gnu-social/classes/Oauth_application_user.php

<?php
// This file is part of GNU social - https://www.gnu.org/software/social
//
// GNU social is free software: you can redistribute it and/or modify
// it under the terms of the GNU Affero General Public License as published by
// the Free Software Foundation, either version 3 of the License, or
// (at your option) any later version.
//
// GNU social is distributed in the hope that it will be useful,
// but WITHOUT ANY WARRANTY; without even the implied warranty of
// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
// GNU Affero General Public License for more details.
//
// You should have received a copy of the GNU Affero General Public License
// along with GNU social.  If not, see <http://www.gnu.org/licenses/>.

/**
 * Table Definition for oauth_application_user
 */

defined('GNUSOCIAL') || die();

class Oauth_application_user extends Managed_DataObject
{
    ###START_AUTOCODE
    /* the code below is auto generated do not remove the above tag */

    public $__table = 'oauth_application_user';          // table name
    public $profile_id;                      // int(4)  primary_key not_null
    public $application_id;                  // int(4)  primary_key not_null
    public $access_type;                     // tinyint(1)
    public $token;                           // varchar(191)   not 255 because utf8mb4 takes more space
    public $created;                         // datetime()
    public $modified;                        // timestamp()    not_null default_CURRENT_TIMESTAMP

    /* the code above is auto generated do not remove the tag below */
    ###END_AUTOCODE

    public static function schemaDef()
    {
        return array(
            'fields' => array(
                'profile_id' => array('type' => 'int', 'not null' => true, 'description' => 'user of the application'),
                'application_id' => array('type' => 'int', 'not null' => true, 'description' => 'id of the application'),
                'access_type' => array('type' => 'int', 'size' => 'tiny', 'default' => 0, 'description' => 'access type, bit 1 = read, bit 2 = write'),
                'token' => array('type' => 'varchar', 'length' => 191, 'description' => 'request or access token'),
                'created' => array('type' => 'datetime', 'description' => 'date this record was created'),
                'modified' => array('type' => 'timestamp', 'not null' => true, 'description' => 'date this record was modified'),
            ),
            'primary key' => array('profile_id', 'application_id'),
            'foreign keys' => array(
                'oauth_application_user_profile_id_fkey' => array('profile', array('profile_id' => 'id')),
                'oauth_application_user_application_id_fkey' => array('oauth_application', array('application_id' => 'id')),
            ),
            'indexes' => array(
                'oauth_application_user_application_id_idx' => array('application_id'),
            ),
        );
    }

    public static function getByUserAndToken($user, $token)
    {
        if (empty($user) || empty($token)) {
            return null;
        }

        $oau = new Oauth_application_user();

        $oau->profile_id = $user->id;
        $oau->token      = $token;
        $oau->limit(1);

        $result = $oau->find(true);

        return empty($result) ? null : $oau;
    }

    public function updateKeys(&$orig)
    {
        $this->_connect();
        $parts = array();
        foreach (array('profile_id', 'application_id', 'token', 'access_type') as $k) {
            if (strcmp($this->$k, $orig->$k) != 0) {
                $parts[] = $k . ' = ' . $this->_quote($this->$k);
            }
        }
        if (count($parts) == 0) {
            // No changes
            return true;
        }
        $toupdate = implode(', ', $parts);
        $toupdate .= ', modified = CURRENT_TIMESTAMP';

