Creates a new session attribute, optionally encrypting it before it is saved in the database. It is also possible to set expiry for an attribute, upon reaching of which the attribute will be no longer available.
Note that an attribute will always expire once the session expires, even if the attribute's expiry is greater than that of its underlying session.
An exception is raised if an attribute of a given name already exists - use set if an update should be issued instead of reporting an exception.
Unlike user attributes, session attributes are specific to a particular session only and if a user logs in multiple times, all of the sessions will have a distinct set of their attributes.
Attribute names and other metadata may be stored in server logs. Values are never saved to logs.
There are two versions of the call - .create is used with a single attribute and .create_many is used with multiple attributes. Performance-wise, it is more efficient to use .create_many if more than one attribute should be created for a session.
session.attr.create(self, name, value, expiration=None, encrypt=False)
Creates a new session attribute.
name: Name of the attribute to createvalue: An arbitrary value assigned to the nameexpiration: After how many seconds, from current time, the attribute should expireencrypt: Should the attribute's value be stored encrypted or notReturns: (None)# -*- coding: utf-8 -*-
# Zato
from zato.server.service import Service
class SessionAttrCreate(Service):
def handle(self):
# Current user's data
username = 'admin1'
password = 'abxqDJpXMVXYEO8NOGx9nVZvv4xSew9'
current_app = 'CRM'
remote_addr = '127.0.0.1'
user_agent = 'Firefox 139.0'
# Log in current user
session = self.sso.user.login(
self.cid, username, password, current_app, remote_addr, user_agent)
# Get current UST
ust = session.ust
# Get session object
session = self.sso.user.session.get(
self.cid, ust, ust, current_app, remote_addr)
# Information about the attribute to be created
name = 'my-attribute'
value = 'my-value'
# Create a new attribute
session.attr.create(name, value)
session.attr.create_many(self, data, expiration=None, encrypt=False)
Creates a series of session attributes.
data: A list of dictionaries, each describing an attribute to create. If any key is missing, the default value is taken from the method call's parameters.expiration: After how many seconds, from now, the attribute should expire (may be overridden in each dict)encrypt: Should the attribute's value be stored encrypted or not (may be overridden in each dict)Returns: (None)Dictionaries in the 'data' parameter are in the format below:
| Key | Optional |
|---|---|
| name | --- |
| value | --- |
| expiration | Yes |
| encrypt | Yes |
# -*- coding: utf-8 -*-
# Zato
from zato.server.service import Service
class SessionAttrCreateMany(Service):
def handle(self):
# Current user's data
username = 'admin1'
password = 'abxqDJpXMVXYEO8NOGx9nVZvv4xSew9'
current_app = 'CRM'
remote_addr = '127.0.0.1'
user_agent = 'Firefox 139.0'
# Log in current user
session = self.sso.user.login(
self.cid, username, password, current_app, remote_addr, user_agent)
# Get current UST
ust = session.ust
# Get session object
session = self.sso.user.session.get(
self.cid, ust, ust, current_app, remote_addr)
# Prepare a list of dictionaries with attributes to create
data = [
{'name':'my-attr1', 'value':'my-value1'},
{'name':'my-attr2', 'value':'my-value2', 'encrypt':True},
{'name':'my-attr3', 'value':'my-value3', 'expiration':3600},
]
# Create new attributes
session.attr.create_many(data)