vw_small

device.rs (5872B)

---

 use crate::crypto;
 use crate::util;
 use chrono::{NaiveDateTime, Utc};
 
 db_object! {
     #[derive(Insertable, Queryable)]
     #[diesel(table_name = devices)]
     #[diesel(treat_none_as_null = true)]
     pub struct Device {
         pub uuid: String,
         created_at: NaiveDateTime,
         pub updated_at: NaiveDateTime,
         pub user_uuid: String,
         name: String,
         atype: i32,         // https://github.com/bitwarden/server/blob/master/src/Core/Enums/DeviceType.cs
         push_uuid: Option<String>,
         push_token: Option<String>,
         pub refresh_token: String,
         twofactor_remember: Option<String>,
     }
 }
 
 /// Local methods
 impl Device {
     pub fn new(uuid: String, user_uuid: String, name: String, atype: i32) -> Self {
         let now = Utc::now().naive_utc();
         Self {
             uuid,
             created_at: now,
             updated_at: now,
             user_uuid,
             name,
             atype,
             push_uuid: None,
             push_token: None,
             refresh_token: String::new(),
             twofactor_remember: None,
         }
     }
 
     pub fn delete_twofactor_remember(&mut self) {
         self.twofactor_remember = None;
     }
 
     pub fn refresh_tokens(&mut self, user: &super::User, scope: Vec<String>) -> (String, i64) {
         // If there is no refresh token, we create one
         if self.refresh_token.is_empty() {
             use data_encoding::BASE64URL;
             self.refresh_token = crypto::encode_random_bytes::<64>(&BASE64URL);
         }
         // Update the expiration of the device and the last update date
         let time_now = Utc::now();
         self.updated_at = time_now.naive_utc();
         // ---
         // Disabled these keys to be added to the JWT since they could cause the JWT to get too large
         // Also These key/value pairs are not used anywhere by either Vaultwarden or Bitwarden Clients
         // Because these might get used in the future, and they are added by the Bitwarden Server, lets keep it, but then commented out
         // ---
         // fn arg: orgs: Vec<super::UserOrganization>,
         // ---
         // let orgowner: Vec<_> = orgs.iter().filter(|o| o.atype == 0).map(|o| o.org_uuid.clone()).collect();
         // let orgadmin: Vec<_> = orgs.iter().filter(|o| o.atype == 1).map(|o| o.org_uuid.clone()).collect();
         // let orguser: Vec<_> = orgs.iter().filter(|o| o.atype == 2).map(|o| o.org_uuid.clone()).collect();
         // let orgmanager: Vec<_> = orgs.iter().filter(|o| o.atype == 3).map(|o| o.org_uuid.clone()).collect();
         // Create the JWT claims struct, to send to the client
         use crate::auth::{self, encode_jwt, LoginJwtClaims};
         let claims = LoginJwtClaims {
             nbf: time_now.timestamp(),
             exp: time_now
                 .checked_add_signed(*auth::get_default_validity())
                 .expect("overflow")
                 .timestamp(),
             iss: auth::get_jwt_login_issuer().to_owned(),
             sub: user.uuid.clone(),
             premium: true,
             name: user.name.clone(),
             email: user.email.clone(),
             email_verified: true,
             // ---
             // Disabled these keys to be added to the JWT since they could cause the JWT to get too large
             // Also These key/value pairs are not used anywhere by either Vaultwarden or Bitwarden Clients
             // Because these might get used in the future, and they are added by the Bitwarden Server, lets keep it, but then commented out
             // See: https://github.com/dani-garcia/vaultwarden/issues/4156
             // ---
             // orgowner,
             // orgadmin,
             // orguser,
             // orgmanager,
             sstamp: user.security_stamp.clone(),
             device: self.uuid.clone(),
             scope,
             amr: vec!["Application".into()],
         };
 
         (
             encode_jwt(&claims),
             auth::get_default_validity().num_seconds(),
         )
     }
 }
 
 use crate::api::EmptyResult;
 use crate::db::DbConn;
 use crate::error::MapResult;
 
 /// Database methods
 impl Device {
     pub async fn save(&mut self, conn: &DbConn) -> EmptyResult {
         self.updated_at = Utc::now().naive_utc();
         db_run! { conn:
             {
                 util::retry(
                     || diesel::replace_into(devices::table).values(DeviceDb::to_db(self)).execute(conn),
                     10,
                 ).map_res("Error saving device")
             }
         }
     }
 
     pub async fn delete_all_by_user(user_uuid: &str, conn: &DbConn) -> EmptyResult {
         db_run! { conn: {
             diesel::delete(devices::table.filter(devices::user_uuid.eq(user_uuid)))
                 .execute(conn)
                 .map_res("Error removing devices for user")
         }}
     }
 
     pub async fn find_by_uuid_and_user(uuid: &str, user_uuid: &str, conn: &DbConn) -> Option<Self> {
         db_run! { conn: {
             devices::table
                 .filter(devices::uuid.eq(uuid))
                 .filter(devices::user_uuid.eq(user_uuid))
                 .first::<DeviceDb>(conn)
                 .ok()
                 .from_db()
         }}
     }
 
     pub async fn find_by_refresh_token(refresh_token: &str, conn: &DbConn) -> Option<Self> {
         db_run! { conn: {
             devices::table
                 .filter(devices::refresh_token.eq(refresh_token))
                 .first::<DeviceDb>(conn)
                 .ok()
                 .from_db()
         }}
     }
 
     pub async fn find_latest_active_by_user(user_uuid: &str, conn: &DbConn) -> Option<Self> {
         db_run! { conn: {
             devices::table
                 .filter(devices::user_uuid.eq(user_uuid))
                 .order(devices::updated_at.desc())
                 .first::<DeviceDb>(conn)
                 .ok()
                 .from_db()
         }}
     }
 }