]>
Commit | Line | Data |
---|---|---|
f201a749 | 1 | import { |
d175a6f7 | 2 | AfterDestroy, |
f201a749 C |
3 | AfterUpdate, |
4 | AllowNull, | |
5 | BelongsTo, | |
6 | Column, | |
7 | CreatedAt, | |
8 | ForeignKey, | |
9 | Model, | |
10 | Scopes, | |
11 | Table, | |
12 | UpdatedAt | |
13 | } from 'sequelize-typescript' | |
da854ddd | 14 | import { logger } from '../../helpers/logger' |
3fd3ab2d C |
15 | import { UserModel } from '../account/user' |
16 | import { OAuthClientModel } from './oauth-client' | |
e6921918 | 17 | import { Transaction } from 'sequelize' |
91411dba C |
18 | import { AccountModel } from '../account/account' |
19 | import { ActorModel } from '../activitypub/actor' | |
f201a749 | 20 | import { clearCacheByToken } from '../../lib/oauth-model' |
453e83ea C |
21 | import * as Bluebird from 'bluebird' |
22 | import { MOAuthTokenUser } from '@server/typings/models/oauth/oauth-token' | |
3fd3ab2d C |
23 | |
24 | export type OAuthTokenInfo = { | |
25 | refreshToken: string | |
a1587156 | 26 | refreshTokenExpiresAt: Date |
3fd3ab2d C |
27 | client: { |
28 | id: number | |
a1587156 | 29 | } |
3fd3ab2d C |
30 | user: { |
31 | id: number | |
32 | } | |
33 | } | |
2f372a86 | 34 | |
d48ff09d | 35 | enum ScopeNames { |
91411dba | 36 | WITH_USER = 'WITH_USER' |
d48ff09d C |
37 | } |
38 | ||
3acc5084 | 39 | @Scopes(() => ({ |
91411dba | 40 | [ScopeNames.WITH_USER]: { |
d48ff09d C |
41 | include: [ |
42 | { | |
3acc5084 | 43 | model: UserModel.unscoped(), |
91411dba | 44 | required: true, |
d48ff09d C |
45 | include: [ |
46 | { | |
91411dba | 47 | attributes: [ 'id' ], |
3acc5084 | 48 | model: AccountModel.unscoped(), |
91411dba C |
49 | required: true, |
50 | include: [ | |
51 | { | |
5c6d985f | 52 | attributes: [ 'id', 'url' ], |
3acc5084 | 53 | model: ActorModel.unscoped(), |
91411dba C |
54 | required: true |
55 | } | |
56 | ] | |
d48ff09d C |
57 | } |
58 | ] | |
59 | } | |
3acc5084 | 60 | ] |
d48ff09d | 61 | } |
3acc5084 | 62 | })) |
3fd3ab2d C |
63 | @Table({ |
64 | tableName: 'oAuthToken', | |
65 | indexes: [ | |
feb4bdfd | 66 | { |
3fd3ab2d C |
67 | fields: [ 'refreshToken' ], |
68 | unique: true | |
feb4bdfd C |
69 | }, |
70 | { | |
3fd3ab2d C |
71 | fields: [ 'accessToken' ], |
72 | unique: true | |
73 | }, | |
74 | { | |
75 | fields: [ 'userId' ] | |
76 | }, | |
77 | { | |
78 | fields: [ 'oAuthClientId' ] | |
feb4bdfd | 79 | } |
3fd3ab2d C |
80 | ] |
81 | }) | |
82 | export class OAuthTokenModel extends Model<OAuthTokenModel> { | |
feb4bdfd | 83 | |
3fd3ab2d C |
84 | @AllowNull(false) |
85 | @Column | |
86 | accessToken: string | |
e02643f3 | 87 | |
3fd3ab2d C |
88 | @AllowNull(false) |
89 | @Column | |
90 | accessTokenExpiresAt: Date | |
e02643f3 | 91 | |
3fd3ab2d C |
92 | @AllowNull(false) |
93 | @Column | |
94 | refreshToken: string | |
69b0a27c | 95 | |
3fd3ab2d C |
96 | @AllowNull(false) |
97 | @Column | |
98 | refreshTokenExpiresAt: Date | |
69b0a27c | 99 | |
e1c55031 C |
100 | @Column |
101 | authName: string | |
102 | ||
3fd3ab2d C |
103 | @CreatedAt |
104 | createdAt: Date | |
105 | ||
106 | @UpdatedAt | |
107 | updatedAt: Date | |
108 | ||
109 | @ForeignKey(() => UserModel) | |
