200 lines
4.3 KiB
Go
200 lines
4.3 KiB
Go
|
package data
|
||
|
|
|
||
|
|
import (
|
||
|
|
"errors"
|
||
|
|
"strings"
|
||
|
|
"time"
|
||
|
|
|
||
|
|
"github.com/owncast/owncast/models"
|
||
|
|
log "github.com/sirupsen/logrus"
|
||
|
|
)
|
||
|
|
|
||
|
|
func createAccessTokensTable() {
|
||
|
|
log.Traceln("Creating access_tokens table...")
|
||
|
|
|
||
|
|
createTableSQL := `CREATE TABLE IF NOT EXISTS access_tokens (
|
||
|
|
"token" string NOT NULL PRIMARY KEY,
|
||
|
|
"name" string,
|
||
|
|
"scopes" TEXT,
|
||
|
|
"timestamp" DATETIME DEFAULT CURRENT_TIMESTAMP,
|
||
|
|
"last_used" DATETIME
|
||
|
|
);`
|
||
|
|
|
||
|
|
stmt, err := _db.Prepare(createTableSQL)
|
||
|
|
if err != nil {
|
||
|
|
log.Fatal(err)
|
||
|
|
}
|
||
|
|
defer stmt.Close()
|
||
|
|
_, err = stmt.Exec()
|
||
|
|
if err != nil {
|
||
|
|
log.Warnln(err)
|
||
|
|
}
|
||
|
|
}
|
||
|
|
|
||
|
|
// InsertToken will add a new token to the database.
|
||
|
|
func InsertToken(token string, name string, scopes []string) error {
|
||
|
|
log.Println("Adding new access token:", name)
|
||
|
|
|
||
|
|
scopesString := strings.Join(scopes, ",")
|
||
|
|
|
||
|
|
tx, err := _db.Begin()
|
||
|
|
if err != nil {
|
||
|
|
return err
|
||
|
|
}
|
||
|
|
stmt, err := tx.Prepare("INSERT INTO access_tokens(token, name, scopes) values(?, ?, ?)")
|
||
|
|
|
||
|
|
if err != nil {
|
||
|
|
return err
|
||
|
|
}
|
||
|
|
defer stmt.Close()
|
||
|
|
|
||
|
|
if _, err = stmt.Exec(token, name, scopesString); err != nil {
|
||
|
|
return err
|
||
|
|
}
|
||
|
|
|
||
|
|
if err = tx.Commit(); err != nil {
|
||
|
|
return err
|
||
|
|
}
|
||
|
|
|
||
|
|
return nil
|
||
|
|
}
|
||
|
|
|
||
|
|
// DeleteToken will delete a token from the database.
|
||
|
|
func DeleteToken(token string) error {
|
||
|
|
log.Println("Deleting access token:", token)
|
||
|
|
|
||
|
|
tx, err := _db.Begin()
|
||
|
|
if err != nil {
|
||
|
|
return err
|
||
|
|
}
|
||
|
|
stmt, err := tx.Prepare("DELETE FROM access_tokens WHERE token = ?")
|
||
|
|
|
||
|
|
if err != nil {
|
||
|
|
return err
|
||
|
|
}
|
||
|
|
defer stmt.Close()
|
||
|
|
|
||
|
|
result, err := stmt.Exec(token)
|
||
|
|
if err != nil {
|
||
|
|
return err
|
||
|
|
}
|
||
|
|
|
||
|
|
if rowsDeleted, _ := result.RowsAffected(); rowsDeleted == 0 {
|
||
|
|
tx.Rollback() //nolint
|
||
|
|
return errors.New(token + " not found")
|
||
|
|
}
|
||
|
|
|
||
|
|
if err = tx.Commit(); err != nil {
|
||
|
|
return err
|
||
|
|
}
|
||
|
|
|
||
|
|
return nil
|
||
|
|
}
|
||
|
|
|
||
|
|
// DoesTokenSupportScope will determine if a specific token has access to perform a scoped action.
|
||
|
|
func DoesTokenSupportScope(token string, scope string) (bool, error) {
|
||
|
|
// This will split the scopes from comma separated to individual rows
|
||
|
|
// so we can efficiently find if a token supports a single scope.
|
||
|
|
// This is SQLite specific, so if we ever support other database
|
||
|
|
// backends we need to support other methods.
