woodpecker/server/router/middleware/token/token.go

// Copyright 2018 Drone.IO Inc.
//
// Licensed under the Apache License, Version 2.0 (the "License");
// you may not use this file except in compliance with the License.
// You may obtain a copy of the License at
//
//      http://www.apache.org/licenses/LICENSE-2.0
//
// Unless required by applicable law or agreed to in writing, software
// distributed under the License is distributed on an "AS IS" BASIS,
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
// See the License for the specific language governing permissions and
// limitations under the License.

package token

import (
	"time"

	"github.com/rs/zerolog/log"

	"github.com/gin-gonic/gin"

	"github.com/woodpecker-ci/woodpecker/server"
	"github.com/woodpecker-ci/woodpecker/server/remote"
	"github.com/woodpecker-ci/woodpecker/server/router/middleware/session"
	"github.com/woodpecker-ci/woodpecker/server/store"
)

func Refresh(c *gin.Context) {
	user := session.User(c)
	if user == nil {
		c.Next()
		return
	}

	// check if the remote includes the ability to
	// refresh the user token.
	_remote := server.Config.Services.Remote
	refresher, ok := _remote.(remote.Refresher)
	if !ok {
		c.Next()
		return
	}

	// check to see if the user token is expired or
	// will expire within the next 30 minutes (1800 seconds).
	// If not, there is nothing we really need to do here.
	if time.Now().UTC().Unix() < (user.Expiry - 1800) {
		c.Next()
		return
	}

	// attempts to refresh the access token. If the
	// token is refreshed, we must also persist to the
	// database.
	ok, err := refresher.Refresh(c, user)
	if err != nil {
		log.Error().Err(err).Msgf("refresh oauth token of user '%s' failed", user.Login)
	} else if ok {
		err := store.FromContext(c).UpdateUser(user)
		if err != nil {
			// we only log the error at this time. not sure
			// if we really want to fail the request, do we?
			log.Error().Msgf("cannot refresh access token for %s. %s", user.Login, err)
		} else {
			log.Debug().Msgf("refreshed access token for %s", user.Login)
		}
	}

	c.Next()
}
add apache license header to files 2018-02-19 22:24:10 +00:00			`// Copyright 2018 Drone.IO Inc.`
Just fixed format with go fmt ./... 2018-03-21 13:02:17 +00:00			`//`
add apache license header to files 2018-02-19 22:24:10 +00:00			`// Licensed under the Apache License, Version 2.0 (the "License");`
			`// you may not use this file except in compliance with the License.`
			`// You may obtain a copy of the License at`
Just fixed format with go fmt ./... 2018-03-21 13:02:17 +00:00			`//`
add apache license header to files 2018-02-19 22:24:10 +00:00			`// http://www.apache.org/licenses/LICENSE-2.0`
Just fixed format with go fmt ./... 2018-03-21 13:02:17 +00:00			`//`
add apache license header to files 2018-02-19 22:24:10 +00:00			`// Unless required by applicable law or agreed to in writing, software`
			`// distributed under the License is distributed on an "AS IS" BASIS,`
			`// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.`
			`// See the License for the specific language governing permissions and`
			`// limitations under the License.`

cleaning up the middleware and adding caching with TTL 2015-10-13 09:08:08 +00:00			`package token`
some finishing touches on the bitbucket implementation for 0.4 2015-10-05 00:40:27 +00:00
			`import (`
			`"time"`

Move entirely to zerolog (#426) Completely switch to zerolog (Remove usage of logrus and std logger) Signed-off-by: jolheiser <john.olheiser@gmail.com> Co-authored-by: 6543 <6543@obermui.de> 2021-10-12 07:25:13 +00:00			`"github.com/rs/zerolog/log"`