110 | @Column | |
111 | userId: number | |
112 | ||
113 | @BelongsTo(() => UserModel, { | |
feb4bdfd | 114 | foreignKey: { |
feb4bdfd C |
115 | allowNull: false |
116 | }, | |
117 | onDelete: 'cascade' | |
118 | }) | |
3fd3ab2d | 119 | User: UserModel |
319d072e | 120 | |
3fd3ab2d C |
121 | @ForeignKey(() => OAuthClientModel) |
122 | @Column | |
123 | oAuthClientId: number | |
124 | ||
125 | @BelongsTo(() => OAuthClientModel, { | |
319d072e | 126 | foreignKey: { |
319d072e C |
127 | allowNull: false |
128 | }, | |
129 | onDelete: 'cascade' | |
130 | }) | |
3fd3ab2d | 131 | OAuthClients: OAuthClientModel[] |
feb4bdfd | 132 | |
f201a749 | 133 | @AfterUpdate |
d175a6f7 | 134 | @AfterDestroy |
f201a749 C |
135 | static removeTokenCache (token: OAuthTokenModel) { |
136 | return clearCacheByToken(token.accessToken) | |
137 | } | |
138 | ||
3fd3ab2d C |
139 | static getByRefreshTokenAndPopulateClient (refreshToken: string) { |
140 | const query = { | |
141 | where: { | |
142 | refreshToken: refreshToken | |
143 | }, | |
144 | include: [ OAuthClientModel ] | |
145 | } | |
146 | ||
147 | return OAuthTokenModel.findOne(query) | |
148 | .then(token => { | |
149 | if (!token) return null | |
150 | ||
151 | return { | |
152 | refreshToken: token.refreshToken, | |
153 | refreshTokenExpiresAt: token.refreshTokenExpiresAt, | |
154 | client: { | |
155 | id: token.oAuthClientId | |
156 | }, | |
157 | user: { | |
158 | id: token.userId | |
159 | } | |
160 | } as OAuthTokenInfo | |
161 | }) | |
162 | .catch(err => { | |
e6921918 | 163 | logger.error('getRefreshToken error.', { err }) |
3fd3ab2d C |
164 | throw err |
165 | }) | |
feb4bdfd C |
166 | } |
167 | ||
453e83ea | 168 | static getByTokenAndPopulateUser (bearerToken: string): Bluebird<MOAuthTokenUser> { |
3fd3ab2d C |
169 | const query = { |
170 | where: { | |
171 | accessToken: bearerToken | |
d48ff09d | 172 | } |
3fd3ab2d | 173 | } |
2f372a86 | 174 | |
3acc5084 C |
175 | return OAuthTokenModel.scope(ScopeNames.WITH_USER) |
176 | .findOne(query) | |
177 | .then(token => { | |
453e83ea | 178 | if (!token) return null |
69b0a27c | 179 | |
453e83ea | 180 | return Object.assign(token, { user: token.User }) |
3acc5084 | 181 | }) |
feb4bdfd C |
182 | } |
183 | ||
453e83ea | 184 | static getByRefreshTokenAndPopulateUser (refreshToken: string): Bluebird<MOAuthTokenUser> { |
3fd3ab2d C |
185 | const query = { |
186 | where: { | |
187 | refreshToken: refreshToken | |
d48ff09d | 188 | } |
3fd3ab2d | 189 | } |
feb4bdfd | 190 | |
91411dba | 191 | return OAuthTokenModel.scope(ScopeNames.WITH_USER) |
d48ff09d C |
192 | .findOne(query) |
193 | .then(token => { | |
453e83ea C |
194 | if (!token) return new OAuthTokenModel() |
195 | ||
196 | return Object.assign(token, { user: token.User }) | |
d48ff09d | 197 | }) |
feb4bdfd | 198 | } |
f8b8c36b | 199 | |
e6921918 | 200 | static deleteUserToken (userId: number, t?: Transaction) { |
f8b8c36b C |
201 | const query = { |
202 | where: { | |
203 | userId | |
e6921918 C |
204 | }, |
205 | transaction: t | |
f8b8c36b C |
206 | } |
207 | ||
208 | return OAuthTokenModel.destroy(query) | |
209 | } | |
2f372a86 | 210 | } |