Handle legacy token expiration & refresh tokens

2025-07-29 22:01:14 +03:00 · 2022-05-18 16:10:31 +02:00
parent c4fa87e457
commit 309c89fc4f
10 changed files with 682 additions and 199 deletions
--- a/crates/storage/src/compat.rs
+++ b/crates/storage/src/compat.rs
@ -15,8 +15,10 @@
 use anyhow::Context;
 use argon2::{Argon2, PasswordHash};
 use chrono::{DateTime, Duration, Utc};
-use mas_data_model::{CompatAccessToken, CompatSession, Device, User, UserEmail};
-use sqlx::{Acquire, PgExecutor, Postgres};
+use mas_data_model::{
+    CompatAccessToken, CompatRefreshToken, CompatSession, Device, User, UserEmail,
+};
+use sqlx::{postgres::types::PgInterval, Acquire, PgExecutor, Postgres};
 use thiserror::Error;
 use tokio::task;
 use tracing::{info_span, Instrument};
@ -28,8 +30,8 @@ use crate::{
 pub struct CompatAccessTokenLookup {
    compat_access_token_id: i64,
    compat_access_token: String,
-    compat_access_token_expires_after: Option<i32>,
    compat_access_token_created_at: DateTime<Utc>,
+    compat_access_token_expires_at: Option<DateTime<Utc>>,
    compat_session_id: i64,
    compat_session_created_at: DateTime<Utc>,
    compat_session_deleted_at: Option<DateTime<Utc>>,
@ -56,7 +58,7 @@ impl CompatAccessTokenLookupError {
    }
 }

-#[tracing::instrument(skip(executor), err)]
+#[tracing::instrument(skip_all, err)]
 pub async fn lookup_active_compat_access_token(
    executor: impl PgExecutor<'_>,
    token: &str,
@ -74,7 +76,7 @@ pub async fn lookup_active_compat_access_token(
                ct.id              AS "compat_access_token_id",
                ct.token           AS "compat_access_token",
                ct.created_at      AS "compat_access_token_created_at",
-                ct.expires_after   AS "compat_access_token_expires_after",
+                ct.expires_at      AS "compat_access_token_expires_at",
                cs.id              AS "compat_session_id",
                cs.created_at      AS "compat_session_created_at",
                cs.deleted_at      AS "compat_session_deleted_at",
@ -95,6 +97,7 @@ pub async fn lookup_active_compat_access_token(
              ON ue.id = u.primary_email_id

            WHERE ct.token = $1
+              AND (ct.expires_at IS NULL OR ct.expires_at > NOW())
              AND cs.deleted_at IS NULL
        "#,
        token,
@ -107,9 +110,7 @@ pub async fn lookup_active_compat_access_token(
        data: res.compat_access_token_id,
        token: res.compat_access_token,
        created_at: res.compat_access_token_created_at,
-        expires_after: res
-            .compat_access_token_expires_after
-            .map(|d| Duration::seconds(d.into())),
+        expires_at: res.compat_access_token_expires_at,
    };

    let primary_email = match (
@ -148,20 +149,131 @@ pub async fn lookup_active_compat_access_token(
    Ok((token, session))
 }

-#[tracing::instrument(skip(conn, password, token), err)]
+pub struct CompatRefreshTokenLookup {
+    compat_refresh_token_id: i64,
+    compat_refresh_token: String,
+    compat_refresh_token_created_at: DateTime<Utc>,
+    compat_session_id: i64,
+    compat_session_created_at: DateTime<Utc>,
+    compat_session_deleted_at: Option<DateTime<Utc>>,
+    compat_session_device_id: String,
+    user_id: i64,
+    user_username: String,
+    user_email_id: Option<i64>,
+    user_email: Option<String>,
+    user_email_created_at: Option<DateTime<Utc>>,
+    user_email_confirmed_at: Option<DateTime<Utc>>,
+}
+
+#[derive(Debug, Error)]
+#[error("failed to lookup compat refresh token")]
+pub enum CompatRefreshTokenLookupError {
+    Database(#[from] sqlx::Error),
+    Inconsistency(#[from] DatabaseInconsistencyError),
+}
+
+impl CompatRefreshTokenLookupError {
+    #[must_use]
+    pub fn not_found(&self) -> bool {
+        matches!(self, Self::Database(sqlx::Error::RowNotFound))
+    }
+}
+
+#[tracing::instrument(skip_all, err)]
+pub async fn lookup_active_compat_refresh_token(
+    executor: impl PgExecutor<'_>,
+    token: &str,
+) -> Result<
+    (
+        CompatRefreshToken<PostgresqlBackend>,
+        CompatSession<PostgresqlBackend>,
+    ),
+    CompatRefreshTokenLookupError,
+> {
+    let res = sqlx::query_as!(
+        CompatRefreshTokenLookup,
+        r#"
+            SELECT
+                cr.id              AS "compat_refresh_token_id",
+                cr.token           AS "compat_refresh_token",
+                cr.created_at      AS "compat_refresh_token_created_at",
+                cs.id              AS "compat_session_id",
+                cs.created_at      AS "compat_session_created_at",
+                cs.deleted_at      AS "compat_session_deleted_at",
+                cs.device_id       AS "compat_session_device_id",
+                 u.id              AS "user_id!",
+                 u.username        AS "user_username!",
+                ue.id              AS "user_email_id?",
+                ue.email           AS "user_email?",
+                ue.created_at      AS "user_email_created_at?",
+                ue.confirmed_at    AS "user_email_confirmed_at?"
+
+            FROM compat_refresh_tokens cr
+            INNER JOIN compat_sessions cs
+              ON cs.id = cr.compat_session_id
+            INNER JOIN users u
+              ON u.id = cs.user_id
+            LEFT JOIN user_emails ue
+              ON ue.id = u.primary_email_id
+
+            WHERE cr.token = $1
+              AND cs.deleted_at IS NULL
+        "#,
+        token,
+    )
+    .fetch_one(executor)
+    .instrument(info_span!("Fetch compat refresh token"))
+    .await?;
+
+    let token = CompatRefreshToken {
+        data: res.compat_refresh_token_id,
+        token: res.compat_refresh_token,
+        created_at: res.compat_refresh_token_created_at,
+    };
+
+    let primary_email = match (
+        res.user_email_id,
+        res.user_email,
+        res.user_email_created_at,
+        res.user_email_confirmed_at,
+    ) {
+        (Some(id), Some(email), Some(created_at), confirmed_at) => Some(UserEmail {
+            data: id,
+            email,
+            created_at,
+            confirmed_at,
+        }),
+        (None, None, None, None) => None,
+        _ => return Err(DatabaseInconsistencyError.into()),
+    };
+
+    let user = User {
+        data: res.user_id,
+        username: res.user_username,
+        sub: format!("fake-sub-{}", res.user_id),
+        primary_email,
+    };
+
+    let device = Device::try_from(res.compat_session_device_id).unwrap();
+
+    let session = CompatSession {
+        data: res.compat_session_id,
+        user,
+        device,
+        created_at: res.compat_session_created_at,
+        deleted_at: res.compat_session_deleted_at,
+    };
+
+    Ok((token, session))
+}
+
+#[tracing::instrument(skip(conn, password), err)]
 pub async fn compat_login(
    conn: impl Acquire<'_, Database = Postgres>,
    username: &str,
    password: &str,
    device: Device,
-    token: String,
-) -> Result<
-    (
-        CompatAccessToken<PostgresqlBackend>,
-        CompatSession<PostgresqlBackend>,
-    ),
-    anyhow::Error,
-> {
+) -> Result<CompatSession<PostgresqlBackend>, anyhow::Error> {
    let mut txn = conn.begin().await.context("could not start transaction")?;

