Merge pull request #19 from antarr/perf/session-storage-optimization-170410250325887014

⚡ Improve thread safety and scalability by using ISession

Author: antarr

Withings.Example/Program.cs

@@ -3,41 +3,47 @@
 using System.Text.Json;
 using Microsoft.AspNetCore.Builder;
 using Microsoft.AspNetCore.Http;
-using Microsoft.Extensions.Caching.Memory;
 using Microsoft.Extensions.DependencyInjection;
 using Withings.NET.Client;
 using Withings.NET.Models;
 
 var builder = WebApplication.CreateBuilder(args);
-builder.Services.AddMemoryCache();
-var app = builder.Build();
+
+// Add services to the container.
+builder.Services.AddDistributedMemoryCache();
+builder.Services.AddSession(options =>
+{
+    options.IdleTimeout = TimeSpan.FromMinutes(30);
+    options.Cookie.HttpOnly = true;
+    options.Cookie.IsEssential = true;
+});
 
 var credentials = new WithingsCredentials();
 credentials.SetCallbackUrl(Environment.GetEnvironmentVariable("WithingsCallbackUrl"));
 credentials.SetConsumerProperties(
     Environment.GetEnvironmentVariable("WithingsConsumerKey"),
     Environment.GetEnvironmentVariable("WithingsConsumerSecret"));
 
-var authenticator = new Authenticator(credentials);
-var session = new Dictionary<string, string>();
+builder.Services.AddSingleton(credentials);
+builder.Services.AddSingleton<Authenticator>();
+builder.Services.AddSingleton<WithingsClient>();
+
+var app = builder.Build();
 
-var activityStartDate = new DateTime(2017, 1, 1);
-var activityEndDate = new DateTime(2017, 3, 30);
-var bodyStartDate = new DateTime(2017, 5, 8);
-var bodyEndDate = new DateTime(2017, 5, 10);
+app.UseSession();
 
 app.MapGet("/", () => Results.Redirect("/api/oauth/authorize", permanent: true));
 
-app.MapGet("/api/oauth/authorize", () =>
+app.MapGet("/api/oauth/authorize", (HttpContext context, Authenticator authenticator) =>
 {
     var state = Guid.NewGuid().ToString();
-    session["State"] = state;
+    context.Session.SetString("State", state);
     var scope = "user.info,user.metrics,user.activity";
     var url = authenticator.GetAuthCodeUrl(scope, state);
     return Results.Redirect(url);
 });
 
-app.MapGet("/api/oauth/callback", async (HttpContext context) =>
+app.MapGet("/api/oauth/callback", async (HttpContext context, Authenticator authenticator) =>
 {
     var query = context.Request.Query;
 
@@ -49,111 +55,136 @@
     if (string.IsNullOrWhiteSpace(state))
         return Results.BadRequest("Missing required query parameter 'state'.");
 
-    if (!session.TryGetValue("State", out var storedState) || storedState != state)
+    var storedState = context.Session.GetString("State");
+    if (string.IsNullOrEmpty(storedState) || storedState != state)
          return Results.BadRequest("Invalid state.");
 
     var token = await authenticator.GetAccessToken(code);
 
-    session["AccessToken"] = token.AccessToken;
-    session["RefreshToken"] = token.RefreshToken;
-    session["UserId"] = token.UserId;
+    context.Session.SetString("AccessToken", token.AccessToken);
+    context.Session.SetString("RefreshToken", token.RefreshToken);
+    context.Session.SetString("UserId", token.UserId);
 
     return Results.Json(token);
 });
 
-app.MapGet("/api/withings/activity", async (IMemoryCache cache) =>
+app.MapGet("/api/withings/activity", async (HttpContext context, WithingsClient client) =>
 {
-    var start = DateTime.Parse("2017-01-01");
-    var end = DateTime.Parse("2017-03-30");
-    var userId = session["UserId"];
-    var accessToken = session["AccessToken"];
-
-    var key = $"activity_{userId}_{start:yyyyMMdd}_{end:yyyyMMdd}";
-
-    var activity = await cache.GetOrCreateAsync(key, async entry =>
-    {
-        var client = new WithingsClient(credentials);
-        entry.AbsoluteExpirationRelativeToNow = TimeSpan.FromMinutes(10);
-        return await client.GetActivityMeasures(
-            start,
-            end,
-            userId,
-            accessToken);
-    });
+    var userId = context.Session.GetString("UserId");
+    var accessToken = context.Session.GetString("AccessToken");
+
+    if (string.IsNullOrEmpty(userId) || string.IsNullOrEmpty(accessToken))
+        return Results.Unauthorized();
 
+    var activity = await client.GetActivityMeasures(
+        DateTime.Parse("2017-01-01"),
+        DateTime.Parse("2017-03-30"),
+        userId,
+        accessToken);
     return Results.Json(activity);
 });
 
