internal/rpc/auth/auth.go

// Copyright © 2023 OpenIM. All rights reserved.
//
// Licensed under the Apache License, Version 2.0 (the "License");
// you may not use this file except in compliance with the License.
// You may obtain a copy of the License at
//
//     http://www.apache.org/licenses/LICENSE-2.0
//
// Unless required by applicable law or agreed to in writing, software
// distributed under the License is distributed on an "AS IS" BASIS,
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
// See the License for the specific language governing permissions and
// limitations under the License.

package auth

import (
	"context"

	"github.com/openimsdk/open-im-server/v3/pkg/common/config"
	redis2 "github.com/openimsdk/open-im-server/v3/pkg/common/storage/cache/redis"
	"github.com/openimsdk/tools/db/redisutil"
	"github.com/openimsdk/tools/utils/datautil"
	"github.com/redis/go-redis/v9"

	"github.com/openimsdk/open-im-server/v3/pkg/authverify"
	"github.com/openimsdk/open-im-server/v3/pkg/common/prommetrics"
	"github.com/openimsdk/open-im-server/v3/pkg/common/servererrs"
	"github.com/openimsdk/open-im-server/v3/pkg/common/storage/controller"
	"github.com/openimsdk/open-im-server/v3/pkg/rpcclient"
	pbauth "github.com/openimsdk/protocol/auth"
	"github.com/openimsdk/protocol/constant"
	"github.com/openimsdk/protocol/msggateway"
	"github.com/openimsdk/tools/discovery"
	"github.com/openimsdk/tools/errs"
	"github.com/openimsdk/tools/log"
	"github.com/openimsdk/tools/tokenverify"
	"google.golang.org/grpc"
)

type authServer struct {
	authDatabase   controller.AuthDatabase
	userRpcClient  *rpcclient.UserRpcClient
	RegisterCenter discovery.SvcDiscoveryRegistry
	config         *Config
}

type Config struct {
	RpcConfig   config.Auth
	RedisConfig config.Redis
	Share       config.Share
	Discovery   config.Discovery
}

func Start(ctx context.Context, config *Config, client discovery.SvcDiscoveryRegistry, server *grpc.Server) error {
	rdb, err := redisutil.NewRedisClient(ctx, config.RedisConfig.Build())
	if err != nil {
		return err
	}
	userRpcClient := rpcclient.NewUserRpcClient(client, config.Share.RpcRegisterName.User, config.Share.IMAdminUserID)
	pbauth.RegisterAuthServer(server, &authServer{
		userRpcClient:  &userRpcClient,
		RegisterCenter: client,
		authDatabase: controller.NewAuthDatabase(
			redis2.NewTokenCacheModel(rdb, config.RpcConfig.TokenPolicy.Expire),
			config.Share.Secret,
			config.RpcConfig.TokenPolicy.Expire,
			config.Share.MultiLogin,
		),
		config: config,
	})
	return nil
}

func (s *authServer) GetAdminToken(ctx context.Context, req *pbauth.GetAdminTokenReq) (*pbauth.GetAdminTokenResp, error) {
	resp := pbauth.GetAdminTokenResp{}
	if req.Secret != s.config.Share.Secret {
		return nil, errs.ErrNoPermission.WrapMsg("secret invalid")
	}

	if !datautil.Contain(req.UserID, s.config.Share.IMAdminUserID...) {
		return nil, errs.ErrArgs.WrapMsg("userID is error.", "userID", req.UserID, "adminUserID", s.config.Share.IMAdminUserID)

	}

	if _, err := s.userRpcClient.GetUserInfo(ctx, req.UserID); err != nil {
		return nil, err
	}

	token, err := s.authDatabase.CreateToken(ctx, req.UserID, int(constant.AdminPlatformID))
	if err != nil {
		return nil, err
	}

	prommetrics.UserLoginCounter.Inc()
	resp.Token = token
	resp.ExpireTimeSeconds = s.config.RpcConfig.TokenPolicy.Expire * 24 * 60 * 60
	return &resp, nil
}

func (s *authServer) GetUserToken(ctx context.Context, req *pbauth.GetUserTokenReq) (*pbauth.GetUserTokenResp, error) {
	if err := authverify.CheckAdmin(ctx, s.config.Share.IMAdminUserID); err != nil {
		return nil, err
	}

