package db import ( "spend-sparrow/log" "spend-sparrow/types" "database/sql" "strings" "time" "github.com/google/uuid" "github.com/jmoiron/sqlx" ) type Auth interface { InsertUser(user *types.User) error UpdateUser(user *types.User) error GetUserByEmail(email string) (*types.User, error) GetUser(userId uuid.UUID) (*types.User, error) DeleteUser(userId uuid.UUID) error InsertToken(token *types.Token) error GetToken(token string) (*types.Token, error) GetTokensByUserIdAndType(userId uuid.UUID, tokenType types.TokenType) ([]*types.Token, error) GetTokensBySessionIdAndType(sessionId string, tokenType types.TokenType) ([]*types.Token, error) DeleteToken(token string) error InsertSession(session *types.Session) error GetSession(sessionId string) (*types.Session, error) GetSessions(userId uuid.UUID) ([]*types.Session, error) DeleteSession(sessionId string) error DeleteOldSessions(userId uuid.UUID) error } type AuthSqlite struct { db *sqlx.DB } func NewAuthSqlite(db *sqlx.DB) *AuthSqlite { return &AuthSqlite{db: db} } func (db AuthSqlite) InsertUser(user *types.User) error { _, err := db.db.Exec(` INSERT INTO user (user_id, email, email_verified, email_verified_at, is_admin, password, salt, created_at) VALUES (?, ?, ?, ?, ?, ?, ?, ?)`, user.Id, user.Email, user.EmailVerified, user.EmailVerifiedAt, user.IsAdmin, user.Password, user.Salt, user.CreateAt) if err != nil { if strings.Contains(err.Error(), "email") { return ErrAlreadyExists } log.Error("SQL error InsertUser: %v", err) return types.ErrInternal } return nil } func (db AuthSqlite) UpdateUser(user *types.User) error { _, err := db.db.Exec(` UPDATE user SET email_verified = ?, email_verified_at = ?, password = ? WHERE user_id = ?`, user.EmailVerified, user.EmailVerifiedAt, user.Password, user.Id) if err != nil { log.Error("SQL error UpdateUser: %v", err) return types.ErrInternal } return nil } func (db AuthSqlite) GetUserByEmail(email string) (*types.User, error) { var ( userId uuid.UUID emailVerified bool emailVerifiedAt *time.Time isAdmin bool password []byte salt []byte createdAt time.Time ) err := db.db.QueryRow(` SELECT user_id, email_verified, email_verified_at, password, salt, created_at FROM user WHERE email = ?`, email).Scan(&userId, &emailVerified, &emailVerifiedAt, &password, &salt, &createdAt) if err != nil { if err == sql.ErrNoRows { return nil, ErrNotFound } else { log.Error("SQL error GetUser: %v", err) return nil, types.ErrInternal } } return types.NewUser(userId, email, emailVerified, emailVerifiedAt, isAdmin, password, salt, createdAt), nil } func (db AuthSqlite) GetUser(userId uuid.UUID) (*types.User, error) { var ( email string emailVerified bool emailVerifiedAt *time.Time isAdmin bool password []byte salt []byte createdAt time.Time ) err := db.db.QueryRow(` SELECT email, email_verified, email_verified_at, password, salt, created_at FROM user WHERE user_id = ?`, userId).Scan(&email, &emailVerified, &emailVerifiedAt, &password, &salt, &createdAt) if err != nil { if err == sql.ErrNoRows { return nil, ErrNotFound } else { log.Error("SQL error GetUser %v", err) return nil, types.ErrInternal } } return types.NewUser(userId, email, emailVerified, emailVerifiedAt, isAdmin, password, salt, createdAt), nil } func (db AuthSqlite) DeleteUser(userId uuid.UUID) error { tx, err := db.db.Begin() if err != nil { log.Error("Could not start transaction: %v", err) return types.ErrInternal } _, err = tx.Exec("DELETE FROM account WHERE user_id = ?", userId) if err != nil { _ = tx.Rollback() log.Error("Could not delete accounts: %v", err) return types.ErrInternal } _, err = tx.Exec("DELETE FROM token WHERE user_id = ?", userId) if err != nil { _ = tx.Rollback() log.Error("Could not delete user tokens: %v", err) return types.ErrInternal } _, err = tx.Exec("DELETE FROM session WHERE user_id = ?", userId) if err != nil { _ = tx.Rollback() log.Error("Could not delete sessions: %v", err) return types.ErrInternal } _, err = tx.Exec("DELETE FROM user WHERE user_id = ?", userId) if err != nil { _ = tx.Rollback() log.Error("Could not delete user: %v", err) return types.ErrInternal } _, err = tx.Exec("DELETE FROM treasure_chest WHERE user_id = ?", userId) if err != nil { _ = tx.Rollback() log.Error("Could not delete user: %v", err) return types.ErrInternal } _, err = tx.Exec("DELETE FROM \"transaction\" WHERE user_id = ?", userId) if err != nil { _ = tx.Rollback() log.Error("Could not delete user: %v", err) return types.ErrInternal } err = tx.Commit() if err != nil { log.Error("Could not commit transaction: %v", err) return types.ErrInternal } return nil } func (db AuthSqlite) InsertToken(token *types.Token) error { _, err := db.db.Exec(` INSERT INTO token (user_id, session_id, type, token, created_at, expires_at) VALUES (?, ?, ?, ?, ?, ?)