-app.MapGet("/api/withings/dailyactivity", async () =>
+app.MapGet("/api/withings/dailyactivity", async (HttpContext context, WithingsClient client) =>
 {
-    var client = new WithingsClient(credentials);
+    var userId = context.Session.GetString("UserId");
+    var accessToken = context.Session.GetString("AccessToken");
+
+    if (string.IsNullOrEmpty(userId) || string.IsNullOrEmpty(accessToken))
+        return Results.Unauthorized();
+
     var activity = await client.GetActivityMeasures(
         DateTime.Today.AddDays(-30),
-        session["UserId"],
-        session["AccessToken"]);
+        userId,
+        accessToken);
     return Results.Json(activity);
 });
 
-app.MapGet("/api/withings/sleepsummary", async () =>
+app.MapGet("/api/withings/sleepsummary", async (HttpContext context, WithingsClient client) =>
 {
-    var client = new WithingsClient(credentials);
+    var accessToken = context.Session.GetString("AccessToken");
+    if (string.IsNullOrEmpty(accessToken))
+        return Results.Unauthorized();
+
     var activity = await client.GetSleepSummary(
         "2017-01-01",
         "2017-03-30",
-        session["AccessToken"]);
+        accessToken);
     return Results.Json(activity);
 });
 
-app.MapGet("/api/withings/workouts", async () =>
+app.MapGet("/api/withings/workouts", async (HttpContext context, WithingsClient client) =>
 {
-    var client = new WithingsClient(credentials);
+    var accessToken = context.Session.GetString("AccessToken");
+    if (string.IsNullOrEmpty(accessToken))
+        return Results.Unauthorized();
+
     var activity = await client.GetWorkouts(
         "2017-06-01",
         "2017-06-05",
-        session["AccessToken"]);
+        accessToken);
     return Results.Json(activity);
 });
 
-app.MapGet("/api/withings/sleepmeasures", async () =>
+app.MapGet("/api/withings/sleepmeasures", async (HttpContext context, WithingsClient client) =>
 {
-    var client = new WithingsClient(credentials);
+    var userId = context.Session.GetString("UserId");
+    var accessToken = context.Session.GetString("AccessToken");
+
+    if (string.IsNullOrEmpty(userId) || string.IsNullOrEmpty(accessToken))
+        return Results.Unauthorized();
+
     var activity = await client.GetSleepMeasures(
-        session["UserId"],
+        userId,
         DateTime.Now.AddDays(-90),
         DateTime.Now.AddDays(-1),
-        session["AccessToken"]);
+        accessToken);
     return Results.Json(activity);
 });
 
-app.MapGet("/api/withings/body", async () =>
+app.MapGet("/api/withings/body", async (HttpContext context, WithingsClient client) =>
 {
-    var client = new WithingsClient(credentials);
+    var userId = context.Session.GetString("UserId");
+    var accessToken = context.Session.GetString("AccessToken");
+
+    if (string.IsNullOrEmpty(userId) || string.IsNullOrEmpty(accessToken))
+        return Results.Unauthorized();
+
     var activity = await client.GetBodyMeasures(
-        session["UserId"],
-        bodyStartDate,
-        bodyEndDate,
-        session["AccessToken"]);
+        userId,
+        DateTime.Parse("2017-05-08"),
+        DateTime.Parse("2017-05-10"),
+        accessToken);
     return Results.Json(activity);
 });
 
-app.MapGet("/api/withings/bodysince", async () =>
+app.MapGet("/api/withings/bodysince", async (HttpContext context, WithingsClient client) =>
 {
-    var client = new WithingsClient(credentials);
+    var userId = context.Session.GetString("UserId");
+    var accessToken = context.Session.GetString("AccessToken");
+
+    if (string.IsNullOrEmpty(userId) || string.IsNullOrEmpty(accessToken))
+        return Results.Unauthorized();
+
     var activity = await client.GetBodyMeasures(
-        session["UserId"],
-        bodyStartDate,
-        session["AccessToken"]);
+        userId,
+        DateTime.Parse("2017-05-08"),
+        accessToken);
     return Results.Json(activity);
 });
 
-app.MapGet("/api/withings/intraday", async () =>
+app.MapGet("/api/withings/intraday", async (HttpContext context, WithingsClient client) =>
 {
-    var client = new WithingsClient(credentials);
+    var userId = context.Session.GetString("UserId");
+    var accessToken = context.Session.GetString("AccessToken");
+
+    if (string.IsNullOrEmpty(userId) || string.IsNullOrEmpty(accessToken))
+        return Results.Unauthorized();
+
     var activity = await client.GetIntraDayActivity(
-        session["UserId"],
+        userId,
         DateTime.Now.AddDays(-90),
         DateTime.Now.AddDays(-1),
-        session["AccessToken"]);
+        accessToken);
     return Results.Json(activity);
 });
 

Withings.NET/Client/Authenticator.cs

@@ -124,9 +124,10 @@ public T Deserialize<T>(string s)
 
         public T Deserialize<T>(Stream stream)
         {
-             using (stream)
+             using (var reader = new StreamReader(stream))
              {
-                 return JsonSerializer.Deserialize<T>(stream, _options);
+                 var text = reader.ReadToEnd();
+                 return JsonSerializer.Deserialize<T>(text, _options);
              }
         }