0
Fork 0
mirror of https://github.com/TryGhost/Ghost.git synced 2025-01-27 22:49:56 -05:00
ghost/core/server/models/basetoken.js
Hannah Wolfe 74c6a341be Delete tokens before deleting a user
fixes #3750

- Updated tests to create tokens for one user. This caused the tests to
  fail for MySQL exposing the bug.
- Delete user's tokens along with posts
2014-08-23 20:13:17 +01:00

64 lines
No EOL
1.9 KiB
JavaScript

var Promise = require('bluebird'),
ghostBookshelf = require('./base'),
errors = require('../errors'),
Basetoken;
Basetoken = ghostBookshelf.Model.extend({
user: function () {
return this.belongsTo('User');
},
client: function () {
return this.belongsTo('Client');
},
// override for base function since we don't have
// a created_by field for sessions
creating: function (newObj, attr, options) {
/*jshint unused:false*/
},
// override for base function since we don't have
// a updated_by field for sessions
saving: function (newObj, attr, options) {
/*jshint unused:false*/
// Remove any properties which don't belong on the model
this.attributes = this.pick(this.permittedAttributes());
}
}, {
destroyAllExpired: function (options) {
options = this.filterOptions(options, 'destroyAll');
return ghostBookshelf.Collection.forge([], {model: this})
.query('where', 'expires', '<', Date.now())
.fetch(options)
.then(function (collection) {
collection.invokeThen('destroy', options);
});
},
/**
* ### destroyByUser
* @param {[type]} options has context and id. Context is the user doing the destroy, id is the user to destroy
*/
destroyByUser: function (options) {
var userId = options.id;
options = this.filterOptions(options, 'destroyByUser');
if (userId) {
return ghostBookshelf.Collection.forge([], {model: this})
.query('where', 'user_id', '=', userId)
.fetch(options)
.then(function (collection) {
collection.invokeThen('destroy', options);
});
}
return Promise.reject(new errors.NotFoundError('No user found'));
}
});
module.exports = Basetoken;