authorizer/server/memorystore/providers/redis/store.go

package redis

import (
	"fmt"
	"strconv"
	"time"

	"github.com/authorizerdev/authorizer/server/constants"
	log "github.com/sirupsen/logrus"
)

var (
	// state store prefix
	stateStorePrefix = "authorizer_state:"
	// env store prefix
	envStorePrefix = "authorizer_env"
)

const mfaSessionPrefix = "mfa_sess_"

// SetUserSession sets the user session for given user identifier in form recipe:user_id
func (c *provider) SetUserSession(userId, key, token string, expiration int64) error {
	currentTime := time.Now()
	expireTime := time.Unix(expiration, 0)
	duration := expireTime.Sub(currentTime)
	err := c.store.Set(c.ctx, fmt.Sprintf("%s:%s", userId, key), token, duration).Err()
	if err != nil {
		log.Debug("Error saving user session to redis: ", err)
		return err
	}
	return nil
}

// GetUserSession returns the user session from redis store.
func (c *provider) GetUserSession(userId, key string) (string, error) {
	data, err := c.store.Get(c.ctx, fmt.Sprintf("%s:%s", userId, key)).Result()
	if err != nil {
		return "", err
	}
	return data, nil
}

// DeleteUserSession deletes the user session from redis store.
func (c *provider) DeleteUserSession(userId, key string) error {
	if err := c.store.Del(c.ctx, fmt.Sprintf("%s:%s", userId, constants.TokenTypeSessionToken+"_"+key)).Err(); err != nil {
		log.Debug("Error deleting user session from redis: ", err)
		// continue
	}
	if err := c.store.Del(c.ctx, fmt.Sprintf("%s:%s", userId, constants.TokenTypeAccessToken+"_"+key)).Err(); err != nil {
		log.Debug("Error deleting user session from redis: ", err)
		// continue
	}
	if err := c.store.Del(c.ctx, fmt.Sprintf("%s:%s", userId, constants.TokenTypeRefreshToken+"_"+key)).Err(); err != nil {
		log.Debug("Error deleting user session from redis: ", err)
		// continue
	}
	return nil
}

// DeleteAllUserSessions deletes all the user session from redis
func (c *provider) DeleteAllUserSessions(userID string) error {
	res := c.store.Keys(c.ctx, fmt.Sprintf("*%s*", userID))
	if res.Err() != nil {
		log.Debug("Error getting all user sessions from redis: ", res.Err())
		return res.Err()
	}
	keys := res.Val()
	for _, key := range keys {
		err := c.store.Del(c.ctx, key).Err()
		if err != nil {
			log.Debug("Error deleting all user sessions from redis: ", err)
			continue
		}
	}
	return nil
}

// DeleteSessionForNamespace to delete session for a given namespace example google,github
func (c *provider) DeleteSessionForNamespace(namespace string) error {
	res := c.store.Keys(c.ctx, fmt.Sprintf("%s:*", namespace))
	if res.Err() != nil {
		log.Debug("Error getting all user sessions from redis: ", res.Err())
		return res.Err()
	}
	keys := res.Val()
	for _, key := range keys {
		err := c.store.Del(c.ctx, key).Err()
		if err != nil {
			log.Debug("Error deleting all user sessions from redis: ", err)
			continue
		}
	}
	return nil
}

// SetMfaSession sets the mfa session with key and value of email
func (c *provider) SetMfaSession(email, key string, expiration int64) error {
	currentTime := time.Now()
	expireTime := time.Unix(expiration, 0)
	duration := expireTime.Sub(currentTime)
	err := c.store.Set(c.ctx, fmt.Sprintf("%s%s:%s", mfaSessionPrefix, email, key), email, duration).Err()
	if err != nil {
		log.Debug("Error saving user session to redis: ", err)
		return err
	}
	return nil
}

	// GetMfaSession returns value of given mfa session
func (c *provider) GetMfaSession(email, key string) (string, error) {
	data, err := c.store.Get(c.ctx, fmt.Sprintf("%s%s:%s", mfaSessionPrefix, email, key)).Result()
	if err != nil {
		return "", err
	}
	return data, nil
}

// DeleteMfaSession deletes given mfa session from in-memory store.
func (c *provider) DeleteMfaSession(email, key string) error {
	if err := c.store.Del(c.ctx, fmt.Sprintf("%s%s:%s", mfaSessionPrefix, email, key)).Err(); err != nil {
		log.Debug("Error deleting user session from redis: ", err)
		// continue
	}
	return nil
}

