malach-it / boruta_auth / 1fd28ded8c2359e2a760df205edae8662f3b7487-PR-13

defmodule Boruta.Ecto.Codes do

  @moduledoc false

  @behaviour Boruta.Oauth.Codes

  import Boruta.Config, only: [repo: 0]

  import Ecto.Query

  import Boruta.Ecto.OauthMapper, only: [to_oauth_schema: 1]

  alias Boruta.Ecto.Errors

  alias Boruta.Ecto.Token

  alias Boruta.Ecto.TokenStore

  alias Boruta.Oauth

  @impl Boruta.Oauth.Codes

  def get_by(value: value, redirect_uri: redirect_uri) do

    else

      {:error, "Not cached."} ->

               repo().one(

                 from t in Token,

                   where:

                     t.type in ["code", "preauthorized_code"] and t.value == ^value and

                       t.redirect_uri == ^redirect_uri

               ),

               token

               |> to_oauth_schema()

               |> TokenStore.put() do

        end

      false ->

        nil

    end

  end

  def get_by(id: id) do

      {:ok, token} ->

      {:error, "Not cached."} ->

               repo().one(

                 from t in Token,

                   where: t.type in ["code", "preauthorized_code"] and t.id == ^id

               ),

               token

               |> to_oauth_schema()

               |> TokenStore.put() do

        end

    end

  end

  def get_by(value: value) do

      {:ok, token} ->

      {:error, "Not cached."} ->

               repo().one(

                 from t in Token,

                   where: t.type in ["code", "preauthorized_code"] and t.value == ^value

               ),

               token

               |> to_oauth_schema()

               |> TokenStore.put() do

        end

    end

  end

  @impl Boruta.Oauth.Codes

  def create(

        %{

          client:

            %Oauth.Client{

              id: client_id,

              authorization_code_ttl: authorization_code_ttl

            } = client,

          redirect_uri: redirect_uri,

          scope: scope,

          state: state,

          code_challenge: code_challenge,

          code_challenge_method: code_challenge_method,

          authorization_details: authorization_details

        } = params

      ) do

      apply(Token, changeset_method(client), [

        %Token{resource_owner: params[:resource_owner]},

        %{

          client_id: client_id,

          sub: sub,

          redirect_uri: redirect_uri,

          state: state,

          nonce: params[:nonce],

          scope: scope,

          authorization_code_ttl: authorization_code_ttl,

          code_challenge: code_challenge,

          code_challenge_method: code_challenge_method,

          authorization_details: authorization_details

        }

      ])

      {:ok, token}

    else

      {:error, %Ecto.Changeset{} = changeset} ->

    end

  end

  @impl Boruta.Oauth.Codes

  def revoke(%Oauth.Token{value: value} = code) do

           Token.revoke_changeset(token)

           |> repo().update(),

      {:ok, token}

    else

      nil ->

        {:error, "Code not found."}

      error ->

    end

  end

end