construct/matrix/user_tokens.cc

// The Construct
//
// Copyright (C) The Construct Developers, Authors & Contributors
// Copyright (C) 2016-2020 Jason Volk <jason@zemos.net>
//
// Permission to use, copy, modify, and/or distribute this software for any
// purpose with or without fee is hereby granted, provided that the above
// copyright notice and this permission notice is present in all copies. The
// full license for this software is available in the LICENSE file.

ircd::string_view
ircd::m::user::tokens::create(const mutable_buffer &buf,
                              const json::object &content)
const
{
	const auto token
	{
		generate(buf)
	};

	const auto event_id
	{
		add(token, content)
	};

	return token;
}

ircd::m::event::id::buf
ircd::m::user::tokens::add(const string_view &token,
                           const json::object &content)
const
{
	const m::room::id::buf tokens_room
	{
		"tokens", user.user_id.host()
	};

	const m::event::id::buf event_id
	{
		m::send(tokens_room, user, "ircd.access_token", token, content)
	};

	return event_id;
}

size_t
ircd::m::user::tokens::del(const string_view &reason)
const
{
	size_t ret(0);
	for_each([this, &ret, &reason]
	(const event::idx &event_idx, const string_view &token)
	{
		ret += del(token, reason);
		return true;
	});

	return ret;
}

size_t
ircd::m::user::tokens::del_by_device(const string_view &device_id,
                                     const string_view &reason)
const
{
	size_t ret(0);
	for_each([this, &ret, &device_id, &reason]
	(const event::idx &event_idx, const string_view &token)
	{
		const auto match
		{
			[&device_id](const json::object &content)
			{
				return json::string{content["device_id"]} == device_id;
			}
		};

		if(m::query(std::nothrow, event_idx, "content", false, match))
			ret += del(token, reason);

		return true;
	});

	return ret;
}

bool
ircd::m::user::tokens::del(const string_view &token,
                           const string_view &reason)
const
{
	const m::room::id::buf tokens_room_id
	{
		"tokens", origin(my())
	};

	const m::room tokens
	{
		tokens_room_id
	};

	const auto event_idx
	{
		tokens.get(std::nothrow, "ircd.access_token", token)
	};

	const auto match
	{
		[this](const string_view &sender) noexcept
		{
			return sender == this->user.user_id;
		}
	};

	if(unlikely(!m::query(std::nothrow, event_idx, "sender", match)))
		return false;

	const auto event_id
	{
		m::event_id(std::nothrow, event_idx)
	};

	if(unlikely(!event_id))
		return false;

	const auto redact_id
	{
		m::redact(tokens, user.user_id, event_id, reason)
	};

	return true;
}

bool
ircd::m::user::tokens::check(const string_view &token)
const
{
	const m::room::id::buf tokens_room_id
	{
		"tokens", origin(my())
	};

	const m::room tokens
	{
		tokens_room_id
	};

	const auto event_idx
	{
		tokens.get(std::nothrow, "ircd.access_token", token)
	};

	return event_idx && m::query(std::nothrow, event_idx, "sender", [this]
	(const string_view &sender) noexcept
	{
		return sender == this->user.user_id;
	});
}

bool
ircd::m::user::tokens::for_each(const closure_bool &closure)
const
{
	const m::room::id::buf tokens_room_id
	{
		"tokens", origin(my())
	};

	const m::room tokens
	{
		tokens_room_id
	};

	const m::room::state state
	{
		tokens
	};

	return state.for_each("ircd.access_token", [this, &closure]
	(const auto &type, const auto &state_key, const auto &event_idx)
	{
		const auto match
		{
			[this](const string_view &sender) noexcept
			{
				return sender == this->user.user_id;
			}
		};

		if(!m::query(std::nothrow, event_idx, "sender", match))
			return true;

		if(!closure(event_idx, state_key))
			return false;

