gorb/backend
5
0
Fork 0
Code Issues 16 Pull requests 2 Projects Releases Packages 1 Wiki Activity Actions

Compare commits

base: gorb:a670b32c86e99f8074d421d031187ebc8253ffc4
Branches Tags
gorb:main
gorb:wip/auditlog
gorb:wip/messaging-features
gorb:staging
gorb:wip/member-improvements
gorb:wip/ban
gorb:wip/kick
gorb:wip/message-editing
gorb:wip/categories
gorb:wip/federation-impl
gorb:wip/local-data-folder
..
compare: gorb:a6d35b0ba2c29e99fcf445bcde038f80c1b3e0a4
Branches Tags
gorb:wip/auditlog
gorb:wip/messaging-features
gorb:main
gorb:staging
gorb:wip/member-improvements
gorb:wip/ban
gorb:wip/kick
gorb:wip/message-editing
gorb:wip/categories
gorb:wip/federation-impl
gorb:wip/local-data-folder

No commits in common. "a670b32c86e99f8074d421d031187ebc8253ffc4" and "a6d35b0ba2c29e99fcf445bcde038f80c1b3e0a4" have entirely different histories.
a670b32c86 ... a6d35b0ba2

29 changed files with 1443 additions and 811 deletions
Download patch file Download diff file Expand all files Collapse all files

6
Cargo.toml
View file

@ -30,10 +30,8 @@ random-string = "1.1"
actix-ws = "0.3.0" actix-ws = "0.3.0"
futures-util = "0.3.31" futures-util = "0.3.31"
deadpool = "0.12" deadpool = "0.12"
diesel = { version = "2.2", features = ["uuid"] } diesel = "2.2"
diesel-async = { version = "0.5", features = ["deadpool", "postgres", "async-connection-wrapper"] } diesel-async = { version = "0.5", features = ["deadpool", "postgres"] }
diesel_migrations = { version = "2.2.0", features = ["postgres"] }
thiserror = "2.0.12"
[dependencies.tokio] [dependencies.tokio]
version = "1.44" version = "1.44"

3
build.rs
View file

@ -1,3 +0,0 @@
fn main() {
println!("cargo:rerun-if-changed=migrations");
}

4
migrations/2025-05-21-203022_channel_description_nullable/down.sql
View file

@ -1,4 +0,0 @@
-- This file should undo anything in `up.sql`
UPDATE channels SET description = '' WHERE description IS NULL;
ALTER TABLE ONLY channels ALTER COLUMN description SET NOT NULL;
ALTER TABLE ONLY channels ALTER COLUMN description DROP DEFAULT;

3
migrations/2025-05-21-203022_channel_description_nullable/up.sql
View file

@ -1,3 +0,0 @@
-- Your SQL goes here
ALTER TABLE ONLY channels ALTER COLUMN description DROP NOT NULL;
ALTER TABLE ONLY channels ALTER COLUMN description SET DEFAULT NULL;

