mattermost · Rajat-Dabade · Jul 13, 2024 · Jul 1, 2024 · Jul 2, 2024 · Jul 5, 2024
diff --git a/server/api/auth.go b/server/api/auth.go
@@ -5,20 +5,15 @@ import (
 	"net/http"
 
 	"github.com/mattermost/mattermost-plugin-boards/server/model"
-	"github.com/mattermost/mattermost-plugin-boards/server/services/auth"
 	"github.com/mattermost/mattermost-plugin-boards/server/utils"
-
-	"github.com/mattermost/mattermost/server/public/shared/mlog"
 )
 
 func (a *API) sessionRequired(handler func(w http.ResponseWriter, r *http.Request)) func(w http.ResponseWriter, r *http.Request) {
-	return a.attachSession(handler, true)
+	return a.attachSession(handler)
 }
 
-func (a *API) attachSession(handler func(w http.ResponseWriter, r *http.Request), required bool) func(w http.ResponseWriter, r *http.Request) {
+func (a *API) attachSession(handler func(w http.ResponseWriter, r *http.Request)) func(w http.ResponseWriter, r *http.Request) {
 	return func(w http.ResponseWriter, r *http.Request) {
-		token, _ := auth.ParseAuthTokenFromRequest(r)
-
 		if a.MattermostAuth && r.Header.Get("Mattermost-User-Id") != "" {
 			userID := r.Header.Get("Mattermost-User-Id")
 			now := utils.GetMillis()
@@ -37,30 +32,6 @@ func (a *API) attachSession(handler func(w http.ResponseWriter, r *http.Request)
 			return
 		}
 
-		session, err := a.app.GetSession(token)
-		if err != nil {
-			if required {
-				a.errorResponse(w, r, model.NewErrUnauthorized(err.Error()))
-				return
-			}
-
-			handler(w, r)
-			return
-		}
-
-		authService := session.AuthService
-		if authService != a.authService {
-			msg := `Session authService mismatch`
-			a.logger.Error(msg,
-				mlog.String("sessionID", session.ID),
-				mlog.String("want", a.authService),
-				mlog.String("got", authService),
-			)
-			a.errorResponse(w, r, model.NewErrUnauthorized(msg))
-			return
-		}
-
-		ctx := context.WithValue(r.Context(), sessionContextKey, session)
-		handler(w, r.WithContext(ctx))
+		a.errorResponse(w, r, model.NewErrUnauthorized("Unauthorized"))
 	}
 }
diff --git a/server/api/blocks.go b/server/api/blocks.go
@@ -16,7 +16,7 @@ import (
 
 func (a *API) registerBlocksRoutes(r *mux.Router) {
 	// Blocks APIs
-	r.HandleFunc("/boards/{boardID}/blocks", a.attachSession(a.handleGetBlocks, false)).Methods("GET")
+	r.HandleFunc("/boards/{boardID}/blocks", a.attachSession(a.handleGetBlocks)).Methods("GET")
 	r.HandleFunc("/boards/{boardID}/blocks", a.sessionRequired(a.handlePostBlocks)).Methods("POST")
 	r.HandleFunc("/boards/{boardID}/blocks", a.sessionRequired(a.handlePatchBlocks)).Methods("PATCH")
 	r.HandleFunc("/boards/{boardID}/blocks/{blockID}", a.sessionRequired(a.handleDeleteBlock)).Methods("DELETE")

diff --git a/server/api/boards.go b/server/api/boards.go
@@ -15,7 +15,7 @@ import (
 func (a *API) registerBoardsRoutes(r *mux.Router) {
 	r.HandleFunc("/teams/{teamID}/boards", a.sessionRequired(a.handleGetBoards)).Methods("GET")
 	r.HandleFunc("/boards", a.sessionRequired(a.handleCreateBoard)).Methods("POST")
-	r.HandleFunc("/boards/{boardID}", a.attachSession(a.handleGetBoard, false)).Methods("GET")
+	r.HandleFunc("/boards/{boardID}", a.attachSession(a.handleGetBoard)).Methods("GET")
 	r.HandleFunc("/boards/{boardID}", a.sessionRequired(a.handlePatchBoard)).Methods("PATCH")
 	r.HandleFunc("/boards/{boardID}", a.sessionRequired(a.handleDeleteBoard)).Methods("DELETE")
 	r.HandleFunc("/boards/{boardID}/duplicate", a.sessionRequired(a.handleDuplicateBoard)).Methods("POST")

diff --git a/server/api/files.go b/server/api/files.go
@@ -75,8 +75,8 @@ func FileInfoResponseFromJSON(data io.Reader) (*mmModel.FileInfo, error) {
 
