auth

Paddy 2015-04-25 Parent:73e12d5a1124 Child:581c60f8dd23

164:cf1aef6eb81f Go to Latest

auth/context.go

Clean up after Client deletion, finish cleaning up after Profile deletion. 6f473576c6ae started cleaning up after Profiles when they're deleted, but didn't clean up the Clients created by that Profile. This fixes that, and also fixes a BUG note about cleaning up after a Client when it's deleted. Extend the authorizationCodeStore to have a deleteAuthorizationCodesByClientID method that will delete the AuthorizationCodes that have been granted by the Client specified by the passed ID. We also implemented this in memstore and postgres, so tests continue to pass. Extend the clientStore to have a deleteClientsByOwner method that will delete the Clients that were created by the Profile specified by the passed ID. We also implemented this in memstore and postgres, so tests continue to pass. Extend the clientStore to have a removeEndpointsByClientID method that will delete the Endpoints that belong(ed) to a the Client specified by the passed ID. We also implemented this in memstore and postgres, so tests continue to pass. Extend the tokenStore to have a revokeTokensByClientID method that will revoke all the Tokens that were granted to the Client specified by the passed ID. We also implemented this in memstore and postgres, so tests continue to pass. When listing Clients by their owner, allow setting the num argument (which controls how many to return) to 0 or lower, and using that to signal "return all Clients belonging to this owner", instead of paging. This is useful when deleting the Clients belonging to a Profile as part of the cleanup after deleting the Profile. Create a cleanUpAfterClientDeletion helper function that will delete the Endpoints and AuthorizationCodes belonging to a Client, and revoke the Tokens belonging to a Client, as part of cleaning up after a Client has been deleted. Add a check in the handler for listing Clients owned by a Profile to disallow the num argument to be lower than 1, because the API should be forced to page. Call our cleanUpAfterClientDeletion once the Client has been deleted in the appropriate handler. Fill out our Context with new methods to wrap all the new methods we're adding to our *Stores. In cleanUpAfterProfileDeletion, obtain a list of clients belonging to the owner, use our new DeleteClientsByOwner method to remove all of them, and then use the list to run our new cleanUpAfterClientDeletion function to clear away the final remnants of a Profile when it's deleted.

Download raw file
View source Diff to previous Annotate
History
paddy@50 1 package auth
paddy@50 2
paddy@50 3 import (
paddy@50 4 "html/template"
paddy@50 5 "io"
paddy@55 6 "log"
paddy@77 7 "net/url"
paddy@50 8 "time"
paddy@50 9
paddy@107 10 "code.secondbit.org/uuid.hg"
paddy@50 11 )
paddy@50 12
paddy@57 13 // Context wraps the different storage interfaces and should
paddy@57 14 // be used as the main point of interaction for the data storage
paddy@57 15 // layer.
paddy@50 16 type Context struct {
paddy@87 17 template *template.Template
paddy@87 18 loginURI *url.URL
paddy@87 19 clients clientStore
paddy@87 20 authCodes authorizationCodeStore
paddy@87 21 profiles profileStore
paddy@87 22 tokens tokenStore
paddy@87 23 sessions sessionStore
paddy@134 24 scopes scopeStore
paddy@96 25 config Config
paddy@96 26 }
paddy@96 27
paddy@96 28 // NewContext takes a Config instance and uses it to bootstrap a Context
paddy@96 29 // using the information provided in the Config variable.
