #ccc;
35 |   border-radius: 4px;
36 | }
37 | </style>
38 | 


--------------------------------------------------------------------------------
/playground/pages/profile.vue:
--------------------------------------------------------------------------------
 1 | <script setup lang="ts">
 2 | import { definePageMeta, useAuth, useFetch, computed } from '#imports'
 3 | 
 4 | const { user } = useAuth()
 5 | 
 6 | const { data: events } = useFetch('/api/events', {
 7 |   server: false,
 8 |   key: 'events'
 9 | })
10 | 
11 | definePageMeta({
12 |   middleware: ['protected']
13 | })
14 | 
15 | const githubUrl = computed(() => `https://github.com/${user.value?.login ?? ''}`)
16 | </script>
17 | 
18 | <template>
19 |   <div>
20 |     <h1>Your GitHub profile</h1>
21 |     <p v-if="user?.isLoggedIn" style="font-style: italic;">
22 |       Public data, from
23 |       <a :href="githubUrl">{{ githubUrl }}</a>, reduced to `login` and `avatar_url`.
24 |     </p>
25 |     <pre>{{ JSON.stringify(user, null, 2) }}</pre>
26 |     <p v-if="events">
27 |       Number of GitHub events for user: <b>{{ events.length }}</b>.
28 |       <span v-if="events.length > 0">Last event type: <b>{{ events[0].type }}</b></span>
29 |     </p>
30 |   </div>
31 | </template>
32 | 


--------------------------------------------------------------------------------
/playground/public/GitHub-Mark-32px.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/wobsoriano/nuxt-iron-session/84855607eb3116bac36e50cac534a1f03edfd204/playground/public/GitHub-Mark-32px.png


--------------------------------------------------------------------------------
/playground/server/api/events.get.ts:
--------------------------------------------------------------------------------
 1 | import { Octokit } from 'octokit'
 2 | 
 3 | const octokit = new Octokit()
 4 | 
 5 | export default defineEventHandler(async (event) => {
 6 |   const user = event.context.session.user
 7 | 
 8 |   if (!user || user.isLoggedIn === false) {
 9 |     throw createError({
10 |       status: 401,
11 |       statusMessage: 'Not authenticated'
12 |     })
13 |   }
14 | 
15 |   try {
16 |     const { data: events } =
17 |       await octokit.rest.activity.listPublicEventsForUser({
18 |         username: user.login
19 |       })
20 | 
21 |     return events
22 |   } catch {
23 |     return []
24 |   }
25 | })
26 | 


--------------------------------------------------------------------------------
/playground/server/api/login.post.ts:
--------------------------------------------------------------------------------
 1 | import { Octokit } from 'octokit'
 2 | 
 3 | const octokit = new Octokit()
 4 | 
 5 | export default defineEventHandler(async (event) => {
 6 |   const { username } = await readBody<{ username: string }>(event)
 7 | 
 8 |   try {
 9 |     const {
10 |       data: { login, avatar_url: avatarUrl }
11 |     } = await octokit.rest.users.getByUsername({ username })
12 | 
13 |     const user = { isLoggedIn: true, login, avatarUrl }
14 | 
15 |     event.context.session.user = user
16 |     await event.context.session.save()
17 | 
18 |     return user
19 |   } catch (error) {
20 |     if (error.status === 404) {
21 |       throw createError({
22 |         status: 404,
23 |         message: error.response.data.message
24 |       })
25 |     }
26 | 
27 |     throw createError({
28 |       status: 500,
29 |       message: 'Server error'
30 |     })
31 |   }
32 | })
33 | 
34 | declare module 'iron-session' {
35 |   interface IronSessionData {
36 |     user?: {
37 |       isLoggedIn: boolean;
38 |       login: string;
39 |       avatarUrl: string;
40 |     }
41 |   }
42 | }
43 | 


--------------------------------------------------------------------------------
/playground/server/api/logout.get.ts:
--------------------------------------------------------------------------------
1 | export default defineEventHandler(async (event) => {
2 |   await event.req.session.destroy()
3 |   return {
4 |     isLoggedIn: false,
5 |     login: '',
6 |     avatarUrl: ''
7 |   }
8 | })
9 | 


