[github/Chocobozzz/PeerTube.git] / server / models / oauth / oauth-token.ts

import {
  AfterDestroy,
  AfterUpdate,
  AllowNull,
  BelongsTo,
  Column,
  CreatedAt,
  ForeignKey,
  Model,
  Scopes,
  Table,
  UpdatedAt
} from 'sequelize-typescript'
import { logger } from '../../helpers/logger'
import { UserModel } from '../account/user'
import { OAuthClientModel } from './oauth-client'
import { Transaction } from 'sequelize'
import { AccountModel } from '../account/account'
import { ActorModel } from '../activitypub/actor'
import { clearCacheByToken } from '../../lib/oauth-model'
import * as Bluebird from 'bluebird'
import { MOAuthTokenUser } from '@server/typings/models/oauth/oauth-token'

export type OAuthTokenInfo = {
  refreshToken: string
  refreshTokenExpiresAt: Date
  client: {
    id: number
  }
  user: {
    id: number
  }
}

enum ScopeNames {
  WITH_USER = 'WITH_USER'
}

@Scopes(() => ({
  [ScopeNames.WITH_USER]: {
    include: [
      {
        model: UserModel.unscoped(),
        required: true,
        include: [
          {
            attributes: [ 'id' ],
            model: AccountModel.unscoped(),
            required: true,
            include: [
              {
                attributes: [ 'id', 'url' ],
                model: ActorModel.unscoped(),
                required: true
              }
            ]
          }
        ]
      }
    ]
  }
}))
@Table({
  tableName: 'oAuthToken',
  indexes: [
    {
      fields: [ 'refreshToken' ],
      unique: true
    },
    {
      fields: [ 'accessToken' ],
      unique: true
    },
    {
      fields: [ 'userId' ]
    },
    {
      fields: [ 'oAuthClientId' ]
    }
  ]
})
export class OAuthTokenModel extends Model<OAuthTokenModel> {

  @AllowNull(false)
  @Column
  accessToken: string

  @AllowNull(false)
  @Column
  accessTokenExpiresAt: Date

  @AllowNull(false)
  @Column
  refreshToken: string

  @AllowNull(false)
  @Column
  refreshTokenExpiresAt: Date

  @Column
  authName: string

  @CreatedAt
  createdAt: Date

  @UpdatedAt
  updatedAt: Date

  @ForeignKey(() => UserModel)
  @Column
  userId: number

  @BelongsTo(() => UserModel, {
    foreignKey: {
      allowNull: false
    },
    onDelete: 'cascade'
  })
  User: UserModel

  @ForeignKey(() => OAuthClientModel)
  @Column
  oAuthClientId: number

  @BelongsTo(() => OAuthClientModel, {
    foreignKey: {
      allowNull: false
    },
    onDelete: 'cascade'
  })
  OAuthClients: OAuthClientModel[]

  @AfterUpdate
  @AfterDestroy
  static removeTokenCache (token: OAuthTokenModel) {
    return clearCacheByToken(token.accessToken)
  }

  static getByRefreshTokenAndPopulateClient (refreshToken: string) {
    const query = {
      where: {
        refreshToken: refreshToken
      },
      include: [ OAuthClientModel ]
    }

    return OAuthTokenModel.findOne(query)
      .then(token => {
        if (!token) return null

        return {
          refreshToken: token.refreshToken,
          refreshTokenExpiresAt: token.refreshTokenExpiresAt,
          client: {
            id: token.oAuthClientId
          },
          user: {
            id: token.userId
          }
        } as OAuthTokenInfo
      })
      .catch(err => {
        logger.error('getRefreshToken error.', { err })
        throw err
      })
  }

  static getByTokenAndPopulateUser (bearerToken: string): Bluebird<MOAuthTokenUser> {
    const query = {
      where: {
        accessToken: bearerToken
      }
    }

    return OAuthTokenModel.scope(ScopeNames.WITH_USER)
                          .findOne(query)
                          .then(token => {
                            if (!token) return null