// SetState sets the state in redis store.
func (c *provider) SetState(key, value string) error {
	err := c.store.Set(c.ctx, stateStorePrefix+key, value, 0).Err()
	if err != nil {
		log.Debug("Error saving redis token: ", err)
		return err
	}

	return nil
}

// GetState gets the state from redis store.
func (c *provider) GetState(key string) (string, error) {
	data, err := c.store.Get(c.ctx, stateStorePrefix+key).Result()
	if err != nil {
		log.Debug("error getting token from redis store: ", err)
		return "", err
	}

	return data, err
}

// RemoveState removes the state from redis store.
func (c *provider) RemoveState(key string) error {
	err := c.store.Del(c.ctx, stateStorePrefix+key).Err()
	if err != nil {
		log.Fatalln("Error deleting redis token: ", err)
		return err
	}

	return nil
}

// UpdateEnvStore to update the whole env store object
func (c *provider) UpdateEnvStore(store map[string]interface{}) error {
	for key, value := range store {
		err := c.store.HSet(c.ctx, envStorePrefix, key, value).Err()
		if err != nil {
			return err
		}
	}
	return nil
}

// GetEnvStore returns the whole env store object
func (c *provider) GetEnvStore() (map[string]interface{}, error) {
	res := make(map[string]interface{})
	data, err := c.store.HGetAll(c.ctx, envStorePrefix).Result()
	if err != nil {
		return nil, err
	}
	for key, value := range data {
		if key == constants.EnvKeyDisableBasicAuthentication || key == constants.EnvKeyDisableMobileBasicAuthentication || key == constants.EnvKeyDisableEmailVerification || key == constants.EnvKeyDisableLoginPage || key == constants.EnvKeyDisableMagicLinkLogin || key == constants.EnvKeyDisableRedisForEnv || key == constants.EnvKeyDisableSignUp || key == constants.EnvKeyDisableStrongPassword || key == constants.EnvKeyIsEmailServiceEnabled || key == constants.EnvKeyEnforceMultiFactorAuthentication || key == constants.EnvKeyDisableMultiFactorAuthentication || key == constants.EnvKeyAppCookieSecure || key == constants.EnvKeyAdminCookieSecure {
			boolValue, err := strconv.ParseBool(value)
			if err != nil {
				return res, err
			}
			res[key] = boolValue
		} else {
			res[key] = value
		}
	}
	return res, nil
}

// UpdateEnvVariable to update the particular env variable
func (c *provider) UpdateEnvVariable(key string, value interface{}) error {
	err := c.store.HSet(c.ctx, envStorePrefix, key, value).Err()
	if err != nil {
		log.Debug("Error saving redis token: ", err)
		return err
	}
	return nil
}

// GetStringStoreEnvVariable to get the string env variable from env store
func (c *provider) GetStringStoreEnvVariable(key string) (string, error) {
	data, err := c.store.HGet(c.ctx, envStorePrefix, key).Result()
	if err != nil {
		return "", nil
	}

	return data, nil
}

// GetBoolStoreEnvVariable to get the bool env variable from env store
func (c *provider) GetBoolStoreEnvVariable(key string) (bool, error) {
	data, err := c.store.HGet(c.ctx, envStorePrefix, key).Result()
	if err != nil {
		return false, nil
	}

	return data == "1", nil
}
fix: update store method till handlers 2022-05-29 11:52:46 +00:00			`package redis`

			`import (`
fix: redis session 2023-04-03 04:56:27 +00:00			`"fmt"`
fix: env saving 2022-05-31 07:41:54 +00:00			`"strconv"`
fix: session storage 2023-04-08 07:36:15 +00:00			`"time"`
fix: update store method till handlers 2022-05-29 11:52:46 +00:00
fix: env saving 2022-05-31 07:41:54 +00:00			`"github.com/authorizerdev/authorizer/server/constants"`
fix: update store method till handlers 2022-05-29 11:52:46 +00:00			`log "github.com/sirupsen/logrus"`
			`)`

