backend/internal/job/db_cleanup_job.go

package job

import (
	"context"
	"errors"
	"time"

	"gorm.io/gorm"

	"github.com/pocket-id/pocket-id/backend/internal/model"
	datatype "github.com/pocket-id/pocket-id/backend/internal/model/types"
)

func (s *Scheduler) RegisterDbCleanupJobs(ctx context.Context, db *gorm.DB) error {
	jobs := &DbCleanupJobs{db: db}

	return errors.Join(
		s.registerJob(ctx, "ClearWebauthnSessions", "0 3 * * *", jobs.clearWebauthnSessions),
		s.registerJob(ctx, "ClearOneTimeAccessTokens", "0 3 * * *", jobs.clearOneTimeAccessTokens),
		s.registerJob(ctx, "ClearOidcAuthorizationCodes", "0 3 * * *", jobs.clearOidcAuthorizationCodes),
		s.registerJob(ctx, "ClearOidcRefreshTokens", "0 3 * * *", jobs.clearOidcRefreshTokens),
		s.registerJob(ctx, "ClearAuditLogs", "0 3 * * *", jobs.clearAuditLogs),
	)
}

type DbCleanupJobs struct {
	db *gorm.DB
}

// ClearWebauthnSessions deletes WebAuthn sessions that have expired
func (j *DbCleanupJobs) clearWebauthnSessions(ctx context.Context) error {
	return j.db.
		WithContext(ctx).
		Delete(&model.WebauthnSession{}, "expires_at < ?", datatype.DateTime(time.Now())).
		Error
}

// ClearOneTimeAccessTokens deletes one-time access tokens that have expired
func (j *DbCleanupJobs) clearOneTimeAccessTokens(ctx context.Context) error {
	return j.db.
		WithContext(ctx).
		Delete(&model.OneTimeAccessToken{}, "expires_at < ?", datatype.DateTime(time.Now())).
		Error
}

// ClearOidcAuthorizationCodes deletes OIDC authorization codes that have expired
func (j *DbCleanupJobs) clearOidcAuthorizationCodes(ctx context.Context) error {
	return j.db.
		WithContext(ctx).
		Delete(&model.OidcAuthorizationCode{}, "expires_at < ?", datatype.DateTime(time.Now())).
		Error
}

// ClearOidcAuthorizationCodes deletes OIDC authorization codes that have expired
func (j *DbCleanupJobs) clearOidcRefreshTokens(ctx context.Context) error {
	return j.db.
		WithContext(ctx).
		Delete(&model.OidcRefreshToken{}, "expires_at < ?", datatype.DateTime(time.Now())).
		Error
}

// ClearAuditLogs deletes audit logs older than 90 days
func (j *DbCleanupJobs) clearAuditLogs(ctx context.Context) error {
	return j.db.
		WithContext(ctx).
		Delete(&model.AuditLog{}, "created_at < ?", datatype.DateTime(time.Now().AddDate(0, 0, -90))).
		Error
}
initial commit 2024-08-12 11:00:25 +02:00			`package job`

			`import (`
fix: use transactions when operations involve multiple database queries (#392) Co-authored-by: Kyle Mendell <kmendell@ofkm.us> 2025-04-06 06:04:08 -07:00			`"context"`
refactor: graceful shutdown for server (#482) 2025-04-28 18:13:50 +09:00			`"errors"`
chore: replace `stonith404` with `pocket-id` after org migration 2025-02-05 18:08:01 +01:00			`"time"`

fix: use transactions when operations involve multiple database queries (#392) Co-authored-by: Kyle Mendell <kmendell@ofkm.us> 2025-04-06 06:04:08 -07:00			`"gorm.io/gorm"`

chore: replace `stonith404` with `pocket-id` after org migration 2025-02-05 18:08:01 +01:00			`"github.com/pocket-id/pocket-id/backend/internal/model"`
			`datatype "github.com/pocket-id/pocket-id/backend/internal/model/types"`
initial commit 2024-08-12 11:00:25 +02:00			`)`

refactor: graceful shutdown for server (#482) 2025-04-28 18:13:50 +09:00			`func (s Scheduler) RegisterDbCleanupJobs(ctx context.Context, db gorm.DB) error {`
fix: create reusable default profile pictures (#406) Co-authored-by: Elias Schneider <login@eliasschneider.com> 2025-04-03 08:06:56 -05:00			`jobs := &DbCleanupJobs{db: db}`
refactor: use dependency injection in backend 2024-08-17 21:57:14 +02:00
refactor: graceful shutdown for server (#482) 2025-04-28 18:13:50 +09:00			`return errors.Join(`
			`s.registerJob(ctx, "ClearWebauthnSessions", "0 3 * * *", jobs.clearWebauthnSessions),`
			`s.registerJob(ctx, "ClearOneTimeAccessTokens", "0 3 * * *", jobs.clearOneTimeAccessTokens),`
			`s.registerJob(ctx, "ClearOidcAuthorizationCodes", "0 3 * * *", jobs.clearOidcAuthorizationCodes),`
			`s.registerJob(ctx, "ClearOidcRefreshTokens", "0 3 * * *", jobs.clearOidcRefreshTokens),`
			`s.registerJob(ctx, "ClearAuditLogs", "0 3 * * *", jobs.clearAuditLogs),`
			`)`
initial commit 2024-08-12 11:00:25 +02:00			`}`

