// Copyright 2022 Harness Inc. All rights reserved. // Use of this source code is governed by the Polyform Free Trial License // that can be found in the LICENSE.md file for this repository. package database import ( "context" "github.com/harness/gitness/internal/store" "github.com/harness/gitness/store/database" "github.com/harness/gitness/store/database/dbtx" "github.com/harness/gitness/types" "github.com/harness/gitness/types/enum" "github.com/jmoiron/sqlx" ) var _ store.TokenStore = (*TokenStore)(nil) // NewTokenStore returns a new TokenStore. func NewTokenStore(db *sqlx.DB) *TokenStore { return &TokenStore{db} } // TokenStore implements a TokenStore backed by a relational database. type TokenStore struct { db *sqlx.DB } // Find finds the token by id. func (s *TokenStore) Find(ctx context.Context, id int64) (*types.Token, error) { db := dbtx.GetAccessor(ctx, s.db) dst := new(types.Token) if err := db.GetContext(ctx, dst, TokenSelectByID, id); err != nil { return nil, database.ProcessSQLErrorf(err, "Failed to find token") } return dst, nil } // FindByUID finds the token by principalId and tokenUID. func (s *TokenStore) FindByUID(ctx context.Context, principalID int64, tokenUID string) (*types.Token, error) { db := dbtx.GetAccessor(ctx, s.db) dst := new(types.Token) if err := db.GetContext(ctx, dst, TokenSelectByPrincipalIDAndUID, principalID, tokenUID); err != nil { return nil, database.ProcessSQLErrorf(err, "Failed to find token by UID") } return dst, nil } // Create saves the token details. func (s *TokenStore) Create(ctx context.Context, token *types.Token) error { db := dbtx.GetAccessor(ctx, s.db) query, arg, err := db.BindNamed(tokenInsert, token) if err != nil { return database.ProcessSQLErrorf(err, "Failed to bind token object") } if err = db.QueryRowContext(ctx, query, arg...).Scan(&token.ID); err != nil { return database.ProcessSQLErrorf(err, "Insert query failed") } return nil } // Delete deletes the token with the given id. func (s *TokenStore) Delete(ctx context.Context, id int64) error { db := dbtx.GetAccessor(ctx, s.db) if _, err := db.ExecContext(ctx, tokenDelete, id); err != nil { return database.ProcessSQLErrorf(err, "The delete query failed") } return nil } // DeleteForPrincipal deletes all tokens for a specific principal. func (s *TokenStore) DeleteForPrincipal(ctx context.Context, principalID int64) error { db := dbtx.GetAccessor(ctx, s.db) if _, err := db.ExecContext(ctx, tokenDeleteForPrincipal, principalID); err != nil { return database.ProcessSQLErrorf(err, "The delete query failed") } return nil } // Count returns a count of tokens of a specifc type for a specific principal. func (s *TokenStore) Count(ctx context.Context, principalID int64, tokenType enum.TokenType) (int64, error) { db := dbtx.GetAccessor(ctx, s.db) var count int64 err := db.QueryRowContext(ctx, tokenCountForPrincipalIDOfType, principalID, tokenType).Scan(&count) if err != nil { return 0, database.ProcessSQLErrorf(err, "Failed executing count query") } return count, nil } // List returns a list of tokens of a specific type for a specific principal. func (s *TokenStore) List(ctx context.Context, principalID int64, tokenType enum.TokenType) ([]*types.Token, error) { db := dbtx.GetAccessor(ctx, s.db) dst := []*types.Token{} // TODO: custom filters / sorting for tokens. err := db.SelectContext(ctx, &dst, tokenSelectForPrincipalIDOfType, principalID, tokenType) if err != nil { return nil, database.ProcessSQLErrorf(err, "Failed executing token list query") } return dst, nil } const tokenSelectBase = ` SELECT token_id ,token_type ,token_uid ,token_principal_id ,token_expires_at ,token_grants ,token_issued_at ,token_created_by FROM tokens ` //#nosec G101 const tokenSelectForPrincipalIDOfType = tokenSelectBase + ` WHERE token_principal_id = $1 AND token_type = $2 ORDER BY token_issued_at DESC ` //#nosec G101 const tokenCountForPrincipalIDOfType = ` SELECT count(*) FROM tokens WHERE token_principal_id = $1 AND token_type = $2 ` //#nosec G101 const TokenSelectByID = tokenSelectBase + ` WHERE token_id = $1 ` const TokenSelectByPrincipalIDAndUID = tokenSelectBase + ` WHERE token_principal_id = $1 AND token_uid = $2 ` const tokenDelete = ` DELETE FROM tokens WHERE token_id = $1 ` const tokenDeleteForPrincipal = ` DELETE FROM tokens WHERE token_principal_id = $1 ` const tokenInsert = ` INSERT INTO tokens ( token_type ,token_uid ,token_principal_id ,token_expires_at ,token_grants ,token_issued_at ,token_created_by ) values ( :token_type ,:token_uid ,:token_principal_id ,:token_expires_at ,:token_grants ,:token_issued_at ,:token_created_by ) RETURNING token_id `