	if req.PlatformID == constant.AdminPlatformID {
		return nil, errs.ErrNoPermission.WrapMsg("platformID invalid. platformID must not be adminPlatformID")
	}

	resp := pbauth.GetUserTokenResp{}

	if authverify.IsManagerUserID(req.UserID, s.config.Share.IMAdminUserID) {
		return nil, errs.ErrNoPermission.WrapMsg("don't get Admin token")
	}
	if _, err := s.userRpcClient.GetUserInfo(ctx, req.UserID); err != nil {
		return nil, err
	}
	token, err := s.authDatabase.CreateToken(ctx, req.UserID, int(req.PlatformID))
	if err != nil {
		return nil, err
	}
	resp.Token = token
	resp.ExpireTimeSeconds = s.config.RpcConfig.TokenPolicy.Expire * 24 * 60 * 60
	return &resp, nil
}

func (s *authServer) parseToken(ctx context.Context, tokensString string) (claims *tokenverify.Claims, err error) {
	claims, err = tokenverify.GetClaimFromToken(tokensString, authverify.Secret(s.config.Share.Secret))
	if err != nil {
		return nil, errs.Wrap(err)
	}
	m, err := s.authDatabase.GetTokensWithoutError(ctx, claims.UserID, claims.PlatformID)
	if err != nil {
		return nil, err
	}
	if len(m) == 0 {
		return nil, servererrs.ErrTokenNotExist.Wrap()
	}
	if v, ok := m[tokensString]; ok {
		switch v {
		case constant.NormalToken:
			return claims, nil
		case constant.KickedToken:
			return nil, servererrs.ErrTokenKicked.Wrap()
		default:
			return nil, errs.Wrap(errs.ErrTokenUnknown)
		}
	}
	return nil, servererrs.ErrTokenNotExist.Wrap()
}

func (s *authServer) ParseToken(
	ctx context.Context,
	req *pbauth.ParseTokenReq,
) (resp *pbauth.ParseTokenResp, err error) {
	resp = &pbauth.ParseTokenResp{}
	claims, err := s.parseToken(ctx, req.Token)
	if err != nil {
		return nil, err
	}
	resp.UserID = claims.UserID
	resp.PlatformID = int32(claims.PlatformID)
	resp.ExpireTimeSeconds = claims.ExpiresAt.Unix()
	return resp, nil
}

func (s *authServer) ForceLogout(ctx context.Context, req *pbauth.ForceLogoutReq) (*pbauth.ForceLogoutResp, error) {
	if err := authverify.CheckAdmin(ctx, s.config.Share.IMAdminUserID); err != nil {
		return nil, err
	}
	if err := s.forceKickOff(ctx, req.UserID, req.PlatformID); err != nil {
		return nil, err
	}
	return &pbauth.ForceLogoutResp{}, nil
}

func (s *authServer) forceKickOff(ctx context.Context, userID string, platformID int32) error {
	conns, err := s.RegisterCenter.GetConns(ctx, s.config.Share.RpcRegisterName.MessageGateway)
	if err != nil {
		return err
	}
	for _, v := range conns {
		log.ZDebug(ctx, "forceKickOff", "conn", v.Target())
		client := msggateway.NewMsgGatewayClient(v)
		kickReq := &msggateway.KickUserOfflineReq{KickUserIDList: []string{userID}, PlatformID: platformID}
		_, err := client.KickUserOffline(ctx, kickReq)
		if err != nil {
			log.ZError(ctx, "forceKickOff", err, "kickReq", kickReq)
		}
	}

	m, err := s.authDatabase.GetTokensWithoutError(ctx, userID, int(platformID))
	if err != nil && err != redis.Nil {
		return err
	}
	for k := range m {
		m[k] = constant.KickedToken
		log.ZDebug(ctx, "set token map is ", "token map", m, "userID",
			userID, "token", k)

		err = s.authDatabase.SetTokenMapByUidPid(ctx, userID, int(platformID), m)
		if err != nil {
			return err
		}
	}
	return nil
}

func (s *authServer) InvalidateToken(ctx context.Context, req *pbauth.InvalidateTokenReq) (*pbauth.InvalidateTokenResp, error) {
	m, err := s.authDatabase.GetTokensWithoutError(ctx, req.UserID, int(req.PlatformID))
	if err != nil && err != redis.Nil {
		return nil, err
	}
	if m == nil {
		return nil, errs.New("token map is empty").Wrap()
	}
	log.ZDebug(ctx, "get token from redis", "userID", req.UserID, "platformID",
		req.PlatformID, "tokenMap", m)