158
src/api/v1/auth/login.rs
View file

@ -1,14 +1,14 @@
use std::time::{SystemTime, UNIX_EPOCH}; use std::time::{SystemTime, UNIX_EPOCH};
use actix_web::{HttpResponse, post, web}; use actix_web::{Error, HttpResponse, post, web};
use argon2::{PasswordHash, PasswordVerifier}; use argon2::{PasswordHash, PasswordVerifier};
use diesel::{dsl::insert_into, ExpressionMethods, QueryDsl}; use log::error;
use diesel_async::RunQueryDsl;
use serde::Deserialize; use serde::Deserialize;
use uuid::Uuid;
use crate::{ use crate::{
error::Error, api::v1::auth::{EMAIL_REGEX, PASSWORD_REGEX, USERNAME_REGEX}, schema::*, utils::{generate_access_token, generate_refresh_token, refresh_token_cookie}, Data Data,
api::v1::auth::{EMAIL_REGEX, PASSWORD_REGEX, USERNAME_REGEX},
utils::{generate_access_token, generate_refresh_token, refresh_token_cookie},
}; };
use super::Response; use super::Response;
@ -29,42 +29,66 @@ pub async fn response(
return Ok(HttpResponse::Forbidden().json(r#"{ "password_hashed": false }"#)); return Ok(HttpResponse::Forbidden().json(r#"{ "password_hashed": false }"#));
} }
use users::dsl;
let mut conn = data.pool.get().await?;
if EMAIL_REGEX.is_match(&login_information.username) { if EMAIL_REGEX.is_match(&login_information.username) {
// FIXME: error handling, right now i just want this to work let row =
let (uuid, password): (Uuid, String) = dsl::users sqlx::query_as("SELECT CAST(uuid as VARCHAR), password FROM users WHERE email = $1")
.filter(dsl::email.eq(&login_information.username)) .bind(&login_information.username)
.select((dsl::uuid, dsl::password)) .fetch_one(&data.pool)
.get_result(&mut conn) .await;
.await?;
return login( if let Err(error) = row {
if error.to_string()
== "no rows returned by a query that expected to return at least one row"
{
return Ok(HttpResponse::Unauthorized().finish());
}
error!("{}", error);
return Ok(HttpResponse::InternalServerError().json(
r#"{ "error": "Unhandled exception occured, contact the server administrator" }"#,
));
}
let (uuid, password): (String, String) = row.unwrap();
return Ok(login(
data.clone(), data.clone(),
uuid, uuid,
login_information.password.clone(), login_information.password.clone(),
password, password,
login_information.device_name.clone(), login_information.device_name.clone(),
) )
.await; .await);
} else if USERNAME_REGEX.is_match(&login_information.username) { } else if USERNAME_REGEX.is_match(&login_information.username) {
// FIXME: error handling, right now i just want this to work let row =
let (uuid, password): (Uuid, String) = dsl::users sqlx::query_as("SELECT CAST(uuid as VARCHAR), password FROM users WHERE username = $1")
.filter(dsl::username.eq(&login_information.username)) .bind(&login_information.username)
.select((dsl::uuid, dsl::password)) .fetch_one(&data.pool)
.get_result(&mut conn) .await;
.await?;
return login( if let Err(error) = row {
if error.to_string()
== "no rows returned by a query that expected to return at least one row"
{
return Ok(HttpResponse::Unauthorized().finish());
}
error!("{}", error);
return Ok(HttpResponse::InternalServerError().json(
r#"{ "error": "Unhandled exception occured, contact the server administrator" }"#,
));
}
let (uuid, password): (String, String) = row.unwrap();
return Ok(login(
data.clone(), data.clone(),
uuid, uuid,
login_information.password.clone(), login_information.password.clone(),
password, password,
login_information.device_name.clone(), login_information.device_name.clone(),
) )
.await; .await);
} }
Ok(HttpResponse::Unauthorized().finish()) Ok(HttpResponse::Unauthorized().finish())
@ -72,45 +96,79 @@ pub async fn response(
async fn login( async fn login(
data: actix_web::web::Data<Data>, data: actix_web::web::Data<Data>,
uuid: Uuid, uuid: String,
request_password: String, request_password: String,
database_password: String, database_password: String,
device_name: String, device_name: String,
) -> Result<HttpResponse, Error> { ) -> HttpResponse {
let mut conn = data.pool.get().await?; let parsed_hash_raw = PasswordHash::new(&database_password);
let parsed_hash = PasswordHash::new(&database_password).map_err(|e| Error::PasswordHashError(e.to_string()))?; if let Err(error) = parsed_hash_raw {
error!("{}", error);
return HttpResponse::InternalServerError().finish();
}
let parsed_hash = parsed_hash_raw.unwrap();
if data if data
.argon2 .argon2
.verify_password(request_password.as_bytes(), &parsed_hash) .verify_password(request_password.as_bytes(), &parsed_hash)
.is_err() .is_err()
{ {
return Err(Error::Unauthorized("Wrong username or password".to_string())); return HttpResponse::Unauthorized().finish();
} }
let refresh_token = generate_refresh_token()?; let refresh_token_raw = generate_refresh_token();
let access_token = generate_access_token()?; let access_token_raw = generate_access_token();
if let Err(error) = refresh_token_raw {
error!("{}", error);
return HttpResponse::InternalServerError().finish();
}
let refresh_token = refresh_token_raw.unwrap();
if let Err(error) = access_token_raw {
error!("{}", error);
return HttpResponse::InternalServerError().finish();
}
let access_token = access_token_raw.unwrap();
let current_time = SystemTime::now() let current_time = SystemTime::now()
.duration_since(UNIX_EPOCH)? .duration_since(UNIX_EPOCH)
.unwrap()
.as_secs() as i64; .as_secs() as i64;
use refresh_tokens::dsl as rdsl; if let Err(error) = sqlx::query(&format!(
"INSERT INTO refresh_tokens (token, uuid, created_at, device_name) VALUES ($1, '{}', $2, $3 )",
insert_into(refresh_tokens::table) uuid
.values((rdsl::token.eq(&refresh_token), rdsl::uuid.eq(uuid), rdsl::created_at.eq(current_time), rdsl::device_name.eq(device_name))) ))
.execute(&mut conn) .bind(&refresh_token)
.await?; .bind(current_time)
.bind(device_name)
use access_tokens::dsl as adsl; .execute(&data.pool)
.await
insert_into(access_tokens::table) {
.values((adsl::token.eq(&access_token), adsl::refresh_token.eq(&refresh_token), adsl::uuid.eq(uuid), adsl::created_at.eq(current_time))) error!("{}", error);
.execute(&mut conn) return HttpResponse::InternalServerError().finish();
.await?; }
Ok(HttpResponse::Ok() if let Err(error) = sqlx::query(&format!(
.cookie(refresh_token_cookie(refresh_token)) "INSERT INTO access_tokens (token, refresh_token, uuid, created_at) VALUES ($1, $2, '{}', $3 )",
.json(Response { access_token })) uuid
))
.bind(&access_token)
.bind(&refresh_token)
.bind(current_time)
.execute(&data.pool)
.await
{
error!("{}", error);
return HttpResponse::InternalServerError().finish()
}
HttpResponse::Ok()
.cookie(refresh_token_cookie(refresh_token))
.json(Response { access_token })
} }

