From 51d1ff2273315ad1270794499d0c49e8fb99aba5 Mon Sep 17 00:00:00 2001
From: Joris
Date: Sun, 1 Nov 2015 19:47:24 +0100
Subject: Store the sign in token instead of the login in the session cookie

---
 src/server/Model/SignIn.hs | 10 ++++++++++
 1 file changed, 10 insertions(+)

(limited to 'src/server/Model/SignIn.hs')

diff --git a/src/server/Model/SignIn.hs b/src/server/Model/SignIn.hs
index 0f9c6ce..117b8b5 100644
--- a/src/server/Model/SignIn.hs
+++ b/src/server/Model/SignIn.hs
@@ -2,6 +2,7 @@ module Model.SignIn
   ( createSignInToken
   , getSignInToken
   , signInTokenToUsed
+  , isLastValidToken
   ) where
 
 import Data.Text (Text)
@@ -28,3 +29,12 @@ getSignInToken token =
 signInTokenToUsed :: SignInId -> Persist ()
 signInTokenToUsed tokenId =
   update tokenId [SignInIsUsed =. True]
+
+isLastValidToken :: SignIn -> Persist Bool
+isLastValidToken signIn = do
+  maybe False ((== (signInToken signIn)) . signInToken . entityVal) <$>
+    selectFirst
+      [ SignInEmail ==. (signInEmail signIn)
+      , SignInIsUsed ==. True
+      ]
+      [ Desc SignInCreation ]
-- 
cgit v1.2.3