mirror of
https://github.com/advplyr/audiobookshelf.git
synced 2026-03-01 05:29:41 +00:00
33bee70a12
- Remove Passport.js wrapper from OIDC auth, use openid-client directly - Add schema-driven OIDC settings UI (OidcSettingsSchema.js drives form rendering) - Add group mapping with KeyValueEditor (explicit mapping or legacy direct name match) - Add scopes configuration (authOpenIDScopes) - Add verified email enforcement option (authOpenIDRequireVerifiedEmail) - Fix group claim validation rejecting URN-style claims (#4744) - Add auto-discover endpoint for OIDC provider configuration - Store oidcIdToken in sessions table instead of cookie - Add AuthError class for structured error handling in auth flows - Migration v2.33.0 adds oidcIdToken column and new settings fields
91 lines
2 KiB
JavaScript
91 lines
2 KiB
JavaScript
const { DataTypes, Model, Op } = require('sequelize')
|
|
|
|
class Session extends Model {
|
|
constructor(values, options) {
|
|
super(values, options)
|
|
|
|
/** @type {UUIDV4} */
|
|
this.id
|
|
/** @type {string} */
|
|
this.ipAddress
|
|
/** @type {string} */
|
|
this.userAgent
|
|
/** @type {Date} */
|
|
this.createdAt
|
|
/** @type {Date} */
|
|
this.updatedAt
|
|
/** @type {UUIDV4} */
|
|
this.userId
|
|
/** @type {Date} */
|
|
this.expiresAt
|
|
/** @type {string} */
|
|
this.oidcIdToken
|
|
|
|
// Expanded properties
|
|
|
|
/** @type {import('./User').User} */
|
|
this.user
|
|
}
|
|
|
|
static async createSession(userId, ipAddress, userAgent, refreshToken, expiresAt, oidcIdToken = null) {
|
|
const session = await Session.create({ userId, ipAddress, userAgent, refreshToken, expiresAt, oidcIdToken })
|
|
return session
|
|
}
|
|
|
|
/**
|
|
* Clean up expired sessions from the database
|
|
* @returns {Promise<number>} Number of sessions deleted
|
|
*/
|
|
static async cleanupExpiredSessions() {
|
|
const deletedCount = await Session.destroy({
|
|
where: {
|
|
expiresAt: {
|
|
[Op.lt]: new Date()
|
|
}
|
|
}
|
|
})
|
|
return deletedCount
|
|
}
|
|
|
|
/**
|
|
* Initialize model
|
|
* @param {import('../Database').sequelize} sequelize
|
|
*/
|
|
static init(sequelize) {
|
|
super.init(
|
|
{
|
|
id: {
|
|
type: DataTypes.UUID,
|
|
defaultValue: DataTypes.UUIDV4,
|
|
primaryKey: true
|
|
},
|
|
ipAddress: DataTypes.STRING,
|
|
userAgent: DataTypes.STRING,
|
|
refreshToken: {
|
|
type: DataTypes.STRING,
|
|
allowNull: false
|
|
},
|
|
expiresAt: {
|
|
type: DataTypes.DATE,
|
|
allowNull: false
|
|
},
|
|
oidcIdToken: DataTypes.TEXT
|
|
},
|
|
{
|
|
sequelize,
|
|
modelName: 'session'
|
|
}
|
|
)
|
|
|
|
const { user } = sequelize.models
|
|
user.hasMany(Session, {
|
|
onDelete: 'CASCADE',
|
|
foreignKey: {
|
|
allowNull: false
|
|
}
|
|
})
|
|
Session.belongsTo(user)
|
|
}
|
|
}
|
|
|
|
module.exports = Session
|