fix: remove deprecated Session.find upsert behaviour

panva · panva · commit 73e07bda73bd · 2018-09-26T20:47:05.000+02:00
BREAKING CHANGE: Session.find default upsert behaviour is changed to
return a new empty session instead
diff --git a/lib/actions/authorization/resume.js b/lib/actions/authorization/resume.js
@@ -17,7 +17,7 @@ module.exports = function getResumeAction(provider, whitelist, resumeRouteName)
       throw new SessionNotFound('authorization request has expired');
     }
 
-    const interactionSession = await provider.Session.find(cookieId, { upsert: false });
+    const interactionSession = await provider.Session.find(cookieId);
     if (!interactionSession) {
       throw new SessionNotFound('interaction session not found');
     }
diff --git a/lib/models/session.js b/lib/models/session.js
@@ -1,14 +1,11 @@
 const assert = require('assert');
-const { deprecate } = require('util');
 
 const uuid = require('uuid/v4');
 const hash = require('object-hash');
 
 const epochTime = require('../helpers/epoch_time');
 const instance = require('../helpers/weak_cache');
 
-const deprecated = deprecate(() => {}, 'Session.find returning new sessions if none is found is deprecated');
-
 const NON_REJECTABLE_CLAIMS = new Set(['sub', 'sid', 'auth_time', 'acr', 'amr', 'iss']);
 const NON_REJECTABLE_SCOPES = new Set(['openid']);
 
@@ -169,7 +166,7 @@ module.exports = function getSession(provider) {
       return getterSetTransformation(authorization.rejectedClaims);
     }
 
-    static async find(id, { upsert = true } = {}) {
+    static async find(id) {
       assert(id, 'id must be provided to Session#find');
       const data = await getAdapter().find(id);
       if (data) {
@@ -180,11 +177,7 @@ module.exports = function getSession(provider) {
           return new Session(id, data);
         }
       }
-      /* istanbul ignore if */
-      if (upsert) {
-        deprecated();
-        return new Session(id);
-      }
+
       return undefined;
     }
 
@@ -196,7 +189,7 @@ module.exports = function getSession(provider) {
 
       let session;
       if (sessionId) {
-        session = await this.find(sessionId, { upsert: false });
+        session = await this.find(sessionId);
       }
       if (!session) {
         sessionId = uuid();
diff --git a/lib/provider.js b/lib/provider.js
@@ -61,7 +61,7 @@ async function getInteraction(req, res) {
   if (!id) {
     throw new SessionNotFound('interaction session id cookie not found');
   }
-  const interaction = await this.Session.find(id, { upsert: false });
+  const interaction = await this.Session.find(id);
   if (!interaction) {
     throw new SessionNotFound('interaction session not found');
   }

Original file line number	Diff line number	Diff line change
`@@ -17,7 +17,7 @@ module.exports = function getResumeAction(provider, whitelist, resumeRouteName)`
`17`	`17`	`throw new SessionNotFound('authorization request has expired');`
`18`	`18`	`}`
`19`	`19`
`20`		`- const interactionSession = await provider.Session.find(cookieId, { upsert: false });`
	`20`	`+ const interactionSession = await provider.Session.find(cookieId);`
`21`	`21`	`if (!interactionSession) {`
`22`	`22`	`throw new SessionNotFound('interaction session not found');`
`23`	`23`	`}`
Original file line number	Diff line number	Diff line change
`@@ -61,7 +61,7 @@ async function getInteraction(req, res) {`
`61`	`61`	`if (!id) {`
`62`	`62`	`throw new SessionNotFound('interaction session id cookie not found');`
`63`	`63`	`}`
`64`		`- const interaction = await this.Session.find(id, { upsert: false });`
	`64`	`+ const interaction = await this.Session.find(id);`
`65`	`65`	`if (!interaction) {`
`66`	`66`	`throw new SessionNotFound('interaction session not found');`
`67`	`67`	`}`