apps/photoprism
1
0
Fork 0
mirror of https://github.com/photoprism/photoprism.git synced 2025-10-05 08:47:12 +08:00
Code Issues Packages Projects Releases Wiki Activity
Files
scratch/frontend
photoprism/internal/form/oauth_revoke_token.go
Michael Mayer 0ada8d1095 API: Add additional fields to label and subject edit forms #383 #3168 
Signed-off-by: Michael Mayer <michael@photoprism.app>
2025-01-17 02:55:07 +01:00

73 lines
1.5 KiB
Go
Raw Permalink Blame History

package form
import (
"github.com/photoprism/photoprism/pkg/authn"
"github.com/photoprism/photoprism/pkg/rnd"
)
const (
RefID = "ref_id"
SessionID = "session_id"
AccessToken = "access_token"
)
// OAuthRevokeToken represents a token revocation form.
type OAuthRevokeToken struct {
Token string `form:"token" binding:"required" json:"token,omitempty"`
TokenTypeHint string `form:"token_type_hint" json:" token_type_hint,omitempty"`
}
// Empty checks if all form values are unset.
func (f *OAuthRevokeToken) Empty() bool {
switch {
case f.Token != "":
return false
case f.TokenTypeHint != "":
return false
}
return true
}
// Validate checks the revoke token form values and returns an error if invalid.
func (f *OAuthRevokeToken) Validate() error {
// Require a token.
if f.Token == "" {
return authn.ErrTokenRequired
}
// Validate token type.
isRefID := rnd.IsRefID(f.Token)
isSessionID := rnd.IsSessionID(f.Token)
isAuthAny := rnd.IsAuthAny(f.Token)
switch f.TokenTypeHint {
case "":
if !isRefID && !isSessionID && !isAuthAny {
return authn.ErrInvalidToken
} else if isRefID {
f.TokenTypeHint = RefID
} else if isSessionID {
f.TokenTypeHint = SessionID
} else {
f.TokenTypeHint = AccessToken
}
case RefID:
if !isRefID {
return authn.ErrInvalidToken
}
case SessionID:
if !isSessionID {
return authn.ErrInvalidToken
}
case AccessToken:
if !isAuthAny {
return authn.ErrInvalidToken
}
default:
return authn.ErrInvalidTokenType
}
return nil
}
Reference in New Issue View Git Blame Copy Permalink