Add pre-expiration callback for auditing and custom logic in connect-mssql-v2

[Greensahil]

Is your feature request related to a problem? Please describe. Yes, the problem is related to the lack of a callback or hook that is invoked immediately before a session expires and is deleted from the database. Currently, the connect-mssql-v2 library provides the autoRemoveCallback option, which is triggered after the expired sessions are deleted. However, there is no way to execute custom logic or perform necessary actions, such as auditing, right before the session expiration process begins.

Describe the solution you'd like The desired solution is to add support for a callback function that is invoked just before the session expiration process starts. This callback should be configurable through a new option, such as beforeExpireCallback, which accepts a function.

The destroyExpired method should be modified to execute the beforeExpireCallback (if provided) before running the delete query on the sessions table. The callback should receive relevant information, such as the session ID or session data, to allow for custom logic based on the expiring session.

Describe alternatives you've considered Another alternative is to use a separate cron job or background process to query the sessions table, identify expiring sessions, and perform custom actions before deleting them. However, this approach can be complex to set up and maintain, and it may introduce race conditions if the session is modified or extended after being identified as expired.

Additional context In my application, I implement auditing functionality to track important user actions, such as sign-ins and sign-outs, by writing relevant information to an audit table. However, when a session expires automatically due to inactivity or reaching the expiration time, this library directly deletes the session data from the database without providing any hooks or callbacks that allow me to perform auditing or other necessary actions before or after the session expiration.

[bradtaniguchi]

Hello, thanks for opening up the issue.

I'll wait for @JLuboff to get back on this one, but I'll throw out my interpretation first.

I agree, there appears to be a gap in functionality, where the autoRemoveCallback is executed after the removal already occurred. Its my understanding you'd want a hook, something like "preRemoveCallback" which is called before the delete is execute. I'm not sure if any returned values could/should be used to possibly change the behavior of the actual executor (of it that even makes sense here) but I believe adding something that is called before the removal occurs, (and is waited for) makes sense.

Again though, want to get @JLuboff opinion on it 👍🏼

[Greensahil]

@bradtaniguchi thanks for the prompt response! Yes, I agree with you. I personally do not see a need for a return value. Like you said a function like preRemoveCallback would be really helpful.

[JLuboff]

@Greensahil Firstly, I apologize for the late response, I was out of town and then busy catching up at work. Secondly, thank you for bringing up this issue. I can definitely aim to get something like this added in just not positive when I would be able to get to it (I can at least commit to within the month...). Is this something you'd want to open a PR for? We're always happy to have contributors :D

[bradtaniguchi]

I was able to start on a fix a week or so back when this issue was created. I think this is good, but I forget how testing works in this repo so no unit tests are included.

[JLuboff]

@Greensahil Just giving you a heads up, v5.1.0 just released and @bradtaniguchi was able to add the preRemoveCallback!

[Greensahil]

Thank you @bradtaniguchi and @JLuboff for making this possible!! I am excited to use this new version.