gatehouse_app/services/session_service.py

"""Session service."""
from datetime import datetime, timezone
from gatehouse_app.models.user.session import Session
from gatehouse_app.utils.constants import SessionStatus, SessionType


class SessionService:
    """Service for session operations."""

    @staticmethod
    def get_active_session_by_token(token):
        """Get active session by token.

        Args:
            token: The session token string

        Returns:
            Session object if found and active, None otherwise
        """
        from gatehouse_app.models.user.session import Session
        from gatehouse_app.utils.constants import SessionStatus
        return Session.query.filter_by(
            token=token,
            status=SessionStatus.ACTIVE,
            deleted_at=None
        ).filter(
            Session.expires_at > datetime.now(timezone.utc)
        ).first()

    @staticmethod
    def get_owner_sessions(owner_type, owner_id, active_only=True):
        """Get all sessions for an owner (user or superadmin).

        Args:
            owner_type: SessionType.USER or SessionType.SUPERADMIN
            owner_id: Owner ID
            active_only: If True, only return active sessions

        Returns:
            List of Session instances
        """
        query = Session.query.filter_by(
            owner_type=owner_type,
            owner_id=owner_id,
            deleted_at=None,
        )

        if active_only:
            query = query.filter_by(status=SessionStatus.ACTIVE).filter(
                Session.expires_at > datetime.now(timezone.utc)
            )

        return query.all()

    @staticmethod
    def get_user_sessions(user_id, active_only=True):
        """Get all sessions for a user.

        Args:
            user_id: User ID
            active_only: If True, only return active sessions

        Returns:
            List of Session instances
        """
        return SessionService.get_owner_sessions(
            SessionType.USER, user_id, active_only=active_only
        )

    @staticmethod
    def get_superadmin_sessions(superadmin_id, active_only=True):
        """Get all sessions for a superadmin.

        Args:
            superadmin_id: Superadmin ID
            active_only: If True, only return active sessions

        Returns:
            List of Session instances
        """
        return SessionService.get_owner_sessions(
            SessionType.SUPERADMIN, superadmin_id, active_only=active_only
        )

    @staticmethod
    def revoke_owner_sessions(owner_type, owner_id, reason="Logged out from all devices"):
        """Revoke all active sessions for an owner.

        Args:
            owner_type: SessionType.USER or SessionType.SUPERADMIN
            owner_id: Owner ID
            reason: Reason for revocation
        """
        sessions = SessionService.get_owner_sessions(owner_type, owner_id, active_only=True)
        for session in sessions:
            session.revoke(reason=reason)

    @staticmethod
    def revoke_user_sessions(user_id, reason="User logged out from all devices"):
        """Revoke all active sessions for a user.

        Args:
            user_id: User ID
            reason: Reason for revocation
        """
        SessionService.revoke_owner_sessions(SessionType.USER, user_id, reason=reason)

    @staticmethod
    def revoke_superadmin_sessions(superadmin_id, reason="Superadmin logged out"):
        """Revoke all active sessions for a superadmin.

        Args:
            superadmin_id: Superadmin ID
            reason: Reason for revocation
        """
        SessionService.revoke_owner_sessions(SessionType.SUPERADMIN, superadmin_id, reason=reason)

    @staticmethod
    def cleanup_expired_sessions():
        """Clean up expired sessions."""
        expired_sessions = Session.query.filter(
            Session.status == SessionStatus.ACTIVE,
            Session.expires_at < datetime.now(timezone.utc),
            Session.deleted_at.is_(None),
        ).all()

        for session in expired_sessions:
            session.status = SessionStatus.EXPIRED
            session.save()

        return len(expired_sessions)
inital 2026-01-08 01:00:26 +10:30			`"""Session service."""`
functional totp 2026-01-14 18:06:26 +10:30			`from datetime import datetime, timezone`
Feat(Chore): Verify Flow, Invites, Suspend, Depart Cert Policy 2026-03-01 16:50:27 +05:45			`from gatehouse_app.models.user.session import Session`
refactor: consolidate user and superadmin sessions into unified model 2026-04-28 20:54:15 +09:30			`from gatehouse_app.utils.constants import SessionStatus, SessionType`
inital 2026-01-08 01:00:26 +10:30

			`class SessionService:`
			`"""Service for session operations."""`

			`@staticmethod`
			`def get_active_session_by_token(token):`
			`"""Get active session by token.`
feat: add sliding session timeout with idle and absolute caps 2026-04-26 18:12:37 +09:30
inital 2026-01-08 01:00:26 +10:30			`Args:`
			`token: The session token string`
feat: add sliding session timeout with idle and absolute caps 2026-04-26 18:12:37 +09:30
inital 2026-01-08 01:00:26 +10:30			`Returns:`
			`Session object if found and active, None otherwise`
			`"""`
Feat(Chore): Verify Flow, Invites, Suspend, Depart Cert Policy 2026-03-01 16:50:27 +05:45			`from gatehouse_app.models.user.session import Session`
move app to gatehouse-app 2026-01-15 03:40:29 +10:30			`from gatehouse_app.utils.constants import SessionStatus`
inital 2026-01-08 01:00:26 +10:30			`return Session.query.filter_by(`
			`token=token,`
			`status=SessionStatus.ACTIVE,`
			`deleted_at=None`
feat: add sliding session timeout with idle and absolute caps 2026-04-26 18:12:37 +09:30			`).filter(`
			`Session.expires_at > datetime.now(timezone.utc)`
inital 2026-01-08 01:00:26 +10:30			`).first()`

