NoopDB -> SimpleDB

2019-05-07 11:38:27 -07:00 · 2019-05-07 11:38:27 -07:00 · 81db527f12
commit 81db527f12
parent b73fe8c157
9 changed files with 112 additions and 99 deletions
--- a/authority/authorize.go
+++ b/authority/authorize.go
@ -4,19 +4,12 @@ import (
 	"crypto/x509"
 	"net/http"
 	"strings"
-	"time"

 	"github.com/pkg/errors"
 	"github.com/smallstep/certificates/authority/provisioner"
-	"github.com/smallstep/certificates/db"
 	"github.com/smallstep/cli/jose"
 )

-type idUsed struct {
-	UsedAt  int64  `json:"ua,omitempty"`
-	Subject string `json:"sub,omitempty"`
-}
-
 // Claims extends jose.Claims with step attributes.
 type Claims struct {
 	jose.Claims
@ -73,23 +66,13 @@ func (a *Authority) authorizeToken(ott string) (provisioner.Interface, error) {
 		reuseKey = claims.Nonce
 	}
 	if reuseKey != "" {
-		switch a.db.(type) {
-		case *db.NoopDB:
-			if _, ok := a.ottMap.LoadOrStore(reuseKey, &idUsed{
-				UsedAt:  time.Now().Unix(),
-				Subject: claims.Subject,
-			}); ok {
-				return nil, &apiError{errors.Errorf("authorizeToken: token already used"), http.StatusUnauthorized, errContext}
-			}
-		default:
-			ok, err := a.db.UseToken(reuseKey, ott)
-			if err != nil {
-				return nil, &apiError{errors.Wrap(err, "authorizeToken: failed when checking if token already used"),
-					http.StatusInternalServerError, errContext}
-			}
-			if !ok {
-				return nil, &apiError{errors.Errorf("authorizeToken: token already used"), http.StatusUnauthorized, errContext}
-			}
+		ok, err := a.db.UseToken(reuseKey, ott)
+		if err != nil {
+			return nil, &apiError{errors.Wrap(err, "authorizeToken: failed when checking if token already used"),
+				http.StatusInternalServerError, errContext}
+		}
+		if !ok {
+			return nil, &apiError{errors.Errorf("authorizeToken: token already used"), http.StatusUnauthorized, errContext}
 		}
 	}