Quick Start

This guide walks you through creating your first session-enabled application.

Step 1: Define Session Data

Create a class that extends Session::Base:

require "session"

class UserSession < Session::Base
  property user_id : Int64?
  property username : String?
  property email : String?
  property role : String = "guest"
  property login_time : Time?

  def authenticated? : Bool
    !user_id.nil?
  end

  def admin? : Bool
    role == "admin"
  end
end

Step 2: Configure Session

Declare the store type with Session.use_store, then configure:

# Tell the library which concrete store type you'll use.
# This must be called before Session.configure.
Session.use_store(Session::MemoryStore(UserSession))

Session.configure do |config|
  # Required: Secret key for encryption (use environment variable in production)
  config.secret = ENV["SESSION_SECRET"]? || "your-32-character-secret-key-here"

  # Session timeout
  config.timeout = 24.hours

  # Cookie name
  config.session_key = "myapp_session"

  # Assign a store instance matching the type declared above
  config.store = Session::MemoryStore(UserSession).new
end

Why use_store? Crystal's generic type system is invariant: a MemoryStore(UserSession) cannot be assigned to Store(Base)?. use_store injects a typed store property into Configuration so the compiler knows the exact type.

Step 3: Use Sessions

Create a Session

store = Session.config.store!

# Create a new session
session = store.create

# Access session data
session.user_id = 12345
session.username = "alice"
session.email = "alice@example.com"
session.role = "admin"
session.login_time = Time.utc

puts "Session ID: #{session.session_id}"
puts "Username: #{session.username}"
puts "Is Admin: #{session.admin?}"

Retrieve a Session

# Get session by ID (raises if not found)
session = store[session_id]

# Get session by ID (returns nil if not found)
session = store[session_id]?

Update a Session

session = store[session_id]
session.role = "moderator"
store[session_id] = session  # Save changes

Delete a Session

store.delete(session_id)

Step 4: HTTP Integration

Integrate with an HTTP server:

require "http/server"
require "session"

# Declare store type, then configure
Session.use_store(Session::MemoryStore(UserSession))

Session.configure do |config|
  config.secret = ENV["SESSION_SECRET"]
  config.store = Session::MemoryStore(UserSession).new
end

store = Session.config.store!

# Create server with session handler
server = HTTP::Server.new([
  Session::SessionHandler.new(store),
]) do |context|
  case context.request.path
  when "/login"
    # Create session on login
    session = store.create
    session.user_id = 1
    session.username = "alice"
    store[session.session_id] = session
    context.response.print "Logged in as alice"

  when "/profile"
    # Access session data
    if store.valid? && store.current_session.authenticated?
      context.response.print "Hello, #{store.current_session.username}!"
    else
      context.response.status = HTTP::Status::UNAUTHORIZED
      context.response.print "Please log in"
    end

  when "/logout"
    # Destroy session
    store.delete
    context.response.print "Logged out"

  else
    context.response.print "Welcome!"
  end
end

puts "Server running on http://localhost:8080"
server.listen(8080)

Step 5: Add Flash Messages

Use flash messages for one-time notifications:

# Set flash message (available on next request)
store.flash["notice"] = "Your changes have been saved!"
store.flash["error"] = "Something went wrong."

# In next request, access flash messages
if notice = store.flash.now["notice"]?
  puts "Notice: #{notice}"
end

Complete Example

require "session"
require "http/server"

# Define session data
class UserSession < Session::Base
  property user_id : Int64?
  property username : String?

  def authenticated? : Bool
    !user_id.nil?
  end
end

# Declare store type, then configure
Session.use_store(Session::MemoryStore(UserSession))

Session.configure do |config|
  config.secret = ENV["SESSION_SECRET"]? || "dev-secret-32-characters-long!!"
  config.timeout = 1.hour
  config.sliding_expiration = true
  config.store = Session::MemoryStore(UserSession).new
end

store = Session.config.store!

# Server
server = HTTP::Server.new([
  Session::SessionHandler.new(store),
]) do |context|
  # Your application logic here
  context.response.content_type = "text/html"
  context.response.print <<-HTML
    <h1>Session Demo</h1>
    <p>Session ID: #{store.session_id}</p>
    <p>Authenticated: #{store.current_session.authenticated?}</p>
    <p>Username: #{store.current_session.username || "Guest"}</p>
  HTML
end

server.listen(8080)

Next Steps

Configuration - Explore all configuration options
Storage Backends - Choose the right backend
Clustering - Scale to multiple nodes

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Quick Start

Step 1: Define Session Data

Step 2: Configure Session

Step 3: Use Sessions

Create a Session

Retrieve a Session

Update a Session

Delete a Session

Step 4: HTTP Integration

Step 5: Add Flash Messages

Complete Example

Next Steps

FilesExpand file tree

quick-start.md

Latest commit

History

quick-start.md

File metadata and controls

Quick Start

Step 1: Define Session Data

Step 2: Configure Session

Step 3: Use Sessions

Create a Session

Retrieve a Session

Update a Session

Delete a Session

Step 4: HTTP Integration

Step 5: Add Flash Messages

Complete Example

Next Steps