Allow tokens with eternal TTL (value -1)

- Add a new User setting 'allowEternalTokens'
 - Enhance 'AccessToken.validate' to support eternal tokens with ttl
   value -1 when the user model allows it.
This commit is contained in:
Miroslav Bajtoš 2016-10-10 13:27:22 +02:00
parent 953cfa9e2d
commit 6808159427
2 changed files with 53 additions and 5 deletions

View File

@ -147,11 +147,19 @@ module.exports = function(AccessToken) {
assert(this.ttl, 'token.ttl must exist');
assert(this.ttl >= -1, 'token.ttl must be >= -1');
var AccessToken = this.constructor;
var userRelation = AccessToken.relations.user; // may not be set up
var User = userRelation && userRelation.modelTo;
var now = Date.now();
var created = this.created.getTime();
var elapsedSeconds = (now - created) / 1000;
var secondsToLive = this.ttl;
var isValid = elapsedSeconds < secondsToLive;
var eternalTokensAllowed = !!(User && User.settings.allowEternalTokens);
var isEternalToken = secondsToLive === -1;
var isValid = isEternalToken ?
eternalTokensAllowed :
elapsedSeconds < secondsToLive;
if (isValid) {
cb(null, isValid);

View File

@ -357,11 +357,38 @@ describe('AccessToken', function() {
assert(Object.prototype.toString.call(this.token.created), '[object Date]');
});
it('should be validateable', function(done) {
this.token.validate(function(err, isValid) {
assert(isValid);
describe('.validate()', function() {
it('accepts valid tokens', function(done) {
this.token.validate(function(err, isValid) {
assert(isValid);
done();
});
});
done();
it('rejects eternal TTL by default', function(done) {
this.token.ttl = -1;
this.token.validate(function(err, isValid) {
if (err) return done(err);
expect(isValid, 'isValid').to.equal(false);
done();
});
});
it('allows eternal tokens when enabled by User.allowEternalTokens',
function(done) {
var Token = givenLocalTokenModel();
// Overwrite User settings - enable eternal tokens
Token.app.models.User.settings.allowEternalTokens = true;
Token.create({ userId: '123', ttl: -1 }, function(err, token) {
if (err) return done(err);
token.validate(function(err, isValid) {
if (err) return done(err);
expect(isValid, 'isValid').to.equal(true);
done();
});
});
});
});
@ -626,3 +653,16 @@ function createTestApp(testToken, settings, done) {
return app;
}
function givenLocalTokenModel() {
var app = loopback({ localRegistry: true, loadBuiltinModels: true });
app.dataSource('db', { connector: 'memory' });
var User = app.registry.getModel('User');
app.model(User, { dataSource: 'db' });
var Token = app.registry.getModel('AccessToken');
app.model(Token, { dataSource: 'db' });
return Token;
}