Implemented an endpoint to list all active tokens for a user, see see p…

…donorio/restangulask#23

restapi/resources/endpoints.py

@@ -101,6 +101,19 @@ def get(self):
         return self.response("", code=hcodes.HTTP_OK_NORESPONSE)
 
 
+class Tokens(ExtendedApiResource):
+    """ List all active tokens for a user """
+
+    base_url = AUTH_URL
+
+    @auth.login_required
+    @decorate.apimethod
+    def get(self):
+        auth = self.global_get('custom_auth')
+        tokens = auth.list_all_tokens(auth._user)
+        return self.response(tokens)
+
+
 class Profile(ExtendedApiResource):
     """ Current user informations """
 

restapi/resources/services/authentication/__init__.py

@@ -159,6 +159,13 @@ def get_user_object(self, username=None, payload=None):
         """
         return
 
+    @abc.abstractmethod
+    def list_all_tokens(self, user):
+        """
+            Return the list of all active tokens
+        """
+        return
+
     @abc.abstractmethod
     def invalidate_all_tokens(self, user):
         """

restapi/resources/services/authentication/graphdb.py

@@ -119,6 +119,25 @@ def verify_token_custom(self, token, user, payload):
 
         return True
 
+    def list_all_tokens(self, user):
+        # TO FIX: TTL should be considered?
+
+        tokens = user.tokens.all()
+        list = []
+        for token in tokens:
+            t = {}
+
+            t["token"] = token.token
+            t["emitted"] = token.creation.strftime('%s')
+            t["last_access"] = token.last_access.strftime('%s')
+            if token.expiration is not None:
+                t["expiration"] = token.expiration.strftime('%s')
+            t["IP"] = token.IP
+            t["hostname"] = token.hostname
+            list.append(t)
+
+        return list
+
     def invalidate_all_tokens(self, user):
         user.uuid = self.getUUID()
         user.save()