nextcloud/lib/private/Authentication/Token/DefaultTokenMapper.php

<?php

/**
 * @author Christoph Wurst <christoph@owncloud.com>
 *
 * @copyright Copyright (c) 2016, ownCloud, Inc.
 * @license AGPL-3.0
 *
 * This code is free software: you can redistribute it and/or modify
 * it under the terms of the GNU Affero General Public License, version 3,
 * as published by the Free Software Foundation.
 *
 * This program is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
 * GNU Affero General Public License for more details.
 *
 * You should have received a copy of the GNU Affero General Public License, version 3,
 * along with this program.  If not, see <http://www.gnu.org/licenses/>
 *
 */

namespace OC\Authentication\Token;

use OCP\AppFramework\Db\DoesNotExistException;
use OCP\AppFramework\Db\Mapper;
use OCP\IDBConnection;

class DefaultTokenMapper extends Mapper {

	public function __construct(IDBConnection $db) {
		parent::__construct($db, 'authtoken');
	}

	/**
	 * Invalidate (delete) a given token
	 *
	 * @param string $token
	 */
	public function invalidate($token) {
		$sql = 'DELETE FROM `' . $this->getTableName() . '` '
			. 'WHERE `token` = ?';
		return $this->execute($sql, [
				$token
		]);
	}

	/**
	 * @param int $olderThan
	 */
	public function invalidateOld($olderThan) {
		$sql = 'DELETE FROM `' . $this->getTableName() . '` '
			. 'WHERE `last_activity` < ? '
			. 'AND `type` = ?';
		$this->execute($sql, [
			$olderThan,
			IToken::TEMPORARY_TOKEN,
		]);
	}

	/**
	 * Get the user UID for the given token
	 *
	 * @param string $token
	 * @throws DoesNotExistException
	 * @return DefaultToken
	 */
	public function getToken($token) {
		$sql = 'SELECT `id`, `uid`, `password`, `name`, `token`, `last_activity` '
			. 'FROM `' . $this->getTableName() . '` '
			. 'WHERE `token` = ?';
		return $this->findEntity($sql, [
				$token
		]);
	}

}
token based auth * Add InvalidTokenException * add DefaultTokenMapper and use it to check if a auth token exists * create new token for the browser session if none exists hash stored token; save user agent * encrypt login password when creating the token 2016-04-25 15:10:55 +03:00			`<?php`

			`/**`
			`* @author Christoph Wurst <christoph@owncloud.com>`
			`*`
			`* @copyright Copyright (c) 2016, ownCloud, Inc.`
			`* @license AGPL-3.0`
			`*`
			`* This code is free software: you can redistribute it and/or modify`
			`* it under the terms of the GNU Affero General Public License, version 3,`
			`* as published by the Free Software Foundation.`
			`*`
			`* This program is distributed in the hope that it will be useful,`
			`* but WITHOUT ANY WARRANTY; without even the implied warranty of`
			`* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the`
			`* GNU Affero General Public License for more details.`
			`*`
			`* You should have received a copy of the GNU Affero General Public License, version 3,`
			`* along with this program. If not, see <http://www.gnu.org/licenses/>`
			`*`
			`*/`

			`namespace OC\Authentication\Token;`

invalidate (delete) session token on logout add 'last_activity' column to session tokens and delete old ones via a background job 2016-04-25 17:40:41 +03:00			`use OCP\AppFramework\Db\DoesNotExistException;`
token based auth * Add InvalidTokenException * add DefaultTokenMapper and use it to check if a auth token exists * create new token for the browser session if none exists hash stored token; save user agent * encrypt login password when creating the token 2016-04-25 15:10:55 +03:00			`use OCP\AppFramework\Db\Mapper;`
			`use OCP\IDBConnection;`

			`class DefaultTokenMapper extends Mapper {`

			`public function __construct(IDBConnection $db) {`
			`parent::__construct($db, 'authtoken');`
			`}`

invalidate (delete) session token on logout add 'last_activity' column to session tokens and delete old ones via a background job 2016-04-25 17:40:41 +03:00			`/**`
			`* Invalidate (delete) a given token`
			`*`
			`* @param string $token`
			`*/`
			`public function invalidate($token) {`
			$sql = 'DELETE FROM `' . $this->getTableName() . '` '
			. 'WHERE `token` = ?';
			`return $this->execute($sql, [`
			`$token`
			`]);`
			`}`

			`/**`
			`* @param int $olderThan`
			`*/`
			`public function invalidateOld($olderThan) {`
			$sql = 'DELETE FROM `' . $this->getTableName() . '` '
Add index on 'last_activity' add token type column and delete only temporary tokens in the background job debounce token updates; fix wrong class import 2016-04-26 13:48:19 +03:00			. 'WHERE `last_activity` < ? '
			. 'AND `type` = ?';
invalidate (delete) session token on logout add 'last_activity' column to session tokens and delete old ones via a background job 2016-04-25 17:40:41 +03:00			`$this->execute($sql, [`
Add index on 'last_activity' add token type column and delete only temporary tokens in the background job debounce token updates; fix wrong class import 2016-04-26 13:48:19 +03:00			`$olderThan,`
			`IToken::TEMPORARY_TOKEN,`
invalidate (delete) session token on logout add 'last_activity' column to session tokens and delete old ones via a background job 2016-04-25 17:40:41 +03:00			`]);`
			`}`

			`/**`
			`* Get the user UID for the given token`
			`*`
			`* @param string $token`
			`* @throws DoesNotExistException`
Check if session token is valid and log user out if the check fails * Update last_activity timestamp of the session token * Check user backend credentials once in 5 minutes 2016-04-26 12:32:35 +03:00			`* @return DefaultToken`
invalidate (delete) session token on logout add 'last_activity' column to session tokens and delete old ones via a background job 2016-04-25 17:40:41 +03:00			`*/`
Check if session token is valid and log user out if the check fails * Update last_activity timestamp of the session token * Check user backend credentials once in 5 minutes 2016-04-26 12:32:35 +03:00			`public function getToken($token) {`
			$sql = 'SELECT `id`, `uid`, `password`, `name`, `token`, `last_activity` '
token based auth * Add InvalidTokenException * add DefaultTokenMapper and use it to check if a auth token exists * create new token for the browser session if none exists hash stored token; save user agent * encrypt login password when creating the token 2016-04-25 15:10:55 +03:00			. 'FROM `' . $this->getTableName() . '` '
			. 'WHERE `token` = ?';
			`return $this->findEntity($sql, [`
			`$token`
			`]);`
			`}`

			`}`