51
src/api/v1/auth/mod.rs
View file

@ -1,17 +1,16 @@
use std::{ use std::{
str::FromStr,
sync::LazyLock, sync::LazyLock,
time::{SystemTime, UNIX_EPOCH}, time::{SystemTime, UNIX_EPOCH},
}; };
use actix_web::{Scope, web}; use actix_web::{HttpResponse, Scope, web};
use diesel::{ExpressionMethods, QueryDsl}; use log::error;
use diesel_async::RunQueryDsl;
use regex::Regex; use regex::Regex;
use serde::Serialize; use serde::Serialize;
use sqlx::Postgres;
use uuid::Uuid; use uuid::Uuid;
use crate::{error::Error, Conn, schema::access_tokens::dsl};
mod login; mod login;
mod refresh; mod refresh;
mod register; mod register;
@ -41,30 +40,40 @@ pub fn web() -> Scope {
pub async fn check_access_token( pub async fn check_access_token(
access_token: &str, access_token: &str,
conn: &mut Conn, pool: &sqlx::Pool<Postgres>,
) -> Result<Uuid, Error> { ) -> Result<Uuid, HttpResponse> {
let (uuid, created_at): (Uuid, i64) = dsl::access_tokens let row = sqlx::query_as(
.filter(dsl::token.eq(access_token)) "SELECT CAST(uuid as VARCHAR), created_at FROM access_tokens WHERE token = $1",
.select((dsl::uuid, dsl::created_at)) )
.get_result(conn) .bind(access_token)
.await .fetch_one(pool)
.map_err(|error| { .await;
if error == diesel::result::Error::NotFound {
Error::Unauthorized("Invalid access token".to_string()) if let Err(error) = row {
} else { if error.to_string()
Error::from(error) == "no rows returned by a query that expected to return at least one row"
{
return Err(HttpResponse::Unauthorized().finish());
} }
})?;
error!("{}", error);
return Err(HttpResponse::InternalServerError().json(
r#"{ "error": "Unhandled exception occured, contact the server administrator" }"#,
));
}
let (uuid, created_at): (String, i64) = row.unwrap();
let current_time = SystemTime::now() let current_time = SystemTime::now()
.duration_since(UNIX_EPOCH)? .duration_since(UNIX_EPOCH)
.unwrap()
.as_secs() as i64; .as_secs() as i64;
let lifetime = current_time - created_at; let lifetime = current_time - created_at;
if lifetime > 3600 { if lifetime > 3600 {
return Err(Error::Unauthorized("Invalid access token".to_string())); return Err(HttpResponse::Unauthorized().finish());
} }
Ok(uuid) Ok(Uuid::from_str(&uuid).unwrap())
} }