        $table = $this->tableName();
        $tableName = $this->escapedTableName();
        $qry = 'UPDATE ' . $tableName . ' SET ' . $toupdate .
            ' WHERE profile_id = ' . $orig->profile_id .
            ' AND application_id = ' . $orig->application_id .
            " AND token = '" . $orig->token . "'";
        $orig->decache();
        $result = $this->query($qry);
        if ($result) {
            $this->encache();
        }
        return $result;
    }
}
Add new OAuth application tables and DataObjects. Also add a new column for consumer secret to consumer table. 2009-11-11 01:10:56 +00:00			`<?php`
[DATABASE] Always quote identifiers The code used to operate under the assumption that MariaDB doesn't support quoting identifiers. Not only is that not exactly true, but MariaDB has reserved keywords that cannot be used as table or column names unquoted. 2019-09-11 06:15:16 +01:00			`// This file is part of GNU social - https://www.gnu.org/software/social`
			`//`
			`// GNU social is free software: you can redistribute it and/or modify`
			`// it under the terms of the GNU Affero General Public License as published by`
			`// the Free Software Foundation, either version 3 of the License, or`
			`// (at your option) any later version.`
			`//`
			`// GNU social is distributed in the hope that it will be useful,`
			`// but WITHOUT ANY WARRANTY; without even the implied warranty of`
			`// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the`
			`// GNU Affero General Public License for more details.`
			`//`
			`// You should have received a copy of the GNU Affero General Public License`
			`// along with GNU social. If not, see <http://www.gnu.org/licenses/>.`

Add new OAuth application tables and DataObjects. Also add a new column for consumer secret to consumer table. 2009-11-11 01:10:56 +00:00			`/**`
			`* Table Definition for oauth_application_user`
			`*/`
[SCHEMA] Improve timestamp storage Avoid the use of deprecated MariaDB "zero dates" globally. If they're present as attribute defaults somewhere, they will be replaced with NULL implicitly. The existing "zero dates" in MariaDB storage will be left intact and this should not present any issues. The "timestamp" type in table definitions now corresponds to DATETIME in MariaDB with "DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP", which should be close enough to the original behaviour for compatibility purposes. It is now the recommended type for "modified" attributes, because of the update trigger on MariaDB. But there is no such trigger implemented on PostgreSQL as of this moment. 2020-06-28 23:41:46 +01:00
			`defined('GNUSOCIAL') \|\| die();`

move core schema to class files 2011-08-22 22:52:02 +01:00			`class Oauth_application_user extends Managed_DataObject`
Add new OAuth application tables and DataObjects. Also add a new column for consumer secret to consumer table. 2009-11-11 01:10:56 +00:00			`{`
			`###START_AUTOCODE`
			`/* the code below is auto generated do not remove the above tag */`

