mirror
/
dex
mirror of https://github.com/dexidp/dex.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
OpenID Connect (OIDC) identity and OAuth 2.0 provider with pluggable connectors
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
321 Commits
34 Branches
98 Tags
50 MiB
 
 
 
 
 
 
Tree: 3f4a42eefd
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '3f4a42eefd'
${ noResults }
dex/db/password.go

167 lines
3.2 KiB
Raw Blame History

package db
import (
"errors"
"reflect"
"time"
"github.com/go-gorp/gorp"
"github.com/coreos/dex/pkg/log"
"github.com/coreos/dex/repo"
"github.com/coreos/dex/user"
)
const (
passwordInfoTableName = "password_info"
)
func init() {
register(table{
name: passwordInfoTableName,
model: passwordInfoModel{},
autoinc: false,
pkey: []string{"user_id"},
})
}
type passwordInfoModel struct {
UserID string `db:"user_id"`
Password string `db:"password"`
PasswordExpires int64 `db:"password_expires"`
}
func NewPasswordInfoRepo(dbm *gorp.DbMap) user.PasswordInfoRepo {
return &passwordInfoRepo{
db: &db{dbm},
}
}
func NewPasswordInfoRepoFromPasswordInfos(dbm *gorp.DbMap, infos []user.PasswordInfo) (user.PasswordInfoRepo, error) {
repo := NewPasswordInfoRepo(dbm)
for _, info := range infos {
if err := repo.Create(nil, info); err != nil {
return nil, err
}
}
return repo, nil
}
type passwordInfoRepo struct {
*db
}
func (r *passwordInfoRepo) Get(tx repo.Transaction, userID string) (user.PasswordInfo, error) {
return r.get(tx, userID)
}
func (r *passwordInfoRepo) Create(tx repo.Transaction, pw user.PasswordInfo) (err error) {
if pw.UserID == "" {
return user.ErrorInvalidID
}
_, err = r.get(tx, pw.UserID)
if err == nil {
return user.ErrorDuplicateID
}
if err != user.ErrorNotFound {
return err
}
err = r.insert(tx, pw)
if err != nil {
return err
}
return nil
}
func (r *passwordInfoRepo) Update(tx repo.Transaction, pw user.PasswordInfo) error {
if pw.UserID == "" {
return user.ErrorInvalidID
}
if len(pw.Password) == 0 {
return user.ErrorInvalidPassword
}
// make sure this user exists already
_, err := r.get(tx, pw.UserID)
if err != nil {
return err
}
err = r.update(tx, pw)
if err != nil {
return err
}
return nil
}
func (r *passwordInfoRepo) get(tx repo.Transaction, id string) (user.PasswordInfo, error) {
ex := r.executor(tx)
m, err := ex.Get(passwordInfoModel{}, id)
if err != nil {
return user.PasswordInfo{}, nil
}
if m == nil {
return user.PasswordInfo{}, user.ErrorNotFound
}
pwm, ok := m.(*passwordInfoModel)
if !ok {
log.Errorf("expected passwordInfoModel but found %v", reflect.TypeOf(m))
return user.PasswordInfo{}, errors.New("unrecognized model")
}
return pwm.passwordInfo()
}
func (r *passwordInfoRepo) insert(tx repo.Transaction, pw user.PasswordInfo) error {
ex := r.executor(tx)
pm, err := newPasswordInfoModel(&pw)
if err != nil {
return err
}
return ex.Insert(pm)
}
func (r *passwordInfoRepo) update(tx repo.Transaction, pw user.PasswordInfo) error {
ex := r.executor(tx)
pm, err := newPasswordInfoModel(&pw)
if err != nil {
return err
}
_, err = ex.Update(pm)
return err
}
func (p *passwordInfoModel) passwordInfo() (user.PasswordInfo, error) {
pw := user.PasswordInfo{
UserID: p.UserID,
Password: user.Password(p.Password),
}
if p.PasswordExpires != 0 {
pw.PasswordExpires = time.Unix(p.PasswordExpires, 0).UTC()
}
return pw, nil
}
func newPasswordInfoModel(p *user.PasswordInfo) (*passwordInfoModel, error) {
pw := passwordInfoModel{
UserID: p.UserID,
Password: string(p.Password),
}
if !p.PasswordExpires.IsZero() {
pw.PasswordExpires = p.PasswordExpires.Unix()
}
return &pw, nil
}