immich/server/src/services/session.service.ts

import { Inject, Injectable } from '@nestjs/common';
import { DateTime } from 'luxon';
import { AccessCore, Permission } from 'src/cores/access.core';
import { AuthDto } from 'src/dtos/auth.dto';
import { SessionResponseDto, mapSession } from 'src/dtos/session.dto';
import { IAccessRepository } from 'src/interfaces/access.interface';
import { JobStatus } from 'src/interfaces/job.interface';
import { ILoggerRepository } from 'src/interfaces/logger.interface';
import { ISessionRepository } from 'src/interfaces/session.interface';

@Injectable()
export class SessionService {
  private access: AccessCore;

  constructor(
    @Inject(IAccessRepository) accessRepository: IAccessRepository,
    @Inject(ILoggerRepository) private logger: ILoggerRepository,
    @Inject(ISessionRepository) private sessionRepository: ISessionRepository,
  ) {
    this.logger.setContext(SessionService.name);
    this.access = AccessCore.create(accessRepository);
  }

  async handleCleanup() {
    const sessions = await this.sessionRepository.search({
      updatedBefore: DateTime.now().minus({ days: 90 }).toJSDate(),
    });

    if (sessions.length === 0) {
      return JobStatus.SKIPPED;
    }

    for (const session of sessions) {
      await this.sessionRepository.delete(session.id);
      this.logger.verbose(`Deleted expired session token: ${session.deviceOS}/${session.deviceType}`);
    }

    this.logger.log(`Deleted ${sessions.length} expired session tokens`);

    return JobStatus.SUCCESS;
  }

  async getAll(auth: AuthDto): Promise<SessionResponseDto[]> {
    const sessions = await this.sessionRepository.getByUserId(auth.user.id);
    return sessions.map((session) => mapSession(session, auth.session?.id));
  }

  async delete(auth: AuthDto, id: string): Promise<void> {
    await this.access.requirePermission(auth, Permission.AUTH_DEVICE_DELETE, id);
    await this.sessionRepository.delete(id);
  }

  async deleteAll(auth: AuthDto): Promise<void> {
    const sessions = await this.sessionRepository.getByUserId(auth.user.id);
    for (const session of sessions) {
      if (session.id === auth.session?.id) {
        continue;
      }
      await this.sessionRepository.delete(session.id);
    }
  }
}
refactor(server): sessions (#8915) * refactor: auth device => sessions * chore: open api 2024-04-19 12:47:29 +02:00			`import { Inject, Injectable } from '@nestjs/common';`
feat(server): remove inactive sessions (#9121) * feat(server): remove inactive sessions * add rudimentary unit test --------- Co-authored-by: Daniel Dietzler <mail@ddietzler.dev> 2024-04-27 22:45:16 +02:00			`import { DateTime } from 'luxon';`
refactor(server): sessions (#8915) * refactor: auth device => sessions * chore: open api 2024-04-19 12:47:29 +02:00			`import { AccessCore, Permission } from 'src/cores/access.core';`
			`import { AuthDto } from 'src/dtos/auth.dto';`
			`import { SessionResponseDto, mapSession } from 'src/dtos/session.dto';`
			`import { IAccessRepository } from 'src/interfaces/access.interface';`
feat(server): remove inactive sessions (#9121) * feat(server): remove inactive sessions * add rudimentary unit test --------- Co-authored-by: Daniel Dietzler <mail@ddietzler.dev> 2024-04-27 22:45:16 +02:00			`import { JobStatus } from 'src/interfaces/job.interface';`
refactor(server): sessions (#8915) * refactor: auth device => sessions * chore: open api 2024-04-19 12:47:29 +02:00			`import { ILoggerRepository } from 'src/interfaces/logger.interface';`
			`import { ISessionRepository } from 'src/interfaces/session.interface';`

			`@Injectable()`
			`export class SessionService {`
			`private access: AccessCore;`

			`constructor(`
			`@Inject(IAccessRepository) accessRepository: IAccessRepository,`
			`@Inject(ILoggerRepository) private logger: ILoggerRepository,`
			`@Inject(ISessionRepository) private sessionRepository: ISessionRepository,`
			`) {`
			`this.logger.setContext(SessionService.name);`
			`this.access = AccessCore.create(accessRepository);`
			`}`

feat(server): remove inactive sessions (#9121) * feat(server): remove inactive sessions * add rudimentary unit test --------- Co-authored-by: Daniel Dietzler <mail@ddietzler.dev> 2024-04-27 22:45:16 +02:00			`async handleCleanup() {`
			`const sessions = await this.sessionRepository.search({`
			`updatedBefore: DateTime.now().minus({ days: 90 }).toJSDate(),`
			`});`

			`if (sessions.length === 0) {`
			`return JobStatus.SKIPPED;`
			`}`

			`for (const session of sessions) {`
			`await this.sessionRepository.delete(session.id);`
			this.logger.verbose(`Deleted expired session token: ${session.deviceOS}/${session.deviceType}`);
			`}`

			this.logger.log(`Deleted ${sessions.length} expired session tokens`);

			`return JobStatus.SUCCESS;`
			`}`

refactor(server): sessions (#8915) * refactor: auth device => sessions * chore: open api 2024-04-19 12:47:29 +02:00			`async getAll(auth: AuthDto): Promise<SessionResponseDto[]> {`
			`const sessions = await this.sessionRepository.getByUserId(auth.user.id);`
			`return sessions.map((session) => mapSession(session, auth.session?.id));`
			`}`

			`async delete(auth: AuthDto, id: string): Promise<void> {`
			`await this.access.requirePermission(auth, Permission.AUTH_DEVICE_DELETE, id);`
			`await this.sessionRepository.delete(id);`
			`}`

			`async deleteAll(auth: AuthDto): Promise<void> {`
			`const sessions = await this.sessionRepository.getByUserId(auth.user.id);`
			`for (const session of sessions) {`
			`if (session.id === auth.session?.id) {`
			`continue;`
			`}`
			`await this.sessionRepository.delete(session.id);`
			`}`
			`}`
			`}`