gnu-social/classes/Consumer.php

<?php
// This file is part of GNU social - https://www.gnu.org/software/social
//
// GNU social is free software: you can redistribute it and/or modify
// it under the terms of the GNU Affero General Public License as published by
// the Free Software Foundation, either version 3 of the License, or
// (at your option) any later version.
//
// GNU social is distributed in the hope that it will be useful,
// but WITHOUT ANY WARRANTY; without even the implied warranty of
// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
// GNU Affero General Public License for more details.
//
// You should have received a copy of the GNU Affero General Public License
// along with GNU social.  If not, see <http://www.gnu.org/licenses/>.

/**
 * Table Definition for consumer
 */

defined('GNUSOCIAL') || die();

class Consumer extends Managed_DataObject
{
    ###START_AUTOCODE
    /* the code below is auto generated do not remove the above tag */

    public $__table = 'consumer';                        // table name
    public $consumer_key;                    // varchar(191)  primary_key not_null   not 255 because utf8mb4 takes more space
    public $consumer_secret;                 // varchar(191)   not_null   not 255 because utf8mb4 takes more space
    public $seed;                            // char(32)   not_null
    public $created;                         // datetime()
    public $modified;                        // timestamp()   not_null default_CURRENT_TIMESTAMP

    /* the code above is auto generated do not remove the tag below */
    ###END_AUTOCODE

    public static function schemaDef()
    {
        return array(
            'description' => 'OAuth consumer record',
            'fields' => array(
                'consumer_key' => array('type' => 'varchar', 'length' => 191, 'not null' => true, 'description' => 'unique identifier, root URL'),
                'consumer_secret' => array('type' => 'varchar', 'length' => 191, 'not null' => true, 'description' => 'secret value'),
                'seed' => array('type' => 'char', 'length' => 32, 'not null' => true, 'description' => 'seed for new tokens by this consumer'),
                'created' => array('type' => 'datetime', 'description' => 'date this record was created'),
                'modified' => array('type' => 'timestamp', 'not null' => true, 'description' => 'date this record was modified'),
            ),
            'primary key' => array('consumer_key'),
        );
    }

    public static function generateNew()
    {
        $cons = new Consumer();
        $rand = common_random_hexstr(16);

        $cons->seed            = $rand;
        $cons->consumer_key    = md5(time() + $rand);
        $cons->consumer_secret = md5(md5(time() + time() + $rand));
        $cons->created         = common_sql_now();

        return $cons;
    }

    /**
     * Delete a Consumer and related tokens and nonces
     *
     * XXX: Should this happen in an OAuthDataStore instead?
     *
     */
    public function delete($useWhere = false)
    {
        // XXX: Is there any reason NOT to do this kind of cleanup?

        $this->deleteTokens();
        $this->deleteNonces();

        return parent::delete($useWhere);
    }

    private function deleteTokens()
    {
        $token = new Token();
        $token->consumer_key = $this->consumer_key;
        $token->delete();
    }

    private function deleteNonces()
    {
        $nonce = new Nonce();
        $nonce->consumer_key = $this->consumer_key;
        $nonce->delete();
    }
}
server-side storage model First pass at a server-side storage model. New tables for consumers, tokens, and nonces, with associated classes. An OAuthDataStore class interfaces with the OAuth.php library to enable server logic. Some additional work to get pretty-OK random number generation into the utilities library. Use /dev/urandom if available; else use mt_rand(). darcs-hash:20080527200721-84dde-308c047af2ebc2c4d753c1e1e24af20fef862a7e.gz 2008-05-27 16:07:21 -04:00			`<?php`
[SCHEMA] Improve timestamp storage Avoid the use of deprecated MariaDB "zero dates" globally. If they're present as attribute defaults somewhere, they will be replaced with NULL implicitly. The existing "zero dates" in MariaDB storage will be left intact and this should not present any issues. The "timestamp" type in table definitions now corresponds to DATETIME in MariaDB with "DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP", which should be close enough to the original behaviour for compatibility purposes. It is now the recommended type for "modified" attributes, because of the update trigger on MariaDB. But there is no such trigger implemented on PostgreSQL as of this moment. 2020-06-29 01:41:46 +03:00			`// This file is part of GNU social - https://www.gnu.org/software/social`
			`//`
			`// GNU social is free software: you can redistribute it and/or modify`
			`// it under the terms of the GNU Affero General Public License as published by`
			`// the Free Software Foundation, either version 3 of the License, or`
			`// (at your option) any later version.`
			`//`
			`// GNU social is distributed in the hope that it will be useful,`
			`// but WITHOUT ANY WARRANTY; without even the implied warranty of`
			`// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the`
			`// GNU Affero General Public License for more details.`
			`//`
			`// You should have received a copy of the GNU Affero General Public License`
			`// along with GNU social. If not, see <http://www.gnu.org/licenses/>.`