		return true;
	});
}

ircd::m::user::id::buf
ircd::m::user::tokens::get(const string_view &token)
{
	const auto ret
	{
		get(std::nothrow, token)
	};

	if(!ret)
		throw m::error
		{
			http::UNAUTHORIZED, "M_UNKNOWN_TOKEN",
			"Credentials for this method are required but invalid."
		};

	return ret;
}

ircd::m::user::id::buf
ircd::m::user::tokens::get(std::nothrow_t,
                           const string_view &token)
{
	const m::room::id::buf tokens_room_id
	{
		"tokens", origin(my())
	};

	const m::room tokens
	{
		tokens_room_id
	};

	const event::idx event_idx
	{
		tokens.get(std::nothrow, "ircd.access_token", token)
	};

	m::user::id::buf ret;
	m::get(std::nothrow, event_idx, "sender", [&ret]
	(const string_view &sender)
	{
		ret = sender;
	});

	return ret;
}

ircd::m::device::id::buf
ircd::m::user::tokens::device(const string_view &token)
{
	const auto ret
	{
		device(std::nothrow, token)
	};

	if(unlikely(!ret))
		throw m::NOT_FOUND
		{
			"No device for this access_token"
		};

	return ret;
}

ircd::m::device::id::buf
ircd::m::user::tokens::device(std::nothrow_t,
                              const string_view &token)
{
	const m::room::id::buf tokens_room_id
	{
		"tokens", origin(my())
	};

	const m::room tokens
	{
		tokens_room_id
	};

	const event::idx event_idx
	{
		tokens.get(std::nothrow, "ircd.access_token", token)
	};

	device::id::buf ret;
	m::get(std::nothrow, event_idx, "content", [&ret]
	(const json::object &content)
	{
		const json::string &device_id
		{
			content["device_id"]
		};

		if(device_id)
			ret = device_id;
	});

	return ret;
}

ircd::string_view
ircd::m::user::tokens::generate(const mutable_buffer &buf)
{
	static const size_t token_max
	{
		32
	};

	static const auto &token_dict
	{
		rand::dict::alpha
	};

	const mutable_buffer out
	{
		buf, token_max
	};

	return rand::string(out, token_dict);
}
ircd::m: Add user::tokens convenience interface; consolidate various direct room access. 2020-04-02 02:14:51 +02:00			`// The Construct`
			`//`
			`// Copyright (C) The Construct Developers, Authors & Contributors`
			`// Copyright (C) 2016-2020 Jason Volk <jason@zemos.net>`
			`//`
			`// Permission to use, copy, modify, and/or distribute this software for any`
			`// purpose with or without fee is hereby granted, provided that the above`
			`// copyright notice and this permission notice is present in all copies. The`
			`// full license for this software is available in the LICENSE file.`

ircd::m::user::tokens: Add methods to create and add tokens via interface. 2023-02-14 03:53:50 +01:00			`ircd::string_view`
			`ircd::m::user::tokens::create(const mutable_buffer &buf,`
			`const json::object &content)`
			`const`
			`{`
			`const auto token`
			`{`
			`generate(buf)`
			`};`

			`const auto event_id`
			`{`
			`add(token, content)`
			`};`

			`return token;`
			`}`

			`ircd::m::event::id::buf`
			`ircd::m::user::tokens::add(const string_view &token,`
			`const json::object &content)`
			`const`
			`{`
			`const m::room::id::buf tokens_room`
			`{`
			`"tokens", user.user_id.host()`
			`};`

			`const m::event::id::buf event_id`
			`{`
			`m::send(tokens_room, user, "ircd.access_token", token, content)`
			`};`

			`return event_id;`
			`}`

ircd::m: Add user::tokens convenience interface; consolidate various direct room access. 2020-04-02 02:14:51 +02:00			`size_t`
			`ircd::m::user::tokens::del(const string_view &reason)`
			`const`
			`{`
			`size_t ret(0);`
			`for_each([this, &ret, &reason]`
			`(const event::idx &event_idx, const string_view &token)`
			`{`
			`ret += del(token, reason);`
			`return true;`
			`});`