paddy@96 30 func NewContext(config Config) (Context, error) {
paddy@102 31 if config.iterations == 0 {
paddy@102 32 return Context{}, ErrConfigNotInitialized
paddy@102 33 }
paddy@96 34 context := Context{
paddy@96 35 clients: config.ClientStore,
paddy@96 36 authCodes: config.AuthCodeStore,
paddy@96 37 profiles: config.ProfileStore,
paddy@96 38 tokens: config.TokenStore,
paddy@96 39 sessions: config.SessionStore,
paddy@134 40 scopes: config.ScopeStore,
paddy@96 41 template: config.Template,
paddy@96 42 config: config,
paddy@96 43 }
paddy@96 44 var err error
paddy@96 45 context.loginURI, err = url.Parse(config.LoginURI)
paddy@96 46 if err != nil {
paddy@96 47 log.Println(err)
paddy@96 48 return Context{}, ErrInvalidLoginURI
paddy@96 49 }
paddy@96 50 return context, nil
paddy@50 51 }
paddy@50 52
paddy@57 53 // Render uses the HTML templates associated with the Context to render the
paddy@57 54 // template specified by name to out using data to fill any template variables.
paddy@55 55 func (c Context) Render(out io.Writer, name string, data interface{}) {
paddy@50 56 if c.template == nil {
paddy@57 57 log.Println("No template set on Context, can't render anything!")
paddy@57 58 return
paddy@50 59 }
paddy@55 60 err := c.template.ExecuteTemplate(out, name, data)
paddy@55 61 if err != nil {
paddy@55 62 log.Println("Error executing template", name, ":", err)
paddy@55 63 }
paddy@50 64 }
paddy@50 65
paddy@57 66 // GetClient returns a single Client by its ID from the
paddy@57 67 // clientStore associated with the Context.
paddy@50 68 func (c Context) GetClient(id uuid.ID) (Client, error) {
paddy@50 69 if c.clients == nil {
paddy@50 70 return Client{}, ErrNoClientStore
paddy@50 71 }
paddy@57 72 return c.clients.getClient(id)
paddy@50 73 }
paddy@50 74
paddy@57 75 // SaveClient stores the passed Client in the clientStore
paddy@57 76 // associated with the Context.
paddy@50 77 func (c Context) SaveClient(client Client) error {
paddy@50 78 if c.clients == nil {
paddy@50 79 return ErrNoClientStore
paddy@50 80 }
paddy@57 81 return c.clients.saveClient(client)
paddy@50 82 }
paddy@50 83
paddy@57 84 // UpdateClient applies the specified ClientChange to the Client
paddy@57 85 // with the specified ID in the clientStore associated with the
paddy@57 86 // Context.
paddy@50 87 func (c Context) UpdateClient(id uuid.ID, change ClientChange) error {
paddy@50 88 if c.clients == nil {
paddy@50 89 return ErrNoClientStore
paddy@50 90 }
paddy@57 91 return c.clients.updateClient(id, change)
paddy@50 92 }
paddy@50 93
paddy@57 94 // ListClientsByOwner returns a slice of up to num Clients, starting at offset (inclusive)
paddy@57 95 // that have the specified OwnerID in the clientStore associated with the Context.
paddy@50 96 func (c Context) ListClientsByOwner(ownerID uuid.ID, num, offset int) ([]Client, error) {
paddy@50 97 if c.clients == nil {
paddy@50 98 return []Client{}, ErrNoClientStore
paddy@50 99 }
paddy@57 100 return c.clients.listClientsByOwner(ownerID, num, offset)
paddy@50 101 }
paddy@50 102
paddy@164 103 func (c Context) DeleteClientsByOwner(ownerID uuid.ID) error {
paddy@164 104 if c.clients == nil {
paddy@164 105 return ErrNoClientStore
paddy@164 106 }
paddy@164 107 return c.clients.deleteClientsByOwner(ownerID)
paddy@164 108 }
paddy@164 109
paddy@151 110 // AddEndpoints stores the specified Endpoints in the clientStore associated with the Context.
