nextcloud/lib/private/Authentication/Token/DefaultTokenMapper.php

<?php

declare(strict_types=1);

/**
 * @copyright Copyright (c) 2016, ownCloud, Inc.
 *
 * @author Bjoern Schiessle <bjoern@schiessle.org>
 * @author Christoph Wurst <christoph@winzerhof-wurst.at>
 * @author Lukas Reschke <lukas@statuscode.ch>
 * @author Marcel Waldvogel <marcel.waldvogel@uni-konstanz.de>
 * @author Robin Appelman <robin@icewind.nl>
 * @author Roeland Jago Douma <roeland@famdouma.nl>
 *
 * @license AGPL-3.0
 *
 * This code is free software: you can redistribute it and/or modify
 * it under the terms of the GNU Affero General Public License, version 3,
 * as published by the Free Software Foundation.
 *
 * This program is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
 * GNU Affero General Public License for more details.
 *
 * You should have received a copy of the GNU Affero General Public License, version 3,
 * along with this program. If not, see <http://www.gnu.org/licenses/>
 *
 */

namespace OC\Authentication\Token;

use OCP\AppFramework\Db\DoesNotExistException;
use OCP\AppFramework\Db\QBMapper;
use OCP\DB\QueryBuilder\IQueryBuilder;
use OCP\IDBConnection;

class DefaultTokenMapper extends QBMapper {
	public function __construct(IDBConnection $db) {
		parent::__construct($db, 'authtoken');
	}

	/**
	 * Invalidate (delete) a given token
	 *
	 * @param string $token
	 */
	public function invalidate(string $token) {
		/* @var $qb IQueryBuilder */
		$qb = $this->db->getQueryBuilder();
		$qb->delete('authtoken')
			->where($qb->expr()->eq('token', $qb->createNamedParameter($token, IQueryBuilder::PARAM_STR)))
			->andWhere($qb->expr()->eq('version', $qb->createNamedParameter(DefaultToken::VERSION, IQueryBuilder::PARAM_INT)))
			->execute();
	}

	/**
	 * @param int $olderThan
	 * @param int $remember
	 */
	public function invalidateOld(int $olderThan, int $remember = IToken::DO_NOT_REMEMBER) {
		/* @var $qb IQueryBuilder */
		$qb = $this->db->getQueryBuilder();
		$qb->delete('authtoken')
			->where($qb->expr()->lt('last_activity', $qb->createNamedParameter($olderThan, IQueryBuilder::PARAM_INT)))
			->andWhere($qb->expr()->eq('type', $qb->createNamedParameter(IToken::TEMPORARY_TOKEN, IQueryBuilder::PARAM_INT)))
			->andWhere($qb->expr()->eq('remember', $qb->createNamedParameter($remember, IQueryBuilder::PARAM_INT)))
			->andWhere($qb->expr()->eq('version', $qb->createNamedParameter(DefaultToken::VERSION, IQueryBuilder::PARAM_INT)))
			->execute();
	}

	/**
	 * Get the user UID for the given token
	 *
	 * @param string $token
	 * @throws DoesNotExistException
	 * @return DefaultToken
	 */
	public function getToken(string $token): DefaultToken {
		/* @var $qb IQueryBuilder */
		$qb = $this->db->getQueryBuilder();
		$result = $qb->select('id', 'uid', 'login_name', 'password', 'name', 'token', 'type', 'remember', 'last_activity', 'last_check', 'scope', 'expires', 'version')
			->from('authtoken')
			->where($qb->expr()->eq('token', $qb->createNamedParameter($token)))
			->andWhere($qb->expr()->eq('version', $qb->createNamedParameter(DefaultToken::VERSION, IQueryBuilder::PARAM_INT)))
			->execute();

		$data = $result->fetch();
		$result->closeCursor();
		if ($data === false) {
			throw new DoesNotExistException('token does not exist');
		}
		return DefaultToken::fromRow($data);
	}

	/**
	 * Get the token for $id
	 *
	 * @param int $id
	 * @throws DoesNotExistException
	 * @return DefaultToken
	 */
	public function getTokenById(int $id): DefaultToken {
		/* @var $qb IQueryBuilder */
		$qb = $this->db->getQueryBuilder();
		$result = $qb->select('id', 'uid', 'login_name', 'password', 'name', 'token', 'type', 'remember', 'last_activity', 'last_check', 'scope', 'expires', 'version')
			->from('authtoken')
			->where($qb->expr()->eq('id', $qb->createNamedParameter($id)))
			->andWhere($qb->expr()->eq('version', $qb->createNamedParameter(DefaultToken::VERSION, IQueryBuilder::PARAM_INT)))
			->execute();