	for k := range m {
		if k != req.GetPreservedToken() {
			m[k] = constant.KickedToken
		}
	}
	log.ZDebug(ctx, "set token map is ", "token map", m, "userID",
		req.UserID, "token", req.GetPreservedToken())
	err = s.authDatabase.SetTokenMapByUidPid(ctx, req.UserID, int(req.PlatformID), m)
	if err != nil {
		return nil, err
	}
	return &pbauth.InvalidateTokenResp{}, nil
}

func (s *authServer) KickTokens(ctx context.Context, req *pbauth.KickTokensReq) (*pbauth.KickTokensResp, error) {
	if err := s.authDatabase.BatchSetTokenMapByUidPid(ctx, req.Tokens); err != nil {
		return nil, err
	}
	return &pbauth.KickTokensResp{}, nil
}
feat: add copyright 2023-07-04 11:15:20 +08:00			`// Copyright © 2023 OpenIM. All rights reserved.`
			`//`
			`// Licensed under the Apache License, Version 2.0 (the "License");`
			`// you may not use this file except in compliance with the License.`
			`// You may obtain a copy of the License at`
			`//`
			`// http://www.apache.org/licenses/LICENSE-2.0`
			`//`
			`// Unless required by applicable law or agreed to in writing, software`
			`// distributed under the License is distributed on an "AS IS" BASIS,`
			`// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.`
			`// See the License for the specific language governing permissions and`
			`// limitations under the License.`

v3 - main to cut out 2023-06-29 22:35:31 +08:00			`package auth`

			`import (`
			`"context"`
feat: implement to invalid token when forceKickOff user. (#2345 ) 2024-06-13 09:55:07 +08:00
refactor: 3.7.0 code conventions. (#2148 ) 2024-04-19 22:23:08 +08:00			`"github.com/openimsdk/open-im-server/v3/pkg/common/config"`
refactor: db refactor and cache key add. (#2320 ) 2024-05-27 11:58:36 +08:00			`redis2 "github.com/openimsdk/open-im-server/v3/pkg/common/storage/cache/redis"`
refactor: 3.7.0 code conventions. (#2148 ) 2024-04-19 22:23:08 +08:00			`"github.com/openimsdk/tools/db/redisutil"`
fix: usertoken auth. (#2677 ) 2024-09-27 17:45:10 +08:00			`"github.com/openimsdk/tools/utils/datautil"`
refactor: 3.7.0 code conventions. (#2148 ) 2024-04-19 22:23:08 +08:00			`"github.com/redis/go-redis/v9"`
style: add format and lint (#773 ) 2023-08-04 21:38:30 +08:00
feat: format openim make lint code (#1997 ) 2024-03-04 21:32:07 +08:00			`"github.com/openimsdk/open-im-server/v3/pkg/authverify"`
☀️ feat: Enhancing OpenIM with Integrated E2E Testing and CI/CD Enhancements (#1359 ) 2023-11-10 19:37:25 +08:00			`"github.com/openimsdk/open-im-server/v3/pkg/common/prommetrics"`
refactor: 3.7.0 code conventions. (#2148 ) 2024-04-19 22:23:08 +08:00			`"github.com/openimsdk/open-im-server/v3/pkg/common/servererrs"`
refactor: db refactor and cache key add. (#2320 ) 2024-05-27 11:58:36 +08:00			`"github.com/openimsdk/open-im-server/v3/pkg/common/storage/controller"`
refactor: change project module name. (#1038 ) 2023-09-07 19:04:36 +08:00			`"github.com/openimsdk/open-im-server/v3/pkg/rpcclient"`
refactor: 3.7.0 code conventions. (#2148 ) 2024-04-19 22:23:08 +08:00			`pbauth "github.com/openimsdk/protocol/auth"`
			`"github.com/openimsdk/protocol/constant"`
			`"github.com/openimsdk/protocol/msggateway"`
			`"github.com/openimsdk/tools/discovery"`
			`"github.com/openimsdk/tools/errs"`
			`"github.com/openimsdk/tools/log"`
			`"github.com/openimsdk/tools/tokenverify"`
cicd: bump League Patch (#1998 ) 2024-03-05 10:51:55 +08:00			`"google.golang.org/grpc"`
v3 - main to cut out 2023-06-29 22:35:31 +08:00			`)`

feat: use robot to migrate code 2023-06-30 09:45:02 +08:00			`type authServer struct {`
			`authDatabase controller.AuthDatabase`
			`userRpcClient *rpcclient.UserRpcClient`
refactor: 3.7.0 code conventions. (#2148 ) 2024-04-19 22:23:08 +08:00			`RegisterCenter discovery.SvcDiscoveryRegistry`
			`config *Config`
			`}`

