/
session_store.go
93 lines (74 loc) · 2.5 KB
/
session_store.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
package s3pg
import (
"database/sql"
"encoding/json"
"time"
"github.com/pkg/errors"
"github.com/replicatedhq/kots/kotsadm/pkg/persistence"
sessiontypes "github.com/replicatedhq/kots/kotsadm/pkg/session/types"
usertypes "github.com/replicatedhq/kots/kotsadm/pkg/user/types"
"github.com/replicatedhq/kots/pkg/logger"
"github.com/segmentio/ksuid"
)
type SessionMetadata struct {
Roles []string
}
func (s S3PGStore) CreateSession(forUser *usertypes.User, issuedAt time.Time, expiresAt time.Time, roles []string) (*sessiontypes.Session, error) {
logger.Debug("creating session")
randomID, err := ksuid.NewRandom()
if err != nil {
return nil, errors.Wrap(err, "failed to generate random session id")
}
id := randomID.String()
metadata, err := json.Marshal(SessionMetadata{Roles: roles})
if err != nil {
return nil, errors.Wrap(err, "failed to marshal session metadata")
}
db := persistence.MustGetPGSession()
query := `insert into session (id, user_id, metadata, issued_at, expire_at) values ($1, $2, $3, $4, $5)`
_, err = db.Exec(query, id, forUser.ID, string(metadata), issuedAt, expiresAt)
if err != nil {
return nil, errors.Wrap(err, "failed to create session")
}
return s.GetSession(id)
}
func (s S3PGStore) GetSession(id string) (*sessiontypes.Session, error) {
// too noisy
// logger.Debug("getting session from database",
// zap.String("id", id))
db := persistence.MustGetPGSession()
query := `select id, metadata, issued_at, expire_at from session where id = $1`
row := db.QueryRow(query, id)
session := sessiontypes.Session{}
var issuedAt sql.NullTime
var expiresAt time.Time
var metadataStr string
if err := row.Scan(&session.ID, &metadataStr, &issuedAt, &expiresAt); err != nil {
return nil, errors.Wrap(err, "failed to get session")
}
if metadataStr != "" {
metadata := SessionMetadata{}
if err := json.Unmarshal([]byte(metadataStr), &metadata); err != nil {
return nil, errors.Wrap(err, "failed to unmarshal session metadata")
}
session.HasRBAC = true
session.Roles = metadata.Roles
}
// sessions created before this change will not have IssuedAt
if issuedAt.Valid {
session.IssuedAt = issuedAt.Time
} else {
session.IssuedAt = session.ExpiresAt.AddDate(0, 0, -14)
}
session.ExpiresAt = expiresAt
return &session, nil
}
func (s S3PGStore) DeleteSession(id string) error {
db := persistence.MustGetPGSession()
query := `delete from session where id = $1`
_, err := db.Exec(query, id)
if err != nil {
return errors.Wrap(err, "failed to exec")
}
return nil
}