server-side storage model First pass at a server-side storage model. New tables for consumers, tokens, and nonces, with associated classes. An OAuthDataStore class interfaces with the OAuth.php library to enable server logic. Some additional work to get pretty-OK random number generation into the utilities library. Use /dev/urandom if available; else use mt_rand(). darcs-hash:20080527200721-84dde-308c047af2ebc2c4d753c1e1e24af20fef862a7e.gz 2008-05-27 16:07:21 -04:00			`/**`
			`* Table Definition for consumer`
			`*/`
[SCHEMA] Improve timestamp storage Avoid the use of deprecated MariaDB "zero dates" globally. If they're present as attribute defaults somewhere, they will be replaced with NULL implicitly. The existing "zero dates" in MariaDB storage will be left intact and this should not present any issues. The "timestamp" type in table definitions now corresponds to DATETIME in MariaDB with "DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP", which should be close enough to the original behaviour for compatibility purposes. It is now the recommended type for "modified" attributes, because of the update trigger on MariaDB. But there is no such trigger implemented on PostgreSQL as of this moment. 2020-06-29 01:41:46 +03:00
			`defined('GNUSOCIAL') \|\| die();`
server-side storage model First pass at a server-side storage model. New tables for consumers, tokens, and nonces, with associated classes. An OAuthDataStore class interfaces with the OAuth.php library to enable server logic. Some additional work to get pretty-OK random number generation into the utilities library. Use /dev/urandom if available; else use mt_rand(). darcs-hash:20080527200721-84dde-308c047af2ebc2c4d753c1e1e24af20fef862a7e.gz 2008-05-27 16:07:21 -04:00
move core schema to class files 2011-08-22 17:52:02 -04:00			`class Consumer extends Managed_DataObject`
server-side storage model First pass at a server-side storage model. New tables for consumers, tokens, and nonces, with associated classes. An OAuthDataStore class interfaces with the OAuth.php library to enable server logic. Some additional work to get pretty-OK random number generation into the utilities library. Use /dev/urandom if available; else use mt_rand(). darcs-hash:20080527200721-84dde-308c047af2ebc2c4d753c1e1e24af20fef862a7e.gz 2008-05-27 16:07:21 -04:00			`{`
			`###START_AUTOCODE`
			`/* the code below is auto generated do not remove the above tag */`