			`var (`
fix: session invalidation 2022-06-11 13:40:39 +00:00			`// state store prefix`
			`stateStorePrefix = "authorizer_state:"`
fix: update store method till handlers 2022-05-29 11:52:46 +00:00			`// env store prefix`
fix: env saving 2022-05-31 07:41:54 +00:00			`envStorePrefix = "authorizer_env"`
fix: update store method till handlers 2022-05-29 11:52:46 +00:00			`)`

feat: add mfa session to secure otp login 2023-07-20 07:11:39 +00:00			`const mfaSessionPrefix = "mfa_sess_"`

fix: authorize endpoint setting user session 2022-08-29 02:48:20 +00:00			`// SetUserSession sets the user session for given user identifier in form recipe:user_id`
fix: session storage 2023-04-08 07:36:15 +00:00			`func (c *provider) SetUserSession(userId, key, token string, expiration int64) error {`
			`currentTime := time.Now()`
			`expireTime := time.Unix(expiration, 0)`
			`duration := expireTime.Sub(currentTime)`
			`err := c.store.Set(c.ctx, fmt.Sprintf("%s:%s", userId, key), token, duration).Err()`
fix: update store method till handlers 2022-05-29 11:52:46 +00:00			`if err != nil {`
fix: redis session 2023-04-03 04:56:27 +00:00			`log.Debug("Error saving user session to redis: ", err)`
fix: update store method till handlers 2022-05-29 11:52:46 +00:00			`return err`
			`}`
			`return nil`
			`}`

fix: session invalidation 2022-06-11 13:40:39 +00:00			`// GetUserSession returns the user session from redis store.`
			`func (c *provider) GetUserSession(userId, key string) (string, error) {`
fix: redis session 2023-04-03 04:56:27 +00:00			`data, err := c.store.Get(c.ctx, fmt.Sprintf("%s:%s", userId, key)).Result()`
fix: session invalidation 2022-06-11 13:40:39 +00:00			`if err != nil {`
			`return "", err`
			`}`
fix: user session access 2022-06-11 18:57:21 +00:00			`return data, nil`
fix: update store method till handlers 2022-05-29 11:52:46 +00:00			`}`

fix: session invalidation 2022-06-11 13:40:39 +00:00			`// DeleteUserSession deletes the user session from redis store.`
			`func (c *provider) DeleteUserSession(userId, key string) error {`
fix: redis session 2023-04-03 04:56:27 +00:00			`if err := c.store.Del(c.ctx, fmt.Sprintf("%s:%s", userId, constants.TokenTypeSessionToken+"_"+key)).Err(); err != nil {`
fix: user session access 2022-06-11 18:57:21 +00:00			`log.Debug("Error deleting user session from redis: ", err)`
fix: session storage 2023-04-08 07:36:15 +00:00			`// continue`
fix: user session access 2022-06-11 18:57:21 +00:00			`}`
fix: redis session 2023-04-03 04:56:27 +00:00			`if err := c.store.Del(c.ctx, fmt.Sprintf("%s:%s", userId, constants.TokenTypeAccessToken+"_"+key)).Err(); err != nil {`
fix: user session access 2022-06-11 18:57:21 +00:00			`log.Debug("Error deleting user session from redis: ", err)`
fix: session storage 2023-04-08 07:36:15 +00:00			`// continue`
fix: user session access 2022-06-11 18:57:21 +00:00			`}`
fix: redis session 2023-04-03 04:56:27 +00:00			`if err := c.store.Del(c.ctx, fmt.Sprintf("%s:%s", userId, constants.TokenTypeRefreshToken+"_"+key)).Err(); err != nil {`
fix: session invalidation 2022-06-11 13:40:39 +00:00			`log.Debug("Error deleting user session from redis: ", err)`
fix: session storage 2023-04-08 07:36:15 +00:00			`// continue`
fix: update store method till handlers 2022-05-29 11:52:46 +00:00			`}`
fix: session invalidation 2022-06-11 13:40:39 +00:00			`return nil`
			`}`
fix: update store method till handlers 2022-05-29 11:52:46 +00:00
fix: session invalidation 2022-06-11 13:40:39 +00:00			`// DeleteAllUserSessions deletes all the user session from redis`
			`func (c *provider) DeleteAllUserSessions(userID string) error {`
fix: session storage 2023-04-08 07:36:15 +00:00			`res := c.store.Keys(c.ctx, fmt.Sprintf("%s", userID))`
			`if res.Err() != nil {`
			`log.Debug("Error getting all user sessions from redis: ", res.Err())`
			`return res.Err()`
fix: add namespace to session token keys 2022-06-29 16:54:00 +00:00			`}`
fix: session storage 2023-04-08 07:36:15 +00:00			`keys := res.Val()`
			`for _, key := range keys {`
			`err := c.store.Del(c.ctx, key).Err()`
fix: add namespace to session token keys 2022-06-29 16:54:00 +00:00			`if err != nil {`
			`log.Debug("Error deleting all user sessions from redis: ", err)`
fix: session storage 2023-04-08 07:36:15 +00:00			`continue`
fix: add namespace to session token keys 2022-06-29 16:54:00 +00:00			`}`
fix: session invalidation 2022-06-11 13:40:39 +00:00			`}`
fix: update store method till handlers 2022-05-29 11:52:46 +00:00			`return nil`
			`}`

