Add a GraphQL mutation to create arbitrary OAuth2 sessions.

2025-08-07 17:03:01 +03:00 · 2023-09-08 19:28:46 +02:00
parent b8012bb66c
commit 83ca90ee3d
8 changed files with 369 additions and 71 deletions
--- a/crates/storage/src/oauth2/session.rs
+++ b/crates/storage/src/oauth2/session.rs
@@ -140,6 +140,33 @@ pub trait OAuth2SessionRepository: Send + Sync {
    /// Returns [`Self::Error`] if the underlying repository fails
    async fn lookup(&mut self, id: Ulid) -> Result<Option<Session>, Self::Error>;

+    /// Create a new [`Session`] with the given parameters
+    ///
+    /// Returns the newly created [`Session`]
+    ///
+    /// # Parameters
+    ///
+    /// * `rng`: The random number generator to use
+    /// * `clock`: The clock used to generate timestamps
+    /// * `client`: The [`Client`] which created the [`Session`]
+    /// * `user`: The [`User`] for which the session should be created, if any
+    /// * `user_session`: The [`BrowserSession`] of the user which completed the
+    ///   authorization, if any
+    /// * `scope`: The [`Scope`] of the [`Session`]
+    ///
+    /// # Errors
+    ///
+    /// Returns [`Self::Error`] if the underlying repository fails
+    async fn add(
+        &mut self,
+        rng: &mut (dyn RngCore + Send),
+        clock: &dyn Clock,
+        client: &Client,
+        user: Option<&User>,
+        user_session: Option<&BrowserSession>,
+        scope: Scope,
+    ) -> Result<Session, Self::Error>;
+
    /// Create a new [`Session`] out of a [`Client`] and a [`BrowserSession`]
    ///
    /// Returns the newly created [`Session`]
@@ -163,7 +190,17 @@ pub trait OAuth2SessionRepository: Send + Sync {
        client: &Client,
        user_session: &BrowserSession,
        scope: Scope,
-    ) -> Result<Session, Self::Error>;
+    ) -> Result<Session, Self::Error> {
+        self.add(
+            rng,
+            clock,
+            client,
+            Some(&user_session.user),
+            Some(user_session),
+            scope,
+        )
+        .await
+    }

    /// Create a new [`Session`] for a [`Client`] using the client credentials
    /// flow
@@ -186,7 +223,9 @@ pub trait OAuth2SessionRepository: Send + Sync {
        clock: &dyn Clock,
        client: &Client,
        scope: Scope,
-    ) -> Result<Session, Self::Error>;
+    ) -> Result<Session, Self::Error> {
+        self.add(rng, clock, client, None, None, scope).await
+    }

    /// Mark a [`Session`] as finished
    ///
@@ -234,6 +273,16 @@ pub trait OAuth2SessionRepository: Send + Sync {
 repository_impl!(OAuth2SessionRepository:
    async fn lookup(&mut self, id: Ulid) -> Result<Option<Session>, Self::Error>;

+    async fn add(
+        &mut self,
+        rng: &mut (dyn RngCore + Send),
+        clock: &dyn Clock,
+        client: &Client,
+        user: Option<&User>,
+        user_session: Option<&BrowserSession>,
+        scope: Scope,
+    ) -> Result<Session, Self::Error>;
+
    async fn add_from_browser_session(
        &mut self,
        rng: &mut (dyn RngCore + Send),