Add Auth clearCache

skadefro · skadefro · commit 8a23e87ae884 · 2021-11-04T08:32:38.000+01:00
diff --git a/OpenFlow/src/Auth.ts b/OpenFlow/src/Auth.ts
@@ -50,6 +50,16 @@ export class Auth {
         this.RemoveUser(key, type);
         return null;
     }
+    public static async clearCache() {
+        if (this.authorizationCache == null) return;
+        const keys: string[] = Object.keys(this.authorizationCache);
+        for (let i = keys.length - 1; i >= 0; i--) {
+            let key: string = keys[i];
+            var res: CachedUser = this.authorizationCache[key];
+            if (res === null || res === undefined) continue;
+            this.RemoveUser(key, res.type);
+        }
+    }
     public static async cleanCache() {
         try {
             if (this.authorizationCache == null) return;
diff --git a/OpenFlow/src/DatabaseConnection.ts b/OpenFlow/src/DatabaseConnection.ts
@@ -1060,6 +1060,12 @@ export class DatabaseConnection extends events.EventEmitter {
                 Logger.otel.endSpan(mongodbspan);
                 Logger.otel.endTimer(ot_end, DatabaseConnection.mongodb_replace, { collection: collectionname });
                 DBHelper.cached_roles = [];
+                if (item._type === "role") {
+                    const r: Role = (item as any);
+                    if (r.members.length > 0) {
+                        Auth.clearCache();
+                    }
+                }
             }
             if (collectionname === "config" && item._type === "oauthclient") {
                 if (user.HasRoleName("admins")) {
@@ -1142,6 +1148,10 @@ export class DatabaseConnection extends events.EventEmitter {
                             }
                         }
                     }
+                    if (item._type === "role") {
+                        const r: Role = item as any;
+                        if (r.members.length > 0) Auth.clearCache();
+                    }
                 }
                 item._version = 0;
                 if (item._id != null) {
@@ -1579,7 +1589,9 @@ export class DatabaseConnection extends events.EventEmitter {
                         q.item = await this.Cleanmembers(q.item as any, original);
                         DBHelper.cached_roles = [];
                     }
-
+                    if (q.item._type === "role") {
+                        Auth.clearCache();
+                    }
                     if (q.collectionname != "fs.files") {
                         const ot_end = Logger.otel.startTimer();
                         const mongodbspan: Span = Logger.otel.startSubSpan("mongodb.replaceOne", span);
@@ -1977,6 +1989,9 @@ export class DatabaseConnection extends events.EventEmitter {
                         this.DeleteOne(r._id, "config", jwt, span);
                     }
                 }
+                if (collectionname == "users" && doc._type == "role") {
+                    Auth.clearCache();
+                }
             }
         } catch (error) {
             span.recordException(error);

Original file line number	Diff line number	Diff line change
`@@ -1060,6 +1060,12 @@ export class DatabaseConnection extends events.EventEmitter {`
`1060`	`1060`	`Logger.otel.endSpan(mongodbspan);`
`1061`	`1061`	`Logger.otel.endTimer(ot_end, DatabaseConnection.mongodb_replace, { collection: collectionname });`
`1062`	`1062`	`DBHelper.cached_roles = [];`
	`1063`	`+ if (item._type === "role") {`
	`1064`	`+ const r: Role = (item as any);`
	`1065`	`+ if (r.members.length > 0) {`
	`1066`	`+ Auth.clearCache();`
	`1067`	`+ }`
	`1068`	`+ }`
`1063`	`1069`	`}`
`1064`	`1070`	`if (collectionname === "config" && item._type === "oauthclient") {`
`1065`	`1071`	`if (user.HasRoleName("admins")) {`
`@@ -1142,6 +1148,10 @@ export class DatabaseConnection extends events.EventEmitter {`
`1142`	`1148`	`}`
`1143`	`1149`	`}`
`1144`	`1150`	`}`
	`1151`	`+ if (item._type === "role") {`
	`1152`	`+ const r: Role = item as any;`
	`1153`	`+ if (r.members.length > 0) Auth.clearCache();`
	`1154`	`+ }`
`1145`	`1155`	`}`
`1146`	`1156`	`item._version = 0;`
`1147`	`1157`	`if (item._id != null) {`
`@@ -1579,7 +1589,9 @@ export class DatabaseConnection extends events.EventEmitter {`
`1579`	`1589`	`q.item = await this.Cleanmembers(q.item as any, original);`
`1580`	`1590`	`DBHelper.cached_roles = [];`
`1581`	`1591`	`}`
`1582`		`-`
	`1592`	`+ if (q.item._type === "role") {`
	`1593`	`+ Auth.clearCache();`
	`1594`	`+ }`
`1583`	`1595`	`if (q.collectionname != "fs.files") {`
`1584`	`1596`	`const ot_end = Logger.otel.startTimer();`
`1585`	`1597`	`const mongodbspan: Span = Logger.otel.startSubSpan("mongodb.replaceOne", span);`
`@@ -1977,6 +1989,9 @@ export class DatabaseConnection extends events.EventEmitter {`
`1977`	`1989`	`this.DeleteOne(r._id, "config", jwt, span);`
`1978`	`1990`	`}`
`1979`	`1991`	`}`
	`1992`	`+ if (collectionname == "users" && doc._type == "role") {`
	`1993`	`+ Auth.clearCache();`
	`1994`	`+ }`
`1980`	`1995`	`}`
`1981`	`1996`	`} catch (error) {`
`1982`	`1997`	`span.recordException(error);`