			`type Config struct {`
Etcd naming and discovery (#2300 ) 2024-05-14 18:21:36 +08:00			`RpcConfig config.Auth`
			`RedisConfig config.Redis`
			`Share config.Share`
			`Discovery config.Discovery`
v3 - main to cut out 2023-06-29 22:35:31 +08:00			`}`

refactor: 3.7.0 code conventions. (#2148 ) 2024-04-19 22:23:08 +08:00			`func Start(ctx context.Context, config Config, client discovery.SvcDiscoveryRegistry, server grpc.Server) error {`
			`rdb, err := redisutil.NewRedisClient(ctx, config.RedisConfig.Build())`
v3 - main to cut out 2023-06-29 22:35:31 +08:00			`if err != nil {`
feat: use robot to migrate code 2023-06-30 09:45:02 +08:00			`return err`
v3 - main to cut out 2023-06-29 22:35:31 +08:00			`}`
refactor: 3.7.0 code conventions. (#2148 ) 2024-04-19 22:23:08 +08:00			`userRpcClient := rpcclient.NewUserRpcClient(client, config.Share.RpcRegisterName.User, config.Share.IMAdminUserID)`
fix: Fix Bug related issues with OpenIM actions PR (#921 ) 2023-08-23 16:45:52 +08:00			`pbauth.RegisterAuthServer(server, &authServer{`
feat: use robot to migrate code 2023-06-30 09:45:02 +08:00			`userRpcClient: &userRpcClient,`
			`RegisterCenter: client,`
style: add format 2023-07-03 16:29:22 +08:00			`authDatabase: controller.NewAuthDatabase(`
fix:create auth token can add expire time (#2352 ) 2024-06-24 16:11:19 +08:00			`redis2.NewTokenCacheModel(rdb, config.RpcConfig.TokenPolicy.Expire),`
refactor: 3.7.0 code conventions. (#2148 ) 2024-04-19 22:23:08 +08:00			`config.Share.Secret,`
			`config.RpcConfig.TokenPolicy.Expire,`
feat: Add More Multi Login Policy (#2770 ) 2024-10-24 15:02:44 +08:00			`config.Share.MultiLogin,`
style: add format 2023-07-03 16:29:22 +08:00			`),`
optimization: change the configuration file from being read globally … (#1935 ) 2024-03-05 17:53:22 +08:00			`config: config,`
feat: use robot to migrate code 2023-06-30 09:45:02 +08:00			`})`
			`return nil`
			`}`
v3 - main to cut out 2023-06-29 22:35:31 +08:00
refactor: add GetAdminToken interface. (#2684 ) 2024-09-29 16:20:34 +08:00			`func (s authServer) GetAdminToken(ctx context.Context, req pbauth.GetAdminTokenReq) (*pbauth.GetAdminTokenResp, error) {`
			`resp := pbauth.GetAdminTokenResp{}`
refactor: 3.7.0 code conventions. (#2148 ) 2024-04-19 22:23:08 +08:00			`if req.Secret != s.config.Share.Secret {`
			`return nil, errs.ErrNoPermission.WrapMsg("secret invalid")`
feat: ver3 branch 2023-06-30 23:04:28 +08:00			`}`
refactor: update fields type in userStatus and check registered. (#2676 ) 2024-09-27 16:48:14 +08:00
fix: usertoken auth. (#2677 ) 2024-09-27 17:45:10 +08:00			`if !datautil.Contain(req.UserID, s.config.Share.IMAdminUserID...) {`
			`return nil, errs.ErrArgs.WrapMsg("userID is error.", "userID", req.UserID, "adminUserID", s.config.Share.IMAdminUserID)`
refactor: update fields type in userStatus and check registered. (#2676 ) 2024-09-27 16:48:14 +08:00
			`}`

