Add new filters on the OAuth and compat sessions

2025-07-31 09:24:31 +03:00 · 2024-07-16 17:54:01 +02:00
parent c4e7cf1a27
commit 12d2f1f827
5 changed files with 69 additions and 9 deletions
--- a/crates/storage/src/app_session.rs
+++ b/crates/storage/src/app_session.rs
@ -77,7 +77,7 @@ impl<'a> AppSessionFilter<'a> {

    /// Get the user filter
    #[must_use]
-    pub fn user(&self) -> Option<&User> {
+    pub fn user(&self) -> Option<&'a User> {
        self.user
    }

@ -90,7 +90,7 @@ impl<'a> AppSessionFilter<'a> {

    /// Get the browser session filter
    #[must_use]
-    pub fn browser_session(&self) -> Option<&BrowserSession> {
+    pub fn browser_session(&self) -> Option<&'a BrowserSession> {
        self.browser_session
    }

--- a/crates/storage/src/compat/session.rs
+++ b/crates/storage/src/compat/session.rs
@ -66,6 +66,7 @@ impl CompatSessionType {
 #[derive(Clone, Copy, Debug, PartialEq, Eq, Default)]
 pub struct CompatSessionFilter<'a> {
    user: Option<&'a User>,
+    browser_session: Option<&'a BrowserSession>,
    state: Option<CompatSessionState>,
    auth_type: Option<CompatSessionType>,
    device: Option<&'a Device>,
@ -87,7 +88,7 @@ impl<'a> CompatSessionFilter<'a> {

    /// Get the user filter
    #[must_use]
-    pub fn user(&self) -> Option<&User> {
+    pub fn user(&self) -> Option<&'a User> {
        self.user
    }

@ -100,10 +101,23 @@ impl<'a> CompatSessionFilter<'a> {

    /// Get the device filter
    #[must_use]
-    pub fn device(&self) -> Option<&Device> {
+    pub fn device(&self) -> Option<&'a Device> {
        self.device
    }

+    /// Set the browser session filter
+    #[must_use]
+    pub fn for_browser_session(mut self, browser_session: &'a BrowserSession) -> Self {
+        self.browser_session = Some(browser_session);
+        self
+    }
+
+    /// Get the browser session filter
+    #[must_use]
+    pub fn browser_session(&self) -> Option<&'a BrowserSession> {
+        self.browser_session
+    }
+
    /// Only return active compatibility sessions
    #[must_use]
    pub fn active_only(mut self) -> Self {
--- a/crates/storage/src/oauth2/session.rs
+++ b/crates/storage/src/oauth2/session.rs
@ -16,7 +16,7 @@ use std::net::IpAddr;

 use async_trait::async_trait;
 use chrono::{DateTime, Utc};
-use mas_data_model::{BrowserSession, Client, Session, User, UserAgent};
+use mas_data_model::{BrowserSession, Client, Device, Session, User, UserAgent};
 use oauth2_types::scope::Scope;
 use rand_core::RngCore;
 use ulid::Ulid;
@ -43,6 +43,8 @@ impl OAuth2SessionState {
 #[derive(Clone, Copy, Debug, PartialEq, Eq, Default)]
 pub struct OAuth2SessionFilter<'a> {
    user: Option<&'a User>,
+    browser_session: Option<&'a BrowserSession>,
+    device: Option<&'a Device>,
    client: Option<&'a Client>,
    state: Option<OAuth2SessionState>,
    scope: Option<&'a Scope>,
@ -66,10 +68,25 @@ impl<'a> OAuth2SessionFilter<'a> {
    ///
    /// Returns [`None`] if no user filter was set
    #[must_use]
-    pub fn user(&self) -> Option<&User> {
+    pub fn user(&self) -> Option<&'a User> {
        self.user
    }

+    /// List sessions started by a specific browser session
+    #[must_use]
+    pub fn for_browser_session(mut self, browser_session: &'a BrowserSession) -> Self {
+        self.browser_session = Some(browser_session);
+        self
+    }
+
+    /// Get the browser session filter
+    ///
+    /// Returns [`None`] if no browser session filter was set
+    #[must_use]
+    pub fn browser_session(&self) -> Option<&'a BrowserSession> {
+        self.browser_session
+    }
+
    /// List sessions for a specific client
    #[must_use]
    pub fn for_client(mut self, client: &'a Client) -> Self {
@ -81,7 +98,7 @@ impl<'a> OAuth2SessionFilter<'a> {
    ///
    /// Returns [`None`] if no client filter was set
    #[must_use]
-    pub fn client(&self) -> Option<&Client> {
+    pub fn client(&self) -> Option<&'a Client> {
        self.client
    }

@ -118,9 +135,24 @@ impl<'a> OAuth2SessionFilter<'a> {
    ///
    /// Returns [`None`] if no scope filter was set
    #[must_use]
-    pub fn scope(&self) -> Option<&Scope> {
+    pub fn scope(&self) -> Option<&'a Scope> {
        self.scope
    }
+
+    /// Only return sessions that have the given device in their scope
+    #[must_use]
+    pub fn for_device(mut self, device: &'a Device) -> Self {
+        self.device = Some(device);
+        self
+    }
+
+    /// Get the device filter
+    ///
+    /// Returns [`None`] if no device filter was set
+    #[must_use]
+    pub fn device(&self) -> Option<&'a Device> {
+        self.device
+    }
 }

 /// An [`OAuth2SessionRepository`] helps interacting with [`Session`]