Skip to content

Comments

feat: pass new expiry to refresh rotation#862

Open
aeneasr wants to merge 2 commits intomasterfrom
fix-ci
Open

feat: pass new expiry to refresh rotation#862
aeneasr wants to merge 2 commits intomasterfrom
fix-ci

Conversation

@aeneasr
Copy link
Member

@aeneasr aeneasr commented Jul 25, 2025

No description provided.

@aeneasr aeneasr requested a review from a team as a code owner July 25, 2025 10:49
@aeneasr aeneasr requested review from Copilot and removed request for a team July 25, 2025 10:49
Copilot AI reviewed Jul 25, 2025
View reviewed changes
Copy link

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull Request Overview

This PR adds a new expiry time parameter to the RotateRefreshToken method to enhance refresh token rotation functionality. The change modifies the storage interface signature to pass expiry information during token rotation.

  • Added time.Time parameter for next token expiry to RotateRefreshToken method signature
  • Updated interface implementations to accept the new expiry parameter
  • Switched from using go.uber.org/mock/gomock to github.com/golang/mock/gomock in test files

Reviewed Changes

Copilot reviewed 73 out of 74 changed files in this pull request and generated no comments.

Show a summary per file
File Description
storage/memory.go Updated RotateRefreshToken method signature to accept expiry parameter
handler/oauth2/storage.go Modified interface to include expiry parameter
handler/oauth2/flow_refresh.go Enhanced rotation logic to calculate and pass expiry time
Multiple test files Updated gomock import path from uber.org to golang
Multiple internal mock files Updated gomock imports and parameter signatures
Comments suppressed due to low confidence (2)

storage/memory.go:514

  • The new expiresAt parameter is added to the method signature but is not used in the implementation. This parameter should either be utilized for token expiry management or test coverage should verify its proper handling.
func (s *MemoryStore) RotateRefreshToken(ctx context.Context, requestID string, refreshTokenSignature string, expiresAt time.Time) (err error) {

handler/oauth2/flow_refresh.go:143

  • [nitpick] The variable name farthestExpiry is ambiguous. Consider renaming to nextTokenExpiry or rotatedTokenExpiry to better reflect its purpose as the expiry time for the next refresh token.
	farthestExpiry := requester.GetSession().GetExpiresAt(fosite.RefreshToken)

aeneasr added 2 commits July 25, 2025 12:56
@aeneasr
feat: pass new expiry to refresh rotation
9e1df41 
BREAKING CHANGE:

```patch
type RefreshTokenStorage interface {
-	RotateRefreshToken(ctx context.Context, requestID string, refreshTokenSignature string) (err error)
+	RotateRefreshToken(ctx context.Context, requestID string, refreshTokenSignature string, nextExpiry time.Time) (err error)
}
```
@aeneasr
chore: revert gomock from uber
b252c87
@zepatrik
Copy link
Member

zepatrik commented Jul 25, 2025

Why exactly do the gomock change?

@james-d-elliott
Copy link
Contributor

james-d-elliott commented Jul 25, 2025
edited
Loading

The old gomock module was archived, uber picked up the project and has made improvements to it but had a module rename etc. This could also be handled in a separate chore / refactor PR technically.

Ignore me, it's the opposite of what I thought. Think this is because of an old local mockgen?

@aeneasr
Copy link
Member Author

aeneasr commented Jul 25, 2025

The old gomock module was archived, uber picked up the project and has made improvements to it but had a module rename etc. This could also be handled in a separate chore / refactor PR technically.

Ignore me, it's the opposite of what I thought. Think this is because of an old local mockgen?

Canonical introduced uber's go mock, and broke the tooling in the process (generating new mocks), so I reverted the change and since this PR needs updated mocks, I did it in this PR

@james-d-elliott
Copy link
Contributor

james-d-elliott commented Jul 25, 2025
edited
Loading

Ah that makes sense (didn't see the second commit). Maybe this was missed?

fosite/Makefile

Line 24 in b252c87

go build -o .bin/mockgen go.uber.org/mock/mockgen

@sebrandon1 sebrandon1 mentioned this pull request Nov 21, 2025
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

Copilot code review Copilot Copilot left review comments

@zepatrik zepatrik zepatrik approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@aeneasr @zepatrik @james-d-elliott