                            return Object.assign(token, { user: token.User })
                          })
  }

  static getByRefreshTokenAndPopulateUser (refreshToken: string): Bluebird<MOAuthTokenUser> {
    const query = {
      where: {
        refreshToken: refreshToken
      }
    }

    return OAuthTokenModel.scope(ScopeNames.WITH_USER)
      .findOne(query)
      .then(token => {
        if (!token) return new OAuthTokenModel()

        return Object.assign(token, { user: token.User })
      })
  }

  static deleteUserToken (userId: number, t?: Transaction) {
    const query = {
      where: {
        userId
      },
      transaction: t
    }

    return OAuthTokenModel.destroy(query)
  }
}
Commit	Line	Data
f201a749	1	import {
d175a6f7	2	AfterDestroy,
f201a749 C	3	AfterUpdate,
	4	AllowNull,
	5	BelongsTo,
	6	Column,
	7	CreatedAt,
	8	ForeignKey,
	9	Model,
	10	Scopes,
	11	Table,
	12	UpdatedAt
	13	} from 'sequelize-typescript'
da854ddd	14	import { logger } from '../../helpers/logger'
3fd3ab2d C	15	import { UserModel } from '../account/user'
3fd3ab2d C	16	import { OAuthClientModel } from './oauth-client'
e6921918	17	import { Transaction } from 'sequelize'
91411dba C	18	import { AccountModel } from '../account/account'
91411dba C	19	import { ActorModel } from '../activitypub/actor'
f201a749	20	import { clearCacheByToken } from '../../lib/oauth-model'
453e83ea C	21	import * as Bluebird from 'bluebird'
453e83ea C	22	import { MOAuthTokenUser } from '@server/typings/models/oauth/oauth-token'
3fd3ab2d C	23
	24	export type OAuthTokenInfo = {
	25	refreshToken: string
a1587156	26	refreshTokenExpiresAt: Date
3fd3ab2d C	27	client: {
3fd3ab2d C	28	id: number
a1587156	29	}
3fd3ab2d C	30	user: {
	31	id: number
	32	}
	33	}
2f372a86	34
d48ff09d	35	enum ScopeNames {
91411dba	36	WITH_USER = 'WITH_USER'
d48ff09d C	37	}
d48ff09d C	38
3acc5084	39	@Scopes(() => ({
91411dba	40	[ScopeNames.WITH_USER]: {
d48ff09d C	41	include: [
d48ff09d C	42	{
3acc5084	43	model: UserModel.unscoped(),
91411dba	44	required: true,
d48ff09d C	45	include: [
d48ff09d C	46	{
91411dba	47	attributes: [ 'id' ],
3acc5084	48	model: AccountModel.unscoped(),
91411dba C	49	required: true,
	50	include: [
	51	{
5c6d985f	52	attributes: [ 'id', 'url' ],
3acc5084	53	model: ActorModel.unscoped(),
91411dba C	54	required: true
	55	}
	56	]
d48ff09d C	57	}
	58	]
	59	}
3acc5084	60	]
d48ff09d	61	}
3acc5084	62	}))
3fd3ab2d C	63	@Table({
	64	tableName: 'oAuthToken',
	65	indexes: [
feb4bdfd	66	{
3fd3ab2d C	67	fields: [ 'refreshToken' ],
3fd3ab2d C	68	unique: true
feb4bdfd C	69	},
feb4bdfd C	70	{
3fd3ab2d C	71	fields: [ 'accessToken' ],
	72	unique: true
	73	},
	74	{
	75	fields: [ 'userId' ]
	76	},
	77	{
	78	fields: [ 'oAuthClientId' ]
feb4bdfd	79	}
3fd3ab2d C	80	]
	81	})
	82	export class OAuthTokenModel extends Model<OAuthTokenModel> {
feb4bdfd	83
3fd3ab2d C	84	@AllowNull(false)
	85	@Column
	86	accessToken: string
e02643f3	87
3fd3ab2d C	88	@AllowNull(false)
	89	@Column
	90	accessTokenExpiresAt: Date
e02643f3	91
