npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

com.deucarian.session

v1.0.2

Published

A standalone Unity package for storing, restoring, refreshing, and observing authenticated session state.

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Git

Maintainers

jorishoefjorishoef

Keywords

sessionauthenticationauthtokenloginunity

Readme

Deucarian Session

Overview

Deucarian Session is a standalone Unity UPM package for authenticated session lifecycle management.

It stores the current session, restores saved sessions on app start, supports backend-specific login and refresh flows through small interfaces, and notifies listeners when session data or calculated session state changes.

Package ID: com.deucarian.session

Installation

Install the package through Unity Package Manager with a Git URL:

{
  "dependencies": {
    "com.deucarian.session": "https://github.com/Deucarian/Session.git#main"
  }
}

For development builds, use:

"com.deucarian.session": "https://github.com/Deucarian/Session.git#develop"

The package requires Unity 2021.3 or newer and depends on com.deucarian.logging and com.unity.modules.jsonserialize.

Logging

This package uses com.deucarian.logging.

Deucarian Session diagnostics use stable package categories: Session, Session.Authentication, Session.Storage, and Session.Samples. Configure Deucarian Logging filters by category and level to isolate authentication, persistence, or sample output. Entries flow through the shared ring buffer for recent-diagnostic inspection and remain compatible with future telemetry sinks.

Core Concepts

SessionService coordinates restore, login, refresh, logout, state calculation, persistence, and change events.

SessionData is immutable token data: access token, optional refresh token, and optional UTC access-token expiry.

ISessionStore abstracts persistence. The package includes InMemorySessionStore and PlayerPrefsSessionStore.

ISessionLoginService<TLoginRequest> and ISessionRefreshService are application-specific backend adapters. Session does not assume one login request shape or backend response shape.

SessionResult wraps successful session operations or a SessionError with a stable code, message, and optional exception.

Public API

  • ISessionService: login, logout, restore, refresh, current session, state checks, and SessionChanged.
  • SessionService: default service implementation.
  • SessionData: access token, refresh token, expiry, and expiry helper methods.
  • SessionState: Unauthenticated, Authenticated, or Expired.
  • SessionChangedEventArgs and SessionChangeReason: change event details.
  • ISessionStore: persistence contract.
  • InMemorySessionStore: memory-only store for tests, tools, or temporary sessions.
  • PlayerPrefsSessionStore: simple PlayerPrefs-backed store.
  • ISessionLoginService<TLoginRequest>: backend login adapter.
  • ISessionRefreshService: backend refresh adapter.
  • SessionRefreshFailurePolicy: preserve or clear the current session after failed refresh.
  • SessionResult and SessionError: operation result and failure details.

Standalone workflow:

using System;
using System.Threading;
using System.Threading.Tasks;
using Deucarian.Session;

public sealed class LoginRequest
{
    public string Username;
    public string Password;
}

public sealed class MyLoginService : ISessionLoginService<LoginRequest>
{
    public async Task<SessionResult> LoginAsync(
        LoginRequest request,
        CancellationToken cancellationToken)
    {
        await Task.Yield();

        return SessionResult.Success(
            new SessionData(
                accessToken: "access-token",
                refreshToken: "refresh-token",
                expiresAtUtc: DateTimeOffset.UtcNow.AddMinutes(30)));
    }
}

Create and use a session service:

var store = new PlayerPrefsSessionStore("my-game.session");
var refreshService = new MyRefreshService();
var sessionService = new SessionService(
    store,
    refreshService,
    expiryLeeway: TimeSpan.FromMinutes(2),
    refreshFailurePolicy: SessionRefreshFailurePolicy.PreserveSession);

sessionService.SessionChanged += (sender, args) =>
{
    SessionLog.General.Info(args.Reason + ": " + args.PreviousState + " -> " + args.CurrentState);
};

await sessionService.RestoreAsync();

if (!sessionService.IsAuthenticated)
{
    await sessionService.LoginAsync(new LoginRequest(), new MyLoginService());
}

if (sessionService.IsAccessTokenExpiringSoon)
{
    await sessionService.RefreshAsync();
}

IsAuthenticated is true only when an access token exists and is not expired. A session without an expiry time is treated as authenticated until it is explicitly cleared or replaced.

Refresh Failure Policy

SessionRefreshFailurePolicy.PreserveSession keeps the current session if refresh fails. This is useful when the current token may still be accepted.

SessionRefreshFailurePolicy.ClearSession clears the store and in-memory state if refresh fails. This is useful when a failed refresh means the user must authenticate again.

Storage

Use InMemorySessionStore for tests, tools, or sessions that should disappear when the app closes.

Use PlayerPrefsSessionStore for simple local persistence:

var store = new PlayerPrefsSessionStore("com.example.game.session");

For production apps, consider implementing ISessionStore with platform-secure storage if tokens need stronger protection than PlayerPrefs.

Samples

The package contains one sample entry.

Basic Session Usage:

  • Path: Samples~/BasicUsage
  • Scene: BasicUsage.unity
  • Scripts: SessionSampleController, FakeSessionLoginService, FakeSessionRefreshService, and FakeLoginRequest

Open the scene and enter Play Mode. The sample uses IMGUI buttons for fake login, restore, refresh, logout, and clearing the persisted sample store.

Integration Packages

Session core is standalone and does not include API assemblies or integration code.

API support lives in a separate integration package:

com.deucarian.session.api-integration

Install that package when a Unity project needs to pass Session tokens to API. No scripting define symbol is needed in this core package.

Versioning

Current package version: 1.0.2.

Branch strategy:

  • main: stable package branch.
  • develop: development package branch.

Use branch refs for active development and stable release tags when tags are available.

Limitations

  • Session does not include backend HTTP calls. Implement login and refresh services for your backend.
  • PlayerPrefsSessionStore is convenient but not secure token storage. Use a custom ISessionStore for stronger protection.
  • The package does not run an automatic background refresh loop.
  • The package does not include runtime UI beyond samples.
  • API integration code is not part of this package. Use com.deucarian.session.api-integration for that adapter.