Add session_id, make token size more reasonable (#983)

* Add session_id, make token size more reasonable

* Use more direct approach

tests/test_api_session.py

@@ -28,7 +28,8 @@ def test_create_session(test_client : TestClient) -> None:
 	})
 	create_session_body = create_session_response.json()
 
-	assert session_manager.get_session(create_session_body.get('access_token'))
+	assert create_session_body.get('access_token')
+	assert create_session_body.get('refresh_token')
 	assert create_session_response.status_code == 201
 
 	create_session_response = test_client.post('/session', json =
@@ -78,9 +79,9 @@ def test_get_session(test_client : TestClient) -> None:
 
 	assert get_session_response.status_code == 200
 
-	access_token = create_session_body.get('access_token')
-	session : Session = session_manager.get_session(access_token)
-	session_manager.set_session(access_token,
+	session_id = session_manager.find_session_id(create_session_body.get('access_token'))
+	session : Session = session_manager.get_session(session_id)
+	session_manager.set_session(session_id,
 	{
 		'access_token': session.get('access_token'),
 		'refresh_token': session.get('refresh_token'),
@@ -90,7 +91,7 @@ def test_get_session(test_client : TestClient) -> None:
 
 	get_session_response = test_client.get('/session', headers =
 	{
-		'Authorization': 'Bearer ' + access_token
+		'Authorization': 'Bearer ' + create_session_body.get('access_token')
 	})
 
 	assert get_session_response.status_code == 426
@@ -116,9 +117,9 @@ def test_refresh_session(test_client : TestClient) -> None:
 	})
 	refresh_session_body = refresh_session_response.json()
 
-	assert session_manager.get_session(create_session_body.get('access_token')) is None
-
-	assert session_manager.get_session(refresh_session_body.get('access_token'))
+	assert refresh_session_body.get('access_token')
+	assert refresh_session_body.get('refresh_token')
+	assert not refresh_session_body.get('access_token') == create_session_body.get('access_token')
 
 	assert refresh_session_response.status_code == 200
 
@@ -149,6 +150,6 @@ def test_destroy_session(test_client : TestClient) -> None:
 		'Authorization': 'Bearer ' + create_session_body.get('access_token')
 	})
 
-	assert session_manager.get_session(create_session_body.get('access_token')) is None
+	assert session_manager.find_session_id(create_session_body.get('access_token')) is None
 
 	assert delete_session_response.status_code == 200

tests/test_session_manager.py

@@ -6,22 +6,22 @@ from facefusion.session_manager import clear_session, create_session, get_sessio
 
 def test_get_and_set_session() -> None:
 	session = create_session()
-	access_token = secrets.token_urlsafe(128)
+	session_id = secrets.token_urlsafe(16)
 
-	set_session(access_token, session)
+	set_session(session_id, session)
 
-	assert get_session(access_token) == session
+	assert get_session(session_id) == session
 
 
 def test_validate_session() -> None:
 	session = create_session()
-	access_token = secrets.token_urlsafe(128)
+	session_id = secrets.token_urlsafe(16)
 
-	set_session(access_token, session)
+	set_session(session_id, session)
 
-	assert validate_session(access_token) is True
+	assert validate_session(session_id) is True
 
-	set_session(access_token,
+	set_session(session_id,
 	{
 		'access_token': session.get('access_token'),
 		'refresh_token': session.get('refresh_token'),
@@ -29,17 +29,17 @@ def test_validate_session() -> None:
 		'expires_at': session.get('expires_at') - timedelta(hours = 1)
 	})
 
-	assert validate_session(access_token) is False
+	assert validate_session(session_id) is False
 
 
 def test_clear_session() -> None:
 	session = create_session()
-	access_token = secrets.token_urlsafe(128)
+	session_id = secrets.token_urlsafe(16)
 
-	set_session(access_token, session)
+	set_session(session_id, session)
 
-	assert validate_session(access_token) is True
+	assert validate_session(session_id) is True
 
-	clear_session(access_token)
+	clear_session(session_id)
 
-	assert validate_session(access_token) is None
+	assert validate_session(session_id) is None