cache user objects in session to reduce database hits. however, we need to move mediumtext fields away from the users table before adopting this

Author: rizen

lib/Wing/Role/Result/User.pm

@@ -605,6 +605,12 @@ sub generate_password_reset_code {
     return $code;
 }
 
+after update => sub {
+    my $self = shift;
+    # Mark that this user has changed so sessions can update their cached data
+    Wing->cache->set('user-changed-'.$self->id, 1, 60 * 60 * 24 * 7); # cache for 7 days
+};
+
 before delete => sub {
     my $self = shift;
     $self->apikeypermissions->delete_all;
@@ -631,4 +637,31 @@ sub determine_avatar_uri {
     }
 }
 
+sub user_to_json {
+    my $self = shift;
+    my $data = {};
+    
+    foreach my $column ($self->result_source->columns) {
+        my $value = $self->$column;
+        if (defined $value && ref($value) eq 'DateTime') {
+            $data->{$column} = Wing->to_mysql($value);
+        }
+        else {
+            $data->{$column} = $value;
+        }
+    }
+    
+    return $data;
+}
+
+sub user_from_json {
+    my ($class, $db, $data) = @_;
+    
+    # Create a new user object with the data
+    my $user = $db->resultset('User')->new($data);
+    $user->in_storage(1);
+    
+    return $user;
+}
+
 1;

lib/Wing/Session.pm

@@ -94,6 +94,22 @@ has user => (
     default     => sub {
         my $self = shift;
         return undef unless $self->has_user_id;
+        
+        # Check if we have cached user data first
+        my $session_data = Wing->cache->get($self->key);
+        if (defined $session_data && ref $session_data eq 'HASH' && 
+            exists $session_data->{user_data} && defined $session_data->{user_data}) {
+            # Recreate user object from cached data
+            eval {
+                my $user = Wing::DB::Result::User->user_from_json($self->db, $session_data->{user_data});
+                if ($user && !$user->permanently_deactivated) {
+                    $user->current_session($self);
+                    return $user;
+                }
+            };
+        }
+        
+        # Fall back to database lookup
         my $user = $self->db->resultset('User')->find($self->user_id);
         if (defined $user && ! $user->permanently_deactivated) {
             $user->current_session($self);
@@ -132,6 +148,34 @@ sub check_permissions {
 
 sub extend {
     my $self = shift;
+    
+    # Check if user data has changed
+    my $user_changed_key = 'user-changed-' . $self->user_id;
+    if (Wing->cache->get($user_changed_key)) {
+        # User data has changed, need to refresh
+        my $user = $self->db->resultset('User')->find($self->user_id);
+        
+        if (!defined $user || $user->permanently_deactivated) {
+            # User no longer exists or is deactivated
+            $self->end;
+        }
+        
+        # Check if password has changed
+        elsif ($self->password_hash ne $user->password) {
+            Wing->log->debug("SESSION: Password changed for user id:". $self->user_id . ", ending session");
+            $self->end;
+        }
+        
+        # Password hasn't changed, update the cached user data
+        else {
+            $user->current_session($self);
+            $self->user($user);
+            $self->clear_user; # Clear the cached user attribute so it will reload
+        }
+        # Remove the user-changed marker
+        Wing->cache->remove($user_changed_key);
+    }
+    
     if ($self->password_hash ne $self->user->password) {
         Wing->log->debug("SESSION: Password hashes do not match, ending session for user id:". $self->user->id);
         Wing->log->debug("SESSION: Password hash sample: ".substr($self->password_hash,0,5));
@@ -150,6 +194,7 @@ sub extend {
             api_key_id  => $self->api_key_id,
             ip_address  => $self->ip_address,
             session_id  => $self->id,
+            user_data   => $self->user->user_to_json,
         },
         60 * 60 * 24 * 7,
     );