			`public $__table = 'oauth_application_user'; // table name`
Changed the OAuth app tables to refer to profiles instead of users. Added an owner column to oauth_application. 2009-11-13 03:34:13 +00:00			`public $profile_id; // int(4) primary_key not_null`
Add new OAuth application tables and DataObjects. Also add a new column for consumer secret to consumer table. 2009-11-11 01:10:56 +00:00			`public $application_id; // int(4) primary_key not_null`
Changed the OAuth app tables to refer to profiles instead of users. Added an owner column to oauth_application. 2009-11-13 03:34:13 +00:00			`public $access_type; // tinyint(1)`
utf8mb4 conversion on database with index adjusts 2015-02-12 17:18:55 +00:00			`public $token; // varchar(191) not 255 because utf8mb4 takes more space`
[SCHEMA] Improve timestamp storage Avoid the use of deprecated MariaDB "zero dates" globally. If they're present as attribute defaults somewhere, they will be replaced with NULL implicitly. The existing "zero dates" in MariaDB storage will be left intact and this should not present any issues. The "timestamp" type in table definitions now corresponds to DATETIME in MariaDB with "DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP", which should be close enough to the original behaviour for compatibility purposes. It is now the recommended type for "modified" attributes, because of the update trigger on MariaDB. But there is no such trigger implemented on PostgreSQL as of this moment. 2020-06-28 23:41:46 +01:00			`public $created; // datetime()`
			`public $modified; // timestamp() not_null default_CURRENT_TIMESTAMP`
Add new OAuth application tables and DataObjects. Also add a new column for consumer secret to consumer table. 2009-11-11 01:10:56 +00:00
			`/* the code above is auto generated do not remove the tag below */`
			`###END_AUTOCODE`
Associate request tokens with OAuth apps and app users 2010-01-11 07:03:30 +00:00
move core schema to class files 2011-08-22 22:52:02 +01:00			`public static function schemaDef()`
			`{`
			`return array(`
			`'fields' => array(`
			`'profile_id' => array('type' => 'int', 'not null' => true, 'description' => 'user of the application'),`
			`'application_id' => array('type' => 'int', 'not null' => true, 'description' => 'id of the application'),`
			`'access_type' => array('type' => 'int', 'size' => 'tiny', 'default' => 0, 'description' => 'access type, bit 1 = read, bit 2 = write'),`
utf8mb4 conversion on database with index adjusts 2015-02-12 17:18:55 +00:00			`'token' => array('type' => 'varchar', 'length' => 191, 'description' => 'request or access token'),`
[SCHEMA] Improve timestamp storage Avoid the use of deprecated MariaDB "zero dates" globally. If they're present as attribute defaults somewhere, they will be replaced with NULL implicitly. The existing "zero dates" in MariaDB storage will be left intact and this should not present any issues. The "timestamp" type in table definitions now corresponds to DATETIME in MariaDB with "DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP", which should be close enough to the original behaviour for compatibility purposes. It is now the recommended type for "modified" attributes, because of the update trigger on MariaDB. But there is no such trigger implemented on PostgreSQL as of this moment. 2020-06-28 23:41:46 +01:00			`'created' => array('type' => 'datetime', 'description' => 'date this record was created'),`
			`'modified' => array('type' => 'timestamp', 'not null' => true, 'description' => 'date this record was modified'),`
move core schema to class files 2011-08-22 22:52:02 +01:00			`),`
			`'primary key' => array('profile_id', 'application_id'),`
			`'foreign keys' => array(`
			`'oauth_application_user_profile_id_fkey' => array('profile', array('profile_id' => 'id')),`
			`'oauth_application_user_application_id_fkey' => array('oauth_application', array('application_id' => 'id')),`
			`),`
[DATABASE] Add explicit indices for all foreign keys This adds a requirement for all definitions that have foreign keys to also require indices for all source (local) attributes mentioned in foreign keys. MariaDB/MySQL creates indices for source attributes automatically, so this serves as a way to get rid of those automatic indices and create clean explicit ones instead. In PostgreSQL, most of the time, indices on the source are necessary to decrease performance penalty of foreign keys (like in MariaDB), but they aren't created automatically, so this serves to remove that difference between PostgreSQL and MariaDB. 2020-07-31 14:36:40 +01:00			`'indexes' => array(`
			`'oauth_application_user_application_id_idx' => array('application_id'),`
			`),`
move core schema to class files 2011-08-22 22:52:02 +01:00			`);`
			`}`

[DATABASE] Always quote identifiers The code used to operate under the assumption that MariaDB doesn't support quoting identifiers. Not only is that not exactly true, but MariaDB has reserved keywords that cannot be used as table or column names unquoted. 2019-09-11 06:15:16 +01:00			`public static function getByUserAndToken($user, $token)`
Associate request tokens with OAuth apps and app users 2010-01-11 07:03:30 +00:00			`{`
Add support for an anonymous OAuth consumer. Note: this requires a small DB tweak. Oauth_application_user needs to have the primary compound key: (profile_id, application_id, token). http://status.net/open-source/issues/2761 This should also make it possible to have multiple access tokens per application. http://status.net/open-source/issues/2788 2010-10-20 04:54:53 +01:00			`if (empty($user) \|\| empty($token)) {`
Associate request tokens with OAuth apps and app users 2010-01-11 07:03:30 +00:00			`return null;`
			`}`

			`$oau = new Oauth_application_user();`

Add support for an anonymous OAuth consumer. Note: this requires a small DB tweak. Oauth_application_user needs to have the primary compound key: (profile_id, application_id, token). http://status.net/open-source/issues/2761 This should also make it possible to have multiple access tokens per application. http://status.net/open-source/issues/2788 2010-10-20 04:54:53 +01:00			`$oau->profile_id = $user->id;`
			`$oau->token = $token;`
Associate request tokens with OAuth apps and app users 2010-01-11 07:03:30 +00:00			`$oau->limit(1);`