|
||
|
|
var query = `SELECT count(*) FROM (
|
||
|
|
WITH RECURSIVE split(token, scope, rest) AS (
|
||
|
|
SELECT token, '', scopes || ',' FROM access_tokens
|
||
|
|
UNION ALL
|
||
|
|
SELECT token,
|
||
|
|
substr(rest, 0, instr(rest, ',')),
|
||
|
|
substr(rest, instr(rest, ',')+1)
|
||
|
|
FROM split
|
||
|
|
WHERE rest <> '')
|
||
|
|
SELECT token, scope
|
||
|
|
FROM split
|
||
|
|
WHERE scope <> ''
|
||
|
|
ORDER BY token, scope
|
||
|
|
) AS token WHERE token.token = ? AND token.scope = ?;`
|
||
|
|
|
||
|
|
row := _db.QueryRow(query, token, scope)
|
||
|
|
|
||
|
|
var count = 0
|
||
|
|
err := row.Scan(&count)
|
||
|
|
|
||
|
|
return count > 0, err
|
||
|
|
}
|
||
|
|
|
||
|
|
// GetAccessTokens will return all access tokens.
|
||
|
|
func GetAccessTokens() ([]models.AccessToken, error) { //nolint
|
||
|
|
tokens := make([]models.AccessToken, 0)
|
||
|
|
|
||
|
|
// Get all messages sent within the past day
|
||
|
|
var query = "SELECT * FROM access_tokens"
|
||
|
|
|
||
|
|
rows, err := _db.Query(query)
|
||
|
|
if err != nil {
|
||
|
|
return tokens, err
|
||
|
|
}
|
||
|
|
defer rows.Close()
|
||
|
|
|
||
|
|
for rows.Next() {
|
||
|
|
var token string
|
||
|
|
var name string
|
||
|
|
var scopes string
|
||
|
|
var timestampString string
|
||
|
|
var lastUsedString *string
|
||
|
|
|
||
|
|
if err := rows.Scan(&token, &name, &scopes, ×tampString, &lastUsedString); err != nil {
|
||
|
|
log.Error("There is a problem reading the database.", err)
|
||
|
|
return tokens, err
|
||
|
|
}
|
||
|
|
|
||
|
|
timestamp, err := time.Parse(time.RFC3339, timestampString)
|
||
|
|
if err != nil {
|
||
|
|
return tokens, err
|
||
|
|
}
|
||
|
|
|
||
|
|
var lastUsed *time.Time = nil
|
||
|
|
if lastUsedString != nil {
|
||
|
|
lastUsedTime, _ := time.Parse(time.RFC3339, *lastUsedString)
|
||
|
|
lastUsed = &lastUsedTime
|
||
|
|
}
|
||
|
|
|
||
|
|
singleToken := models.AccessToken{
|
||
|
|
Name: name,
|
||
|
|
Token: token,
|
||
|
|
Scopes: strings.Split(scopes, ","),
|
||
|
|
Timestamp: timestamp,
|
||
|
|
LastUsed: lastUsed,
|
||
|
|
}
|
||
|
|
|
||
|
|
tokens = append(tokens, singleToken)
|
||
|
|
}
|
||
|
|
|
||
|
|
if err := rows.Err(); err != nil {
|
||
|
|
return tokens, err
|
||
|
|
}
|
||
|
|
|
||
|
|
return tokens, nil
|
||
|
|
}
|
||
|
|
|
||
|
|
// SetAccessTokenAsUsed will update the last used timestamp for a token.
|
||
|
|
func SetAccessTokenAsUsed(token string) error {
|
||
|
|
tx, err := _db.Begin()
|
||
|
|
if err != nil {
|
||
|
|
return err
|
||
|
|
}
|
||
|
|
stmt, err := tx.Prepare("UPDATE access_tokens SET last_used = CURRENT_TIMESTAMP WHERE token = ?")
