blob: e381d86fbede4e8b12964a207239c9223ca548f0 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
|
# frozen_string_literal: true
module PersonalAccessTokens
class RotateService
EXPIRATION_PERIOD = 1.week
def initialize(current_user, token)
@current_user = current_user
@token = token
end
def execute(params = {})
return error_response(_('token already revoked')) if token.revoked?
response = ServiceResponse.success
PersonalAccessToken.transaction do
unless token.revoke!
response = error_response(_('failed to revoke token'))
raise ActiveRecord::Rollback
end
response = create_access_token(params)
raise ActiveRecord::Rollback unless response.success?
end
response
end
private
attr_reader :current_user, :token
def create_access_token(params)
target_user = token.user
new_token = target_user.personal_access_tokens.create(create_token_params(token, params))
return success_response(new_token) if new_token.persisted?
error_response(new_token.errors.full_messages.to_sentence)
end
def expires_at(params)
return params[:expires_at] if params[:expires_at]
params[:expires_at] || EXPIRATION_PERIOD.from_now.to_date
end
def success_response(new_token)
ServiceResponse.success(payload: { personal_access_token: new_token })
end
def error_response(message)
ServiceResponse.error(message: message)
end
def create_token_params(token, params)
{ name: token.name,
previous_personal_access_token_id: token.id,
impersonation: token.impersonation,
scopes: token.scopes,
expires_at: expires_at(params) }
end
end
end
PersonalAccessTokens::RotateService.prepend_mod
|