--------------------------------------------------------------------------------
/src/module.ts:
--------------------------------------------------------------------------------
 1 | import { fileURLToPath } from 'url'
 2 | import { defineNuxtModule, addServerHandler, addTemplate, createResolver } from '@nuxt/kit'
 3 | import { defu } from 'defu'
 4 | import { IronSessionOptions } from 'iron-session'
 5 | 
 6 | export default defineNuxtModule<IronSessionOptions>({
 7 |   meta: {
 8 |     name: 'nuxt-iron-session',
 9 |     configKey: 'session',
10 |     compatibility: {
11 |       nuxt: '^3.5.0'
12 |     }
13 |   },
14 |   defaults: {
15 |     cookieName: 'nuxtapp_cookiename',
16 |     password: 'complex_password_at_least_32_characters_long',
17 |     // secure: true should be used in production (HTTPS) but can't be used in development (HTTP)
18 |     cookieOptions: {
19 |       secure: process.env.NODE_ENV === 'production'
20 |     }
21 |   },
22 |   setup (moduleOptions, nuxt) {
23 |     const { resolve } = createResolver(import.meta.url)
24 | 
25 |     // Private runtimeConfig
26 |     nuxt.options.runtimeConfig.session = defu(nuxt.options.runtimeConfig.session, moduleOptions)
27 | 
28 |     // Transpile runtime
29 |     const runtimeDir = fileURLToPath(new URL('./runtime', import.meta.url))
30 |     nuxt.options.build.transpile.push(runtimeDir)
31 | 
32 |     addServerHandler({
33 |       handler: resolve(runtimeDir, 'handler'),
34 |       middleware: true
35 |     })
36 | 
37 |     addTemplate({
38 |       filename: 'types/iron-session.d.ts',
39 |       getContents: () => `
40 |         declare module 'h3' {
41 |           import type { IronSession } from 'iron-session'
42 |           interface H3EventContext {
43 |             session: IronSession
44 |           }
45 |         }
46 | 
47 |         export {}
48 |       `
49 |     })
50 | 
51 |     nuxt.hook('nitro:config', (nitroConfig) => {
52 |       // Inline module runtime in Nitro bundle
53 |       nitroConfig.externals = defu(typeof nitroConfig.externals === 'object' ? nitroConfig.externals : {}, {
54 |         inline: [resolve('./runtime')]
55 |       })
56 |     })
57 | 
58 |     nuxt.hook('prepare:types', (options) => {
59 |       options.references.push({ path: resolve(nuxt.options.buildDir, 'types/iron-session.d.ts') })
60 |     })
61 |   }
62 | })
63 | 


--------------------------------------------------------------------------------
/src/runtime/handler.ts:
--------------------------------------------------------------------------------
1 | import { createIronSessionMiddleware } from './middleware'
2 | // @ts-expect-error: Nuxt generated
3 | import { useRuntimeConfig } from '#imports'
4 | 
5 | const config = useRuntimeConfig()
6 | 
7 | export default createIronSessionMiddleware(config.session)
8 | 


--------------------------------------------------------------------------------
/src/runtime/middleware.ts:
--------------------------------------------------------------------------------
 1 | import { eventHandler } from 'h3'
 2 | import type { IronSession, IronSessionOptions } from 'iron-session'
 3 | import { getIronSession } from 'iron-session'
 4 | 
 5 | // https://github.com/vvo/iron-session/blob/main/src/getPropertyDescriptorForReqSession.ts
 6 | function getPropertyDescriptorForReqSession (
 7 |   session: IronSession
 8 | ): PropertyDescriptor {
 9 |   return {
10 |     enumerable: true,
11 |     get () {
12 |       return session
13 |     },
14 |     set (value) {
15 |       const keys = Object.keys(value)
16 |       const currentKeys = Object.keys(session)
17 | 
18 |       currentKeys.forEach((key) => {
19 |         if (!keys.includes(key)) {
20 |           delete session[key]
21 |         }
22 |       })
23 | 
24 |       keys.forEach((key) => {
25 |         session[key] = value[key]
26 |       })
27 |     }
28 |   }
29 | }
30 | 
31 | export function createIronSessionMiddleware (options: IronSessionOptions) {
32 |   return eventHandler(async (event) => {
33 |     const session = await getIronSession(event.node.req, event.node.res, options)
34 | 
35 |     Object.defineProperty(
36 |       event.node.req,
37 |       'session',
38 |       getPropertyDescriptorForReqSession(session)
39 |     )
40 | 
41 |     Object.defineProperty(
42 |       event.context,
43 |       'session',
44 |       getPropertyDescriptorForReqSession(session)
45 |     )
46 |   })
47 | }
48 | 


--------------------------------------------------------------------------------
/tsconfig.json:
--------------------------------------------------------------------------------
1 | {
2 |   "extends": "./playground/.nuxt/tsconfig.json"
3 | }
4 | 


--------------------------------------------------------------------------------
/vercel.json:
--------------------------------------------------------------------------------
1 | {
2 |   "github": {
3 |     "silent": true
4 |   }
5 | }
6 | 


--------------------------------------------------------------------------------