System-End/identity-vault
1
0
Fork 0
mirror of https://github.com/System-End/identity-vault.git synced 2026-04-19 22:05:07 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions
identity-vault/app/models/identity_session.rb
nora 94858d563b
New email new me! (#151)
2026-01-01 17:47:36 -05:00

71 lines
2 KiB
Ruby
Raw Permalink Blame History

class IdentitySession < ApplicationRecord
LAST_SEEN_AT_COOLDOWN = 5.minutes
has_paper_trail skip: [ :session_token ]
has_encrypted :session_token
blind_index :session_token
belongs_to :identity
has_one :login_attempt, foreign_key: :session_id
include PublicActivity::Model
tracked owner: proc { |controller, record| record.identity }, recipient: proc { |controller, record| record.identity }, only: [ :create ]
scope :expired, -> { where("expires_at <= ?", Time.now) }
scope :not_expired, -> { where("expires_at > ?", Time.now) }
scope :recently_expired_within, ->(date) { expired.where("expires_at >= ?", date) }
after_create_commit do
if identity.sessions.size == 1
# First login - no need to notify
elsif fingerprint.present? && identity.sessions.where("created_at > ?", 6.months.ago).excluding(self).where(fingerprint:).none?
IdentitySessionMailer.new_login(self).deliver_later
end
end
extend Geocoder::Model::ActiveRecord
geocoded_by :ip
after_validation :geocode, if: ->(session) { session.ip.present? and session.ip_changed? }
validate :identity_is_unlocked, on: :create
def expired? = expires_at <= Time.now
def clear_metadata!
update!(
device_info: nil,
latitude: nil,
longitude: nil,
)
end
def touch_last_seen_at
return if last_seen&.after?(LAST_SEEN_AT_COOLDOWN.ago)
update_column(:last_seen, Time.current)
end
STEP_UP_DURATION = 15.minutes
def recently_stepped_up?(for_action: nil)
return false unless last_step_up_at.present? && last_step_up_at > STEP_UP_DURATION.ago
# If a specific action is required, verify the step-up was for that action
return true if for_action.nil?
last_step_up_action == for_action.to_s
end
def record_step_up!(action:)
update!(last_step_up_at: Time.current, last_step_up_action: action.to_s)
end
def clear_step_up!
update!(last_step_up_at: nil, last_step_up_action: nil)
end
private
def identity_is_unlocked
errors.add(:base, "Account is locked") if identity&.locked?
end
end
Reference in a new issue View git blame Copy permalink