mastodon/app/models/session_activation.rb

# frozen_string_literal: true
# == Schema Information
#
# Table name: session_activations
#
#  id                       :integer          not null, primary key
#  user_id                  :integer          not null
#  session_id               :string           not null
#  created_at               :datetime         not null
#  updated_at               :datetime         not null
#  user_agent               :string           default(""), not null
#  ip                       :inet
#  access_token_id          :integer
#  web_push_subscription_id :integer
#

#  id              :integer          not null, primary key
#  user_id         :integer          not null
#  session_id      :string           not null
#  created_at      :datetime         not null
#  updated_at      :datetime         not null
#  user_agent      :string           default(""), not null
#  ip              :inet
#  access_token_id :integer
#

class SessionActivation < ApplicationRecord
  belongs_to :user, inverse_of: :session_activations, required: true
  belongs_to :access_token, class_name: 'Doorkeeper::AccessToken', dependent: :destroy
  belongs_to :web_push_subscription, class_name: 'Web::PushSubscription', dependent: :destroy

  delegate :token,
           to: :access_token,
           allow_nil: true

  def detection
    @detection ||= Browser.new(user_agent)
  end

  def browser
    detection.id
  end

  def platform
    detection.platform.id
  end

  before_create :assign_access_token
  before_save   :assign_user_agent

  class << self
    def active?(id)
      id && where(session_id: id).exists?
    end

    def activate(options = {})
      activation = create!(options)
      purge_old
      activation
    end

    def deactivate(id)
      return unless id
      where(session_id: id).destroy_all
    end

    def purge_old
      order('created_at desc').offset(Rails.configuration.x.max_session_activations).destroy_all
    end

    def exclusive(id)
      where('session_id != ?', id).destroy_all
    end
  end

  private

  def assign_user_agent
    self.user_agent = '' if user_agent.nil?
  end

  def assign_access_token
    superapp = Doorkeeper::Application.find_by(superapp: true)

    self.access_token = Doorkeeper::AccessToken.create!(application_id: superapp&.id,
                                                        resource_owner_id: user_id,
                                                        scopes: 'read write follow',
                                                        expires_in: Doorkeeper.configuration.access_token_expires_in,
                                                        use_refresh_token: Doorkeeper.configuration.refresh_token_enabled?)
  end
end