fix: create reusable default profile pictures (#406) Co-authored-by: Elias Schneider <login@eliasschneider.com> 2025-04-03 08:06:56 -05:00			`type DbCleanupJobs struct {`
refactor: use dependency injection in backend 2024-08-17 21:57:14 +02:00			`db *gorm.DB`
			`}`

feat: add audit log with email notification (#26) 2024-09-09 10:29:41 +02:00			`// ClearWebauthnSessions deletes WebAuthn sessions that have expired`
fix: use transactions when operations involve multiple database queries (#392) Co-authored-by: Kyle Mendell <kmendell@ofkm.us> 2025-04-06 06:04:08 -07:00			`func (j *DbCleanupJobs) clearWebauthnSessions(ctx context.Context) error {`
			`return j.db.`
			`WithContext(ctx).`
			`Delete(&model.WebauthnSession{}, "expires_at < ?", datatype.DateTime(time.Now())).`
			`Error`
refactor: use dependency injection in backend 2024-08-17 21:57:14 +02:00			`}`

feat: add audit log with email notification (#26) 2024-09-09 10:29:41 +02:00			`// ClearOneTimeAccessTokens deletes one-time access tokens that have expired`
fix: use transactions when operations involve multiple database queries (#392) Co-authored-by: Kyle Mendell <kmendell@ofkm.us> 2025-04-06 06:04:08 -07:00			`func (j *DbCleanupJobs) clearOneTimeAccessTokens(ctx context.Context) error {`
			`return j.db.`
			`WithContext(ctx).`
			`Delete(&model.OneTimeAccessToken{}, "expires_at < ?", datatype.DateTime(time.Now())).`
			`Error`
refactor: use dependency injection in backend 2024-08-17 21:57:14 +02:00			`}`

feat: add audit log with email notification (#26) 2024-09-09 10:29:41 +02:00			`// ClearOidcAuthorizationCodes deletes OIDC authorization codes that have expired`
fix: use transactions when operations involve multiple database queries (#392) Co-authored-by: Kyle Mendell <kmendell@ofkm.us> 2025-04-06 06:04:08 -07:00			`func (j *DbCleanupJobs) clearOidcAuthorizationCodes(ctx context.Context) error {`
			`return j.db.`
			`WithContext(ctx).`
			`Delete(&model.OidcAuthorizationCode{}, "expires_at < ?", datatype.DateTime(time.Now())).`
			`Error`
feat: add audit log with email notification (#26) 2024-09-09 10:29:41 +02:00			`}`
refactor: use dependency injection in backend 2024-08-17 21:57:14 +02:00
feat: add OIDC refresh_token support (#325) Co-authored-by: Elias Schneider <login@eliasschneider.com> 2025-03-23 15:14:26 -05:00			`// ClearOidcAuthorizationCodes deletes OIDC authorization codes that have expired`
fix: use transactions when operations involve multiple database queries (#392) Co-authored-by: Kyle Mendell <kmendell@ofkm.us> 2025-04-06 06:04:08 -07:00			`func (j *DbCleanupJobs) clearOidcRefreshTokens(ctx context.Context) error {`
			`return j.db.`
			`WithContext(ctx).`
			`Delete(&model.OidcRefreshToken{}, "expires_at < ?", datatype.DateTime(time.Now())).`
			`Error`
feat: add OIDC refresh_token support (#325) Co-authored-by: Elias Schneider <login@eliasschneider.com> 2025-03-23 15:14:26 -05:00			`}`

feat: add audit log with email notification (#26) 2024-09-09 10:29:41 +02:00			`// ClearAuditLogs deletes audit logs older than 90 days`
fix: use transactions when operations involve multiple database queries (#392) Co-authored-by: Kyle Mendell <kmendell@ofkm.us> 2025-04-06 06:04:08 -07:00			`func (j *DbCleanupJobs) clearAuditLogs(ctx context.Context) error {`
			`return j.db.`
			`WithContext(ctx).`
			`Delete(&model.AuditLog{}, "created_at < ?", datatype.DateTime(time.Now().AddDate(0, 0, -90))).`
			`Error`
refactor: use dependency injection in backend 2024-08-17 21:57:14 +02:00			`}`