Skip to content

feat: using database lock to protect bot api token #68

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
merged 1 commit into from
Mar 1, 2025
Merged

feat: using database lock to protect bot api token #68

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
80 changes: 71 additions & 9 deletions src/Nullinside.Api.TwitchBot/Model/NullinsideContextExtensions.cs
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,5 +1,11 @@
using Microsoft.EntityFrameworkCore;
using System.Diagnostics;

using log4net;

using Microsoft.EntityFrameworkCore;
using Microsoft.EntityFrameworkCore.Storage;

using Nullinside.Api.Common;
using Nullinside.Api.Common.Twitch;
using Nullinside.Api.Model;
using Nullinside.Api.Model.Ddl;
Expand All @@ -10,14 +16,24 @@ namespace Nullinside.Api.TwitchBot.Model;
/// Extensions for <see cref="NullinsideContext" /> and its ERMs.
/// </summary>
public static class NullinsideContextExtensions {
/// <summary>
/// The database lock name to use as a lock in the MySQL database.
/// </summary>
private const string BOT_REFRESH_TOKEN_LOCK_NAME = "bot_refresh_token";

/// <summary>
/// The logger.
/// </summary>
private static readonly ILog _log = LogManager.GetLogger(typeof(NullinsideContextExtensions));

/// <summary>
/// Gets a twitch api proxy.
/// </summary>
/// <param name="user">The user to configure the proxy as.</param>
/// <param name="api">The twitch api object currently in use.</param>
/// <returns>The twitch api.</returns>
public static void Configure(this ITwitchApiProxy api, User user) {
api.OAuth = new() {
api.OAuth = new TwitchAccessToken {
AccessToken = user.TwitchToken,
RefreshToken = user.TwitchRefreshToken,
ExpiresUtc = user.TwitchTokenExpiration
Expand All @@ -36,17 +52,63 @@ public static void Configure(this ITwitchApiProxy api, User user) {
ITwitchApiProxy api, CancellationToken stoppingToken = new()) {
api.Configure(user);

// Refresh its token if necessary.
// Use the token we have, if it hasn't expired.
if (!(DateTime.UtcNow + TimeSpan.FromHours(1) > user.TwitchTokenExpiration)) {
return api;
}

if (null == await api.RefreshAccessToken(stoppingToken) || null == api.OAuth) {
return api;
}
// Database locking requires ExecutionStrategy
IExecutionStrategy strat = db.Database.CreateExecutionStrategy();
return await strat.ExecuteAsync(async () => {
bool failed = false;

// Database locking requires transaction scope
await using IDbContextTransaction scope = await db.Database.BeginTransactionAsync(stoppingToken);

// Perform the database lock
using var dbLock = new DatabaseLock(db);
var sw = new Stopwatch();
sw.Start();
await dbLock.GetLock(BOT_REFRESH_TOKEN_LOCK_NAME, stoppingToken);
_log.Info($"bot_refresh_token: {sw.Elapsed}");
sw.Stop();

try {
// Get the user with the database lock acquired.
User? updatedUser = await db.Users.AsNoTracking().FirstOrDefaultAsync(u => u.Id == user.Id, stoppingToken);
if (null == updatedUser) {
return null;
}

// Use the token we have, if it hasn't expired.
if (!(DateTime.UtcNow + TimeSpan.FromHours(1) > updatedUser.TwitchTokenExpiration)) {
api.Configure(updatedUser);
return api;
}

// Refresh the token with the Twitch API.
TwitchAccessToken? newToken = await api.RefreshAccessToken(stoppingToken);
if (null == newToken) {
return null;
}

// Update the credentials in the database.
await db.UpdateOAuthInDatabase(user.Id, newToken, stoppingToken);
return api;
}
catch {
failed = true;
}
finally {
await dbLock.ReleaseLock(BOT_REFRESH_TOKEN_LOCK_NAME, stoppingToken);

if (!failed) {
scope.Commit();
}
}

await db.UpdateOAuthInDatabase(user.Id, api.OAuth, stoppingToken);
return api;
return null;
});
}

/// <summary>
Expand All @@ -57,7 +119,7 @@ public static void Configure(this ITwitchApiProxy api, User user) {
/// <param name="oAuth">The OAuth information.</param>
/// <param name="stoppingToken">The stopping token.</param>
/// <returns>The number of state entries written to the database.</returns>
public static async Task<int> UpdateOAuthInDatabase(this INullinsideContext db, int userId,
private static async Task<int> UpdateOAuthInDatabase(this INullinsideContext db, int userId,
TwitchAccessToken oAuth, CancellationToken stoppingToken = new()) {
User? row = await db.Users.FirstOrDefaultAsync(u => u.Id == userId, stoppingToken);
if (null == row) {
Expand Down
2 changes: 1 addition & 1 deletion src/nullinside-api
Open in desktop
Submodule nullinside-api updated 9 files
+2 −2 src/Nullinside.Api.Common/Nullinside.Api.Common.csproj
+1 −1 src/Nullinside.Api.Common/Twitch/ITwitchApiProxy.cs
+26 −20 src/Nullinside.Api.Common/Twitch/TwitchApiProxy.cs
+6 −6 src/Nullinside.Api.Common/Twitch/TwitchAppConfig.cs
+5 −0 src/Nullinside.Api.Model/Ddl/User.cs
+314 −0 src/Nullinside.Api.Model/Migrations/20250228164901_UserTableTimestamp.Designer.cs
+40 −0 src/Nullinside.Api.Model/Migrations/20250228164901_UserTableTimestamp.cs
+3 −1 src/Nullinside.Api.Model/Migrations/NullinsideContextModelSnapshot.cs
+94 −0 src/Nullinside.Api.Model/Shared/DatabaseLock.cs