-
Notifications
You must be signed in to change notification settings - Fork 302
/
user_session_registry.go
79 lines (71 loc) · 2.62 KB
/
user_session_registry.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
// Copyright © 2021 The Things Network Foundation, The Things Industries B.V.
//
// Licensed under the Apache License, Version 2.0 (the "License");
// you may not use this file except in compliance with the License.
// You may obtain a copy of the License at
//
// http://www.apache.org/licenses/LICENSE-2.0
//
// Unless required by applicable law or agreed to in writing, software
// distributed under the License is distributed on an "AS IS" BASIS,
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
// See the License for the specific language governing permissions and
// limitations under the License.
package identityserver
import (
"context"
pbtypes "github.com/gogo/protobuf/types"
"go.thethings.network/lorawan-stack/v3/pkg/auth/rights"
"go.thethings.network/lorawan-stack/v3/pkg/identityserver/store"
"go.thethings.network/lorawan-stack/v3/pkg/ttnpb"
)
func (is *IdentityServer) listUserSessions(ctx context.Context, req *ttnpb.ListUserSessionsRequest) (sessions *ttnpb.UserSessions, err error) {
if err := rights.RequireUser(ctx, *req.GetUserIds(), ttnpb.Right_RIGHT_USER_ALL); err != nil {
return nil, err
}
ctx = store.WithOrder(ctx, req.Order)
var total uint64
paginateCtx := store.WithPagination(ctx, req.Limit, req.Page, &total)
defer func() {
if err == nil {
setTotalHeader(ctx, total)
}
}()
sessions = &ttnpb.UserSessions{}
err = is.store.Transact(ctx, func(ctx context.Context, st store.Store) error {
sessions.Sessions, err = st.FindSessions(paginateCtx, req.GetUserIds())
if err != nil {
return err
}
return nil
})
if err != nil {
return nil, err
}
for _, session := range sessions.Sessions {
// ListUserSessionsRequest doesn't have a FieldMask, so we need to manually remove the secret.
session.SessionSecret = ""
}
return sessions, nil
}
func (is *IdentityServer) deleteUserSession(ctx context.Context, req *ttnpb.UserSessionIdentifiers) (*pbtypes.Empty, error) {
if err := rights.RequireUser(ctx, *req.GetUserIds(), ttnpb.Right_RIGHT_USER_ALL); err != nil {
return nil, err
}
err := is.store.Transact(ctx, func(ctx context.Context, st store.Store) error {
return st.DeleteSession(ctx, req.GetUserIds(), req.GetSessionId())
})
if err != nil {
return nil, err
}
return ttnpb.Empty, nil
}
type userSessionRegistry struct {
*IdentityServer
}
func (ur *userSessionRegistry) List(ctx context.Context, req *ttnpb.ListUserSessionsRequest) (*ttnpb.UserSessions, error) {
return ur.listUserSessions(ctx, req)
}
func (ur *userSessionRegistry) Delete(ctx context.Context, req *ttnpb.UserSessionIdentifiers) (*pbtypes.Empty, error) {
return ur.deleteUserSession(ctx, req)
}