Any Haskell record that is a member of the ISessionManager typeclass can be stuffed inside a SessionManager to enable all session-related functionality.

To use sessions in your application, just find a Backend that would produce one for you inside of your Initializer. See initCookieSessionManager in CookieSession for a built-in option that would get you started.

Wrap around a handler, committing any changes in the session at the end

Commit changes to session within the current request cycle

Set a key-value pair in the current session

Get a key from the current session

Remove a key from the current session

Returns a CSRF Token unique to the current session

Return session contents as an association list

Deletes the session cookie, effectively resetting the session

Touch the session so the timeout gets refreshed

Serialize UTCTime instance Serialize UTCTime where put t = put (round (utcTimeToPOSIXSeconds t) :: Integer) get = posixSecondsToUTCTime . fromInteger $ get

Arbitrary payload with timestamp.

Inject the payload

Validate session against timeout policy.

• If timeout is set to Nothing, never trigger a time-out.
• Otherwise, do a regular time-out check based on current time and given timestamp.