search
Get NovelGuidesAPI Reference

Sessions

Novel maintains a session for each client that comes in via a session cookie. This is handled by https://github.com/fastify/fastify-secure-sessionarrow-up-right. Both application and admin context's are supported.

You can access this session via the request variable in your handler.

app/api/accounts/index.ts
export default async function Route (instance: FastifyInstance) {
    instance.get('/api/v1/account', handler);
    instance.authenticated();
    
    async function handler(request, reply) {
        console.log(request.session);
        reply.status(204);
    }
}
circle-info

These sessions are the same in both cookie and api key contexts.

There are also additional request variables available to you for convenience.

hashtag
request.account

This includes details on which user is accessing that request.

request.account = {
    id: string,
    role: string,
    verified: boolean,
};

hashtag
request.org

This includes details on which organization is being used by the current request

hashtag
Cookie Session

Available under

also available under request via

you can also provide an array of roles where the endpoint only responds to the session if they have the role.

hashtag
API Session

When using an API key, you can respond to requests and scope routes under

also available under request via

You can provide an array of scopes specific to the key if you need to have a more granular control.

hashtag
Changelog

  • 2024-12-20 - Initial Documentation

Last updated