 func (a *API) registerFilesRoutes(r *mux.Router) {
 	// Files API
-	r.HandleFunc("/files/teams/{teamID}/{boardID}/{filename}", a.attachSession(a.handleServeFile, false)).Methods("GET")
-	r.HandleFunc("/files/teams/{teamID}/{boardID}/{filename}/info", a.attachSession(a.getFileInfo, false)).Methods("GET")
+	r.HandleFunc("/files/teams/{teamID}/{boardID}/{filename}", a.attachSession(a.handleServeFile)).Methods("GET")
+	r.HandleFunc("/files/teams/{teamID}/{boardID}/{filename}/info", a.attachSession(a.getFileInfo)).Methods("GET")
 	r.HandleFunc("/teams/{teamID}/{boardID}/files", a.sessionRequired(a.handleUploadFile)).Methods("POST")
 }
 

diff --git a/server/app/auth.go b/server/app/auth.go
@@ -14,11 +14,6 @@ const (
 	SecondsPerMinute = 60
 )
 
-// GetSession Get a user active session and refresh the session if is needed.
-func (a *App) GetSession(token string) (*model.Session, error) {
-	return a.auth.GetSession(token)
-}
-
 // IsValidReadToken validates the read token for a block.
 func (a *App) IsValidReadToken(boardID string, readToken string) (bool, error) {
 	return a.auth.IsValidReadToken(boardID, readToken)

diff --git a/server/auth/auth.go b/server/auth/auth.go
@@ -6,12 +6,10 @@ import (
 	"github.com/mattermost/mattermost-plugin-boards/server/services/config"
 	"github.com/mattermost/mattermost-plugin-boards/server/services/permissions"
 	"github.com/mattermost/mattermost-plugin-boards/server/services/store"
-	"github.com/mattermost/mattermost-plugin-boards/server/utils"
 	"github.com/pkg/errors"
 )
 
 type AuthInterface interface {
-	GetSession(token string) (*model.Session, error)
 	IsValidReadToken(boardID string, readToken string) (bool, error)
 	DoesUserHaveTeamAccess(userID string, teamID string) bool
 }
@@ -28,22 +26,6 @@ func New(config *config.Configuration, store store.Store, permissions permission
 	return &Auth{config: config, store: store, permissions: permissions}
 }
 
-// GetSession Get a user active session and refresh the session if needed.
-func (a *Auth) GetSession(token string) (*model.Session, error) {
-	if len(token) < 1 {
-		return nil, errors.New("no session token")
-	}
-
-	session, err := a.store.GetSession(token, a.config.SessionExpireTime)
-	if err != nil {
-		return nil, errors.Wrap(err, "unable to get the session for the token")
-	}
-	if session.UpdateAt < (utils.GetMillis() - utils.SecondsToMillis(a.config.SessionRefreshTime)) {
-		_ = a.store.RefreshSession(session)
-	}
-	return session, nil
-}
-
 // IsValidReadToken validates the read token for a board.
 func (a *Auth) IsValidReadToken(boardID string, readToken string) (bool, error) {
 	sharing, err := a.store.GetSharing(boardID)

diff --git a/server/auth/auth_test.go b/server/auth/auth_test.go
@@ -54,37 +54,9 @@ func setupTestHelper(t *testing.T) *TestHelper {
 
 func TestGetSession(t *testing.T) {
 	th := setupTestHelper(t)
-
-	testcases := []struct {
-		title       string
-		token       string
-		refreshTime int64
-		isError     bool
-	}{
-		{"fail, no token", "", 0, true},
-		{"fail, invalid username", "badToken", 0, true},
-		{"success, good token", "goodToken", 1000, false},
-	}
-
 	th.Store.EXPECT().GetSession("badToken", gomock.Any()).Return(nil, errors.New("Invalid Token"))
 	th.Store.EXPECT().GetSession("goodToken", gomock.Any()).Return(mockSession, nil)
 	th.Store.EXPECT().RefreshSession(gomock.Any()).Return(nil)
-
-	for _, test := range testcases {
-		t.Run(test.title, func(t *testing.T) {
-			if test.refreshTime > 0 {
-				th.Auth.config.SessionRefreshTime = test.refreshTime
-			}
-
-			session, err := th.Auth.GetSession(test.token)
-			if test.isError {
-				require.Error(t, err)
-			} else {
-				require.NoError(t, err)
-				require.NotNil(t, session)
-			}
-		})
-	}
 }
 
 func TestIsValidReadToken(t *testing.T) {

diff --git a/server/services/store/mattermostauthlayer/mattermostauthlayer.go b/server/services/store/mattermostauthlayer/mattermostauthlayer.go
@@ -115,22 +115,6 @@ func (s *MattermostAuthLayer) GetUserByUsername(username string) (*model.User, e
 	return &user, nil
 }
 
