defmodule Pleroma.Web.OAuth.Token do use Ecto.Schema import Ecto.Query alias Pleroma.{User, Repo} alias Pleroma.Web.OAuth.{Token, App, Authorization} schema "oauth_tokens" do field(:token, :string) field(:refresh_token, :string) field(:valid_until, :naive_datetime) belongs_to(:user, Pleroma.User) belongs_to(:app, App) timestamps() end def exchange_token(app, auth) do with {:ok, auth} <- Authorization.use_token(auth), true <- auth.app_id == app.id do create_token(app, Repo.get(User, auth.user_id)) end end def create_token(%App{} = app, %User{} = user) do token = :crypto.strong_rand_bytes(32) |> Base.url_encode64() refresh_token = :crypto.strong_rand_bytes(32) |> Base.url_encode64() token = %Token{ token: token, refresh_token: refresh_token, user_id: user.id, app_id: app.id, valid_until: NaiveDateTime.add(NaiveDateTime.utc_now(), 60 * 10) } Repo.insert(token) end def delete_user_tokens(%User{id: user_id}) do from( t in Pleroma.Web.OAuth.Token, where: t.user_id == ^user_id ) |> Repo.delete_all() end end