paddy@151 111 func (c Context) AddEndpoints(endpoints []Endpoint) error {
paddy@50 112 if c.clients == nil {
paddy@50 113 return ErrNoClientStore
paddy@50 114 }
paddy@116 115 for pos, endpoint := range endpoints {
paddy@116 116 u, err := normalizeURIString(endpoint.URI)
paddy@116 117 if err != nil {
paddy@116 118 return err
paddy@116 119 }
paddy@116 120 endpoint.NormalizedURI = u
paddy@116 121 endpoints[pos] = endpoint
paddy@116 122 }
paddy@151 123 return c.clients.addEndpoints(endpoints)
paddy@50 124 }
paddy@50 125
paddy@143 126 // GetEndpoint retrieves the Endpoint with the specified ID from the clientStore associated
paddy@143 127 // with the Context, if and only if it belongs to the Client with the specified ID.
paddy@143 128 func (c Context) GetEndpoint(client, endpoint uuid.ID) (Endpoint, error) {
paddy@143 129 if c.clients == nil {
paddy@143 130 return Endpoint{}, ErrNoClientStore
paddy@143 131 }
paddy@143 132 return c.clients.getEndpoint(client, endpoint)
paddy@143 133 }
paddy@143 134
paddy@57 135 // RemoveEndpoint deletes the Endpoint with the specified ID from the clientStore associated
paddy@57 136 // with the Context, and disassociates the Endpoint from the specified Client.
paddy@50 137 func (c Context) RemoveEndpoint(client, endpoint uuid.ID) error {
paddy@50 138 if c.clients == nil {
paddy@50 139 return ErrNoClientStore
paddy@50 140 }
paddy@57 141 return c.clients.removeEndpoint(client, endpoint)
paddy@50 142 }
paddy@50 143
paddy@57 144 // CheckEndpoint finds Endpoints in the clientStore associated with the Context that belong
paddy@58 145 // to the Client specified by the passed ID and match the URI passed. URI matches must be
paddy@58 146 // performed according to RFC 3986 Section 6.
paddy@58 147 func (c Context) CheckEndpoint(client uuid.ID, URI string) (bool, error) {
paddy@50 148 if c.clients == nil {
paddy@50 149 return false, ErrNoClientStore
paddy@50 150 }
paddy@116 151 u, err := normalizeURIString(URI)
paddy@116 152 if err != nil {
paddy@116 153 return false, err
paddy@116 154 }
paddy@116 155 return c.clients.checkEndpoint(client, u)
paddy@50 156 }
paddy@50 157
paddy@57 158 // ListEndpoints finds Endpoints in the clientStore associated with the Context that belong
paddy@57 159 // to the Client specified by the passed ID. It returns up to num endpoints, starting at offset,
paddy@57 160 // exclusive.
paddy@50 161 func (c Context) ListEndpoints(client uuid.ID, num, offset int) ([]Endpoint, error) {
paddy@50 162 if c.clients == nil {
paddy@50 163 return []Endpoint{}, ErrNoClientStore
paddy@50 164 }
paddy@57 165 return c.clients.listEndpoints(client, num, offset)
paddy@50 166 }
paddy@50 167
paddy@164 168 func (c Context) RemoveEndpointsByClientID(client uuid.ID) error {
paddy@164 169 if c.clients == nil {
paddy@164 170 return ErrNoClientStore
paddy@164 171 }
paddy@164 172 return c.clients.removeEndpointsByClientID(client)
paddy@164 173 }
paddy@164 174
paddy@57 175 // CountEndpoints returns the number of Endpoints the are associated with the Client specified by the
paddy@57 176 // passed ID in the clientStore associated with the Context.
paddy@55 177 func (c Context) CountEndpoints(client uuid.ID) (int64, error) {
paddy@55 178 if c.clients == nil {
paddy@55 179 return 0, ErrNoClientStore
paddy@55 180 }
paddy@57 181 return c.clients.countEndpoints(client)
paddy@55 182 }
paddy@55 183
paddy@87 184 // GetAuthorizationCode returns the AuthorizationCode specified by the provided code from the authorizationCodeStore associated with the
paddy@57 185 // Context.