|
||
|
|
|
||
|
|
if err != nil {
|
||
|
|
return err
|
||
|
|
}
|
||
|
|
defer stmt.Close()
|
||
|
|
|
||
|
|
if _, err := stmt.Exec(token); err != nil {
|
||
|
|
return err
|
||
|
|
}
|
||
|
|
|
||
|
|
if err = tx.Commit(); err != nil {
|
||
|
|
return err
|
||
|
|
}
|
||
|
|
|
||
|
|
return nil
|
||
|
|
}
|
 from 1.37.1 to 1.37.2. - [Release notes](https://github.com/aws/aws-sdk-go/releases) - [Changelog](https://github.com/aws/aws-sdk-go/blob/master/CHANGELOG.md) - [Commits](https://github.com/aws/aws-sdk-go/compare/v1.37.1...v1.37.2) Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Add video variant and stream latency config file migrator * Remove mostly unused disable upgrade check bool * Commit updated API documentation * Allow bundling the admin from the 0.0.6 branch * Fix saving port numbers * Use name instead of old title on window focus * Work on latency levels. Fix test to use levels. Clean up transcoder to only reference levels * Another place where title -> name * Fix test * Bump github.com/aws/aws-sdk-go from 1.37.2 to 1.37.3 (#690) Bumps [github.com/aws/aws-sdk-go](https://github.com/aws/aws-sdk-go) from 1.37.2 to 1.37.3. - [Release notes](https://github.com/aws/aws-sdk-go/releases) - [Changelog](https://github.com/aws/aws-sdk-go/blob/master/CHANGELOG.md) - [Commits](https://github.com/aws/aws-sdk-go/compare/v1.37.2...v1.37.3) Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Update dependabot config * Bump github.com/aws/aws-sdk-go from 1.37.3 to 1.37.5 (#693) Bumps [github.com/aws/aws-sdk-go](https://github.com/aws/aws-sdk-go) from 1.37.3 to 1.37.5. - [Release notes](https://github.com/aws/aws-sdk-go/releases) - [Changelog](https://github.com/aws/aws-sdk-go/blob/master/CHANGELOG.md) - [Commits](https://github.com/aws/aws-sdk-go/compare/v1.37.3...v1.37.5) Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bump video.js from 7.10.2 to 7.11.4 in /build/javascript (#694) * Bump video.js from 7.10.2 to 7.11.4 in /build/javascript Bumps [video.js](https://github.com/videojs/video.js) from 7.10.2 to 7.11.4. - [Release notes](https://github.com/videojs/video.js/releases) - [Changelog](https://github.com/videojs/video.js/blob/main/CHANGELOG.md) - [Commits](https://github.com/videojs/video.js/compare/v7.10.2...v7.11.4) Signed-off-by: dependabot[bot] <support@github.com> * Commit updated Javascript packages Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Owncast <owncast@owncast.online> * Make the latency migrator dynamic so I can tweak values easier * Split out fetching ffmpeg path from validating the path so it can be changed in the admin * Some commenting and linter cleanup * Validate the path for a logo change and throw an error if it does not exist * Logo change requests have to be a real file now * Cleanup, making linter happy * Format javascript on push * Only format js in master * Tweak latency level values * Remove unused config file examples * Fix thumbnail generation after messing with the ffmpeg path getter * Reduce how often we report high hardware utilization warnings * Bundle the 0.0.6 branch version of the admin * Return validated ffmpeg path in admin server config * Change the logo to be stored in the data directory instead of webroot * Bump postcss from 8.2.4 to 8.2.5 in /build/javascript (#702) Bumps [postcss](https://github.com/postcss/postcss) from 8.2.4 to 8.2.5. - [Release notes](https://github.com/postcss/postcss/releases) - [Changelog](https://github.com/postcss/postcss/blob/main/CHANGELOG.md) - [Commits](https://github.com/postcss/postcss/compare/8.2.4...8.2.5) Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Default config file no longer used * don't show stream title when offline addresses https://github.com/owncast/owncast/issues/677 * Remove auto-clearing stream title. #677 * webroot -> data when using logo as thumbnail * Do not list websocket/access token create/delete as integration APIs * Commit updated API documentation * Bundle updated admin * Remove pointing to the 0.0.6 admin branch * Linter cleanup * Linter cleanup * Add donations and follow links to show up under social handles * Prettified Code! * More linter cleanup * Update admin bundle * Remove use of platforms.js and return icons with social handles. Closes #732 * Update admin bundle * Support custom config path for use in migration * Remove unused platform-logos.gif * Reduce log level of message * Remove unused logo files in static dir * Handle dev vs. release build info * Restore logo.png for initial thumbnail * Cleanup some files from the build process that are not needed * Fix incorrect build-time injection var * Fix missing file getting copied to the build * Remove console directory message. * Update admin bundle * Fix comment * Report storage setup error * add some value set error checking * Use validated dynamic ffmpeg path for animated gif preview * Make chat message links be white so they don't hide in the bg. Closes #599 * Restore conditional that was accidentally removed Co-authored-by: Aaron Ogle <geekgonecrazy@users.noreply.github.com> Co-authored-by: Owncast <owncast@owncast.online> Co-authored-by: Ginger Wong <omqmail@gmail.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: nebunez <uoj2y7wak869@opayq.net> Co-authored-by: gabek <gabek@users.noreply.github.com>](/Navy.gif/owncast/commit/bc2caadb74c0d2c33d86c7da1d370cdc39684b10){kind=link}