			`return ret;`
			`}`

ircd::m::user::tokens: Add method to delete access tokens by device_id. 2023-03-03 21:10:52 +01:00			`size_t`
			`ircd::m::user::tokens::del_by_device(const string_view &device_id,`
			`const string_view &reason)`
			`const`
			`{`
			`size_t ret(0);`
			`for_each([this, &ret, &device_id, &reason]`
			`(const event::idx &event_idx, const string_view &token)`
			`{`
			`const auto match`
			`{`
			`[&device_id](const json::object &content)`
			`{`
			`return json::string{content["device_id"]} == device_id;`
			`}`
			`};`

			`if(m::query(std::nothrow, event_idx, "content", false, match))`
			`ret += del(token, reason);`

			`return true;`
			`});`

			`return ret;`
			`}`

ircd::m: Add user::tokens convenience interface; consolidate various direct room access. 2020-04-02 02:14:51 +02:00			`bool`
			`ircd::m::user::tokens::del(const string_view &token,`
			`const string_view &reason)`
			`const`
			`{`
			`const m::room::id::buf tokens_room_id`
			`{`
			`"tokens", origin(my())`
			`};`

			`const m::room tokens`
			`{`
			`tokens_room_id`
			`};`

			`const auto event_idx`
			`{`
			`tokens.get(std::nothrow, "ircd.access_token", token)`
			`};`

			`const auto match`
			`{`
Add noexcept to various lambdas (gcc-11). 2022-06-24 04:18:05 +02:00			`[this](const string_view &sender) noexcept`
ircd::m: Add user::tokens convenience interface; consolidate various direct room access. 2020-04-02 02:14:51 +02:00			`{`
			`return sender == this->user.user_id;`
			`}`
			`};`

			`if(unlikely(!m::query(std::nothrow, event_idx, "sender", match)))`
			`return false;`

			`const auto event_id`
			`{`
			`m::event_id(std::nothrow, event_idx)`
			`};`

			`if(unlikely(!event_id))`
			`return false;`

			`const auto redact_id`
			`{`
			`m::redact(tokens, user.user_id, event_id, reason)`
			`};`

			`return true;`
			`}`

			`bool`
			`ircd::m::user::tokens::check(const string_view &token)`
			`const`
			`{`
			`const m::room::id::buf tokens_room_id`
			`{`
			`"tokens", origin(my())`
			`};`

			`const m::room tokens`
			`{`
			`tokens_room_id`
			`};`

			`const auto event_idx`
			`{`
			`tokens.get(std::nothrow, "ircd.access_token", token)`
			`};`

			`return event_idx && m::query(std::nothrow, event_idx, "sender", [this]`
Add noexcept to various lambdas (gcc-11). 2022-06-24 04:18:05 +02:00			`(const string_view &sender) noexcept`
ircd::m: Add user::tokens convenience interface; consolidate various direct room access. 2020-04-02 02:14:51 +02:00			`{`
			`return sender == this->user.user_id;`
			`});`
			`}`

			`bool`
			`ircd::m::user::tokens::for_each(const closure_bool &closure)`
			`const`
			`{`
			`const m::room::id::buf tokens_room_id`
			`{`
			`"tokens", origin(my())`
			`};`

			`const m::room tokens`
			`{`
			`tokens_room_id`
			`};`

			`const m::room::state state`
			`{`
			`tokens`
			`};`

			`return state.for_each("ircd.access_token", [this, &closure]`
			`(const auto &type, const auto &state_key, const auto &event_idx)`
			`{`
			`const auto match`
			`{`
Add noexcept to various lambdas (gcc-11). 2022-06-24 04:18:05 +02:00			`[this](const string_view &sender) noexcept`
ircd::m: Add user::tokens convenience interface; consolidate various direct room access. 2020-04-02 02:14:51 +02:00			`{`
			`return sender == this->user.user_id;`
			`}`
			`};`