feat: use robot to migrate code 2023-06-30 09:45:02 +08:00			`if _, err := s.userRpcClient.GetUserInfo(ctx, req.UserID); err != nil {`
			`return nil, err`
			`}`
refactor: update fields type in userStatus and check registered. (#2676 ) 2024-09-27 16:48:14 +08:00
fix: usertoken auth. (#2677 ) 2024-09-27 17:45:10 +08:00			`token, err := s.authDatabase.CreateToken(ctx, req.UserID, int(constant.AdminPlatformID))`
v3 - main to cut out 2023-06-29 22:35:31 +08:00			`if err != nil {`
feat: use robot to migrate code 2023-06-30 09:45:02 +08:00			`return nil, err`
v3 - main to cut out 2023-06-29 22:35:31 +08:00			`}`
refactor: update fields type in userStatus and check registered. (#2676 ) 2024-09-27 16:48:14 +08:00
☀️ feat: Enhancing OpenIM with Integrated E2E Testing and CI/CD Enhancements (#1359 ) 2023-11-10 19:37:25 +08:00			`prommetrics.UserLoginCounter.Inc()`
feat: use robot to migrate code 2023-06-30 09:45:02 +08:00			`resp.Token = token`
refactor: 3.7.0 code conventions. (#2148 ) 2024-04-19 22:23:08 +08:00			`resp.ExpireTimeSeconds = s.config.RpcConfig.TokenPolicy.Expire * 24 * 60 * 60`
feat: use robot to migrate code 2023-06-30 09:45:02 +08:00			`return &resp, nil`
v3 - main to cut out 2023-06-29 22:35:31 +08:00			`}`

feat: add getUserToken api and add ex field in getSortedConversationListResp (#1880 ) 2024-02-04 20:13:17 +08:00			`func (s authServer) GetUserToken(ctx context.Context, req pbauth.GetUserTokenReq) (*pbauth.GetUserTokenResp, error) {`
refactor: 3.7.0 code conventions. (#2148 ) 2024-04-19 22:23:08 +08:00			`if err := authverify.CheckAdmin(ctx, s.config.Share.IMAdminUserID); err != nil {`
feat: add getUserToken api and add ex field in getSortedConversationListResp (#1880 ) 2024-02-04 20:13:17 +08:00			`return nil, err`
			`}`
refactor: update fields type in userStatus and check registered. (#2676 ) 2024-09-27 16:48:14 +08:00
			`if req.PlatformID == constant.AdminPlatformID {`
			`return nil, errs.ErrNoPermission.WrapMsg("platformID invalid. platformID must not be adminPlatformID")`
			`}`

feat: add getUserToken api and add ex field in getSortedConversationListResp (#1880 ) 2024-02-04 20:13:17 +08:00			`resp := pbauth.GetUserTokenResp{}`

refactor: 3.7.0 code conventions. (#2148 ) 2024-04-19 22:23:08 +08:00			`if authverify.IsManagerUserID(req.UserID, s.config.Share.IMAdminUserID) {`
			`return nil, errs.ErrNoPermission.WrapMsg("don't get Admin token")`
feat: add getUserToken api and add ex field in getSortedConversationListResp (#1880 ) 2024-02-04 20:13:17 +08:00			`}`
			`if _, err := s.userRpcClient.GetUserInfo(ctx, req.UserID); err != nil {`
			`return nil, err`
			`}`
			`token, err := s.authDatabase.CreateToken(ctx, req.UserID, int(req.PlatformID))`
			`if err != nil {`
			`return nil, err`
			`}`
			`resp.Token = token`
refactor: 3.7.0 code conventions. (#2148 ) 2024-04-19 22:23:08 +08:00			`resp.ExpireTimeSeconds = s.config.RpcConfig.TokenPolicy.Expire * 24 * 60 * 60`
feat: add getUserToken api and add ex field in getSortedConversationListResp (#1880 ) 2024-02-04 20:13:17 +08:00			`return &resp, nil`
			`}`