paddy@87 186 func (c Context) GetAuthorizationCode(code string) (AuthorizationCode, error) {
paddy@87 187 if c.authCodes == nil {
paddy@87 188 return AuthorizationCode{}, ErrNoAuthorizationCodeStore
paddy@50 189 }
paddy@87 190 return c.authCodes.getAuthorizationCode(code)
paddy@50 191 }
paddy@50 192
paddy@87 193 // SaveAuthorizationCode stores the passed AuthorizationCode in the authorizationCodeStore associated with the Context.
paddy@87 194 func (c Context) SaveAuthorizationCode(authCode AuthorizationCode) error {
paddy@87 195 if c.authCodes == nil {
paddy@87 196 return ErrNoAuthorizationCodeStore
paddy@50 197 }
paddy@87 198 return c.authCodes.saveAuthorizationCode(authCode)
paddy@50 199 }
paddy@50 200
paddy@87 201 // DeleteAuthorizationCode removes the AuthorizationCode specified by the provided code from the authorizationCodeStore associated with
paddy@57 202 // the Context.
paddy@87 203 func (c Context) DeleteAuthorizationCode(code string) error {
paddy@87 204 if c.authCodes == nil {
paddy@87 205 return ErrNoAuthorizationCodeStore
paddy@50 206 }
paddy@87 207 return c.authCodes.deleteAuthorizationCode(code)
paddy@50 208 }
paddy@50 209
paddy@163 210 // DeleteAuthorizationCodesByProfileID removes the AuthorizationCodes associated with the Profile specified by the provided ID from the
paddy@163 211 // authorizationCodeStore associated with the Context.
paddy@163 212 func (c Context) DeleteAuthorizationCodesByProfileID(profileID uuid.ID) error {
paddy@163 213 if c.authCodes == nil {
paddy@163 214 return ErrNoAuthorizationCodeStore
paddy@163 215 }
paddy@163 216 return c.authCodes.deleteAuthorizationCodesByProfileID(profileID)
paddy@163 217 }
paddy@163 218
paddy@164 219 func (c Context) DeleteAuthorizationCodesByClientID(clientID uuid.ID) error {
paddy@164 220 if c.authCodes == nil {
paddy@164 221 return ErrNoAuthorizationCodeStore
paddy@164 222 }
paddy@164 223 return c.authCodes.deleteAuthorizationCodesByClientID(clientID)
paddy@164 224 }
paddy@164 225
paddy@94 226 // UseAuthorizationCode marks the AuthorizationCode specified by the provided code as used in the authorizationCodeStore associated with
paddy@94 227 // the Context. Once an AuthorizationCode is marked as used, its Used property will be set to true when retrieved from the authorizationCodeStore.
paddy@94 228 func (c Context) UseAuthorizationCode(code string) error {
paddy@94 229 if c.authCodes == nil {
paddy@94 230 return ErrNoAuthorizationCodeStore
paddy@94 231 }
paddy@94 232 return c.authCodes.useAuthorizationCode(code)
paddy@94 233 }
paddy@94 234
paddy@57 235 // GetProfileByID returns the Profile specified by the provided ID from the profileStore associated with
paddy@57 236 // the Context.
paddy@50 237 func (c Context) GetProfileByID(id uuid.ID) (Profile, error) {
paddy@50 238 if c.profiles == nil {
paddy@50 239 return Profile{}, ErrNoProfileStore
paddy@50 240 }
paddy@57 241 return c.profiles.getProfileByID(id)
paddy@50 242 }
paddy@50 243
paddy@57 244 // GetProfileByLogin returns the Profile associated with the specified Login from the profileStore associated
paddy@57 245 // with the Context.
paddy@69 246 func (c Context) GetProfileByLogin(value string) (Profile, error) {
paddy@50 247 if c.profiles == nil {
paddy@50 248 return Profile{}, ErrNoProfileStore
paddy@50 249 }
paddy@69 250 return c.profiles.getProfileByLogin(value)
paddy@50 251 }
paddy@50 252
paddy@57 253 // SaveProfile inserts the passed Profile into the profileStore associated with the Context.
