aboutsummaryrefslogtreecommitdiffhomepage
path: root/storage
diff options
context:
space:
mode:
authorGravatar Frédéric Guillot <fred@miniflux.net>2017-12-01 21:51:22 -0800
committerGravatar Frédéric Guillot <fred@miniflux.net>2017-12-01 21:51:22 -0800
commit1a90c059e716a90c9132fd211df9adda038b8950 (patch)
treeca388018d99de40ed6bd96d52bd9e8fc36087736 /storage
parent7cecdbb8561e03868392dde12a2c763e782c948b (diff)
Store tokens in database instead of cookie
Diffstat (limited to 'storage')
-rw-r--r--storage/migration.go2
-rw-r--r--storage/token.go48
2 files changed, 49 insertions, 1 deletions
diff --git a/storage/migration.go b/storage/migration.go
index 994e2dd..5060a34 100644
--- a/storage/migration.go
+++ b/storage/migration.go
@@ -12,7 +12,7 @@ import (
"github.com/miniflux/miniflux2/sql"
)
-const schemaVersion = 2
+const schemaVersion = 3
// Migrate run database migrations.
func (s *Storage) Migrate() {
diff --git a/storage/token.go b/storage/token.go
new file mode 100644
index 0000000..dd14704
--- /dev/null
+++ b/storage/token.go
@@ -0,0 +1,48 @@
+// Copyright 2017 Frédéric Guillot. All rights reserved.
+// Use of this source code is governed by the Apache 2.0
+// license that can be found in the LICENSE file.
+
+package storage
+
+import (
+ "database/sql"
+ "fmt"
+
+ "github.com/miniflux/miniflux2/helper"
+ "github.com/miniflux/miniflux2/model"
+)
+
+// CreateToken creates a new token.
+func (s *Storage) CreateToken() (*model.Token, error) {
+ token := model.Token{
+ ID: helper.GenerateRandomString(32),
+ Value: helper.GenerateRandomString(64),
+ }
+
+ query := "INSERT INTO tokens (id, value) VALUES ($1, $2)"
+ _, err := s.db.Exec(query, token.ID, token.Value)
+ if err != nil {
+ return nil, fmt.Errorf("unable to create token: %v", err)
+ }
+
+ return &token, nil
+}
+
+// Token returns a Token.
+func (s *Storage) Token(id string) (*model.Token, error) {
+ var token model.Token
+
+ query := "SELECT id, value FROM tokens WHERE id=$1"
+ err := s.db.QueryRow(query, id).Scan(
+ &token.ID,
+ &token.Value,
+ )
+
+ if err == sql.ErrNoRows {
+ return nil, fmt.Errorf("token not found: %s", id)
+ } else if err != nil {
+ return nil, fmt.Errorf("unable to fetch token: %v", err)
+ }
+
+ return &token, nil
+}
generated by cgit v1.2.3 (git 2.39.1) at 2024-05-13 23:00:24 +0000