summaryrefslogtreecommitdiff
path: root/db
diff options
context:
space:
mode:
Diffstat (limited to 'db')
-rw-r--r--db/db.go22
1 files changed, 7 insertions, 15 deletions
diff --git a/db/db.go b/db/db.go
index acb4437..4439be4 100644
--- a/db/db.go
+++ b/db/db.go
@@ -82,21 +82,13 @@ func isDupKeyError(err error) bool {
// --- queries ---
-// CreateAccount inserts a new row with plaintext password and fresh tokens.
+// CreateAccount inserts a new account with username and plaintext password.
+// Tokens are not generated here; they are set later via the Wikimedia API.
func (d *DB) CreateAccount(ctx context.Context, username, plaintextPW string) (*Account, error) {
- rt, err := randomHex(tokenLength)
- if err != nil {
- return nil, err
- }
- at, err := randomHex(tokenLength)
- if err != nil {
- return nil, err
- }
-
res, err := d.conn.ExecContext(ctx,
`INSERT INTO account (username, password, refresh_token, access_token, access_token_created)
- VALUES (?, ?, SHA2(?, 256), SHA2(?, 256), NOW())`,
- username, plaintextPW, rt, at,
+ VALUES (?, ?, '', '', NOW())`,
+ username, plaintextPW,
)
if err != nil {
if isDupKeyError(err) {
@@ -114,9 +106,9 @@ func (d *DB) CreateAccount(ctx context.Context, username, plaintextPW string) (*
return &Account{
ID: id,
Username: username,
- RefreshToken: rt,
- AccessToken: at,
- AccessTokenExpiry: now.Add(accessTokenTTL),
+ RefreshToken: "",
+ AccessToken: "",
+ AccessTokenExpiry: now,
CreatedAt: now,
}, nil
}