package goscrobble import ( "errors" "math/rand" "time" ) const letterBytes = "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ" type RefreshToken struct { UUID string User string Token string Expiry time.Time } // generateToken - Generates a unique token for user input func generateToken(n int) string { rand.Seed(time.Now().UnixNano()) b := make([]byte, n) for i := range b { b[i] = letterBytes[rand.Int63()%int64(len(letterBytes))] } return string(b) } func getUserUuidForToken(token string) (string, error) { var uuid string cachedKey := getRedisVal("user_token:" + token) if cachedKey == "" { err := db.QueryRow("SELECT uuid FROM users WHERE token = $1 AND active = true", token).Scan(&uuid) if err != nil { return "", errors.New("Invalid Token") } setRedisVal("user_token:"+token, uuid) } else { uuid = cachedKey } return uuid, nil } func insertRefreshToken(userUuid string, token string) error { uuid := newUUID() _, err := db.Exec(`INSERT INTO refresh_tokens (uuid, "user", token) VALUES ($1,$2,$3)`, uuid, userUuid, token) return err } func deleteRefreshToken(token string) error { _, err := db.Exec("DELETE FROM refresh_tokens WHERE token = $1", token) return err } func isValidRefreshToken(refreshTokenStr string) (User, error) { var refresh RefreshToken err := db.QueryRow("SELECT uuid, user, token, expiry FROM refresh_tokens WHERE token = $1", refreshTokenStr).Scan(&refresh.UUID, &refresh.User, &refresh.Token, &refresh.Expiry) if err != nil { return User{}, errors.New("Invalid Refresh Token") } // Validate Expiry if refresh.Expiry.Unix() < time.Now().Unix() { return User{}, errors.New("Invalid Refresh Token") } user, err := getUserByUUID(refresh.User) if err != nil { return User{}, errors.New("Invalid Refresh Token") } return user, nil }