feat: use postgres

authsession/internal/adapters/redis/sessionstore/store.go

@@ -5,7 +5,6 @@ package sessionstore
 import (
 	"bytes"
 	"context"
-	"crypto/tls"
 	"encoding/base64"
 	"encoding/json"
 	"errors"
@@ -24,23 +23,10 @@ import (
 
 const mutationRetryLimit = 3
 
-// Config configures one Redis-backed session store instance.
+// Config configures one Redis-backed session store instance. The store does
+// not own its Redis client; the runtime supplies a shared client constructed
+// via `pkg/redisconn`.
 type Config struct {
-	// Addr is the Redis network address in host:port form.
-	Addr string
-
-	// Username is the optional Redis ACL username.
-	Username string
-
-	// Password is the optional Redis ACL password.
-	Password string
-
-	// DB is the Redis logical database index.
-	DB int
-
-	// TLSEnabled enables TLS with a conservative minimum protocol version.
-	TLSEnabled bool
-
 	// SessionKeyPrefix is the namespace prefix applied to primary session keys.
 	SessionKeyPrefix string
 
@@ -78,13 +64,12 @@ type redisRecord struct {
 	RevokeActorID         string               `json:"revoke_actor_id,omitempty"`
 }
 
-// New constructs a Redis-backed session store from cfg.
-func New(cfg Config) (*Store, error) {
+// New constructs a Redis-backed session store that uses client and applies
+// the namespace and timeout settings from cfg.
+func New(client *redis.Client, cfg Config) (*Store, error) {
 	switch {
-	case strings.TrimSpace(cfg.Addr) == "":
-		return nil, errors.New("new redis session store: redis addr must not be empty")
-	case cfg.DB < 0:
-		return nil, errors.New("new redis session store: redis db must not be negative")
+	case client == nil:
+		return nil, errors.New("new redis session store: nil redis client")
 	case strings.TrimSpace(cfg.SessionKeyPrefix) == "":
 		return nil, errors.New("new redis session store: session key prefix must not be empty")
 	case strings.TrimSpace(cfg.UserSessionsKeyPrefix) == "":
@@ -95,20 +80,8 @@ func New(cfg Config) (*Store, error) {
 		return nil, errors.New("new redis session store: operation timeout must be positive")
 	}
 
-	options := &redis.Options{
-		Addr:            cfg.Addr,
-		Username:        cfg.Username,
-		Password:        cfg.Password,
-		DB:              cfg.DB,
-		Protocol:        2,
-		DisableIdentity: true,
-	}
-	if cfg.TLSEnabled {
-		options.TLSConfig = &tls.Config{MinVersion: tls.VersionTLS12}
-	}
-
 	return &Store{
-		client:                      redis.NewClient(options),
+		client:                      client,
 		sessionKeyPrefix:            cfg.SessionKeyPrefix,
 		userSessionsKeyPrefix:       cfg.UserSessionsKeyPrefix,
 		userActiveSessionsKeyPrefix: cfg.UserActiveSessionsKeyPrefix,
@@ -116,31 +89,6 @@ func New(cfg Config) (*Store, error) {
 	}, nil
 }
 
-// Close releases the underlying Redis client resources.
-func (s *Store) Close() error {
-	if s == nil || s.client == nil {
-		return nil
-	}
-
-	return s.client.Close()
-}
-
-// Ping verifies that the configured Redis backend is reachable within the
-// adapter operation timeout budget.
-func (s *Store) Ping(ctx context.Context) error {
-	operationCtx, cancel, err := s.operationContext(ctx, "ping redis session store")
-	if err != nil {
-		return err
-	}
-	defer cancel()
-
-	if err := s.client.Ping(operationCtx).Err(); err != nil {
-		return fmt.Errorf("ping redis session store: %w", err)
-	}
-
-	return nil
-}
-
 // Get returns the stored session for deviceSessionID.
 func (s *Store) Get(ctx context.Context, deviceSessionID common.DeviceSessionID) (devicesession.Session, error) {
 	if err := deviceSessionID.Validate(); err != nil {