Persist RS auth tokens in Redis

app/jobs/expire_remote_storage_authorization_job.rb

@@ -0,0 +1,10 @@
+class ExpireRemoteStorageAuthorizationJob < ApplicationJob
+  queue_as :remote_storage
+
+  def perform(rs_auth_id)
+    rs_auth = RemoteStorageAuthorization.find rs_auth_id
+    return unless rs_auth.expire_at.nil? || rs_auth.expire_at <= DateTime.now
+
+    rs_auth.destroy!
+  end
+end

app/models/remote_storage_authorization.rb

@@ -14,6 +14,10 @@ class RemoteStorageAuthorization < ApplicationRecord
   end
 
   before_create  :generate_token
+  before_create  :store_token_in_redis
+  after_create   :schedule_token_expiry
+  before_destroy :delete_token_from_redis
+  after_destroy  :remove_token_expiry_job
 
   def url
     if self.redirect_uri
@@ -24,9 +28,36 @@ class RemoteStorageAuthorization < ApplicationRecord
     end
   end
 
+  def delete_token_from_redis
+    key = "rs:authorizations:#{user.address}:#{token}"
+    # You can't delete multiple members of a set with Redis 2
+    redis.smembers(key).each { |auth| redis.srem(key, auth) }
+  end
+
   private
 
+  def redis
+    @redis ||= Redis.new(url: Setting.redis_url)
+  end
+
   def generate_token(length=16)
     self.token = SecureRandom.hex(length) if self.token.blank?
   end
+
+  def store_token_in_redis
+    redis.sadd "rs:authorizations:#{user.address}:#{token}", permissions
+  end
+
+  def schedule_token_expiry
+    return unless expire_at.present?
+    ExpireRemoteStorageAuthorizationJob.set(wait_unil: expire_at).perform_later(id)
+  end
+
+  def remove_token_expiry_job
+    queue = Sidekiq::Queue.new(ExpireRemoteStorageAuthorizationJob.queue_name)
+    queue.each do |job|
+      next unless job.display_class == "ExpireRemoteStorageAuthorizationJob"
+      job.delete if job.display_args == [id]
+    end
+  end
 end