			`$result = $oau->find(true);`

			`return empty($result) ? null : $oau;`
			`}`
Add support for an anonymous OAuth consumer. Note: this requires a small DB tweak. Oauth_application_user needs to have the primary compound key: (profile_id, application_id, token). http://status.net/open-source/issues/2761 This should also make it possible to have multiple access tokens per application. http://status.net/open-source/issues/2788 2010-10-20 04:54:53 +01:00
[DATABASE] Always quote identifiers The code used to operate under the assumption that MariaDB doesn't support quoting identifiers. Not only is that not exactly true, but MariaDB has reserved keywords that cannot be used as table or column names unquoted. 2019-09-11 06:15:16 +01:00			`public function updateKeys(&$orig)`
Add support for an anonymous OAuth consumer. Note: this requires a small DB tweak. Oauth_application_user needs to have the primary compound key: (profile_id, application_id, token). http://status.net/open-source/issues/2761 This should also make it possible to have multiple access tokens per application. http://status.net/open-source/issues/2788 2010-10-20 04:54:53 +01:00			`{`
			`$this->_connect();`
			`$parts = array();`
			`foreach (array('profile_id', 'application_id', 'token', 'access_type') as $k) {`
			`if (strcmp($this->$k, $orig->$k) != 0) {`
			`$parts[] = $k . ' = ' . $this->_quote($this->$k);`
			`}`
			`}`
			`if (count($parts) == 0) {`
Mass replacement of #-comments with //-comments like leprous boils in our code. So, I've replaced all of them with // comments instead. It's a massive, meaningless, and potentially buggy change -- great one for the middle of a release cycle, eh? 2011-03-22 15:54:23 +00:00			`// No changes`
Add support for an anonymous OAuth consumer. Note: this requires a small DB tweak. Oauth_application_user needs to have the primary compound key: (profile_id, application_id, token). http://status.net/open-source/issues/2761 This should also make it possible to have multiple access tokens per application. http://status.net/open-source/issues/2788 2010-10-20 04:54:53 +01:00			`return true;`
			`}`
			`$toupdate = implode(', ', $parts);`
[DATABASE] Update "modified" in Managed_DataObject instead of a DBMS trigger Instead of relying on the MariaDB's ON UPDATE CURRENT_TIMESTAMP trigger update "modified" attributes in Managed_DataObject. Every raw query that needs adjusting is adjusted, as they won't update "modified" automatically anymore. The main goal behind this change is to fix "modified" updates on PostgreSQL. 2020-07-27 17:10:33 +01:00			`$toupdate .= ', modified = CURRENT_TIMESTAMP';`
Add support for an anonymous OAuth consumer. Note: this requires a small DB tweak. Oauth_application_user needs to have the primary compound key: (profile_id, application_id, token). http://status.net/open-source/issues/2761 This should also make it possible to have multiple access tokens per application. http://status.net/open-source/issues/2788 2010-10-20 04:54:53 +01:00
			`$table = $this->tableName();`
[DATABASE] Always quote identifiers The code used to operate under the assumption that MariaDB doesn't support quoting identifiers. Not only is that not exactly true, but MariaDB has reserved keywords that cannot be used as table or column names unquoted. 2019-09-11 06:15:16 +01:00			`$tableName = $this->escapedTableName();`
			`$qry = 'UPDATE ' . $tableName . ' SET ' . $toupdate .`
			`' WHERE profile_id = ' . $orig->profile_id .`
			`' AND application_id = ' . $orig->application_id .`
			`" AND token = '" . $orig->token . "'";`
Add support for an anonymous OAuth consumer. Note: this requires a small DB tweak. Oauth_application_user needs to have the primary compound key: (profile_id, application_id, token). http://status.net/open-source/issues/2761 This should also make it possible to have multiple access tokens per application. http://status.net/open-source/issues/2788 2010-10-20 04:54:53 +01:00			`$orig->decache();`
			`$result = $this->query($qry);`
			`if ($result) {`
			`$this->encache();`
			`}`
			`return $result;`
			`}`
Add new OAuth application tables and DataObjects. Also add a new column for consumer secret to consumer table. 2009-11-11 01:10:56 +00:00			`}`