paddy@50 254 func (c Context) SaveProfile(profile Profile) error {
paddy@50 255 if c.profiles == nil {
paddy@50 256 return ErrNoProfileStore
paddy@50 257 }
paddy@57 258 return c.profiles.saveProfile(profile)
paddy@50 259 }
paddy@50 260
paddy@57 261 // UpdateProfile applies the supplied ProfileChange to the Profile that matches the specified ID
paddy@57 262 // in the profileStore associated with the Context.
paddy@50 263 func (c Context) UpdateProfile(id uuid.ID, change ProfileChange) error {
paddy@50 264 if c.profiles == nil {
paddy@50 265 return ErrNoProfileStore
paddy@50 266 }
paddy@57 267 return c.profiles.updateProfile(id, change)
paddy@50 268 }
paddy@50 269
paddy@57 270 // UpdateProfiles applies the supplied BulkProfileChange to every Profile that matches one of the
paddy@57 271 // specified IDs in the profileStore associated with the Context.
paddy@50 272 func (c Context) UpdateProfiles(ids []uuid.ID, change BulkProfileChange) error {
paddy@50 273 if c.profiles == nil {
paddy@50 274 return ErrNoProfileStore
paddy@50 275 }
paddy@57 276 return c.profiles.updateProfiles(ids, change)
paddy@50 277 }
paddy@50 278
paddy@161 279 // DeleteProfile removes the specified Profile from the profileStore associated with the Context.
paddy@161 280 func (c Context) DeleteProfile(id uuid.ID) error {
paddy@161 281 if c.profiles == nil {
paddy@161 282 return ErrNoProfileStore
paddy@161 283 }
paddy@161 284 return c.profiles.deleteProfile(id)
paddy@161 285 }
paddy@161 286
paddy@57 287 // AddLogin stores the passed Login in the profileStore associated with the Context. It also associates
paddy@57 288 // the newly-created Login with the Orofile in login.ProfileID.
paddy@50 289 func (c Context) AddLogin(login Login) error {
paddy@50 290 if c.profiles == nil {
paddy@50 291 return ErrNoProfileStore
paddy@50 292 }
paddy@57 293 return c.profiles.addLogin(login)
paddy@50 294 }
paddy@50 295
paddy@57 296 // RemoveLogin removes the specified Login from the profileStore associated with the Context, provided
paddy@57 297 // the Login has a ProfileID property that matches the profile ID passed in. It also disassociates the
paddy@57 298 // deleted Login from the Profile in login.ProfileID.
paddy@69 299 func (c Context) RemoveLogin(value string, profile uuid.ID) error {
paddy@50 300 if c.profiles == nil {
paddy@50 301 return ErrNoProfileStore
paddy@50 302 }
paddy@69 303 return c.profiles.removeLogin(value, profile)
paddy@50 304 }
paddy@50 305
paddy@160 306 // RemoveLoginsByProfile removes all Logins connected to the specified Profile in the profileStore
paddy@160 307 // associated with the Context and disassociates them from the Profile.
paddy@160 308 func (c Context) RemoveLoginsByProfile(profile uuid.ID) error {
paddy@160 309 if c.profiles == nil {
paddy@160 310 return ErrNoProfileStore
paddy@160 311 }
paddy@160 312 return c.profiles.removeLoginsByProfile(profile)
paddy@160 313 }
paddy@160 314
paddy@57 315 // RecordLoginUse sets the LastUsed property of the Login specified in the profileStore associated with
paddy@57 316 // the Context to the value passed in as when.
paddy@69 317 func (c Context) RecordLoginUse(value string, when time.Time) error {
paddy@50 318 if c.profiles == nil {
paddy@50 319 return ErrNoProfileStore
paddy@50 320 }
paddy@69 321 return c.profiles.recordLoginUse(value, when)
paddy@50 322 }
paddy@50 323
paddy@57 324 // ListLogins returns a slice of up to num Logins associated with the specified Profile from the profileStore
paddy@57 325 // associated with the Context, skipping offset Profiles.
