smeijer/session.js

## session.js
import { json } from "next-runtime";

import jwt from "jsonwebtoken";

const SESSION_KEY = "some-secret";

export function readSession(cookies) {
  const sessionCookie = cookies.get("session");
  let data = {};

  if (sessionCookie) {
    data = jwt.verify(sessionCookie, SESSION_KEY);
    delete data.iat;
  }

  return data;
}

export function writeSession(cookies, data) {
  cookies.set("session", jwt.sign(data, SESSION_KEY));
}

export const session = async (ctx, next) => {
  let data = readSession(ctx.cookies);

  ctx.session = data;

  try {
    await next();
    return json({ session: ctx.session });
  } catch (err) {
    throw err;
  } finally {
    // TODO dirty checks, to avoid unneccessary cookies
    writeSession(ctx.cookies, ctx.session);
  }
};
	import { json } from "next-runtime";

	import jwt from "jsonwebtoken";

	const SESSION_KEY = "some-secret";

	export function readSession(cookies) {
	const sessionCookie = cookies.get("session");
	let data = {};

	if (sessionCookie) {
	data = jwt.verify(sessionCookie, SESSION_KEY);
	delete data.iat;
	}

	return data;
	}

	export function writeSession(cookies, data) {
	cookies.set("session", jwt.sign(data, SESSION_KEY));
	}

	export const session = async (ctx, next) => {
	let data = readSession(ctx.cookies);

	ctx.session = data;

	try {
	await next();
	return json({ session: ctx.session });
	} catch (err) {
	throw err;
	} finally {
	// TODO dirty checks, to avoid unneccessary cookies
	writeSession(ctx.cookies, ctx.session);
	}
	};