    // First, lookup the user
@ -216,30 +328,97 @@ pub async fn compat_login(
        deleted_at: None,
    };

-    let res = sqlx::query_as!(
-        IdAndCreationTime,
-        r#"
+    txn.commit().await.context("could not commit transaction")?;
+    Ok(session)
+}
+
+#[tracing::instrument(skip(executor, token), err)]
+pub async fn add_compat_access_token(
+    executor: impl PgExecutor<'_>,
+    session: &CompatSession<PostgresqlBackend>,
+    token: String,
+    expires_after: Option<Duration>,
+) -> Result<CompatAccessToken<PostgresqlBackend>, anyhow::Error> {
+    if let Some(expires_after) = expires_after {
+        // For some reason, we need to convert the type first
+        let pg_expires_after = PgInterval::try_from(expires_after)
+            // For some reason, this error type does not let me to just bubble up the error here
+            .map_err(|e| anyhow::anyhow!("failed to encode duration: {}", e))?;
+
+        let res = sqlx::query_as!(
+            IdAndCreationTime,
+            r#"
+            INSERT INTO compat_access_tokens (compat_session_id, token, created_at, expires_at)
+            VALUES ($1, $2, NOW(), NOW() + $3)
+            RETURNING id, created_at
+        "#,
+            session.data,
+            token,
+            pg_expires_after,
+        )
+        .fetch_one(executor)
+        .instrument(tracing::info_span!("Insert compat access token"))
+        .await
+        .context("could not insert compat access token")?;
+
+        Ok(CompatAccessToken {
+            data: res.id,
+            token,
+            created_at: res.created_at,
+            expires_at: Some(res.created_at + expires_after),
+        })
+    } else {
+        let res = sqlx::query_as!(
+            IdAndCreationTime,
+            r#"
            INSERT INTO compat_access_tokens (compat_session_id, token)
            VALUES ($1, $2)
            RETURNING id, created_at
+        "#,
+            session.data,
+            token,
+        )
+        .fetch_one(executor)
+        .instrument(tracing::info_span!("Insert compat access token"))
+        .await
+        .context("could not insert compat access token")?;
+
+        Ok(CompatAccessToken {
+            data: res.id,
+            token,
+            created_at: res.created_at,
+            expires_at: None,
+        })
+    }
+}
+
+pub async fn add_compat_refresh_token(
+    executor: impl PgExecutor<'_>,
+    session: &CompatSession<PostgresqlBackend>,
+    access_token: &CompatAccessToken<PostgresqlBackend>,
+    token: String,
+) -> Result<CompatRefreshToken<PostgresqlBackend>, anyhow::Error> {
+    let res = sqlx::query_as!(
+        IdAndCreationTime,
+        r#"
+            INSERT INTO compat_refresh_tokens (compat_session_id, compat_access_token_id, token)
+            VALUES ($1, $2, $3)
+            RETURNING id, created_at
        "#,
        session.data,
+        access_token.data,
        token,
    )
-    .fetch_one(&mut txn)
-    .instrument(tracing::info_span!("Insert compat access token"))
+    .fetch_one(executor)
+    .instrument(tracing::info_span!("Insert compat refresh token"))
    .await
-    .context("could not insert compat access token")?;
+    .context("could not insert compat refresh token")?;

-    let token = CompatAccessToken {
+    Ok(CompatRefreshToken {
        data: res.id,
        token,
        created_at: res.created_at,
-        expires_after: None,
-    };
-
-    txn.commit().await.context("could not commit transaction")?;
-    Ok((token, session))
+    })
 }

 #[tracing::instrument(skip_all, err)]