paddy@50 326 func (c Context) ListLogins(profile uuid.ID, num, offset int) ([]Login, error) {
paddy@50 327 if c.profiles == nil {
paddy@50 328 return []Login{}, ErrNoProfileStore
paddy@50 329 }
paddy@57 330 return c.profiles.listLogins(profile, num, offset)
paddy@50 331 }
paddy@50 332
paddy@57 333 // GetToken returns the Token specified from the tokenStore associated with the Context.
paddy@57 334 // If refresh is true, the token input should be compared against the refresh tokens, not the
paddy@57 335 // access tokens.
paddy@50 336 func (c Context) GetToken(token string, refresh bool) (Token, error) {
paddy@50 337 if c.tokens == nil {
paddy@50 338 return Token{}, ErrNoTokenStore
paddy@50 339 }
paddy@57 340 return c.tokens.getToken(token, refresh)
paddy@50 341 }
paddy@50 342
paddy@57 343 // SaveToken stores the passed Token in the tokenStore associated with the Context.
paddy@50 344 func (c Context) SaveToken(token Token) error {
paddy@50 345 if c.tokens == nil {
paddy@50 346 return ErrNoTokenStore
paddy@50 347 }
paddy@57 348 return c.tokens.saveToken(token)
paddy@50 349 }
paddy@50 350
paddy@93 351 // RevokeToken revokes the Token identfied by the passed token string from the tokenStore associated
paddy@93 352 // with the context. If refresh is true, the token input should be compared against the refresh tokens,
paddy@93 353 // not the access tokens.
paddy@93 354 func (c Context) RevokeToken(token string, refresh bool) error {
paddy@93 355 if c.tokens == nil {
paddy@93 356 return ErrNoTokenStore
paddy@93 357 }
paddy@93 358 return c.tokens.revokeToken(token, refresh)
paddy@93 359 }
paddy@93 360
paddy@162 361 // RevokeTokensByProfileID revokes the Tokens associated with the Profile identified by the passed ID in
paddy@162 362 // the tokenStore associated with the Context.
paddy@162 363 func (c Context) RevokeTokensByProfileID(profileID uuid.ID) error {
paddy@162 364 if c.tokens == nil {
paddy@162 365 return ErrNoTokenStore
paddy@162 366 }
paddy@162 367 return c.tokens.revokeTokensByProfileID(profileID)
paddy@162 368 }
paddy@162 369
paddy@164 370 func (c Context) RevokeTokensByClientID(clientID uuid.ID) error {
paddy@164 371 if c.tokens == nil {
paddy@164 372 return ErrNoTokenStore
paddy@164 373 }
paddy@164 374 return c.tokens.revokeTokensByClientID(clientID)
paddy@164 375 }
paddy@164 376
paddy@57 377 // GetTokensByProfileID returns a slice of up to num Tokens with a ProfileID that matches the specified
paddy@57 378 // profileID from the tokenStore associated with the Context, skipping offset Tokens.
paddy@50 379 func (c Context) GetTokensByProfileID(profileID uuid.ID, num, offset int) ([]Token, error) {
paddy@50 380 if c.tokens == nil {
paddy@50 381 return []Token{}, ErrNoTokenStore
paddy@50 382 }
paddy@57 383 return c.tokens.getTokensByProfileID(profileID, num, offset)
paddy@50 384 }
paddy@69 385
paddy@69 386 // CreateSession stores the passed Session in the sessionStore associated with the Context.
paddy@69 387 func (c Context) CreateSession(session Session) error {
paddy@69 388 if c.sessions == nil {
paddy@69 389 return ErrNoSessionStore
paddy@69 390 }
paddy@69 391 return c.sessions.createSession(session)
paddy@69 392 }
paddy@69 393
paddy@69 394 // GetSession returns the Session specified from the sessionStore associated with the Context.