		$data = $result->fetch();
		$result->closeCursor();
		if ($data === false) {
			throw new DoesNotExistException('token does not exist');
		}
		return DefaultToken::fromRow($data);
	}

	/**
	 * Get all tokens of a user
	 *
	 * The provider may limit the number of result rows in case of an abuse
	 * where a high number of (session) tokens is generated
	 *
	 * @param string $uid
	 * @return DefaultToken[]
	 */
	public function getTokenByUser(string $uid): array {
		/* @var $qb IQueryBuilder */
		$qb = $this->db->getQueryBuilder();
		$qb->select('id', 'uid', 'login_name', 'password', 'name', 'token', 'type', 'remember', 'last_activity', 'last_check', 'scope', 'expires', 'version')
			->from('authtoken')
			->where($qb->expr()->eq('uid', $qb->createNamedParameter($uid)))
			->andWhere($qb->expr()->eq('version', $qb->createNamedParameter(DefaultToken::VERSION, IQueryBuilder::PARAM_INT)))
			->setMaxResults(1000);
		$result = $qb->execute();
		$data = $result->fetchAll();
		$result->closeCursor();

		$entities = array_map(function ($row) {
			return DefaultToken::fromRow($row);
		}, $data);

		return $entities;
	}

	public function deleteById(string $uid, int $id) {
		/* @var $qb IQueryBuilder */
		$qb = $this->db->getQueryBuilder();
		$qb->delete('authtoken')
			->where($qb->expr()->eq('id', $qb->createNamedParameter($id)))
			->andWhere($qb->expr()->eq('uid', $qb->createNamedParameter($uid)))
			->andWhere($qb->expr()->eq('version', $qb->createNamedParameter(DefaultToken::VERSION, IQueryBuilder::PARAM_INT)));
		$qb->execute();
	}

	/**
	 * delete all auth token which belong to a specific client if the client was deleted
	 *
	 * @param string $name
	 */
	public function deleteByName(string $name) {
		$qb = $this->db->getQueryBuilder();
		$qb->delete('authtoken')
			->where($qb->expr()->eq('name', $qb->createNamedParameter($name), IQueryBuilder::PARAM_STR))
			->andWhere($qb->expr()->eq('version', $qb->createNamedParameter(DefaultToken::VERSION, IQueryBuilder::PARAM_INT)));
		$qb->execute();
	}
}
token based auth * Add InvalidTokenException * add DefaultTokenMapper and use it to check if a auth token exists * create new token for the browser session if none exists hash stored token; save user agent * encrypt login password when creating the token 2016-04-25 15:10:55 +03:00			`<?php`
Update license headers Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at> 2019-12-03 21:57:53 +03:00
Make the Token Auth code strict In preparation for #9441 Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl> 2018-05-15 11:24:46 +03:00			`declare(strict_types=1);`
Update license headers Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at> 2019-12-03 21:57:53 +03:00
token based auth * Add InvalidTokenException * add DefaultTokenMapper and use it to check if a auth token exists * create new token for the browser session if none exists hash stored token; save user agent * encrypt login password when creating the token 2016-04-25 15:10:55 +03:00			`/**`
Fix others 2016-07-21 18:07:57 +03:00			`* @copyright Copyright (c) 2016, ownCloud, Inc.`
			`*`
Update license headers Signed-off-by: Morris Jobke <hey@morrisjobke.de> 2017-11-06 17:56:42 +03:00			`* @author Bjoern Schiessle <bjoern@schiessle.org>`
Update license headers Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at> 2019-12-03 21:57:53 +03:00			`* @author Christoph Wurst <christoph@winzerhof-wurst.at>`
Update license headers Signed-off-by: Morris Jobke <hey@morrisjobke.de> 2017-11-06 17:56:42 +03:00			`* @author Lukas Reschke <lukas@statuscode.ch>`
			`* @author Marcel Waldvogel <marcel.waldvogel@uni-konstanz.de>`
			`* @author Robin Appelman <robin@icewind.nl>`
			`* @author Roeland Jago Douma <roeland@famdouma.nl>`
token based auth * Add InvalidTokenException * add DefaultTokenMapper and use it to check if a auth token exists * create new token for the browser session if none exists hash stored token; save user agent * encrypt login password when creating the token 2016-04-25 15:10:55 +03:00			`*`
			`* @license AGPL-3.0`
			`*`
			`* This code is free software: you can redistribute it and/or modify`
			`* it under the terms of the GNU Affero General Public License, version 3,`
			`* as published by the Free Software Foundation.`
			`*`
			`* This program is distributed in the hope that it will be useful,`
			`* but WITHOUT ANY WARRANTY; without even the implied warranty of`
			`* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the`
			`* GNU Affero General Public License for more details.`
			`*`
			`* You should have received a copy of the GNU Affero General Public License, version 3,`
Update license headers Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at> 2019-12-03 21:57:53 +03:00			`* along with this program. If not, see <http://www.gnu.org/licenses/>`
token based auth * Add InvalidTokenException * add DefaultTokenMapper and use it to check if a auth token exists * create new token for the browser session if none exists hash stored token; save user agent * encrypt login password when creating the token 2016-04-25 15:10:55 +03:00			`*`
			`*/`