-func (s *MattermostAuthLayer) CreateUser(user *model.User) (*model.User, error) {
-	return nil, store.NewNotSupportedError("no user creation allowed from focalboard, create it using mattermost")
-}
-
-func (s *MattermostAuthLayer) UpdateUser(user *model.User) (*model.User, error) {
-	return nil, store.NewNotSupportedError("no update allowed from focalboard, update it using mattermost")
-}
-
-func (s *MattermostAuthLayer) UpdateUserPassword(username, password string) error {
-	return store.NewNotSupportedError("no update allowed from focalboard, update it using mattermost")
-}
-
-func (s *MattermostAuthLayer) UpdateUserPasswordByID(userID, password string) error {
-	return store.NewNotSupportedError("no update allowed from focalboard, update it using mattermost")
-}
-
 func (s *MattermostAuthLayer) PatchUserPreferences(userID string, patch model.UserPreferencesPatch) (mmModel.Preferences, error) {
 	preferences, err := s.GetUserPreferences(userID)
 	if err != nil {
@@ -236,30 +220,6 @@ func (s *MattermostAuthLayer) GetActiveUserCount(updatedSecondsAgo int64) (int,
 	return count, nil
 }
 
-func (s *MattermostAuthLayer) GetSession(token string, expireTime int64) (*model.Session, error) {
-	return nil, store.NewNotSupportedError("sessions not used when using mattermost")
-}
-
-func (s *MattermostAuthLayer) CreateSession(session *model.Session) error {
-	return store.NewNotSupportedError("no update allowed from focalboard, update it using mattermost")
-}
-
-func (s *MattermostAuthLayer) RefreshSession(session *model.Session) error {
-	return store.NewNotSupportedError("no update allowed from focalboard, update it using mattermost")
-}
-
-func (s *MattermostAuthLayer) UpdateSession(session *model.Session) error {
-	return store.NewNotSupportedError("no update allowed from focalboard, update it using mattermost")
-}
-
-func (s *MattermostAuthLayer) DeleteSession(sessionID string) error {
-	return store.NewNotSupportedError("no update allowed from focalboard, update it using mattermost")
-}
-
-func (s *MattermostAuthLayer) CleanUpSessions(expireTime int64) error {
-	return store.NewNotSupportedError("no update allowed from focalboard, update it using mattermost")
-}
-
 func (s *MattermostAuthLayer) GetTeam(id string) (*model.Team, error) {
 	if id == "0" {
 		team := model.Team{

diff --git a/server/services/store/mockstore/mockstore.go b/server/services/store/mockstore/mockstore.go
diff --git a/server/services/store/sqlstore/public_methods.go b/server/services/store/sqlstore/public_methods.go
diff --git a/server/services/store/sqlstore/sqlstore_test.go b/server/services/store/sqlstore/sqlstore_test.go
@@ -21,7 +21,6 @@ func TestSQLStore(t *testing.T) {
 	t.Run("TeamStore", func(t *testing.T) { storetests.StoreTestTeamStore(t, SetupTests) })
 	t.Run("BoardStore", func(t *testing.T) { storetests.StoreTestBoardStore(t, SetupTests) })
 	t.Run("BoardsAndBlocksStore", func(t *testing.T) { storetests.StoreTestBoardsAndBlocksStore(t, SetupTests) })
-	t.Run("SubscriptionStore", func(t *testing.T) { storetests.StoreTestSubscriptionsStore(t, SetupTests) })
 	t.Run("NotificationHintStore", func(t *testing.T) { storetests.StoreTestNotificationHintsStore(t, SetupTests) })
 	t.Run("DataRetention", func(t *testing.T) { storetests.StoreTestDataRetention(t, SetupTests) })
 	t.Run("CloudStore", func(t *testing.T) { storetests.StoreTestCloudStore(t, SetupTests) })

diff --git a/server/services/store/store.go b/server/services/store/store.go
@@ -60,22 +60,12 @@ type Store interface {
 	GetUsersList(userIDs []string, showEmail, showName bool) ([]*model.User, error)
 	GetUserByEmail(email string) (*model.User, error)
 	GetUserByUsername(username string) (*model.User, error)
-	CreateUser(user *model.User) (*model.User, error)
-	UpdateUser(user *model.User) (*model.User, error)
-	UpdateUserPassword(username, password string) error
-	UpdateUserPasswordByID(userID, password string) error
 	GetUsersByTeam(teamID string, asGuestID string, showEmail, showName bool) ([]*model.User, error)
 	SearchUsersByTeam(teamID string, searchQuery string, asGuestID string, excludeBots bool, showEmail, showName bool) ([]*model.User, error)
 	PatchUserPreferences(userID string, patch model.UserPreferencesPatch) (mmModel.Preferences, error)
 	GetUserPreferences(userID string) (mmModel.Preferences, error)
 
 	GetActiveUserCount(updatedSecondsAgo int64) (int, error)
-	GetSession(token string, expireTime int64) (*model.Session, error)
-	CreateSession(session *model.Session) error
-	RefreshSession(session *model.Session) error
-	UpdateSession(session *model.Session) error
-	DeleteSession(sessionID string) error
-	CleanUpSessions(expireTime int64) error
 
 	UpsertSharing(sharing model.Sharing) error
 	GetSharing(rootID string) (*model.Sharing, error)