@eggjs/session
Advanced tools
Session plugin for egg, based on koa-session.
session is a built-in plugin in egg and enabled by default.
// {app_root}/config/plugin.js
exports.session = true; // enable by default
egg-session support external store, you can store your sessions in redis, memcached or other databases.
For example, if you want to store session in redis, you must:
npm i --save @eggjs/redis
@eggjs/redis as a plugin and set the configuration// config/plugin.js
exports.redis = {
enable: true,
package: '@eggjs/redis',
};
// config/config.default.js
exports.redis = {
// your redis configurations
};
// app.js
module.exports = app => {
// set redis session store
// session store must have 3 methods
// define sessionStore in `app.js` so you can access `app.redis`
app.sessionStore = {
async get(key) {
const res = await app.redis.get(key);
if (!res) return null;
return JSON.parse(res);
},
async set(key, value, maxAge) {
// maxAge not present means session cookies
// we can't exactly know the maxAge and just set an appropriate value like one day
if (!maxAge) maxAge = 24 * 60 * 60 * 1000;
value = JSON.stringify(value);
await app.redis.set(key, value, 'PX', maxAge);
},
async destroy(key) {
await app.redis.del(key);
},
};
// session store can be a session store class
// app.sessionStore = class Store {
// constructor(app) {
// this.app = app;
// }
// async get() {}
// async set() {}
// async destroy() {}
// };
};
Once you use external session store, session is strong dependent on your external store, you can't access session if your external store is down. Use external session stores only if necessary, avoid use session as a cache, keep session lean and stored by cookie!
Support all configurations in koa-session.
Support not to print the session value when session event trigger log. Default to be true.
View the default configurations
Please open an issue here.
Made with contributors-img.
FAQs
session plugin for egg
The npm package @eggjs/session receives a total of 653 weekly downloads. As such, @eggjs/session popularity was classified as not popular.
We found that @eggjs/session demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 13 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Packagist urges PHP projects to update Composer after a GitHub token format change exposed some GitHub Actions tokens in CI logs.
Research
GemStuffer abuses RubyGems as an exfiltration channel, packaging scraped UK council portal data into junk gems published from new accounts.
Company News
Socket was named to the Rising in Cyber 2026 list, recognizing 30 private cybersecurity startups selected by CISOs and security executives.