feat: use robot to migrate code 2023-06-30 09:45:02 +08:00			`func (s authServer) parseToken(ctx context.Context, tokensString string) (claims tokenverify.Claims, err error) {`
refactor: 3.7.0 code conventions. (#2148 ) 2024-04-19 22:23:08 +08:00			`claims, err = tokenverify.GetClaimFromToken(tokensString, authverify.Secret(s.config.Share.Secret))`
feat: use robot to migrate code 2023-06-30 09:45:02 +08:00			`if err != nil {`
feat: optimize server code (#1931 ) 2024-02-20 20:56:29 +08:00			`return nil, errs.Wrap(err)`
feat: use robot to migrate code 2023-06-30 09:45:02 +08:00			`}`
			`m, err := s.authDatabase.GetTokensWithoutError(ctx, claims.UserID, claims.PlatformID)`
			`if err != nil {`
			`return nil, err`
			`}`
			`if len(m) == 0 {`
refactor: 3.7.0 code conventions. (#2148 ) 2024-04-19 22:23:08 +08:00			`return nil, servererrs.ErrTokenNotExist.Wrap()`
feat: use robot to migrate code 2023-06-30 09:45:02 +08:00			`}`
			`if v, ok := m[tokensString]; ok {`
			`switch v {`
			`case constant.NormalToken:`
			`return claims, nil`
			`case constant.KickedToken:`
refactor: 3.7.0 code conventions. (#2148 ) 2024-04-19 22:23:08 +08:00			`return nil, servererrs.ErrTokenKicked.Wrap()`
feat: use robot to migrate code 2023-06-30 09:45:02 +08:00			`default:`
feat: optimize server code (#1931 ) 2024-02-20 20:56:29 +08:00			`return nil, errs.Wrap(errs.ErrTokenUnknown)`
feat: use robot to migrate code 2023-06-30 09:45:02 +08:00			`}`
			`}`
refactor: 3.7.0 code conventions. (#2148 ) 2024-04-19 22:23:08 +08:00			`return nil, servererrs.ErrTokenNotExist.Wrap()`
v3 - main to cut out 2023-06-29 22:35:31 +08:00			`}`

style: add format 2023-07-03 16:29:22 +08:00			`func (s *authServer) ParseToken(`
			`ctx context.Context,`
fix: Fix Bug related issues with OpenIM actions PR (#921 ) 2023-08-23 16:45:52 +08:00			`req *pbauth.ParseTokenReq,`
			`) (resp *pbauth.ParseTokenResp, err error) {`
			`resp = &pbauth.ParseTokenResp{}`
feat: use robot to migrate code 2023-06-30 09:45:02 +08:00			`claims, err := s.parseToken(ctx, req.Token)`
			`if err != nil {`
			`return nil, err`
v3 - main to cut out 2023-06-29 22:35:31 +08:00			`}`
feat: use robot to migrate code 2023-06-30 09:45:02 +08:00			`resp.UserID = claims.UserID`
refactor: 3.7.0 code conventions. (#2148 ) 2024-04-19 22:23:08 +08:00			`resp.PlatformID = int32(claims.PlatformID)`
feat: use robot to migrate code 2023-06-30 09:45:02 +08:00			`resp.ExpireTimeSeconds = claims.ExpiresAt.Unix()`
			`return resp, nil`
v3 - main to cut out 2023-06-29 22:35:31 +08:00			`}`