			`namespace OC\Authentication\Token;`

invalidate (delete) session token on logout add 'last_activity' column to session tokens and delete old ones via a background job 2016-04-25 17:40:41 +03:00			`use OCP\AppFramework\Db\DoesNotExistException;`
Move over TokenMapper Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl> 2018-05-10 15:47:26 +03:00			`use OCP\AppFramework\Db\QBMapper;`
use the query builder instead of raw sql statements 2016-05-08 18:41:37 +03:00			`use OCP\DB\QueryBuilder\IQueryBuilder;`
token based auth * Add InvalidTokenException * add DefaultTokenMapper and use it to check if a auth token exists * create new token for the browser session if none exists hash stored token; save user agent * encrypt login password when creating the token 2016-04-25 15:10:55 +03:00			`use OCP\IDBConnection;`

Move over TokenMapper Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl> 2018-05-10 15:47:26 +03:00			`class DefaultTokenMapper extends QBMapper {`
token based auth * Add InvalidTokenException * add DefaultTokenMapper and use it to check if a auth token exists * create new token for the browser session if none exists hash stored token; save user agent * encrypt login password when creating the token 2016-04-25 15:10:55 +03:00			`public function __construct(IDBConnection $db) {`
Rename table back to lowercase Signed-off-by: Lukas Reschke <lukas@statuscode.ch> 2017-05-18 17:36:50 +03:00			`parent::__construct($db, 'authtoken');`
token based auth * Add InvalidTokenException * add DefaultTokenMapper and use it to check if a auth token exists * create new token for the browser session if none exists hash stored token; save user agent * encrypt login password when creating the token 2016-04-25 15:10:55 +03:00			`}`

invalidate (delete) session token on logout add 'last_activity' column to session tokens and delete old ones via a background job 2016-04-25 17:40:41 +03:00			`/**`
			`* Invalidate (delete) a given token`
			`*`
			`* @param string $token`
			`*/`
Make the Token Auth code strict In preparation for #9441 Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl> 2018-05-15 11:24:46 +03:00			`public function invalidate(string $token) {`
bring back remember-me * try to reuse the old session token for remember me login * decrypt/encrypt token password and set the session id accordingly * create remember-me cookies only if checkbox is checked and 2fa solved * adjust db token cleanup to store remembered tokens longer * adjust unit tests Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at> 2016-09-06 22:41:15 +03:00			`/* @var $qb IQueryBuilder */`
use the query builder instead of raw sql statements 2016-05-08 18:41:37 +03:00			`$qb = $this->db->getQueryBuilder();`
Rename table back to lowercase Signed-off-by: Lukas Reschke <lukas@statuscode.ch> 2017-05-18 17:36:50 +03:00			`$qb->delete('authtoken')`
Initial PKT implementation Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl> 2018-05-18 20:48:08 +03:00			`->where($qb->expr()->eq('token', $qb->createNamedParameter($token, IQueryBuilder::PARAM_STR)))`
Use constant for token version And don't set the version in the constructor. That would possible cause to many updates. Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl> 2018-06-04 10:51:13 +03:00			`->andWhere($qb->expr()->eq('version', $qb->createNamedParameter(DefaultToken::VERSION, IQueryBuilder::PARAM_INT)))`
use the query builder instead of raw sql statements 2016-05-08 18:41:37 +03:00			`->execute();`
invalidate (delete) session token on logout add 'last_activity' column to session tokens and delete old ones via a background job 2016-04-25 17:40:41 +03:00			`}`