3fd3ab2d C	92	@AllowNull(false)
	93	@Column
	94	refreshToken: string
69b0a27c	95
3fd3ab2d C	96	@AllowNull(false)
	97	@Column
	98	refreshTokenExpiresAt: Date
69b0a27c	99
e1c55031 C	100	@Column
	101	authName: string
	102
3fd3ab2d C	103	@CreatedAt
	104	createdAt: Date
	105
	106	@UpdatedAt
	107	updatedAt: Date
	108
	109	@ForeignKey(() => UserModel)
	110	@Column
	111	userId: number
	112
	113	@BelongsTo(() => UserModel, {
feb4bdfd	114	foreignKey: {
feb4bdfd C	115	allowNull: false
	116	},
	117	onDelete: 'cascade'
	118	})
3fd3ab2d	119	User: UserModel
319d072e	120
3fd3ab2d C	121	@ForeignKey(() => OAuthClientModel)
	122	@Column
	123	oAuthClientId: number
	124
	125	@BelongsTo(() => OAuthClientModel, {
319d072e	126	foreignKey: {
319d072e C	127	allowNull: false
	128	},
	129	onDelete: 'cascade'
	130	})
3fd3ab2d	131	OAuthClients: OAuthClientModel[]
feb4bdfd	132
f201a749	133	@AfterUpdate
d175a6f7	134	@AfterDestroy
f201a749 C	135	static removeTokenCache (token: OAuthTokenModel) {
	136	return clearCacheByToken(token.accessToken)
	137	}
	138
3fd3ab2d C	139	static getByRefreshTokenAndPopulateClient (refreshToken: string) {
	140	const query = {
	141	where: {
	142	refreshToken: refreshToken
	143	},
	144	include: [ OAuthClientModel ]
	145	}
	146
	147	return OAuthTokenModel.findOne(query)
	148	.then(token => {
	149	if (!token) return null
	150
	151	return {
	152	refreshToken: token.refreshToken,
	153	refreshTokenExpiresAt: token.refreshTokenExpiresAt,
	154	client: {
	155	id: token.oAuthClientId
	156	},
	157	user: {
	158	id: token.userId
	159	}
	160	} as OAuthTokenInfo
	161	})
	162	.catch(err => {
e6921918	163	logger.error('getRefreshToken error.', { err })
3fd3ab2d C	164	throw err
3fd3ab2d C	165	})
feb4bdfd C	166	}
feb4bdfd C	167
453e83ea	168	static getByTokenAndPopulateUser (bearerToken: string): Bluebird<MOAuthTokenUser> {
3fd3ab2d C	169	const query = {
	170	where: {
	171	accessToken: bearerToken
d48ff09d	172	}
3fd3ab2d	173	}
2f372a86	174
3acc5084 C	175	return OAuthTokenModel.scope(ScopeNames.WITH_USER)
	176	.findOne(query)
	177	.then(token => {
453e83ea	178	if (!token) return null
69b0a27c	179
453e83ea	180	return Object.assign(token, { user: token.User })
3acc5084	181	})
feb4bdfd C	182	}
feb4bdfd C	183
453e83ea	184	static getByRefreshTokenAndPopulateUser (refreshToken: string): Bluebird<MOAuthTokenUser> {
3fd3ab2d C	185	const query = {
	186	where: {
	187	refreshToken: refreshToken
d48ff09d	188	}
3fd3ab2d	189	}
feb4bdfd	190
91411dba	191	return OAuthTokenModel.scope(ScopeNames.WITH_USER)
d48ff09d C	192	.findOne(query)
d48ff09d C	193	.then(token => {
453e83ea C	194	if (!token) return new OAuthTokenModel()
	195
	196	return Object.assign(token, { user: token.User })
d48ff09d	197	})
feb4bdfd	198	}
f8b8c36b	199
e6921918	200	static deleteUserToken (userId: number, t?: Transaction) {
f8b8c36b C	201	const query = {
	202	where: {
	203	userId
e6921918 C	204	},
e6921918 C	205	transaction: t
f8b8c36b C	206	}
	207
	208	return OAuthTokenModel.destroy(query)
	209	}
2f372a86	210	}