lib/gitlab/auth/otp/session_enforcer.rb


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36

# frozen_string_literal: true

module Gitlab
  module Auth
    module Otp
      class SessionEnforcer
        OTP_SESSIONS_NAMESPACE = 'session:otp'
        DEFAULT_EXPIRATION = 15.minutes.to_i

        def initialize(key)
          @key = key
        end

        def update_session
          Gitlab::Redis::SharedState.with do |redis|
            redis.setex(key_name, DEFAULT_EXPIRATION, true)
          end
        end

        def access_restricted?
          Gitlab::Redis::SharedState.with do |redis|
            !redis.get(key_name)
          end
        end

        private

        attr_reader :key

        def key_name
          @key_name ||= "#{OTP_SESSIONS_NAMESPACE}:#{key.id}"
        end
      end
    end
  end
end