paddy@69 395 func (c Context) GetSession(id string) (Session, error) {
paddy@69 396 if c.sessions == nil {
paddy@69 397 return Session{}, ErrNoSessionStore
paddy@69 398 }
paddy@69 399 return c.sessions.getSession(id)
paddy@69 400 }
paddy@69 401
paddy@159 402 // TerminateSession sets the Session identified by the passed ID as inactive in the sessionStore assocated
paddy@159 403 // with the Context.
paddy@159 404 func (c Context) TerminateSession(id string) error {
paddy@159 405 if c.sessions == nil {
paddy@159 406 return ErrNoSessionStore
paddy@159 407 }
paddy@159 408 return c.sessions.terminateSession(id)
paddy@159 409 }
paddy@159 410
paddy@162 411 // TerminateSessionsByProfile sets the Sessions associated with the passed Profile ID as inactive in the
paddy@162 412 // sessionStore associated with the Context.
paddy@162 413 func (c Context) TerminateSessionsByProfile(profile uuid.ID) error {
paddy@162 414 if c.sessions == nil {
paddy@162 415 return ErrNoSessionStore
paddy@162 416 }
paddy@162 417 return c.sessions.terminateSessionsByProfile(profile)
paddy@162 418 }
paddy@162 419
paddy@69 420 // RemoveSession removes the Session identified by the passed ID from the sessionStore associated with
paddy@69 421 // the Context.
paddy@69 422 func (c Context) RemoveSession(id string) error {
paddy@69 423 if c.sessions == nil {
paddy@69 424 return ErrNoSessionStore
paddy@69 425 }
paddy@69 426 return c.sessions.removeSession(id)
paddy@69 427 }
paddy@69 428
paddy@69 429 // ListSessions returns a slice of up to num Sessions from the sessionStore associated with the Context,
paddy@69 430 // ordered by the date they were created, descending. If before.IsZero() returns false, only Sessions
paddy@69 431 // that were created before that time will be returned. If profile is not nil, only Sessions belonging to
paddy@69 432 // that Profile will be returned.
paddy@69 433 func (c Context) ListSessions(profile uuid.ID, before time.Time, num int64) ([]Session, error) {
paddy@116 434 if c.sessions == nil {
paddy@69 435 return []Session{}, ErrNoSessionStore
paddy@69 436 }
paddy@69 437 return c.sessions.listSessions(profile, before, num)
paddy@69 438 }
paddy@134 439
paddy@134 440 func (c Context) CreateScopes(scopes []Scope) error {
paddy@134 441 if c.scopes == nil {
paddy@134 442 return ErrNoScopeStore
paddy@134 443 }
paddy@134 444 return c.scopes.createScopes(scopes)
paddy@134 445 }
paddy@134 446
paddy@134 447 func (c Context) GetScopes(ids []string) ([]Scope, error) {
paddy@134 448 if c.scopes == nil {
paddy@134 449 return []Scope{}, ErrNoScopeStore
paddy@134 450 }
paddy@134 451 return c.scopes.getScopes(ids)
paddy@134 452 }
paddy@134 453
paddy@152 454 func (c Context) UpdateScope(id string, change ScopeChange) error {
paddy@134 455 if c.scopes == nil {
paddy@152 456 return ErrNoScopeStore
paddy@134 457 }
paddy@152 458 return c.scopes.updateScope(id, change)
paddy@134 459 }
paddy@134 460
paddy@134 461 func (c Context) RemoveScopes(ids []string) error {
paddy@134 462 if c.scopes == nil {
paddy@134 463 return ErrNoScopeStore
paddy@134 464 }
paddy@134 465 return c.scopes.removeScopes(ids)
paddy@134 466 }
paddy@134 467
paddy@134 468 func (c Context) ListScopes() ([]Scope, error) {
paddy@134 469 if c.scopes == nil {
paddy@134 470 return []Scope{}, ErrNoScopeStore
paddy@134 471 }
paddy@134 472 return c.scopes.listScopes()
paddy@134 473 }