			`/**`
			`* @param int $olderThan`
bring back remember-me * try to reuse the old session token for remember me login * decrypt/encrypt token password and set the session id accordingly * create remember-me cookies only if checkbox is checked and 2fa solved * adjust db token cleanup to store remembered tokens longer * adjust unit tests Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at> 2016-09-06 22:41:15 +03:00			`* @param int $remember`
invalidate (delete) session token on logout add 'last_activity' column to session tokens and delete old ones via a background job 2016-04-25 17:40:41 +03:00			`*/`
Make the Token Auth code strict In preparation for #9441 Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl> 2018-05-15 11:24:46 +03:00			`public function invalidateOld(int $olderThan, int $remember = IToken::DO_NOT_REMEMBER) {`
use the query builder instead of raw sql statements 2016-05-08 18:41:37 +03:00			`/* @var $qb IQueryBuilder */`
			`$qb = $this->db->getQueryBuilder();`
Rename table back to lowercase Signed-off-by: Lukas Reschke <lukas@statuscode.ch> 2017-05-18 17:36:50 +03:00			`$qb->delete('authtoken')`
bring back remember-me * try to reuse the old session token for remember me login * decrypt/encrypt token password and set the session id accordingly * create remember-me cookies only if checkbox is checked and 2fa solved * adjust db token cleanup to store remembered tokens longer * adjust unit tests Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at> 2016-09-06 22:41:15 +03:00			`->where($qb->expr()->lt('last_activity', $qb->createNamedParameter($olderThan, IQueryBuilder::PARAM_INT)))`
			`->andWhere($qb->expr()->eq('type', $qb->createNamedParameter(IToken::TEMPORARY_TOKEN, IQueryBuilder::PARAM_INT)))`
			`->andWhere($qb->expr()->eq('remember', $qb->createNamedParameter($remember, IQueryBuilder::PARAM_INT)))`
Use constant for token version And don't set the version in the constructor. That would possible cause to many updates. Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl> 2018-06-04 10:51:13 +03:00			`->andWhere($qb->expr()->eq('version', $qb->createNamedParameter(DefaultToken::VERSION, IQueryBuilder::PARAM_INT)))`
use the query builder instead of raw sql statements 2016-05-08 18:41:37 +03:00			`->execute();`
invalidate (delete) session token on logout add 'last_activity' column to session tokens and delete old ones via a background job 2016-04-25 17:40:41 +03:00			`}`

			`/**`
			`* Get the user UID for the given token`
			`*`
			`* @param string $token`
			`* @throws DoesNotExistException`
Check if session token is valid and log user out if the check fails * Update last_activity timestamp of the session token * Check user backend credentials once in 5 minutes 2016-04-26 12:32:35 +03:00			`* @return DefaultToken`
invalidate (delete) session token on logout add 'last_activity' column to session tokens and delete old ones via a background job 2016-04-25 17:40:41 +03:00			`*/`
Make the Token Auth code strict In preparation for #9441 Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl> 2018-05-15 11:24:46 +03:00			`public function getToken(string $token): DefaultToken {`
use the query builder instead of raw sql statements 2016-05-08 18:41:37 +03:00			`/* @var $qb IQueryBuilder */`
			`$qb = $this->db->getQueryBuilder();`
Initial PKT implementation Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl> 2018-05-18 20:48:08 +03:00			`$result = $qb->select('id', 'uid', 'login_name', 'password', 'name', 'token', 'type', 'remember', 'last_activity', 'last_check', 'scope', 'expires', 'version')`
Rename table back to lowercase Signed-off-by: Lukas Reschke <lukas@statuscode.ch> 2017-05-18 17:36:50 +03:00			`->from('authtoken')`
Adds TokenProvider and Mapper tests Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl> 2016-11-11 11:25:42 +03:00			`->where($qb->expr()->eq('token', $qb->createNamedParameter($token)))`
Use constant for token version And don't set the version in the constructor. That would possible cause to many updates. Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl> 2018-06-04 10:51:13 +03:00			`->andWhere($qb->expr()->eq('version', $qb->createNamedParameter(DefaultToken::VERSION, IQueryBuilder::PARAM_INT)))`
use the query builder instead of raw sql statements 2016-05-08 18:41:37 +03:00			`->execute();`