			`if(!m::query(std::nothrow, event_idx, "sender", match))`
			`return true;`

			`if(!closure(event_idx, state_key))`
			`return false;`

			`return true;`
			`});`
			`}`

			`ircd::m::user::id::buf`
			`ircd::m::user::tokens::get(const string_view &token)`
			`{`
			`const auto ret`
			`{`
			`get(std::nothrow, token)`
			`};`

			`if(!ret)`
			`throw m::error`
			`{`
			`http::UNAUTHORIZED, "M_UNKNOWN_TOKEN",`
			`"Credentials for this method are required but invalid."`
			`};`

			`return ret;`
			`}`

			`ircd::m::user::id::buf`
			`ircd::m::user::tokens::get(std::nothrow_t,`
			`const string_view &token)`
			`{`
			`const m::room::id::buf tokens_room_id`
			`{`
			`"tokens", origin(my())`
			`};`

			`const m::room tokens`
			`{`
			`tokens_room_id`
			`};`

			`const event::idx event_idx`
			`{`
			`tokens.get(std::nothrow, "ircd.access_token", token)`
			`};`

			`m::user::id::buf ret;`
			`m::get(std::nothrow, event_idx, "sender", [&ret]`
			`(const string_view &sender)`
			`{`
			`ret = sender;`
			`});`

			`return ret;`
			`}`

			`ircd::m::device::id::buf`
			`ircd::m::user::tokens::device(const string_view &token)`
			`{`
			`const auto ret`
			`{`
			`device(std::nothrow, token)`
			`};`

			`if(unlikely(!ret))`
			`throw m::NOT_FOUND`
			`{`
			`"No device for this access_token"`
			`};`

			`return ret;`
			`}`

			`ircd::m::device::id::buf`
			`ircd::m::user::tokens::device(std::nothrow_t,`
			`const string_view &token)`
			`{`
			`const m::room::id::buf tokens_room_id`
			`{`
			`"tokens", origin(my())`
			`};`

			`const m::room tokens`
			`{`
			`tokens_room_id`
			`};`

			`const event::idx event_idx`
			`{`
			`tokens.get(std::nothrow, "ircd.access_token", token)`
			`};`

			`device::id::buf ret;`
			`m::get(std::nothrow, event_idx, "content", [&ret]`
			`(const json::object &content)`
			`{`
			`const json::string &device_id`
			`{`
ircd::m::user::tokens: Allow undefined device_id in ircd.access_token w/o throwing. 2023-02-14 06:13:46 +01:00			`content["device_id"]`
ircd::m: Add user::tokens convenience interface; consolidate various direct room access. 2020-04-02 02:14:51 +02:00			`};`

ircd::m::user::tokens: Allow undefined device_id in ircd.access_token w/o throwing. 2023-02-14 06:13:46 +01:00			`if(device_id)`
			`ret = device_id;`
ircd::m: Add user::tokens convenience interface; consolidate various direct room access. 2020-04-02 02:14:51 +02:00			`});`

			`return ret;`
			`}`

			`ircd::string_view`
			`ircd::m::user::tokens::generate(const mutable_buffer &buf)`
			`{`
			`static const size_t token_max`
			`{`
			`32`
			`};`

			`static const auto &token_dict`
			`{`
			`rand::dict::alpha`
			`};`

			`const mutable_buffer out`
			`{`
ircd::rand: Simplify interface; comments/cleanup. 2020-10-07 00:46:36 +02:00			`buf, token_max`
ircd::m: Add user::tokens convenience interface; consolidate various direct room access. 2020-04-02 02:14:51 +02:00			`};`

ircd::rand: Simplify interface; comments/cleanup. 2020-10-07 00:46:36 +02:00			`return rand::string(out, token_dict);`
ircd::m: Add user::tokens convenience interface; consolidate various direct room access. 2020-04-02 02:14:51 +02:00			`}`