Mirror
/
stickerpicker
mirror of https://github.com/maunium/stickerpicker.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
57 Commits
2 Branches
0 Tags
5.7 MiB
Tree: 12e1cb265d
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '12e1cb265d'
${ noResults }
stickerpicker/sticker/server/database/access_token.py

72 lines
2.8 KiB
Raw Normal View History

Add server with basic auth stuff
4 years ago
Add more stuff
4 years ago
Add server with basic auth stuff
4 years ago
Add more stuff
4 years ago
Add server with basic auth stuff
4 years ago
  1. # maunium-stickerpicker - A fast and simple Matrix sticker picker widget.
  2. # Copyright (C) 2020 Tulir Asokan
  3. #
  4. # This program is free software: you can redistribute it and/or modify
  5. # it under the terms of the GNU Affero General Public License as published by
  6. # the Free Software Foundation, either version 3 of the License, or
  7. # (at your option) any later version.
  8. #
  9. # This program is distributed in the hope that it will be useful,
  10. # but WITHOUT ANY WARRANTY; without even the implied warranty of
  11. # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
  12. # GNU Affero General Public License for more details.
  13. #
  14. # You should have received a copy of the GNU Affero General Public License
  15. # along with this program. If not, see <https://www.gnu.org/licenses/>.
  16. from typing import Optional, ClassVar
  17. from datetime import datetime, timedelta
  18. import hashlib
  20. from attr import dataclass
  21. import asyncpg
  23. from mautrix.types import UserID
  25. from .base import Base
  28. @dataclass(kw_only=True)
  29. class AccessToken(Base):
  30. token_expiry: ClassVar[timedelta] = timedelta(days=1)
  32. user_id: UserID
  33. token_id: int
  34. token_hash: bytes
  35. last_seen_ip: str
  36. last_seen_date: datetime
  38. @classmethod
  39. async def get(cls, token_id: int) -> Optional['AccessToken']:
  40. q = ("SELECT user_id, token_hash, last_seen_ip, last_seen_date "
  41. "FROM access_token WHERE token_id=$1")
  42. row: asyncpg.Record = await cls.db.fetchrow(q, token_id)
  43. if row is None:
  44. return None
  45. return cls(**row, token_id=token_id)
  47. async def update_ip(self, ip: str) -> None:
  48. if self.last_seen_ip == ip and (self.last_seen_date.replace(second=0, microsecond=0)
  49. == datetime.now().replace(second=0, microsecond=0)):
  50. # Same IP and last seen on this minute, skip update
  51. return
  52. q = ("UPDATE access_token SET last_seen_ip=$2, last_seen_date=current_timestamp "
  53. "WHERE token_id=$1 RETURNING last_seen_date")
  54. self.last_seen_date = await self.db.fetchval(q, self.token_id, ip)
  55. self.last_seen_ip = ip
  57. def check(self, token: str) -> bool:
  58. return self.token_hash == hashlib.sha256(token.encode("utf-8")).digest()
  60. @property
  61. def expired(self) -> bool:
  62. return self.last_seen_date + self.token_expiry < datetime.now()
  64. async def delete(self) -> None:
  65. await self.db.execute("DELETE FROM access_token WHERE token_id=$1", self.token_id)
  67. @classmethod
  68. async def insert(cls, user_id: UserID, token: str, ip: str) -> int:
  69. q = ("INSERT INTO access_token (user_id, token_hash, last_seen_ip, last_seen_date) "
  70. "VALUES ($1, $2, $3, current_timestamp) RETURNING token_id")
  71. hashed = hashlib.sha256(token.encode("utf-8")).digest()
  72. return await cls.db.fetchval(q, user_id, hashed, ip)