Add revoke token methods and iat claim while generating tokens

Siddhant Agarwal · Siddhant Agarwal · commit 4e7544e85682 · 2021-05-11T17:40:21.000+05:30
diff --git a/stream_chat/async_chat/client.py b/stream_chat/async_chat/client.py
@@ -1,4 +1,4 @@
-import json
+import json, datetime
 from types import TracebackType
 from typing import Optional, Type
 from urllib.parse import urlparse
@@ -448,6 +448,53 @@ async def list_roles(self):
         """
         return await self.get("custom_role")
 
+    async def revoke_tokens(self, since=datetime.datetime.now()):
+        """
+        Revokes tokens for a application
+        :param since: date since which the tokens are to be revoked
+        """
+        if isinstance(since, datetime.datetime):
+            since = since.isoformat()
+
+        await self.update_app_settings({
+            "revoke_tokens_issued_before": since
+        })
+
+    async def revoke_user_token(self, user_id, since=datetime.datetime.now().isoformat()):
+        """
+        Revokes token for a user
+        :param user_id: user_id of user for which the token needs to be revoked
+        :param since: date since which the tokens are to be revoked
+        """
+        if isinstance(since, datetime.datetime):
+            since = since.isoformat()
+
+        await self.update_user_partial({
+            "id": user_id,
+            "set": {
+                "revoke_tokens_issued_before": since
+            }
+        })
+
+    async def revoke_users_token(self, user_ids, since=datetime.datetime.now().isoformat()):
+        """
+        Revokes tokens for given users
+        :param user_ids: user_ids for user for whom the token needs to be revoked
+        :param since: date since which the tokens are to be revoked 
+        """
+        if isinstance(since, datetime.datetime):
+            since = since.isoformat()
+
+        updates = []
+        for user_id in user_ids:
+            updates.append({
+                "id": user_id,
+                "set": {
+                    "revoke_tokens_issued_before": since
+                }
+            })
+        await self.update_users_partial(updates)  
+
     async def close(self):
         await self.session.close()
 
diff --git a/stream_chat/base/client.py b/stream_chat/base/client.py
@@ -38,10 +38,12 @@ def normalize_sort(self, sort=None):
                         sort_fields.append({"field": k, "direction": v})
         return sort_fields
 
-    def create_token(self, user_id, exp=None, **claims):
+    def create_token(self, user_id, exp=None, iat=None, **claims):
         payload = {**claims, "user_id": user_id}
         if exp is not None:
             payload["exp"] = exp
+        if iat is not None:
+            payload["iat"] = iat
         return jwt.encode(payload, self.api_secret, algorithm="HS256")
 
     def verify_webhook(self, request_body, x_signature):
@@ -413,3 +415,24 @@ def list_roles(self):
         List custom roles of the app
         """
         pass
+
+    @abc.abstractmethod    
+    def revoke_tokens(self, since):
+        """
+        Revoke tokens for a application issued since
+        """
+        pass
+
+    @abc.abstractmethod    
+    def revoke_user_token(self, user_id, since):
+        """
+        Revoke tokens for a user issued since
+        """
+        pass
+
+    @abc.abstractmethod    
+    def revoke_users_token(self, user_ids, since):
+        """
+        Revoke tokens for users issued since
+        """
+        pass
diff --git a/stream_chat/client.py b/stream_chat/client.py
@@ -2,7 +2,7 @@
 from urllib.parse import urlparse
 from urllib.request import Request, urlopen
 
-import requests
+import requests, datetime
 
 from stream_chat.__pkg__ import __version__
 from stream_chat.base.client import StreamChatInterface
@@ -435,3 +435,50 @@ def list_roles(self):
         List custom roles of the app
         """
         return self.get("custom_role")
+
+    def revoke_tokens(self, since=datetime.datetime.now()):
+        """
+        Revokes tokens for a application
+        :param since: date since which the tokens are to be revoked
+        """
+        if isinstance(since, datetime.datetime):
+            since = since.isoformat()
+
+        self.update_app_settings({
+            "revoke_tokens_issued_before": since
+        })
+
+    def revoke_user_token(self, user_id, since=datetime.datetime.now()):
+        """
+        Revokes token for a user
+        :param user_id: user_id of user for which the token needs to be revoked
+        :param since: date since which the tokens are to be revoked
+        """
+        if isinstance(since, datetime.datetime):
+            since = since.isoformat()
+
+        self.update_user_partial({
+            "id": user_id,
+            "set": {
+                "revoke_tokens_issued_before": since
+            }
+        })
+
+    def revoke_users_token(self, user_ids, since=datetime.datetime.now()):
+        """
+        Revokes tokens for given users
+        :param user_ids: user_ids for user for whom the token needs to be revoked
+        :param since: date since which the tokens are to be revoked 
+        """
+        if isinstance(since, datetime.datetime):
+            since = since.isoformat()
+
+        updates = []
+        for user_id in user_ids:
+            updates.append({
+                "id": user_id,
+                "set": {
+                    "revoke_tokens_issued_before": since
+                }
+            })
+        self.update_users_partial(updates)
