Issue 1295. Added revert action for migration (#1296)

yurasavin · web-flow · commit 85bd3661b1a5 · 2023-09-15T15:47:29.000-04:00
diff --git a/AUTHORS b/AUTHORS
@@ -97,3 +97,4 @@ Víðir Valberg Guðmundsson
 Will Beaufoy
 pySilver
 Łukasz Skarżyński
+Yuri Savin
diff --git a/CHANGELOG.md b/CHANGELOG.md
@@ -16,6 +16,9 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
 
 ## [unreleased]
 
+### WARNING
+* If you are going to revert migration 0006 make note that previously hashed client_secret cannot be reverted
+
 ### Added
 * #1185 Add middleware for adding access token to request
 * #1273 Add caching of loading of OIDC private key.
@@ -24,6 +27,7 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
 
 - ### Fixed
 * #1284 Allow to logout whith no id_token_hint even if the browser session already expired
+* #1296 Added reverse function in migration 0006_alter_application_client_secret
 
 ## [2.3.0] 2023-05-31
 
diff --git a/oauth2_provider/migrations/0006_alter_application_client_secret.py b/oauth2_provider/migrations/0006_alter_application_client_secret.py
@@ -1,7 +1,13 @@
+import logging
+
 from django.db import migrations
-from oauth2_provider import settings
+
 import oauth2_provider.generators
 import oauth2_provider.models
+from oauth2_provider import settings
+
+
+logger = logging.getLogger()
 
 
 def forwards_func(apps, schema_editor):
@@ -14,6 +20,13 @@ def forwards_func(apps, schema_editor):
         application.save(update_fields=['client_secret'])
 
 
+def reverse_func(apps, schema_editor):
+    warning_color_code = "\033[93m"
+    end_color_code = "\033[0m"
+    msg = f"\n{warning_color_code}The previously hashed client_secret cannot be reverted, and it remains hashed{end_color_code}"
+    logger.warning(msg)
+
+
 class Migration(migrations.Migration):
 
     dependencies = [
@@ -26,5 +39,5 @@ class Migration(migrations.Migration):
             name='client_secret',
             field=oauth2_provider.models.ClientSecretField(blank=True, db_index=True, default=oauth2_provider.generators.generate_client_secret, help_text='Hashed on Save. Copy it now if this is a new secret.', max_length=255),
         ),
-        migrations.RunPython(forwards_func),
+        migrations.RunPython(forwards_func, reverse_func),
     ]
