switch to go vendoring

2026-04-24 04:58:31 -05:00 · 2023-04-19 20:10:09 +02:00
parent 632fa05ef9
commit afc6ed1e41
8527 changed files with 3004916 additions and 2 deletions
@@ -0,0 +1,36 @@
+/*
+ * Copyright 2017-2019 Kopano and its licensors
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *     http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ *
+ */
+
+package code
+
+import (
+	"github.com/libregraph/lico/identity"
+	"github.com/libregraph/lico/oidc/payload"
+)
+
+// Record bundles the data storedi in a code manager.
+type Record struct {
+	AuthenticationRequest *payload.AuthenticationRequest
+	Auth                  identity.AuthRecord
+	Session               *payload.Session
+}
+
+// Manager is a interface defining a code manager.
+type Manager interface {
+	Create(record *Record) (string, error)
+	Pop(code string) (*Record, bool)
+}
@@ -0,0 +1,113 @@
+/*
+ * Copyright 2017-2019 Kopano and its licensors
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *     http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ *
+ */
+
+package managers
+
+import (
+	"context"
+	"time"
+
+	"github.com/longsleep/rndm"
+	"github.com/orcaman/concurrent-map"
+
+	"github.com/libregraph/lico/oidc/code"
+)
+
+const (
+	codeValidDuration = 2 * time.Minute
+)
+
+// Manager provides the api and state for OIDC code generation and token
+// exchange. The CodeManager's methods are safe to call from multiple Go
+// routines.
+type memoryMapManager struct {
+	table        cmap.ConcurrentMap
+	codeDuration time.Duration
+}
+
+type codeRequestRecord struct {
+	record *code.Record
+	//ar   *payload.AuthenticationRequest
+	//auth identity.AuthRecord
+	when time.Time
+}
+
+// NewMemoryMapManager creates a new CodeManager.
+func NewMemoryMapManager(ctx context.Context) code.Manager {
+	cm := &memoryMapManager{
+		table: cmap.New(),
+	}
+
+	// Cleanup function.
+	go func() {
+		ticker := time.NewTicker(30 * time.Second)
+		defer ticker.Stop()
+		for {
+			select {
+			case <-ticker.C:
+				cm.purgeExpired()
+			case <-ctx.Done():
+				return
+			}
+
+		}
+	}()
+
+	return cm
+}
+
+func (cm *memoryMapManager) purgeExpired() {
+	var expired []string
+	deadline := time.Now().Add(-codeValidDuration)
+	var record *codeRequestRecord
+	for entry := range cm.table.IterBuffered() {
+		record = entry.Val.(*codeRequestRecord)
+		if record.when.Before(deadline) {
+			expired = append(expired, entry.Key)
+		}
+	}
+	for _, code := range expired {
+		cm.table.Remove(code)
+	}
+}
+
+// Create creates a new random code string, stores it together with the provided
+// values in the accociated CodeManager's table and returns the code.
+func (cm *memoryMapManager) Create(record *code.Record) (string, error) {
+	code := rndm.GenerateRandomString(24)
+
+	rr := &codeRequestRecord{
+		record: record,
+		when:   time.Now(),
+	}
+	cm.table.Set(code, rr)
+
+	return code, nil
+}
+
+// Pop looks up the provided code in the accociated CodeManagers's table. If
+// found it returns the authentication request and backend record plus true.
+// When not found, both values return as nil plus false.
+func (cm *memoryMapManager) Pop(code string) (*code.Record, bool) {
+	stored, found := cm.table.Pop(code)
+	if !found {
+		return nil, false
+	}
+	rr := stored.(*codeRequestRecord)
+
+	return rr.record, true
+}