1 files changed, 108 insertions, 26 deletions
diff --git a/server/models/oauth-token.js b/server/models/oauth-token.js
index aff73bfb1..68e7c9ff7 100644
--- a/server/models/oauth-token.js
+++ b/server/models/oauth-token.js
@@ -1,42 +1,96 @@
-const mongoose = require('mongoose')
+'use strict'
 const logger = require('../helpers/logger')
 // ---------------------------------------------------------------------------
-const OAuthTokenSchema = mongoose.Schema({
+module.exports = function (sequelize, DataTypes) {
-  accessToken: String,
+  const OAuthToken = sequelize.define('OAuthToken',
-  accessTokenExpiresAt: Date,
+    {
-  client: { type: mongoose.Schema.Types.ObjectId, ref: 'OAuthClient' },
+      accessToken: {
-  refreshToken: String,
+        type: DataTypes.STRING,
-  refreshTokenExpiresAt: Date,
+        allowNull: false
-  user: { type: mongoose.Schema.Types.ObjectId, ref: 'User' }
+      },
-})
+      accessTokenExpiresAt: {
+        type: DataTypes.DATE,
-OAuthTokenSchema.path('accessToken').required(true)
+        allowNull: false
-OAuthTokenSchema.path('client').required(true)
+      },
-OAuthTokenSchema.path('user').required(true)
+      refreshToken: {
+        type: DataTypes.STRING,
-OAuthTokenSchema.statics = {
+        allowNull: false
-  getByRefreshTokenAndPopulateClient,
+      },
-  getByTokenAndPopulateUser,
+      refreshTokenExpiresAt: {
-  getByRefreshTokenAndPopulateUser,
+        type: DataTypes.DATE,
-  removeByUserId
+        allowNull: false
-}
+      }
+    },
+    {
+      indexes: [
+        {
+          fields: [ 'refreshToken' ],
+          unique: true
+        },
+        {
+          fields: [ 'accessToken' ],
+          unique: true
+        },
+        {
+          fields: [ 'userId' ]
+        },
+        {
+          fields: [ 'oAuthClientId' ]
+        }
+      ],
+      classMethods: {
+        associate,
+        getByRefreshTokenAndPopulateClient,
+        getByTokenAndPopulateUser,
+        getByRefreshTokenAndPopulateUser,
+        removeByUserId
+      }
+    }
+  )
-mongoose.model('OAuthToken', OAuthTokenSchema)
+  return OAuthToken
+}
 // ---------------------------------------------------------------------------
+function associate (models) {
+  this.belongsTo(models.User, {
+    foreignKey: {
+      name: 'userId',
+      allowNull: false
+    },
+    onDelete: 'cascade'
+  })
+  this.belongsTo(models.OAuthClient, {
+    foreignKey: {
+      name: 'oAuthClientId',
+      allowNull: false
+    },
+    onDelete: 'cascade'
+  })
+}
 function getByRefreshTokenAndPopulateClient (refreshToken) {
-  return this.findOne({ refreshToken: refreshToken }).populate('client').exec().then(function (token) {
+  const query = {
+    where: {
+      refreshToken: refreshToken
+    },
+    include: [ this.associations.OAuthClient ]
+  }
+  return this.findOne(query).then(function (token) {
    if (!token) return token
    const tokenInfos = {
      refreshToken: token.refreshToken,
      refreshTokenExpiresAt: token.refreshTokenExpiresAt,
      client: {
-        id: token.client._id.toString()
+        id: token.client.id
      },
      user: {
        id: token.user
@@ -50,13 +104,41 @@ function getByRefreshTokenAndPopulateClient (refreshToken) {
 }
 function getByTokenAndPopulateUser (bearerToken) {
-  return this.findOne({ accessToken: bearerToken }).populate('user').exec()
+  const query = {
+    where: {
+      accessToken: bearerToken
+    },
+    include: [ this.sequelize.models.User ]
+  }
+  return this.findOne(query).then(function (token) {
+    if (token) token.user = token.User
+    return token
+  })
 }
 function getByRefreshTokenAndPopulateUser (refreshToken) {
-  return this.findOne({ refreshToken: refreshToken }).populate('user').exec()
+  const query = {
+    where: {
+      refreshToken: refreshToken
+    },
+    include: [ this.sequelize.models.User ]
+  }
+  return this.findOne(query).then(function (token) {
+    token.user = token.User
+    return token
+  })
 }
 function removeByUserId (userId, callback) {
-  return this.remove({ user: userId }, callback)
+  const query = {
+    where: {
+      userId: userId
+    }
+  }
+  return this.destroy(query).asCallback(callback)
 }

diff --git a/server/models/oauth-token.js b/server/models/oauth-token.js index aff73bfb1..68e7c9ff7 100644 --- a/server/models/oauth-token.js +++ b/server/models/oauth-token.js
@@ -1,42 +1,96 @@
1	const mongoose = require('mongoose')	1	'use strict'
2		2
3	const logger = require('../helpers/logger')	3	const logger = require('../helpers/logger')