			`$data = $result->fetch();`
close cursor after loading a token 2016-06-17 17:13:11 +03:00			`$result->closeCursor();`
use the query builder instead of raw sql statements 2016-05-08 18:41:37 +03:00			`if ($data === false) {`
			`throw new DoesNotExistException('token does not exist');`
			`}`
			`return DefaultToken::fromRow($data);`
token based auth * Add InvalidTokenException * add DefaultTokenMapper and use it to check if a auth token exists * create new token for the browser session if none exists hash stored token; save user agent * encrypt login password when creating the token 2016-04-25 15:10:55 +03:00			`}`

allow configuring filesystem access Signed-off-by: Robin Appelman <icewind@owncloud.com> 2016-08-03 16:57:06 +03:00			`/**`
Adds TokenProvider and Mapper tests Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl> 2016-11-11 11:25:42 +03:00			`* Get the token for $id`
allow configuring filesystem access Signed-off-by: Robin Appelman <icewind@owncloud.com> 2016-08-03 16:57:06 +03:00			`*`
Make the Token Auth code strict In preparation for #9441 Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl> 2018-05-15 11:24:46 +03:00			`* @param int $id`
allow configuring filesystem access Signed-off-by: Robin Appelman <icewind@owncloud.com> 2016-08-03 16:57:06 +03:00			`* @throws DoesNotExistException`
			`* @return DefaultToken`
			`*/`
Make the Token Auth code strict In preparation for #9441 Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl> 2018-05-15 11:24:46 +03:00			`public function getTokenById(int $id): DefaultToken {`
allow configuring filesystem access Signed-off-by: Robin Appelman <icewind@owncloud.com> 2016-08-03 16:57:06 +03:00			`/* @var $qb IQueryBuilder */`
			`$qb = $this->db->getQueryBuilder();`
Initial PKT implementation Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl> 2018-05-18 20:48:08 +03:00			`$result = $qb->select('id', 'uid', 'login_name', 'password', 'name', 'token', 'type', 'remember', 'last_activity', 'last_check', 'scope', 'expires', 'version')`
Rename table back to lowercase Signed-off-by: Lukas Reschke <lukas@statuscode.ch> 2017-05-18 17:36:50 +03:00			`->from('authtoken')`
Adds TokenProvider and Mapper tests Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl> 2016-11-11 11:25:42 +03:00			`->where($qb->expr()->eq('id', $qb->createNamedParameter($id)))`
Use constant for token version And don't set the version in the constructor. That would possible cause to many updates. Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl> 2018-06-04 10:51:13 +03:00			`->andWhere($qb->expr()->eq('version', $qb->createNamedParameter(DefaultToken::VERSION, IQueryBuilder::PARAM_INT)))`
allow configuring filesystem access Signed-off-by: Robin Appelman <icewind@owncloud.com> 2016-08-03 16:57:06 +03:00			`->execute();`

			`$data = $result->fetch();`
			`$result->closeCursor();`
			`if ($data === false) {`
			`throw new DoesNotExistException('token does not exist');`
More phpstorm inspection fixes Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl> 2017-07-23 22:03:26 +03:00			`}`
allow configuring filesystem access Signed-off-by: Robin Appelman <icewind@owncloud.com> 2016-08-03 16:57:06 +03:00			`return DefaultToken::fromRow($data);`
			`}`