			`public $__table = 'consumer'; // table name`
utf8mb4 conversion on database with index adjusts 2015-02-12 18:18:55 +01:00			`public $consumer_key; // varchar(191) primary_key not_null not 255 because utf8mb4 takes more space`
			`public $consumer_secret; // varchar(191) not_null not 255 because utf8mb4 takes more space`
server-side storage model First pass at a server-side storage model. New tables for consumers, tokens, and nonces, with associated classes. An OAuthDataStore class interfaces with the OAuth.php library to enable server logic. Some additional work to get pretty-OK random number generation into the utilities library. Use /dev/urandom if available; else use mt_rand(). darcs-hash:20080527200721-84dde-308c047af2ebc2c4d753c1e1e24af20fef862a7e.gz 2008-05-27 16:07:21 -04:00			`public $seed; // char(32) not_null`
[SCHEMA] Improve timestamp storage Avoid the use of deprecated MariaDB "zero dates" globally. If they're present as attribute defaults somewhere, they will be replaced with NULL implicitly. The existing "zero dates" in MariaDB storage will be left intact and this should not present any issues. The "timestamp" type in table definitions now corresponds to DATETIME in MariaDB with "DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP", which should be close enough to the original behaviour for compatibility purposes. It is now the recommended type for "modified" attributes, because of the update trigger on MariaDB. But there is no such trigger implemented on PostgreSQL as of this moment. 2020-06-29 01:41:46 +03:00			`public $created; // datetime()`
			`public $modified; // timestamp() not_null default_CURRENT_TIMESTAMP`
server-side storage model First pass at a server-side storage model. New tables for consumers, tokens, and nonces, with associated classes. An OAuthDataStore class interfaces with the OAuth.php library to enable server logic. Some additional work to get pretty-OK random number generation into the utilities library. Use /dev/urandom if available; else use mt_rand(). darcs-hash:20080527200721-84dde-308c047af2ebc2c4d753c1e1e24af20fef862a7e.gz 2008-05-27 16:07:21 -04:00
			`/* the code above is auto generated do not remove the tag below */`
			`###END_AUTOCODE`
Workflow for registering new OAuth apps pretty much done. 2009-11-16 16:58:49 -08:00
move core schema to class files 2011-08-22 17:52:02 -04:00			`public static function schemaDef()`
			`{`
			`return array(`
			`'description' => 'OAuth consumer record',`
			`'fields' => array(`
utf8mb4 conversion on database with index adjusts 2015-02-12 18:18:55 +01:00			`'consumer_key' => array('type' => 'varchar', 'length' => 191, 'not null' => true, 'description' => 'unique identifier, root URL'),`
			`'consumer_secret' => array('type' => 'varchar', 'length' => 191, 'not null' => true, 'description' => 'secret value'),`
move core schema to class files 2011-08-22 17:52:02 -04:00			`'seed' => array('type' => 'char', 'length' => 32, 'not null' => true, 'description' => 'seed for new tokens by this consumer'),`
[SCHEMA] Improve timestamp storage Avoid the use of deprecated MariaDB "zero dates" globally. If they're present as attribute defaults somewhere, they will be replaced with NULL implicitly. The existing "zero dates" in MariaDB storage will be left intact and this should not present any issues. The "timestamp" type in table definitions now corresponds to DATETIME in MariaDB with "DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP", which should be close enough to the original behaviour for compatibility purposes. It is now the recommended type for "modified" attributes, because of the update trigger on MariaDB. But there is no such trigger implemented on PostgreSQL as of this moment. 2020-06-29 01:41:46 +03:00			`'created' => array('type' => 'datetime', 'description' => 'date this record was created'),`
			`'modified' => array('type' => 'timestamp', 'not null' => true, 'description' => 'date this record was modified'),`
move core schema to class files 2011-08-22 17:52:02 -04:00			`),`
			`'primary key' => array('consumer_key'),`
			`);`
			`}`

[SCHEMA] Improve timestamp storage Avoid the use of deprecated MariaDB "zero dates" globally. If they're present as attribute defaults somewhere, they will be replaced with NULL implicitly. The existing "zero dates" in MariaDB storage will be left intact and this should not present any issues. The "timestamp" type in table definitions now corresponds to DATETIME in MariaDB with "DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP", which should be close enough to the original behaviour for compatibility purposes. It is now the recommended type for "modified" attributes, because of the update trigger on MariaDB. But there is no such trigger implemented on PostgreSQL as of this moment. 2020-06-29 01:41:46 +03:00			`public static function generateNew()`
Workflow for registering new OAuth apps pretty much done. 2009-11-16 16:58:49 -08:00			`{`
			`$cons = new Consumer();`
Replace common_good_random with common_random_hexstr 2013-10-21 13:20:30 +02:00			`$rand = common_random_hexstr(16);`
Workflow for registering new OAuth apps pretty much done. 2009-11-16 16:58:49 -08:00
			`$cons->seed = $rand;`
			`$cons->consumer_key = md5(time() + $rand);`
			`$cons->consumer_secret = md5(md5(time() + time() + $rand));`
			`$cons->created = common_sql_now();`