73
src/api/v1/auth/refresh.rs
View file

@ -1,11 +1,10 @@
use actix_web::{HttpRequest, HttpResponse, post, web}; use actix_web::{Error, HttpRequest, HttpResponse, post, web};
use diesel::{delete, update, ExpressionMethods, QueryDsl};
use diesel_async::RunQueryDsl;
use log::error; use log::error;
use std::time::{SystemTime, UNIX_EPOCH}; use std::time::{SystemTime, UNIX_EPOCH};
use crate::{ use crate::{
error::Error, schema::{access_tokens::{self, dsl}, refresh_tokens::{self, dsl as rdsl}}, utils::{generate_access_token, generate_refresh_token, refresh_token_cookie}, Data Data,
utils::{generate_access_token, generate_refresh_token, refresh_token_cookie},
}; };
use super::Response; use super::Response;
@ -21,23 +20,23 @@ pub async fn res(req: HttpRequest, data: web::Data<Data>) -> Result<HttpResponse
let mut refresh_token = String::from(recv_refresh_token_cookie.unwrap().value()); let mut refresh_token = String::from(recv_refresh_token_cookie.unwrap().value());
let current_time = SystemTime::now() let current_time = SystemTime::now()
.duration_since(UNIX_EPOCH)? .duration_since(UNIX_EPOCH)
.unwrap()
.as_secs() as i64; .as_secs() as i64;
let mut conn = data.pool.get().await?; if let Ok(row) = sqlx::query_scalar("SELECT created_at FROM refresh_tokens WHERE token = $1")
.bind(&refresh_token)
if let Ok(created_at) = rdsl::refresh_tokens .fetch_one(&data.pool)
.filter(rdsl::token.eq(&refresh_token))
.select(rdsl::created_at)
.get_result::<i64>(&mut conn)
.await .await
{ {
let created_at: i64 = row;
let lifetime = current_time - created_at; let lifetime = current_time - created_at;
if lifetime > 2592000 { if lifetime > 2592000 {
if let Err(error) = delete(refresh_tokens::table) if let Err(error) = sqlx::query("DELETE FROM refresh_tokens WHERE token = $1")
.filter(rdsl::token.eq(&refresh_token)) .bind(&refresh_token)
.execute(&mut conn) .execute(&data.pool)
.await .await
{ {
error!("{}", error); error!("{}", error);
@ -53,7 +52,8 @@ pub async fn res(req: HttpRequest, data: web::Data<Data>) -> Result<HttpResponse
} }
let current_time = SystemTime::now() let current_time = SystemTime::now()
.duration_since(UNIX_EPOCH)? .duration_since(UNIX_EPOCH)
.unwrap()
.as_secs() as i64; .as_secs() as i64;
if lifetime > 1987200 { if lifetime > 1987200 {
@ -66,13 +66,13 @@ pub async fn res(req: HttpRequest, data: web::Data<Data>) -> Result<HttpResponse
let new_refresh_token = new_refresh_token.unwrap(); let new_refresh_token = new_refresh_token.unwrap();
match update(refresh_tokens::table) match sqlx::query(
.filter(rdsl::token.eq(&refresh_token)) "UPDATE refresh_tokens SET token = $1, created_at = $2 WHERE token = $3",
.set(( )
rdsl::token.eq(&new_refresh_token), .bind(&new_refresh_token)
rdsl::created_at.eq(current_time), .bind(current_time)
)) .bind(&refresh_token)
.execute(&mut conn) .execute(&data.pool)
.await .await
{ {
Ok(_) => { Ok(_) => {
@ -84,16 +84,27 @@ pub async fn res(req: HttpRequest, data: web::Data<Data>) -> Result<HttpResponse
} }
} }
let access_token = generate_access_token()?; let access_token = generate_access_token();
update(access_tokens::table) if access_token.is_err() {
.filter(dsl::refresh_token.eq(&refresh_token)) error!("{}", access_token.unwrap_err());
.set(( return Ok(HttpResponse::InternalServerError().finish());
dsl::token.eq(&access_token), }
dsl::created_at.eq(current_time),
)) let access_token = access_token.unwrap();
.execute(&mut conn)
.await?; if let Err(error) = sqlx::query(
"UPDATE access_tokens SET token = $1, created_at = $2 WHERE refresh_token = $3",
)
.bind(&access_token)
.bind(current_time)
.bind(&refresh_token)
.execute(&data.pool)
.await
{
error!("{}", error);
return Ok(HttpResponse::InternalServerError().finish());
}
return Ok(HttpResponse::Ok() return Ok(HttpResponse::Ok()
.cookie(refresh_token_cookie(refresh_token)) .cookie(refresh_token_cookie(refresh_token))

