X-Git-Url: https://git.immae.eu/?a=blobdiff_plain;f=server%2Fmodels%2Foauth%2Foauth-token.ts;h=7f2313dad169588ca1f8a875acf438e7c3f729b9;hb=26d6bf6533023326fa017812cf31bbe20c752d36;hp=a0a13aab73ca455c22e1f2415c3a881854d0ba56;hpb=ad0997adfb9e1e3b1ff54338d7558cf7b18440ea;p=github%2FChocobozzz%2FPeerTube.git diff --git a/server/models/oauth/oauth-token.ts b/server/models/oauth/oauth-token.ts index a0a13aab7..7f2313dad 100644 --- a/server/models/oauth/oauth-token.ts +++ b/server/models/oauth/oauth-token.ts @@ -1,159 +1,219 @@ -import * as Sequelize from 'sequelize' - -import { logger } from '../../helpers' - -import { addMethodsToModel } from '../utils' import { - OAuthTokenInstance, - OAuthTokenAttributes, - - OAuthTokenMethods, - OAuthTokenInfo -} from './oauth-token-interface' + AfterDestroy, + AfterUpdate, + AllowNull, + BelongsTo, + Column, + CreatedAt, + ForeignKey, + Model, + Scopes, + Table, + UpdatedAt +} from 'sequelize-typescript' +import { logger } from '../../helpers/logger' +import { UserModel } from '../account/user' +import { OAuthClientModel } from './oauth-client' +import { Transaction } from 'sequelize' +import { AccountModel } from '../account/account' +import { ActorModel } from '../activitypub/actor' +import { clearCacheByToken } from '../../lib/oauth-model' +import * as Bluebird from 'bluebird' +import { MOAuthTokenUser } from '@server/types/models/oauth/oauth-token' + +export type OAuthTokenInfo = { + refreshToken: string + refreshTokenExpiresAt: Date + client: { + id: number + } + user: { + id: number + } + token: MOAuthTokenUser +} -let OAuthToken: Sequelize.Model -let getByRefreshTokenAndPopulateClient: OAuthTokenMethods.GetByRefreshTokenAndPopulateClient -let getByTokenAndPopulateUser: OAuthTokenMethods.GetByTokenAndPopulateUser -let getByRefreshTokenAndPopulateUser: OAuthTokenMethods.GetByRefreshTokenAndPopulateUser -let removeByUserId: OAuthTokenMethods.RemoveByUserId +enum ScopeNames { + WITH_USER = 'WITH_USER' +} -export default function (sequelize: Sequelize.Sequelize, DataTypes: Sequelize.DataTypes) { - OAuthToken = sequelize.define('OAuthToken', - { - accessToken: { - type: DataTypes.STRING, - allowNull: false - }, - accessTokenExpiresAt: { - type: DataTypes.DATE, - allowNull: false - }, - refreshToken: { - type: DataTypes.STRING, - allowNull: false - }, - refreshTokenExpiresAt: { - type: DataTypes.DATE, - allowNull: false +@Scopes(() => ({ + [ScopeNames.WITH_USER]: { + include: [ + { + model: UserModel.unscoped(), + required: true, + include: [ + { + attributes: [ 'id' ], + model: AccountModel.unscoped(), + required: true, + include: [ + { + attributes: [ 'id', 'url' ], + model: ActorModel.unscoped(), + required: true + } + ] + } + ] } + ] + } +})) +@Table({ + tableName: 'oAuthToken', + indexes: [ + { + fields: [ 'refreshToken' ], + unique: true }, { - indexes: [ - { - fields: [ 'refreshToken' ], - unique: true - }, - { - fields: [ 'accessToken' ], - unique: true - }, - { - fields: [ 'userId' ] - }, - { - fields: [ 'oAuthClientId' ] - } - ] + fields: [ 'accessToken' ], + unique: true + }, + { + fields: [ 'userId' ] + }, + { + fields: [ 'oAuthClientId' ] } - ) + ] +}) +export class OAuthTokenModel extends Model { - const classMethods = [ - associate, + @AllowNull(false) + @Column + accessToken: string - getByRefreshTokenAndPopulateClient, - getByTokenAndPopulateUser, - getByRefreshTokenAndPopulateUser, - removeByUserId - ] - addMethodsToModel(OAuthToken, classMethods) + @AllowNull(false) + @Column + accessTokenExpiresAt: Date - return OAuthToken -} + @AllowNull(false) + @Column + refreshToken: string + + @AllowNull(false) + @Column + refreshTokenExpiresAt: Date + + @Column + authName: string -// --------------------------------------------------------------------------- + @CreatedAt + createdAt: Date -function associate (models) { - OAuthToken.belongsTo(models.User, { + @UpdatedAt + updatedAt: Date + + @ForeignKey(() => UserModel) + @Column + userId: number + + @BelongsTo(() => UserModel, { foreignKey: { - name: 'userId', allowNull: false }, onDelete: 'cascade' }) + User: UserModel + + @ForeignKey(() => OAuthClientModel) + @Column + oAuthClientId: number - OAuthToken.belongsTo(models.OAuthClient, { + @BelongsTo(() => OAuthClientModel, { foreignKey: { - name: 'oAuthClientId', allowNull: false }, onDelete: 'cascade' }) -} + OAuthClients: OAuthClientModel[] -getByRefreshTokenAndPopulateClient = function (refreshToken: string) { - const query = { - where: { - refreshToken: refreshToken - }, - include: [ OAuthToken['sequelize'].models.OAuthClient ] + @AfterUpdate + @AfterDestroy + static removeTokenCache (token: OAuthTokenModel) { + return clearCacheByToken(token.accessToken) } - return OAuthToken.findOne(query).then(function (token) { - if (!token) return null + static loadByRefreshToken (refreshToken: string) { + const query = { + where: { refreshToken } + } + + return OAuthTokenModel.findOne(query) + } - const tokenInfos: OAuthTokenInfo = { - refreshToken: token.refreshToken, - refreshTokenExpiresAt: token.refreshTokenExpiresAt, - client: { - id: token['client'].id + static getByRefreshTokenAndPopulateClient (refreshToken: string) { + const query = { + where: { + refreshToken }, - user: { - id: token['user'] - } + include: [ OAuthClientModel ] } - return tokenInfos - }).catch(function (err) { - logger.info('getRefreshToken error.', err) - }) -} - -getByTokenAndPopulateUser = function (bearerToken: string) { - const query = { - where: { - accessToken: bearerToken - }, - include: [ OAuthToken['sequelize'].models.User ] + return OAuthTokenModel.scope(ScopeNames.WITH_USER) + .findOne(query) + .then(token => { + if (!token) return null + + return { + refreshToken: token.refreshToken, + refreshTokenExpiresAt: token.refreshTokenExpiresAt, + client: { + id: token.oAuthClientId + }, + user: token.User, + token + } as OAuthTokenInfo + }) + .catch(err => { + logger.error('getRefreshToken error.', { err }) + throw err + }) } - return OAuthToken.findOne(query).then(function (token) { - if (token) token['user'] = token.User + static getByTokenAndPopulateUser (bearerToken: string): Bluebird { + const query = { + where: { + accessToken: bearerToken + } + } - return token - }) -} + return OAuthTokenModel.scope(ScopeNames.WITH_USER) + .findOne(query) + .then(token => { + if (!token) return null -getByRefreshTokenAndPopulateUser = function (refreshToken: string) { - const query = { - where: { - refreshToken: refreshToken - }, - include: [ OAuthToken['sequelize'].models.User ] + return Object.assign(token, { user: token.User }) + }) } - return OAuthToken.findOne(query).then(function (token) { - token['user'] = token.User + static getByRefreshTokenAndPopulateUser (refreshToken: string): Bluebird { + const query = { + where: { + refreshToken + } + } - return token - }) -} + return OAuthTokenModel.scope(ScopeNames.WITH_USER) + .findOne(query) + .then(token => { + if (!token) return undefined -removeByUserId = function (userId: number) { - const query = { - where: { - userId: userId - } + return Object.assign(token, { user: token.User }) + }) } - return OAuthToken.destroy(query) + static deleteUserToken (userId: number, t?: Transaction) { + const query = { + where: { + userId + }, + transaction: t + } + + return OAuthTokenModel.destroy(query) + } }