fix: Fix Bug related issues with OpenIM actions PR (#921 ) 2023-08-23 16:45:52 +08:00			`func (s authServer) ForceLogout(ctx context.Context, req pbauth.ForceLogoutReq) (*pbauth.ForceLogoutResp, error) {`
refactor: 3.7.0 code conventions. (#2148 ) 2024-04-19 22:23:08 +08:00			`if err := authverify.CheckAdmin(ctx, s.config.Share.IMAdminUserID); err != nil {`
feat: use robot to migrate code 2023-06-30 09:45:02 +08:00			`return nil, err`
			`}`
feat: implement to invalid token when forceKickOff user. (#2345 ) 2024-06-13 09:55:07 +08:00			`if err := s.forceKickOff(ctx, req.UserID, req.PlatformID); err != nil {`
feat: use robot to migrate code 2023-06-30 09:45:02 +08:00			`return nil, err`
v3 - main to cut out 2023-06-29 22:35:31 +08:00			`}`
fix: Fix Bug related issues with OpenIM actions PR (#921 ) 2023-08-23 16:45:52 +08:00			`return &pbauth.ForceLogoutResp{}, nil`
feat: use robot to migrate code 2023-06-30 09:45:02 +08:00			`}`
v3 - main to cut out 2023-06-29 22:35:31 +08:00
feat: implement to invalid token when forceKickOff user. (#2345 ) 2024-06-13 09:55:07 +08:00			`func (s *authServer) forceKickOff(ctx context.Context, userID string, platformID int32) error {`
refactor: 3.7.0 code conventions. (#2148 ) 2024-04-19 22:23:08 +08:00			`conns, err := s.RegisterCenter.GetConns(ctx, s.config.Share.RpcRegisterName.MessageGateway)`
v3 - main to cut out 2023-06-29 22:35:31 +08:00			`if err != nil {`
feat: use robot to migrate code 2023-06-30 09:45:02 +08:00			`return err`
v3 - main to cut out 2023-06-29 22:35:31 +08:00			`}`
fix bug: multiple gateway kick user (#568 ) 2023-07-14 20:46:25 +08:00			`for _, v := range conns {`
fix: multiple gateway kick user each other. (#943 ) 2023-08-25 11:14:35 +08:00			`log.ZDebug(ctx, "forceKickOff", "conn", v.Target())`
feat: use robot to migrate code 2023-06-30 09:45:02 +08:00			`client := msggateway.NewMsgGatewayClient(v)`
			`kickReq := &msggateway.KickUserOfflineReq{KickUserIDList: []string{userID}, PlatformID: platformID}`
			`_, err := client.KickUserOffline(ctx, kickReq)`
fix bug: multiple gateway kick user (#568 ) 2023-07-14 20:46:25 +08:00			`if err != nil {`
			`log.ZError(ctx, "forceKickOff", err, "kickReq", kickReq)`
			`}`
v3 - main to cut out 2023-06-29 22:35:31 +08:00			`}`
feat: implement to invalid token when forceKickOff user. (#2345 ) 2024-06-13 09:55:07 +08:00
			`m, err := s.authDatabase.GetTokensWithoutError(ctx, userID, int(platformID))`
			`if err != nil && err != redis.Nil {`
			`return err`
			`}`
			`for k := range m {`
			`m[k] = constant.KickedToken`
			`log.ZDebug(ctx, "set token map is ", "token map", m, "userID",`
			`userID, "token", k)`

			`err = s.authDatabase.SetTokenMapByUidPid(ctx, userID, int(platformID), m)`
			`if err != nil {`
			`return err`
			`}`
			`}`
merge v3dev into main (#504 ) 2023-07-12 15:31:24 +08:00			`return nil`
v3 - main to cut out 2023-06-29 22:35:31 +08:00			`}`
feat: implement to invalid token when forceKickOff user. (#2345 ) 2024-06-13 09:55:07 +08:00
refactor: 3.7.0 code conventions. (#2148 ) 2024-04-19 22:23:08 +08:00			`func (s authServer) InvalidateToken(ctx context.Context, req pbauth.InvalidateTokenReq) (*pbauth.InvalidateTokenResp, error) {`
			`m, err := s.authDatabase.GetTokensWithoutError(ctx, req.UserID, int(req.PlatformID))`
			`if err != nil && err != redis.Nil {`
			`return nil, err`
			`}`
			`if m == nil {`
			`return nil, errs.New("token map is empty").Wrap()`
			`}`
			`log.ZDebug(ctx, "get token from redis", "userID", req.UserID, "platformID",`
			`req.PlatformID, "tokenMap", m)`

			`for k := range m {`
			`if k != req.GetPreservedToken() {`
			`m[k] = constant.KickedToken`
			`}`
			`}`
			`log.ZDebug(ctx, "set token map is ", "token map", m, "userID",`
			`req.UserID, "token", req.GetPreservedToken())`
			`err = s.authDatabase.SetTokenMapByUidPid(ctx, req.UserID, int(req.PlatformID), m)`
			`if err != nil {`
			`return nil, err`
			`}`
			`return &pbauth.InvalidateTokenResp{}, nil`
			`}`
feat: Add More Multi Login Policy (#2770 ) 2024-10-24 15:02:44 +08:00
			`func (s authServer) KickTokens(ctx context.Context, req pbauth.KickTokensReq) (*pbauth.KickTokensResp, error) {`
			`if err := s.authDatabase.BatchSetTokenMapByUidPid(ctx, req.Tokens); err != nil {`
			`return nil, err`
			`}`
			`return &pbauth.KickTokensResp{}, nil`
			`}`