			`"github.com/gin-gonic/gin"`

Server obtain remote from glob config not from context (#540) 2021-11-26 12:01:54 +00:00			`"github.com/woodpecker-ci/woodpecker/server"`
Refactor: move remote/ to server/remote/ (#344) 2021-09-23 16:25:51 +00:00			`"github.com/woodpecker-ci/woodpecker/server/remote"`
Move router package to server/router/ (#339) 2021-09-22 20:41:32 +00:00			`"github.com/woodpecker-ci/woodpecker/server/router/middleware/session"`
Move package store/ to server/store/ (#341) * Refactor: move store/ to server/store/ * fix pipeline for moved tests Co-authored-by: 6543 <6543@obermui.de> 2021-09-23 11:33:59 +00:00			`"github.com/woodpecker-ci/woodpecker/server/store"`
some finishing touches on the bitbucket implementation for 0.4 2015-10-05 00:40:27 +00:00			`)`

			`func Refresh(c *gin.Context) {`
			`user := session.User(c)`
ability to refresh tokens 2015-10-05 02:39:44 +00:00			`if user == nil {`
some finishing touches on the bitbucket implementation for 0.4 2015-10-05 00:40:27 +00:00			`c.Next()`
			`return`
			`}`

			`// check if the remote includes the ability to`
			`// refresh the user token.`
Add linter revive (#554) * Add linter revive * Add underscore to variable name to prevent shadowing * Remove unnecessary leading underscore * Revert changes to vendor file * export ConfigFetcher as interface * no 'yoda conditions' * rename envsubst Co-authored-by: 6543 <6543@obermui.de> 2021-12-01 13:22:06 +00:00			`_remote := server.Config.Services.Remote`
			`refresher, ok := _remote.(remote.Refresher)`
some finishing touches on the bitbucket implementation for 0.4 2015-10-05 00:40:27 +00:00			`if !ok {`
			`c.Next()`
			`return`
			`}`

			`// check to see if the user token is expired or`
			`// will expire within the next 30 minutes (1800 seconds).`
			`// If not, there is nothing we really need to do here.`
ability to refresh tokens 2015-10-05 02:39:44 +00:00			`if time.Now().UTC().Unix() < (user.Expiry - 1800) {`
some finishing touches on the bitbucket implementation for 0.4 2015-10-05 00:40:27 +00:00			`c.Next()`
			`return`
			`}`

			`// attempts to refresh the access token. If the`
			`// token is refreshed, we must also persist to the`
			`// database.`
Drop error only on purpose or else report back or log (#514) - Remove Deadcode - Simplify Code - Drop error only on purpose 2021-11-23 14:36:52 +00:00			`ok, err := refresher.Refresh(c, user)`
			`if err != nil {`
			`log.Error().Err(err).Msgf("refresh oauth token of user '%s' failed", user.Login)`
			`} else if ok {`
Remove some wrapper and make code more redable (#478) * meaningful var names * no context wrapper, use store directly * retrieve store from context once * rm store.GetRepoOwnerName 2021-10-28 09:12:58 +00:00			`err := store.FromContext(c).UpdateUser(user)`
some finishing touches on the bitbucket implementation for 0.4 2015-10-05 00:40:27 +00:00			`if err != nil {`
			`// we only log the error at this time. not sure`
			`// if we really want to fail the request, do we?`
Move entirely to zerolog (#426) Completely switch to zerolog (Remove usage of logrus and std logger) Signed-off-by: jolheiser <john.olheiser@gmail.com> Co-authored-by: 6543 <6543@obermui.de> 2021-10-12 07:25:13 +00:00			`log.Error().Msgf("cannot refresh access token for %s. %s", user.Login, err)`
ability to refresh tokens 2015-10-05 02:39:44 +00:00			`} else {`
Improve logging (#1158) * switch default log level to info add start message and cleanup server start * refactor code * fix agent debug / trace logging 2022-09-03 18:41:23 +00:00			`log.Debug().Msgf("refreshed access token for %s", user.Login)`
some finishing touches on the bitbucket implementation for 0.4 2015-10-05 00:40:27 +00:00			`}`
			`}`

			`c.Next()`
			`}`