			`return $cons;`
			`}`

Allow developers to delete OAuth applications 2010-02-02 06:26:03 +00:00			`/**`
			`* Delete a Consumer and related tokens and nonces`
			`*`
			`* XXX: Should this happen in an OAuthDataStore instead?`
			`*`
			`*/`
[SCHEMA] Improve timestamp storage Avoid the use of deprecated MariaDB "zero dates" globally. If they're present as attribute defaults somewhere, they will be replaced with NULL implicitly. The existing "zero dates" in MariaDB storage will be left intact and this should not present any issues. The "timestamp" type in table definitions now corresponds to DATETIME in MariaDB with "DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP", which should be close enough to the original behaviour for compatibility purposes. It is now the recommended type for "modified" attributes, because of the update trigger on MariaDB. But there is no such trigger implemented on PostgreSQL as of this moment. 2020-06-29 01:41:46 +03:00			`public function delete($useWhere = false)`
Allow developers to delete OAuth applications 2010-02-02 06:26:03 +00:00			`{`
			`// XXX: Is there any reason NOT to do this kind of cleanup?`

[SCHEMA] Improve timestamp storage Avoid the use of deprecated MariaDB "zero dates" globally. If they're present as attribute defaults somewhere, they will be replaced with NULL implicitly. The existing "zero dates" in MariaDB storage will be left intact and this should not present any issues. The "timestamp" type in table definitions now corresponds to DATETIME in MariaDB with "DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP", which should be close enough to the original behaviour for compatibility purposes. It is now the recommended type for "modified" attributes, because of the update trigger on MariaDB. But there is no such trigger implemented on PostgreSQL as of this moment. 2020-06-29 01:41:46 +03:00			`$this->deleteTokens();`
			`$this->deleteNonces();`
Allow developers to delete OAuth applications 2010-02-02 06:26:03 +00:00
function delete in dataobjects now don't break strict syntax 2013-10-29 10:20:57 +01:00			`return parent::delete($useWhere);`
Allow developers to delete OAuth applications 2010-02-02 06:26:03 +00:00			`}`

[SCHEMA] Improve timestamp storage Avoid the use of deprecated MariaDB "zero dates" globally. If they're present as attribute defaults somewhere, they will be replaced with NULL implicitly. The existing "zero dates" in MariaDB storage will be left intact and this should not present any issues. The "timestamp" type in table definitions now corresponds to DATETIME in MariaDB with "DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP", which should be close enough to the original behaviour for compatibility purposes. It is now the recommended type for "modified" attributes, because of the update trigger on MariaDB. But there is no such trigger implemented on PostgreSQL as of this moment. 2020-06-29 01:41:46 +03:00			`private function deleteTokens()`
Allow developers to delete OAuth applications 2010-02-02 06:26:03 +00:00			`{`
			`$token = new Token();`
			`$token->consumer_key = $this->consumer_key;`
			`$token->delete();`
			`}`

[SCHEMA] Improve timestamp storage Avoid the use of deprecated MariaDB "zero dates" globally. If they're present as attribute defaults somewhere, they will be replaced with NULL implicitly. The existing "zero dates" in MariaDB storage will be left intact and this should not present any issues. The "timestamp" type in table definitions now corresponds to DATETIME in MariaDB with "DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP", which should be close enough to the original behaviour for compatibility purposes. It is now the recommended type for "modified" attributes, because of the update trigger on MariaDB. But there is no such trigger implemented on PostgreSQL as of this moment. 2020-06-29 01:41:46 +03:00			`private function deleteNonces()`
Allow developers to delete OAuth applications 2010-02-02 06:26:03 +00:00			`{`
			`$nonce = new Nonce();`
			`$nonce->consumer_key = $this->consumer_key;`
			`$nonce->delete();`
			`}`
server-side storage model First pass at a server-side storage model. New tables for consumers, tokens, and nonces, with associated classes. An OAuthDataStore class interfaces with the OAuth.php library to enable server logic. Some additional work to get pretty-OK random number generation into the utilities library. Use /dev/urandom if available; else use mt_rand(). darcs-hash:20080527200721-84dde-308c047af2ebc2c4d753c1e1e24af20fef862a7e.gz 2008-05-27 16:07:21 -04:00			`}`