1 files changed, 40 insertions, 0 deletions
diff --git a/server/lib/oauth-model.ts b/server/lib/oauth-model.ts
index 2f8667e19..5cbe60b82 100644
--- a/server/lib/oauth-model.ts
+++ b/server/lib/oauth-model.ts
@@ -4,15 +4,50 @@ import { UserModel } from '../models/account/user'
 import { OAuthClientModel } from '../models/oauth/oauth-client'
 import { OAuthTokenModel } from '../models/oauth/oauth-token'
 import { CONFIG } from '../initializers/constants'
+import { Transaction } from 'sequelize'
 type TokenInfo = { accessToken: string, refreshToken: string, accessTokenExpiresAt: Date, refreshTokenExpiresAt: Date }
+const accessTokenCache: { [ accessToken: string ]: OAuthTokenModel } = {}
+const userHavingToken: { [ userId: number ]: string } = {}
 // ---------------------------------------------------------------------------
+function deleteUserToken (userId: number, t?: Transaction) {
+  clearCacheByUserId(userId)
+  return OAuthTokenModel.deleteUserToken(userId, t)
+}
+function clearCacheByUserId (userId: number) {
+  const token = userHavingToken[userId]
+  if (token !== undefined) {
+    accessTokenCache[ token ] = undefined
+    userHavingToken[ userId ] = undefined
+  }
+}
+function clearCacheByToken (token: string) {
+  const tokenModel = accessTokenCache[ token ]
+  if (tokenModel !== undefined) {
+    userHavingToken[tokenModel.userId] = undefined
+    accessTokenCache[ token ] = undefined
+  }
+}
 function getAccessToken (bearerToken: string) {
  logger.debug('Getting access token (bearerToken: ' + bearerToken + ').')
+  if (accessTokenCache[bearerToken] !== undefined) return accessTokenCache[bearerToken]
  return OAuthTokenModel.getByTokenAndPopulateUser(bearerToken)
+    .then(tokenModel => {
+      if (tokenModel) {
+        accessTokenCache[ bearerToken ] = tokenModel
+        userHavingToken[ tokenModel.userId ] = tokenModel.accessToken
+      }
+      return tokenModel
+    })
 }
 function getClient (clientId: string, clientSecret: string) {
@@ -48,6 +83,8 @@ async function getUser (usernameOrEmail: string, password: string) {
 async function revokeToken (tokenInfo: TokenInfo) {
  const token = await OAuthTokenModel.getByRefreshTokenAndPopulateUser(tokenInfo.refreshToken)
  if (token) {
+    clearCacheByToken(token.accessToken)
    token.destroy()
         .catch(err => logger.error('Cannot destroy token when revoking token.', { err }))
  }
@@ -85,6 +122,9 @@ async function saveToken (token: TokenInfo, client: OAuthClientModel, user: User
 // See https://github.com/oauthjs/node-oauth2-server/wiki/Model-specification for the model specifications
 export {
+  deleteUserToken,
+  clearCacheByUserId,
+  clearCacheByToken,
  getAccessToken,
  getClient,
  getRefreshToken,

diff --git a/server/lib/oauth-model.ts b/server/lib/oauth-model.ts index 2f8667e19..5cbe60b82 100644 --- a/server/lib/oauth-model.ts +++ b/server/lib/oauth-model.ts
@@ -4,15 +4,50 @@ import { UserModel } from '../models/account/user'
4	import { OAuthClientModel } from '../models/oauth/oauth-client'	4	import { OAuthClientModel } from '../models/oauth/oauth-client'
5	import { OAuthTokenModel } from '../models/oauth/oauth-token'	5	import { OAuthTokenModel } from '../models/oauth/oauth-token'
6	import { CONFIG } from '../initializers/constants'	6	import { CONFIG } from '../initializers/constants'
		7	import { Transaction } from 'sequelize'
7		8
8	type TokenInfo = { accessToken: string, refreshToken: string, accessTokenExpiresAt: Date, refreshTokenExpiresAt: Date }	9	type TokenInfo = { accessToken: string, refreshToken: string, accessTokenExpiresAt: Date, refreshTokenExpiresAt: Date }
		10	const accessTokenCache: { [ accessToken: string ]: OAuthTokenModel } = {}
		11	const userHavingToken: { [ userId: number ]: string } = {}
9		12
10	// ---------------------------------------------------------------------------	13	// ---------------------------------------------------------------------------
11		14
		15	function deleteUserToken (userId: number, t?: Transaction) {
		16	clearCacheByUserId(userId)
		17
		18	return OAuthTokenModel.deleteUserToken(userId, t)
		19	}
		20
		21	function clearCacheByUserId (userId: number) {
		22	const token = userHavingToken[userId]
		23	if (token !== undefined) {
		24	accessTokenCache[ token ] = undefined
		25	userHavingToken[ userId ] = undefined
		26	}
		27	}
		28
		29	function clearCacheByToken (token: string) {
		30	const tokenModel = accessTokenCache[ token ]
		31	if (tokenModel !== undefined) {
		32	userHavingToken[tokenModel.userId] = undefined
		33	accessTokenCache[ token ] = undefined
		34	}
		35	}
		36
12	function getAccessToken (bearerToken: string) {	37	function getAccessToken (bearerToken: string) {
13	logger.debug('Getting access token (bearerToken: ' + bearerToken + ').')	38	logger.debug('Getting access token (bearerToken: ' + bearerToken + ').')
14		39
		40	if (accessTokenCache[bearerToken] !== undefined) return accessTokenCache[bearerToken]
		41
15	return OAuthTokenModel.getByTokenAndPopulateUser(bearerToken)	42	return OAuthTokenModel.getByTokenAndPopulateUser(bearerToken)
		43	.then(tokenModel => {
		44	if (tokenModel) {
		45	accessTokenCache[ bearerToken ] = tokenModel
		46	userHavingToken[ tokenModel.userId ] = tokenModel.accessToken
		47	}
		48
		49	return tokenModel
		50	})
16	}	51	}
17		52
18	function getClient (clientId: string, clientSecret: string) {	53	function getClient (clientId: string, clientSecret: string) {
@@ -48,6 +83,8 @@ async function getUser (usernameOrEmail: string, password: string) {
48	async function revokeToken (tokenInfo: TokenInfo) {	83	async function revokeToken (tokenInfo: TokenInfo) {
49	const token = await OAuthTokenModel.getByRefreshTokenAndPopulateUser(tokenInfo.refreshToken)	84	const token = await OAuthTokenModel.getByRefreshTokenAndPopulateUser(tokenInfo.refreshToken)
50	if (token) {	85	if (token) {
		86	clearCacheByToken(token.accessToken)
		87
51	token.destroy()	88	token.destroy()
52	.catch(err => logger.error('Cannot destroy token when revoking token.', { err }))	89	.catch(err => logger.error('Cannot destroy token when revoking token.', { err }))
53	}	90	}
@@ -85,6 +122,9 @@ async function saveToken (token: TokenInfo, client: OAuthClientModel, user: User
85		122
86	// See https://github.com/oauthjs/node-oauth2-server/wiki/Model-specification for the model specifications	123	// See https://github.com/oauthjs/node-oauth2-server/wiki/Model-specification for the model specifications
87	export {	124	export {
		125	deleteUserToken,
		126	clearCacheByUserId,
		127	clearCacheByToken,
88	getAccessToken,	128	getAccessToken,
89	getClient,	129	getClient,
90	getRefreshToken,	130	getRefreshToken,