Home Explore Help
Register Sign In
oscarleiva
/
energylink
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: f0eddcd8a8
Branches Tags
energylink
/
pkg
/
api
/
user_token.go

user_token.go 3.0 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110 
  1. package api
    2. 

  2. 

  3. import (
    4. 

  4. 	"time"
    5. 

  5. 

  6. 	"github.com/grafana/grafana/pkg/api/dtos"
    7. 

  7. 	"github.com/grafana/grafana/pkg/bus"
    8. 

  8. 	"github.com/grafana/grafana/pkg/models"
    9. 

  9. 	"github.com/grafana/grafana/pkg/util"
    10. 

  10. )
    11. 

  11. 

  12. // GET /api/user/auth-tokens
    13. 

  13. func (server *HTTPServer) GetUserAuthTokens(c *models.ReqContext) Response {
    14. 

  14. 	return server.getUserAuthTokensInternal(c, c.UserId)
    15. 

  15. }
    16. 

  16. 

  17. // POST /api/user/revoke-auth-token
    18. 

  18. func (server *HTTPServer) RevokeUserAuthToken(c *models.ReqContext, cmd models.RevokeAuthTokenCmd) Response {
    19. 

  19. 	return server.revokeUserAuthTokenInternal(c, c.UserId, cmd)
    20. 

  20. }
    21. 

  21. 

  22. func (server *HTTPServer) logoutUserFromAllDevicesInternal(userID int64) Response {
    23. 

  23. 	userQuery := models.GetUserByIdQuery{Id: userID}
    24. 

  24. 

  25. 	if err := bus.Dispatch(&userQuery); err != nil {
    26. 

  26. 		if err == models.ErrUserNotFound {
    27. 

  27. 			return Error(404, "User not found", err)
    28. 

  28. 		}
    29. 

  29. 		return Error(500, "Could not read user from database", err)
    30. 

  30. 	}
    31. 

  31. 

  32. 	err := server.AuthTokenService.RevokeAllUserTokens(userID)
    33. 

  33. 	if err != nil {
    34. 

  34. 		return Error(500, "Failed to logout user", err)
    35. 

  35. 	}
    36. 

  36. 

  37. 	return JSON(200, util.DynMap{
    38. 

  38. 		"message": "User logged out",
    39. 

  39. 	})
    40. 

  40. }
    41. 

  41. 

  42. func (server *HTTPServer) getUserAuthTokensInternal(c *models.ReqContext, userID int64) Response {
    43. 

  43. 	userQuery := models.GetUserByIdQuery{Id: userID}
    44. 

  44. 

  45. 	if err := bus.Dispatch(&userQuery); err != nil {
    46. 

  46. 		if err == models.ErrUserNotFound {
    47. 

  47. 			return Error(404, "User not found", err)
    48. 

  48. 		}
    49. 

  49. 		return Error(500, "Failed to get user", err)
    50. 

  50. 	}
    51. 

  51. 

  52. 	tokens, err := server.AuthTokenService.GetUserTokens(userID)
    53. 

  53. 	if err != nil {
    54. 

  54. 		return Error(500, "Failed to get user auth tokens", err)
    55. 

  55. 	}
    56. 

  56. 

  57. 	result := []*dtos.UserToken{}
    58. 

  58. 	for _, token := range tokens {
    59. 

  59. 		isActive := false
    60. 

  60. 		if c.UserToken != nil && c.UserToken.Id == token.Id {
    61. 

  61. 			isActive = true
    62. 

  62. 		}
    63. 

  63. 

  64. 		result = append(result, &dtos.UserToken{
    65. 

  65. 			Id:        token.Id,
    66. 

  66. 			IsActive:  isActive,
    67. 

  67. 			ClientIp:  token.ClientIp,
    68. 

  68. 			UserAgent: token.UserAgent,
    69. 

  69. 			CreatedAt: time.Unix(token.CreatedAt, 0),
    70. 

  70. 			SeenAt:    time.Unix(token.SeenAt, 0),
    71. 

  71. 		})
    72. 

  72. 	}
    73. 

  73. 

  74. 	return JSON(200, result)
    75. 

  75. }
    76. 

  76. 

  77. func (server *HTTPServer) revokeUserAuthTokenInternal(c *models.ReqContext, userID int64, cmd models.RevokeAuthTokenCmd) Response {
    78. 

  78. 	userQuery := models.GetUserByIdQuery{Id: userID}
    79. 

  79. 

  80. 	if err := bus.Dispatch(&userQuery); err != nil {
    81. 

  81. 		if err == models.ErrUserNotFound {
    82. 

  82. 			return Error(404, "User not found", err)
    83. 

  83. 		}
    84. 

  84. 		return Error(500, "Failed to get user", err)
    85. 

  85. 	}
    86. 

  86. 

  87. 	token, err := server.AuthTokenService.GetUserToken(userID, cmd.AuthTokenId)
    88. 

  88. 	if err != nil {
    89. 

  89. 		if err == models.ErrUserTokenNotFound {
    90. 

  90. 			return Error(404, "User auth token not found", err)
    91. 

  91. 		}
    92. 

  92. 		return Error(500, "Failed to get user auth token", err)
    93. 

  93. 	}
    94. 

  94. 

  95. 	if c.UserToken != nil && c.UserToken.Id == token.Id {
    96. 

  96. 		return Error(400, "Cannot revoke active user auth token", nil)
    97. 

  97. 	}
    98. 

  98. 

  99. 	err = server.AuthTokenService.RevokeToken(token)
    100. 

  100. 	if err != nil {
    101. 

  101. 		if err == models.ErrUserTokenNotFound {
    102. 

  102. 			return Error(404, "User auth token not found", err)
    103. 

  103. 		}
    104. 

  104. 		return Error(500, "Failed to revoke user auth token", err)
    105. 

  105. 	}
    106. 

  106. 

  107. 	return JSON(200, util.DynMap{
    108. 

  108. 		"message": "User auth token revoked",
    109. 

  109. 	})
    110. 

  110. }
    111.