X-Git-Url: https://git.openstreetmap.org./rails.git/blobdiff_plain/908a6ef409518d86bfd2cdf0d2a82a6c312821c8..87e8cf3b5860509c0344cb34ee939ae73ea99c00:/app/models/oauth_token.rb?ds=sidebyside diff --git a/app/models/oauth_token.rb b/app/models/oauth_token.rb index f64ec53db..c9595e870 100644 --- a/app/models/oauth_token.rb +++ b/app/models/oauth_token.rb @@ -1,26 +1,22 @@ class OauthToken < ActiveRecord::Base belongs_to :client_application belongs_to :user + + scope :authorized, where("authorized_at IS NOT NULL and invalidated_at IS NULL") + validates_uniqueness_of :token - validates_presence_of :client_application, :token, :secret - before_validation_on_create :generate_keys - - def self.find_token(token_key) - token = OauthToken.find_by_token(token_key, :include => :client_application) - if token && token.authorized? - logger.info "Loaded #{token.token} which was authorized by (user_id=#{token.user_id}) on the #{token.authorized_at}" - token - else - nil - end - end + validates_presence_of :client_application, :token + + before_validation :generate_keys, :on => :create def invalidated? invalidated_at != nil end def invalidate! - update_attribute(:invalidated_at, Time.now) + update_attributes({ + :invalidated_at => Time.now + }, :without_protection => true) end def authorized? @@ -34,8 +30,7 @@ class OauthToken < ActiveRecord::Base protected def generate_keys - @oauth_token = client_application.oauth_server.generate_credentials - self.token = @oauth_token[0] - self.secret = @oauth_token[1] + self.token = OAuth::Helper.generate_key(40)[0,40] + self.secret = OAuth::Helper.generate_key(40)[0,40] end end