4		4
5	// ---------------------------------------------------------------------------	5	// ---------------------------------------------------------------------------
6		6
7	const OAuthTokenSchema = mongoose.Schema({	7	module.exports = function (sequelize, DataTypes) {
8	accessToken: String,	8	const OAuthToken = sequelize.define('OAuthToken',
9	accessTokenExpiresAt: Date,	9	{
10	client: { type: mongoose.Schema.Types.ObjectId, ref: 'OAuthClient' },	10	accessToken: {
11	refreshToken: String,	11	type: DataTypes.STRING,
12	refreshTokenExpiresAt: Date,	12	allowNull: false
13	user: { type: mongoose.Schema.Types.ObjectId, ref: 'User' }	13	},
14	})	14	accessTokenExpiresAt: {
15		15	type: DataTypes.DATE,
16	OAuthTokenSchema.path('accessToken').required(true)	16	allowNull: false
17	OAuthTokenSchema.path('client').required(true)	17	},
18	OAuthTokenSchema.path('user').required(true)	18	refreshToken: {
19		19	type: DataTypes.STRING,
20	OAuthTokenSchema.statics = {	20	allowNull: false
21	getByRefreshTokenAndPopulateClient,	21	},
22	getByTokenAndPopulateUser,	22	refreshTokenExpiresAt: {
23	getByRefreshTokenAndPopulateUser,	23	type: DataTypes.DATE,
24	removeByUserId	24	allowNull: false
25	}	25	}
		26	},
		27	{
		28	indexes: [
		29	{
		30	fields: [ 'refreshToken' ],
		31	unique: true
		32	},
		33	{
		34	fields: [ 'accessToken' ],
		35	unique: true
		36	},
		37	{
		38	fields: [ 'userId' ]
		39	},
		40	{
		41	fields: [ 'oAuthClientId' ]
		42	}
		43	],
		44	classMethods: {
		45	associate,
		46
		47	getByRefreshTokenAndPopulateClient,
		48	getByTokenAndPopulateUser,
		49	getByRefreshTokenAndPopulateUser,
		50	removeByUserId
		51	}
		52	}
		53	)
26		54
27	mongoose.model('OAuthToken', OAuthTokenSchema)	55	return OAuthToken
		56	}
28		57
29	// ---------------------------------------------------------------------------	58	// ---------------------------------------------------------------------------
30		59
		60	function associate (models) {
		61	this.belongsTo(models.User, {
		62	foreignKey: {
		63	name: 'userId',
		64	allowNull: false
		65	},
		66	onDelete: 'cascade'
		67	})
		68
		69	this.belongsTo(models.OAuthClient, {
		70	foreignKey: {
		71	name: 'oAuthClientId',
		72	allowNull: false
		73	},
		74	onDelete: 'cascade'
		75	})
		76	}
		77
31	function getByRefreshTokenAndPopulateClient (refreshToken) {	78	function getByRefreshTokenAndPopulateClient (refreshToken) {
32	return this.findOne({ refreshToken: refreshToken }).populate('client').exec().then(function (token) {	79	const query = {
		80	where: {
		81	refreshToken: refreshToken
		82	},
		83	include: [ this.associations.OAuthClient ]
		84	}
		85
		86	return this.findOne(query).then(function (token) {
33	if (!token) return token	87	if (!token) return token
34		88
35	const tokenInfos = {	89	const tokenInfos = {
36	refreshToken: token.refreshToken,	90	refreshToken: token.refreshToken,
37	refreshTokenExpiresAt: token.refreshTokenExpiresAt,	91	refreshTokenExpiresAt: token.refreshTokenExpiresAt,
38	client: {	92	client: {
39	id: token.client._id.toString()	93	id: token.client.id
40	},	94	},
41	user: {	95	user: {
42	id: token.user	96	id: token.user
@@ -50,13 +104,41 @@ function getByRefreshTokenAndPopulateClient (refreshToken) {
50	}	104	}
51		105
52	function getByTokenAndPopulateUser (bearerToken) {	106	function getByTokenAndPopulateUser (bearerToken) {
53	return this.findOne({ accessToken: bearerToken }).populate('user').exec()	107	const query = {
		108	where: {
		109	accessToken: bearerToken
		110	},
		111	include: [ this.sequelize.models.User ]
		112	}
		113
		114	return this.findOne(query).then(function (token) {
		115	if (token) token.user = token.User
		116
		117	return token
		118	})
54	}	119	}
55		120
56	function getByRefreshTokenAndPopulateUser (refreshToken) {	121	function getByRefreshTokenAndPopulateUser (refreshToken) {
57	return this.findOne({ refreshToken: refreshToken }).populate('user').exec()	122	const query = {
		123	where: {
		124	refreshToken: refreshToken
		125	},
		126	include: [ this.sequelize.models.User ]
		127	}
		128
		129	return this.findOne(query).then(function (token) {
		130	token.user = token.User
		131
		132	return token
		133	})
58	}	134	}
59		135
60	function removeByUserId (userId, callback) {	136	function removeByUserId (userId, callback) {
61	return this.remove({ user: userId }, callback)	137	const query = {
		138	where: {
		139	userId: userId
		140	}
		141	}
		142
		143	return this.destroy(query).asCallback(callback)
62	}	144	}