fix: update_env resolver 2022-07-01 16:32:34 +00:00			`// DeleteSessionForNamespace to delete session for a given namespace example google,github`
			`func (c *provider) DeleteSessionForNamespace(namespace string) error {`
fix: session storage 2023-04-08 07:36:15 +00:00			`res := c.store.Keys(c.ctx, fmt.Sprintf("%s:*", namespace))`
			`if res.Err() != nil {`
			`log.Debug("Error getting all user sessions from redis: ", res.Err())`
			`return res.Err()`
			`}`
			`keys := res.Val()`
			`for _, key := range keys {`
			`err := c.store.Del(c.ctx, key).Err()`
fix: update_env resolver 2022-07-01 16:32:34 +00:00			`if err != nil {`
fix: session storage 2023-04-08 07:36:15 +00:00			`log.Debug("Error deleting all user sessions from redis: ", err)`
			`continue`
fix: update_env resolver 2022-07-01 16:32:34 +00:00			`}`
			`}`
			`return nil`
			`}`

add comments 2023-07-23 05:02:14 +00:00			`// SetMfaSession sets the mfa session with key and value of email`
feat: add mfa session to secure otp login 2023-07-20 07:11:39 +00:00			`func (c *provider) SetMfaSession(email, key string, expiration int64) error {`
			`currentTime := time.Now()`
			`expireTime := time.Unix(expiration, 0)`
			`duration := expireTime.Sub(currentTime)`
			`err := c.store.Set(c.ctx, fmt.Sprintf("%s%s:%s", mfaSessionPrefix, email, key), email, duration).Err()`
			`if err != nil {`
			`log.Debug("Error saving user session to redis: ", err)`
			`return err`
			`}`
			`return nil`
			`}`

add comments 2023-07-23 05:02:14 +00:00			`// GetMfaSession returns value of given mfa session`
feat: add mfa session to secure otp login 2023-07-20 07:11:39 +00:00			`func (c *provider) GetMfaSession(email, key string) (string, error) {`
			`data, err := c.store.Get(c.ctx, fmt.Sprintf("%s%s:%s", mfaSessionPrefix, email, key)).Result()`
			`if err != nil {`
			`return "", err`
			`}`
			`return data, nil`
			`}`

add comments 2023-07-23 05:02:14 +00:00			`// DeleteMfaSession deletes given mfa session from in-memory store.`
feat: add mfa session to secure otp login 2023-07-20 07:11:39 +00:00			`func (c *provider) DeleteMfaSession(email, key string) error {`
			`if err := c.store.Del(c.ctx, fmt.Sprintf("%s%s:%s", mfaSessionPrefix, email, key)).Err(); err != nil {`
			`log.Debug("Error deleting user session from redis: ", err)`
			`// continue`
			`}`
			`return nil`
			`}`

fix: update store method till handlers 2022-05-29 11:52:46 +00:00			`// SetState sets the state in redis store.`
			`func (c *provider) SetState(key, value string) error {`
fix: session invalidation 2022-06-11 13:40:39 +00:00			`err := c.store.Set(c.ctx, stateStorePrefix+key, value, 0).Err()`
fix: update store method till handlers 2022-05-29 11:52:46 +00:00			`if err != nil {`
			`log.Debug("Error saving redis token: ", err)`
			`return err`
			`}`

			`return nil`
			`}`

			`// GetState gets the state from redis store.`
			`func (c *provider) GetState(key string) (string, error) {`
fix: user session access 2022-06-11 18:57:21 +00:00			`data, err := c.store.Get(c.ctx, stateStorePrefix+key).Result()`
fix: update store method till handlers 2022-05-29 11:52:46 +00:00			`if err != nil {`
			`log.Debug("error getting token from redis store: ", err)`
fix: user session access 2022-06-11 18:57:21 +00:00			`return "", err`
fix: update store method till handlers 2022-05-29 11:52:46 +00:00			`}`

fix: user session access 2022-06-11 18:57:21 +00:00			`return data, err`
fix: update store method till handlers 2022-05-29 11:52:46 +00:00			`}`

			`// RemoveState removes the state from redis store.`
			`func (c *provider) RemoveState(key string) error {`
fix: session invalidation 2022-06-11 13:40:39 +00:00			`err := c.store.Del(c.ctx, stateStorePrefix+key).Err()`
fix: update store method till handlers 2022-05-29 11:52:46 +00:00			`if err != nil {`
			`log.Fatalln("Error deleting redis token: ", err)`
			`return err`
			`}`

