X-Git-Url: https://git.immae.eu/?a=blobdiff_plain;f=server%2Fmodels%2Foauth%2Foauth-token.ts;h=f72423190ed54e523bc2e422ed8680482df0bdd7;hb=92e66e04f7f51d37b465cff442ce47f6d6d7cadd;hp=1dd5e02891ebedd98d3da04f2287cf967d5777f7;hpb=91411dba928678c15a5e99d9795ae061909e397d;p=github%2FChocobozzz%2FPeerTube.git diff --git a/server/models/oauth/oauth-token.ts b/server/models/oauth/oauth-token.ts index 1dd5e0289..f72423190 100644 --- a/server/models/oauth/oauth-token.ts +++ b/server/models/oauth/oauth-token.ts @@ -1,41 +1,56 @@ -import { AllowNull, BelongsTo, Column, CreatedAt, ForeignKey, Model, Scopes, Table, UpdatedAt } from 'sequelize-typescript' -import { logger } from '../../helpers/logger' -import { UserModel } from '../account/user' -import { OAuthClientModel } from './oauth-client' import { Transaction } from 'sequelize' +import { + AfterDestroy, + AfterUpdate, + AllowNull, + BelongsTo, + Column, + CreatedAt, + ForeignKey, + Model, + Scopes, + Table, + UpdatedAt +} from 'sequelize-typescript' +import { TokensCache } from '@server/lib/auth/tokens-cache' +import { MUserAccountId } from '@server/types/models' +import { MOAuthTokenUser } from '@server/types/models/oauth/oauth-token' +import { AttributesOnly } from '@shared/typescript-utils' +import { logger } from '../../helpers/logger' import { AccountModel } from '../account/account' -import { ActorModel } from '../activitypub/actor' +import { ActorModel } from '../actor/actor' +import { UserModel } from '../user/user' +import { OAuthClientModel } from './oauth-client' export type OAuthTokenInfo = { refreshToken: string - refreshTokenExpiresAt: Date, + refreshTokenExpiresAt: Date client: { id: number - }, - user: { - id: number } + user: MUserAccountId + token: MOAuthTokenUser } enum ScopeNames { WITH_USER = 'WITH_USER' } -@Scopes({ +@Scopes(() => ({ [ScopeNames.WITH_USER]: { include: [ { - model: () => UserModel.unscoped(), + model: UserModel.unscoped(), required: true, include: [ { attributes: [ 'id' ], - model: () => AccountModel.unscoped(), + model: AccountModel.unscoped(), required: true, include: [ { - attributes: [ 'id' ], - model: () => ActorModel.unscoped(), + attributes: [ 'id', 'url' ], + model: ActorModel.unscoped(), required: true } ] @@ -44,7 +59,7 @@ enum ScopeNames { } ] } -}) +})) @Table({ tableName: 'oAuthToken', indexes: [ @@ -64,7 +79,7 @@ enum ScopeNames { } ] }) -export class OAuthTokenModel extends Model { +export class OAuthTokenModel extends Model>> { @AllowNull(false) @Column @@ -82,6 +97,9 @@ export class OAuthTokenModel extends Model { @Column refreshTokenExpiresAt: Date + @Column + authName: string + @CreatedAt createdAt: Date @@ -112,69 +130,84 @@ export class OAuthTokenModel extends Model { }) OAuthClients: OAuthClientModel[] + @AfterUpdate + @AfterDestroy + static removeTokenCache (token: OAuthTokenModel) { + return TokensCache.Instance.clearCacheByToken(token.accessToken) + } + + static loadByRefreshToken (refreshToken: string) { + const query = { + where: { refreshToken } + } + + return OAuthTokenModel.findOne(query) + } + static getByRefreshTokenAndPopulateClient (refreshToken: string) { const query = { where: { - refreshToken: refreshToken + refreshToken }, include: [ OAuthClientModel ] } - return OAuthTokenModel.findOne(query) - .then(token => { - if (!token) return null - - return { - refreshToken: token.refreshToken, - refreshTokenExpiresAt: token.refreshTokenExpiresAt, - client: { - id: token.oAuthClientId - }, - user: { - id: token.userId - } - } as OAuthTokenInfo - }) - .catch(err => { - logger.error('getRefreshToken error.', { err }) - throw err - }) + return OAuthTokenModel.scope(ScopeNames.WITH_USER) + .findOne(query) + .then(token => { + if (!token) return null + + return { + refreshToken: token.refreshToken, + refreshTokenExpiresAt: token.refreshTokenExpiresAt, + client: { + id: token.oAuthClientId + }, + user: token.User, + token + } as OAuthTokenInfo + }) + .catch(err => { + logger.error('getRefreshToken error.', { err }) + throw err + }) } - static getByTokenAndPopulateUser (bearerToken: string) { + static getByTokenAndPopulateUser (bearerToken: string): Promise { const query = { where: { accessToken: bearerToken } } - return OAuthTokenModel.scope(ScopeNames.WITH_USER).findOne(query).then(token => { - if (token) token['user'] = token.User + return OAuthTokenModel.scope(ScopeNames.WITH_USER) + .findOne(query) + .then(token => { + if (!token) return null - return token - }) + return Object.assign(token, { user: token.User }) + }) } - static getByRefreshTokenAndPopulateUser (refreshToken: string) { + static getByRefreshTokenAndPopulateUser (refreshToken: string): Promise { const query = { where: { - refreshToken: refreshToken + refreshToken } } return OAuthTokenModel.scope(ScopeNames.WITH_USER) .findOne(query) .then(token => { - if (token) { - token['user'] = token.User - return token - } else { - return new OAuthTokenModel() - } + if (!token) return undefined + + return Object.assign(token, { user: token.User }) }) } static deleteUserToken (userId: number, t?: Transaction) { + TokensCache.Instance.deleteUserToken(userId) + const query = { where: { userId