2022-02-25 16:05:06 +01:00
|
|
|
package query
|
|
|
|
|
|
|
|
|
|
import (
|
|
|
|
|
"context"
|
|
|
|
|
"database/sql"
|
2023-12-08 16:30:55 +02:00
|
|
|
"errors"
|
2022-02-25 16:05:06 +01:00
|
|
|
"time"
|
|
|
|
|
|
|
|
|
|
sq "github.com/Masterminds/squirrel"
|
2022-03-23 09:02:39 +01:00
|
|
|
|
2022-04-27 01:01:45 +02:00
|
|
|
"github.com/zitadel/zitadel/internal/api/authz"
|
|
|
|
|
"github.com/zitadel/zitadel/internal/query/projection"
|
2022-12-01 09:18:53 +01:00
|
|
|
"github.com/zitadel/zitadel/internal/telemetry/tracing"
|
2023-12-08 16:30:55 +02:00
|
|
|
"github.com/zitadel/zitadel/internal/zerrors"
|
2022-02-25 16:05:06 +01:00
|
|
|
)
|
|
|
|
|
|
|
|
|
|
var (
|
|
|
|
|
oidcSettingsTable = table{
|
2022-10-27 08:08:36 +02:00
|
|
|
name: projection.OIDCSettingsProjectionTable,
|
|
|
|
|
instanceIDCol: projection.OIDCSettingsColumnInstanceID,
|
2022-02-25 16:05:06 +01:00
|
|
|
}
|
|
|
|
|
OIDCSettingsColumnAggregateID = Column{
|
|
|
|
|
name: projection.OIDCSettingsColumnAggregateID,
|
|
|
|
|
table: oidcSettingsTable,
|
|
|
|
|
}
|
|
|
|
|
OIDCSettingsColumnCreationDate = Column{
|
|
|
|
|
name: projection.OIDCSettingsColumnCreationDate,
|
|
|
|
|
table: oidcSettingsTable,
|
|
|
|
|
}
|
|
|
|
|
OIDCSettingsColumnChangeDate = Column{
|
|
|
|
|
name: projection.OIDCSettingsColumnChangeDate,
|
|
|
|
|
table: oidcSettingsTable,
|
|
|
|
|
}
|
|
|
|
|
OIDCSettingsColumnResourceOwner = Column{
|
|
|
|
|
name: projection.OIDCSettingsColumnResourceOwner,
|
|
|
|
|
table: oidcSettingsTable,
|
|
|
|
|
}
|
2022-03-23 09:02:39 +01:00
|
|
|
OIDCSettingsColumnInstanceID = Column{
|
|
|
|
|
name: projection.OIDCSettingsColumnInstanceID,
|
|
|
|
|
table: oidcSettingsTable,
|
|
|
|
|
}
|
2022-02-25 16:05:06 +01:00
|
|
|
OIDCSettingsColumnSequence = Column{
|
|
|
|
|
name: projection.OIDCSettingsColumnSequence,
|
|
|
|
|
table: oidcSettingsTable,
|
|
|
|
|
}
|
|
|
|
|
OIDCSettingsColumnAccessTokenLifetime = Column{
|
|
|
|
|
name: projection.OIDCSettingsColumnAccessTokenLifetime,
|
|
|
|
|
table: oidcSettingsTable,
|
|
|
|
|
}
|
|
|
|
|
OIDCSettingsColumnIdTokenLifetime = Column{
|
|
|
|
|
name: projection.OIDCSettingsColumnIdTokenLifetime,
|
|
|
|
|
table: oidcSettingsTable,
|
|
|
|
|
}
|
|
|
|
|
OIDCSettingsColumnRefreshTokenIdleExpiration = Column{
|
|
|
|
|
name: projection.OIDCSettingsColumnRefreshTokenIdleExpiration,
|
|
|
|
|
table: oidcSettingsTable,
|
|
|
|
|
}
|
|
|
|
|
OIDCSettingsColumnRefreshTokenExpiration = Column{
|
|
|
|
|
name: projection.OIDCSettingsColumnRefreshTokenExpiration,
|
|
|
|
|
table: oidcSettingsTable,
|
|
|
|
|
}
|
|
|
|
|
)
|
|
|
|
|
|
|
|
|
|
type OIDCSettings struct {
|
|
|
|
|
AggregateID string
|
|
|
|
|
CreationDate time.Time
|
|
|
|
|
ChangeDate time.Time
|
|
|
|
|
ResourceOwner string
|
|
|
|
|
Sequence uint64
|
|
|
|
|
|
2023-12-07 11:43:45 +02:00
|
|
|
AccessTokenLifetime time.Duration `json:"access_token_lifetime,omitempty"`
|
|
|
|
|
IdTokenLifetime time.Duration `json:"id_token_lifetime,omitempty"`
|
|
|
|
|
RefreshTokenIdleExpiration time.Duration `json:"refresh_token_idle_expiration,omitempty"`