`, token.UserId, token.SessionId, token.Type, token.Token, token.CreatedAt, token.ExpiresAt) if err != nil { log.Error("Could not insert token: %v", err) return types.ErrInternal } return nil } func (db AuthSqlite) GetToken(token string) (*types.Token, error) { var ( userId uuid.UUID sessionId string tokenType types.TokenType createdAtStr string expiresAtStr string createdAt time.Time expiresAt time.Time ) err := db.db.QueryRow(` SELECT user_id, session_id, type, created_at, expires_at FROM token WHERE token = ?`, token).Scan(&userId, &sessionId, &tokenType, &createdAtStr, &expiresAtStr) if err != nil { if err == sql.ErrNoRows { log.Info("Token '%v' not found", token) return nil, ErrNotFound } else { log.Error("Could not get token: %v", err) return nil, types.ErrInternal } } createdAt, err = time.Parse(time.RFC3339, createdAtStr) if err != nil { log.Error("Could not parse token.created_at: %v", err) return nil, types.ErrInternal } expiresAt, err = time.Parse(time.RFC3339, expiresAtStr) if err != nil { log.Error("Could not parse token.expires_at: %v", err) return nil, types.ErrInternal } return types.NewToken(userId, sessionId, token, tokenType, createdAt, expiresAt), nil } func (db AuthSqlite) GetTokensByUserIdAndType(userId uuid.UUID, tokenType types.TokenType) ([]*types.Token, error) { query, err := db.db.Query(` SELECT token, created_at, expires_at FROM token WHERE user_id = ? AND type = ?`, userId, tokenType) if err != nil { log.Error("Could not get token: %v", err) return nil, types.ErrInternal } return getTokensFromQuery(query, userId, "", tokenType) } func (db AuthSqlite) GetTokensBySessionIdAndType(sessionId string, tokenType types.TokenType) ([]*types.Token, error) { query, err := db.db.Query(` SELECT token, created_at, expires_at FROM token WHERE session_id = ? AND type = ?`, sessionId, tokenType) if err != nil { log.Error("Could not get token: %v", err) return nil, types.ErrInternal } return getTokensFromQuery(query, uuid.Nil, sessionId, tokenType) } func getTokensFromQuery(query *sql.Rows, userId uuid.UUID, sessionId string, tokenType types.TokenType) ([]*types.Token, error) { var tokens []*types.Token hasRows := false for query.Next() { hasRows = true var ( token string createdAtStr string expiresAtStr string createdAt time.Time expiresAt time.Time ) err := query.Scan(&token, &createdAtStr, &expiresAtStr) if err != nil { log.Error("Could not scan token: %v", err) return nil, types.ErrInternal } createdAt, err = time.Parse(time.RFC3339, createdAtStr) if err != nil { log.Error("Could not parse token.created_at: %v", err) return nil, types.ErrInternal } expiresAt, err = time.Parse(time.RFC3339, expiresAtStr) if err != nil { log.Error("Could not parse token.expires_at: %v", err) return nil, types.ErrInternal } tokens = append(tokens, types.NewToken(userId, sessionId, token, tokenType, createdAt, expiresAt)) } if !hasRows { return nil, ErrNotFound } return tokens, nil } func (db AuthSqlite) DeleteToken(token string) error { _, err := db.db.Exec("DELETE FROM token WHERE token = ?", token) if err != nil { log.Error("Could not delete token: %v", err) return types.ErrInternal } return nil } func (db AuthSqlite) InsertSession(session *types.Session) error { _, err := db.db.Exec(` INSERT INTO session (session_id, user_id, created_at, expires_at) VALUES (?, ?, ?, ?)`, session.Id, session.UserId, session.CreatedAt, session.ExpiresAt) if err != nil { log.Error("Could not insert new session %v", err) return types.ErrInternal } return nil } func (db AuthSqlite) GetSession(sessionId string) (*types.Session, error) { var ( userId uuid.UUID createdAt time.Time expiresAt time.Time ) err := db.db.QueryRow(` SELECT user_id, created_at, expires_at FROM session WHERE session_id = ?`, sessionId).Scan(&userId, &createdAt, &expiresAt) if err != nil { log.Warn("Session \"%s\" not found: %v", sessionId, err) return nil, ErrNotFound } return types.NewSession(sessionId, userId, createdAt, expiresAt), nil } func (db AuthSqlite) GetSessions(userId uuid.UUID) ([]*types.Session, error) { sessions, err := db.db.Query(` SELECT session_id, created_at, expires_at FROM session WHERE user_id = ?`, userId) if err != nil { log.Error("Could not get sessions: %v", err) return nil, types.ErrInternal } var result []*types.Session for sessions.Next() { var ( sessionId string createdAt time.Time expiresAt time.Time ) err := sessions.Scan(&sessionId, &createdAt, &expiresAt) if err != nil { log.Error("Could not scan session: %v", err) return nil, types.ErrInternal } session := types.NewSession(sessionId, userId, createdAt, expiresAt) result = append(result, session) } return result, nil } func (db AuthSqlite) DeleteOldSessions(userId uuid.UUID) error { _, err := db.db.Exec(` DELETE FROM session WHERE expires_at < datetime('now') AND user_id = ?`, userId) if err != nil { log.Error("Could not delete old sessions: %v", err) return types.ErrInternal } return nil } func (db AuthSqlite) DeleteSession(sessionId string) error { if sessionId != "" { _, err := db.db.Exec("DELETE FROM session WHERE session_id = ?", sessionId) if err != nil { log.Error("Could not delete session: %v", err) return types.ErrInternal } } return nil }