-
Notifications
You must be signed in to change notification settings - Fork 1
/
helper.go
49 lines (38 loc) · 1.41 KB
/
helper.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
// Copyright © 2023 Ory Corp
// SPDX-License-Identifier: Apache-2.0
package oauth2
import (
"context"
"time"
"authelia.com/provider/oauth2"
)
type HandleHelperConfigProvider interface {
oauth2.AccessTokenLifespanProvider
oauth2.RefreshTokenLifespanProvider
}
type HandleHelper struct {
AccessTokenStrategy AccessTokenStrategy
AccessTokenStorage AccessTokenStorage
Config HandleHelperConfigProvider
}
func (h *HandleHelper) IssueAccessToken(ctx context.Context, defaultLifespan time.Duration, requester oauth2.AccessRequester, responder oauth2.AccessResponder) (err error) {
var token, signature string
if token, signature, err = h.AccessTokenStrategy.GenerateAccessToken(ctx, requester); err != nil {
return err
}
if err = h.AccessTokenStorage.CreateAccessTokenSession(ctx, signature, requester.Sanitize([]string{})); err != nil {
return err
}
responder.SetAccessToken(token)
responder.SetTokenType(oauth2.BearerAccessToken)
responder.SetExpiresIn(getExpiresIn(requester, oauth2.AccessToken, defaultLifespan, time.Now().UTC()))
responder.SetScopes(requester.GetGrantedScopes())
return nil
}
//nolint:unparam
func getExpiresIn(r oauth2.Requester, key oauth2.TokenType, defaultLifespan time.Duration, now time.Time) time.Duration {
if r.GetSession().GetExpiresAt(key).IsZero() {
return defaultLifespan
}
return time.Duration(r.GetSession().GetExpiresAt(key).UnixNano() - now.UnixNano())
}