			`return nil`
			`}`

			`// UpdateEnvStore to update the whole env store object`
			`func (c *provider) UpdateEnvStore(store map[string]interface{}) error {`
			`for key, value := range store {`
fix: env saving 2022-05-31 07:41:54 +00:00			`err := c.store.HSet(c.ctx, envStorePrefix, key, value).Err()`
fix: update store method till handlers 2022-05-29 11:52:46 +00:00			`if err != nil {`
			`return err`
			`}`
			`}`
			`return nil`
			`}`

			`// GetEnvStore returns the whole env store object`
			`func (c *provider) GetEnvStore() (map[string]interface{}, error) {`
fix: env saving 2022-05-31 07:41:54 +00:00			`res := make(map[string]interface{})`
			`data, err := c.store.HGetAll(c.ctx, envStorePrefix).Result()`
fix: update store method till handlers 2022-05-29 11:52:46 +00:00			`if err != nil {`
			`return nil, err`
			`}`
fix: env saving 2022-05-31 07:41:54 +00:00			`for key, value := range data {`
feat: add mobile based basic auth 2022-12-21 17:44:24 +00:00			if key == constants.EnvKeyDisableBasicAuthentication \|\| key == constants.EnvKeyDisableMobileBasicAuthentication \|\| key == constants.EnvKeyDisableEmailVerification \|\| key == constants.EnvKeyDisableLoginPage \|\| key == constants.EnvKeyDisableMagicLinkLogin \|\| key == constants.EnvKeyDisableRedisForEnv \|\| key == constants.EnvKeyDisableSignUp \|\| key == constants.EnvKeyDisableStrongPassword \|\| key == constants.EnvKeyIsEmailServiceEnabled \|\| key == constants.EnvKeyEnforceMultiFactorAuthentication \|\| key == constants.EnvKeyDisableMultiFactorAuthentication \|\| key == constants.EnvKeyAppCookieSecure \|\| key == constants.EnvKeyAdminCookieSecure {
fix: env saving 2022-05-31 07:41:54 +00:00			`boolValue, err := strconv.ParseBool(value)`
			`if err != nil {`
			`return res, err`
			`}`
			`res[key] = boolValue`
			`} else {`
			`res[key] = value`
			`}`
			`}`
fix: update store method till handlers 2022-05-29 11:52:46 +00:00			`return res, nil`
			`}`

			`// UpdateEnvVariable to update the particular env variable`
			`func (c *provider) UpdateEnvVariable(key string, value interface{}) error {`
fix: env saving 2022-05-31 07:41:54 +00:00			`err := c.store.HSet(c.ctx, envStorePrefix, key, value).Err()`
fix: update store method till handlers 2022-05-29 11:52:46 +00:00			`if err != nil {`
			`log.Debug("Error saving redis token: ", err)`
			`return err`
			`}`
			`return nil`
			`}`

			`// GetStringStoreEnvVariable to get the string env variable from env store`
			`func (c *provider) GetStringStoreEnvVariable(key string) (string, error) {`
fix: user session access 2022-06-11 18:57:21 +00:00			`data, err := c.store.HGet(c.ctx, envStorePrefix, key).Result()`
fix: update store method till handlers 2022-05-29 11:52:46 +00:00			`if err != nil {`
fix: env saving 2022-05-31 07:41:54 +00:00			`return "", nil`
fix: update store method till handlers 2022-05-29 11:52:46 +00:00			`}`

fix: user session access 2022-06-11 18:57:21 +00:00			`return data, nil`
fix: update store method till handlers 2022-05-29 11:52:46 +00:00			`}`

			`// GetBoolStoreEnvVariable to get the bool env variable from env store`
			`func (c *provider) GetBoolStoreEnvVariable(key string) (bool, error) {`
fix: user session access 2022-06-11 18:57:21 +00:00			`data, err := c.store.HGet(c.ctx, envStorePrefix, key).Result()`
fix: update store method till handlers 2022-05-29 11:52:46 +00:00			`if err != nil {`
fix: env saving 2022-05-31 07:41:54 +00:00			`return false, nil`
fix: update store method till handlers 2022-05-29 11:52:46 +00:00			`}`

fix: user session access 2022-06-11 18:57:21 +00:00			`return data == "1", nil`
fix: update store method till handlers 2022-05-29 11:52:46 +00:00			`}`