|
|
|
|
|
RefreshTokenExpiration time.Duration `json:"refresh_token_expiration,omitempty"`
|
2022-02-25 16:05:06 +01:00
|
|
|
}
|
|
|
|
|
|
2023-08-22 12:49:22 +02:00
|
|
|
func (q *Queries) OIDCSettingsByAggID(ctx context.Context, aggregateID string) (settings *OIDCSettings, err error) {
|
2022-12-01 09:18:53 +01:00
|
|
|
ctx, span := tracing.NewSpan(ctx)
|
|
|
|
|
defer func() { span.EndWithError(err) }()
|
|
|
|
|
|
2025-04-02 16:53:06 +02:00
|
|
|
stmt, scan := prepareOIDCSettingsQuery()
|
2022-02-25 16:05:06 +01:00
|
|
|
query, args, err := stmt.Where(sq.Eq{
|
|
|
|
|
OIDCSettingsColumnAggregateID.identifier(): aggregateID,
|
2022-03-29 11:53:19 +02:00
|
|
|
OIDCSettingsColumnInstanceID.identifier(): authz.GetInstance(ctx).InstanceID(),
|
2022-02-25 16:05:06 +01:00
|
|
|
}).ToSql()
|
|
|
|
|
if err != nil {
|
2023-12-08 16:30:55 +02:00
|
|
|
return nil, zerrors.ThrowInternal(err, "QUERY-s9nle", "Errors.Query.SQLStatment")
|
2022-02-25 16:05:06 +01:00
|
|
|
}
|
|
|
|
|
|
2023-08-22 12:49:22 +02:00
|
|
|
err = q.client.QueryRowContext(ctx, func(row *sql.Row) error {
|
|
|
|
|
settings, err = scan(row)
|
|
|
|
|
return err
|
|
|
|
|
}, query, args...)
|
|
|
|
|
return settings, err
|
2022-02-25 16:05:06 +01:00
|
|
|
}
|
|
|
|
|
|
2025-04-02 16:53:06 +02:00
|
|
|
func prepareOIDCSettingsQuery() (sq.SelectBuilder, func(*sql.Row) (*OIDCSettings, error)) {
|
2022-02-25 16:05:06 +01:00
|
|
|
return sq.Select(
|
|
|
|
|
OIDCSettingsColumnAggregateID.identifier(),
|
|
|
|
|
OIDCSettingsColumnCreationDate.identifier(),
|
|
|
|
|
OIDCSettingsColumnChangeDate.identifier(),
|
|
|
|
|
OIDCSettingsColumnResourceOwner.identifier(),
|
|
|
|
|
OIDCSettingsColumnSequence.identifier(),
|
|
|
|
|
OIDCSettingsColumnAccessTokenLifetime.identifier(),
|
|
|
|
|
OIDCSettingsColumnIdTokenLifetime.identifier(),
|
|
|
|
|
OIDCSettingsColumnRefreshTokenIdleExpiration.identifier(),
|
|
|
|
|
OIDCSettingsColumnRefreshTokenExpiration.identifier()).
|
2025-04-02 16:53:06 +02:00
|
|
|
From(oidcSettingsTable.identifier()).
|
2023-02-27 22:36:43 +01:00
|
|
|
PlaceholderFormat(sq.Dollar),
|
2022-02-25 16:05:06 +01:00
|
|
|
func(row *sql.Row) (*OIDCSettings, error) {
|
|
|
|
|
oidcSettings := new(OIDCSettings)
|
|
|
|
|
err := row.Scan(
|
|
|
|
|
&oidcSettings.AggregateID,
|
|
|
|
|
&oidcSettings.CreationDate,
|
|
|
|
|
&oidcSettings.ChangeDate,
|
|
|
|
|
&oidcSettings.ResourceOwner,
|
|
|
|
|
&oidcSettings.Sequence,
|
|
|
|
|
&oidcSettings.AccessTokenLifetime,
|
|
|
|
|
&oidcSettings.IdTokenLifetime,
|
|
|
|
|
&oidcSettings.RefreshTokenIdleExpiration,
|
|
|
|
|
&oidcSettings.RefreshTokenExpiration,
|
|
|
|
|
)
|
|
|
|
|
if err != nil {
|
2023-12-08 16:30:55 +02:00
|
|
|
if errors.Is(err, sql.ErrNoRows) {
|
|
|
|
|
return nil, zerrors.ThrowNotFound(err, "QUERY-s9nlw", "Errors.OIDCSettings.NotFound")
|
2022-02-25 16:05:06 +01:00
|
|
|
}
|
2023-12-08 16:30:55 +02:00
|
|
|
return nil, zerrors.ThrowInternal(err, "QUERY-9bf8s", "Errors.Internal")
|
2022-02-25 16:05:06 +01:00
|
|
|
}
|
|
|
|
|
return oidcSettings, nil
|
|
|
|
|
}
|
|
|
|
|
}
|