add method to query all user auth tokens 2016-05-18 12:33:56 +03:00			`/**`
Minor typos Signed-off-by: Marcel Waldvogel <marcel.waldvogel@uni-konstanz.de> 2017-07-21 10:50:44 +03:00			`* Get all tokens of a user`
add method to query all user auth tokens 2016-05-18 12:33:56 +03:00			`*`
			`* The provider may limit the number of result rows in case of an abuse`
			`* where a high number of (session) tokens is generated`
			`*`
Just pass uid to the Token stuff We don't have user objects in the code everywhere Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl> 2018-05-29 10:29:29 +03:00			`* @param string $uid`
add method to query all user auth tokens 2016-05-18 12:33:56 +03:00			`* @return DefaultToken[]`
			`*/`
Just pass uid to the Token stuff We don't have user objects in the code everywhere Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl> 2018-05-29 10:29:29 +03:00			`public function getTokenByUser(string $uid): array {`
add method to query all user auth tokens 2016-05-18 12:33:56 +03:00			`/* @var $qb IQueryBuilder */`
			`$qb = $this->db->getQueryBuilder();`
Initial PKT implementation Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl> 2018-05-18 20:48:08 +03:00			`$qb->select('id', 'uid', 'login_name', 'password', 'name', 'token', 'type', 'remember', 'last_activity', 'last_check', 'scope', 'expires', 'version')`
Rename table back to lowercase Signed-off-by: Lukas Reschke <lukas@statuscode.ch> 2017-05-18 17:36:50 +03:00			`->from('authtoken')`
Just pass uid to the Token stuff We don't have user objects in the code everywhere Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl> 2018-05-29 10:29:29 +03:00			`->where($qb->expr()->eq('uid', $qb->createNamedParameter($uid)))`
Use constant for token version And don't set the version in the constructor. That would possible cause to many updates. Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl> 2018-06-04 10:51:13 +03:00			`->andWhere($qb->expr()->eq('version', $qb->createNamedParameter(DefaultToken::VERSION, IQueryBuilder::PARAM_INT)))`
add method to query all user auth tokens 2016-05-18 12:33:56 +03:00			`->setMaxResults(1000);`
			`$result = $qb->execute();`
			`$data = $result->fetchAll();`
			`$result->closeCursor();`

			`$entities = array_map(function ($row) {`
			`return DefaultToken::fromRow($row);`
			`}, $data);`

			`return $entities;`
			`}`

Just pass uid to the Token stuff We don't have user objects in the code everywhere Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl> 2018-05-29 10:29:29 +03:00			`public function deleteById(string $uid, int $id) {`
add button to invalidate browser sessions/device tokens 2016-05-19 12:20:22 +03:00			`/* @var $qb IQueryBuilder */`
			`$qb = $this->db->getQueryBuilder();`
Rename table back to lowercase Signed-off-by: Lukas Reschke <lukas@statuscode.ch> 2017-05-18 17:36:50 +03:00			`$qb->delete('authtoken')`
add button to invalidate browser sessions/device tokens 2016-05-19 12:20:22 +03:00			`->where($qb->expr()->eq('id', $qb->createNamedParameter($id)))`
Just pass uid to the Token stuff We don't have user objects in the code everywhere Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl> 2018-05-29 10:29:29 +03:00			`->andWhere($qb->expr()->eq('uid', $qb->createNamedParameter($uid)))`
Use constant for token version And don't set the version in the constructor. That would possible cause to many updates. Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl> 2018-06-04 10:51:13 +03:00			`->andWhere($qb->expr()->eq('version', $qb->createNamedParameter(DefaultToken::VERSION, IQueryBuilder::PARAM_INT)));`
add button to invalidate browser sessions/device tokens 2016-05-19 12:20:22 +03:00			`$qb->execute();`
			`}`

delete auth token when client gets deleted Signed-off-by: Bjoern Schiessle <bjoern@schiessle.org> 2017-05-12 17:14:32 +03:00			`/**`
			`* delete all auth token which belong to a specific client if the client was deleted`
			`*`
			`* @param string $name`
			`*/`
Make the Token Auth code strict In preparation for #9441 Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl> 2018-05-15 11:24:46 +03:00			`public function deleteByName(string $name) {`
delete auth token when client gets deleted Signed-off-by: Bjoern Schiessle <bjoern@schiessle.org> 2017-05-12 17:14:32 +03:00			`$qb = $this->db->getQueryBuilder();`
Rename table back to lowercase Signed-off-by: Lukas Reschke <lukas@statuscode.ch> 2017-05-18 17:36:50 +03:00			`$qb->delete('authtoken')`
Initial PKT implementation Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl> 2018-05-18 20:48:08 +03:00			`->where($qb->expr()->eq('name', $qb->createNamedParameter($name), IQueryBuilder::PARAM_STR))`
Use constant for token version And don't set the version in the constructor. That would possible cause to many updates. Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl> 2018-06-04 10:51:13 +03:00			`->andWhere($qb->expr()->eq('version', $qb->createNamedParameter(DefaultToken::VERSION, IQueryBuilder::PARAM_INT)));`
delete auth token when client gets deleted Signed-off-by: Bjoern Schiessle <bjoern@schiessle.org> 2017-05-12 17:14:32 +03:00			`$qb->execute();`
			`}`
token based auth * Add InvalidTokenException * add DefaultTokenMapper and use it to check if a auth token exists * create new token for the browser session if none exists hash stored token; save user agent * encrypt login password when creating the token 2016-04-25 15:10:55 +03:00			`}`