1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
|
/*
* This file is part of LibEuFin.
* Copyright (C) 2023 Taler Systems S.A.
* LibEuFin is free software; you can redistribute it and/or modify
* it under the terms of the GNU Affero General Public License as
* published by the Free Software Foundation; either version 3, or
* (at your option) any later version.
* LibEuFin is distributed in the hope that it will be useful, but
* WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY
* or FITNESS FOR A PARTICULAR PURPOSE. See the GNU Affero General
* Public License for more details.
* You should have received a copy of the GNU Affero General Public
* License along with LibEuFin; see the file COPYING. If not, see
* <http://www.gnu.org/licenses/>
*/
package tech.libeufin.bank.db
import tech.libeufin.bank.BearerToken
import tech.libeufin.bank.TokenScope
import tech.libeufin.common.executeUpdateViolation
import tech.libeufin.common.microsToJavaInstant
import tech.libeufin.common.oneOrNull
import tech.libeufin.common.toDbMicros
import java.time.Instant
/** Data access logic for auth tokens */
class TokenDAO(private val db: Database) {
/** Create new token for [login] */
suspend fun create(
login: String,
content: ByteArray,
creationTime: Instant,
expirationTime: Instant,
scope: TokenScope,
isRefreshable: Boolean
): Boolean = db.serializable { conn ->
// TODO single query
val bankCustomer = conn.prepareStatement("""
SELECT customer_id FROM customers WHERE login=? AND deleted_at IS NULL
""").run {
setString(1, login)
oneOrNull { it.getLong(1) }!!
}
val stmt = conn.prepareStatement("""
INSERT INTO bearer_tokens (
content,
creation_time,
expiration_time,
scope,
bank_customer,
is_refreshable
) VALUES (?, ?, ?, ?::token_scope_enum, ?, ?)
""")
stmt.setBytes(1, content)
stmt.setLong(2, creationTime.toDbMicros() ?: throw faultyTimestampByBank())
stmt.setLong(3, expirationTime.toDbMicros() ?: throw faultyDurationByClient())
stmt.setString(4, scope.name)
stmt.setLong(5, bankCustomer)
stmt.setBoolean(6, isRefreshable)
stmt.executeUpdateViolation()
}
/** Get info for [token] */
suspend fun get(token: ByteArray): BearerToken? = db.conn { conn ->
val stmt = conn.prepareStatement("""
SELECT
creation_time,
expiration_time,
login,
scope,
is_refreshable
FROM bearer_tokens
JOIN customers ON bank_customer=customer_id
WHERE content=? AND deleted_at IS NULL
""")
stmt.setBytes(1, token)
stmt.oneOrNull {
BearerToken(
creationTime = it.getLong("creation_time").microsToJavaInstant() ?: throw faultyDurationByClient(),
expirationTime = it.getLong("expiration_time").microsToJavaInstant() ?: throw faultyDurationByClient(),
login = it.getString("login"),
scope = TokenScope.valueOf(it.getString("scope")),
isRefreshable = it.getBoolean("is_refreshable")
)
}
}
/** Delete token [token] */
suspend fun delete(token: ByteArray) = db.serializable { conn ->
val stmt = conn.prepareStatement("""
DELETE FROM bearer_tokens WHERE content = ?
""")
stmt.setBytes(1, token)
stmt.execute()
}
}
|