			`@staticmethod`
refactor: consolidate user and superadmin sessions into unified model 2026-04-28 20:54:15 +09:30			`def get_owner_sessions(owner_type, owner_id, active_only=True):`
			`"""Get all sessions for an owner (user or superadmin).`
inital 2026-01-08 01:00:26 +10:30
			`Args:`
refactor: consolidate user and superadmin sessions into unified model 2026-04-28 20:54:15 +09:30			`owner_type: SessionType.USER or SessionType.SUPERADMIN`
			`owner_id: Owner ID`
inital 2026-01-08 01:00:26 +10:30			`active_only: If True, only return active sessions`

			`Returns:`
			`List of Session instances`
			`"""`
refactor: consolidate user and superadmin sessions into unified model 2026-04-28 20:54:15 +09:30			`query = Session.query.filter_by(`
			`owner_type=owner_type,`
			`owner_id=owner_id,`
			`deleted_at=None,`
			`)`
inital 2026-01-08 01:00:26 +10:30
			`if active_only:`
			`query = query.filter_by(status=SessionStatus.ACTIVE).filter(`
functional totp 2026-01-14 18:06:26 +10:30			`Session.expires_at > datetime.now(timezone.utc)`
inital 2026-01-08 01:00:26 +10:30			`)`

			`return query.all()`

			`@staticmethod`
refactor: consolidate user and superadmin sessions into unified model 2026-04-28 20:54:15 +09:30			`def get_user_sessions(user_id, active_only=True):`
			`"""Get all sessions for a user.`
inital 2026-01-08 01:00:26 +10:30
			`Args:`
			`user_id: User ID`
refactor: consolidate user and superadmin sessions into unified model 2026-04-28 20:54:15 +09:30			`active_only: If True, only return active sessions`

			`Returns:`
			`List of Session instances`
			`"""`
			`return SessionService.get_owner_sessions(`
			`SessionType.USER, user_id, active_only=active_only`
			`)`

			`@staticmethod`
			`def get_superadmin_sessions(superadmin_id, active_only=True):`
			`"""Get all sessions for a superadmin.`

			`Args:`
			`superadmin_id: Superadmin ID`
			`active_only: If True, only return active sessions`

			`Returns:`
			`List of Session instances`
inital 2026-01-08 01:00:26 +10:30			`"""`
refactor: consolidate user and superadmin sessions into unified model 2026-04-28 20:54:15 +09:30			`return SessionService.get_owner_sessions(`
			`SessionType.SUPERADMIN, superadmin_id, active_only=active_only`
			`)`
inital 2026-01-08 01:00:26 +10:30
refactor: consolidate user and superadmin sessions into unified model 2026-04-28 20:54:15 +09:30			`@staticmethod`
			`def revoke_owner_sessions(owner_type, owner_id, reason="Logged out from all devices"):`
			`"""Revoke all active sessions for an owner.`

			`Args:`
			`owner_type: SessionType.USER or SessionType.SUPERADMIN`
			`owner_id: Owner ID`
			`reason: Reason for revocation`
			`"""`
			`sessions = SessionService.get_owner_sessions(owner_type, owner_id, active_only=True)`
inital 2026-01-08 01:00:26 +10:30			`for session in sessions:`
			`session.revoke(reason=reason)`

refactor: consolidate user and superadmin sessions into unified model 2026-04-28 20:54:15 +09:30			`@staticmethod`
			`def revoke_user_sessions(user_id, reason="User logged out from all devices"):`
			`"""Revoke all active sessions for a user.`

			`Args:`
			`user_id: User ID`
			`reason: Reason for revocation`
			`"""`
			`SessionService.revoke_owner_sessions(SessionType.USER, user_id, reason=reason)`

			`@staticmethod`
			`def revoke_superadmin_sessions(superadmin_id, reason="Superadmin logged out"):`
			`"""Revoke all active sessions for a superadmin.`

			`Args:`
			`superadmin_id: Superadmin ID`
			`reason: Reason for revocation`
			`"""`
			`SessionService.revoke_owner_sessions(SessionType.SUPERADMIN, superadmin_id, reason=reason)`

inital 2026-01-08 01:00:26 +10:30			`@staticmethod`
			`def cleanup_expired_sessions():`
			`"""Clean up expired sessions."""`
			`expired_sessions = Session.query.filter(`
			`Session.status == SessionStatus.ACTIVE,`
functional totp 2026-01-14 18:06:26 +10:30			`Session.expires_at < datetime.now(timezone.utc),`
inital 2026-01-08 01:00:26 +10:30			`Session.deleted_at.is_(None),`
			`).all()`

			`for session in expired_sessions:`
			`session.status = SessionStatus.EXPIRED`
			`session.save()`

			`return len(expired_sessions)`