117
src/api/v1/auth/register.rs
View file

@ -1,18 +1,19 @@
use std::time::{SystemTime, UNIX_EPOCH}; use std::time::{SystemTime, UNIX_EPOCH};
use actix_web::{HttpResponse, post, web}; use actix_web::{Error, HttpResponse, post, web};
use argon2::{ use argon2::{
PasswordHasher, PasswordHasher,
password_hash::{SaltString, rand_core::OsRng}, password_hash::{SaltString, rand_core::OsRng},
}; };
use diesel::{dsl::insert_into, ExpressionMethods}; use log::error;
use diesel_async::RunQueryDsl;
use serde::{Deserialize, Serialize}; use serde::{Deserialize, Serialize};
use uuid::Uuid; use uuid::Uuid;
use super::Response; use super::Response;
use crate::{ use crate::{
api::v1::auth::{EMAIL_REGEX, PASSWORD_REGEX, USERNAME_REGEX}, error::Error, schema::{access_tokens::{self, dsl as adsl}, refresh_tokens::{self, dsl as rdsl}, users::{self, dsl as udsl}}, utils::{generate_access_token, generate_refresh_token, refresh_token_cookie}, Data Data,
api::v1::auth::{EMAIL_REGEX, PASSWORD_REGEX, USERNAME_REGEX},
utils::{generate_access_token, generate_refresh_token, refresh_token_cookie},
}; };
#[derive(Deserialize)] #[derive(Deserialize)]
@ -91,49 +92,91 @@ pub async fn res(
.argon2 .argon2
.hash_password(account_information.password.as_bytes(), &salt) .hash_password(account_information.password.as_bytes(), &salt)
{ {
let mut conn = data.pool.get().await?;
// TODO: Check security of this implementation // TODO: Check security of this implementation
insert_into(users::table) return Ok(
.values(( match sqlx::query(&format!(
udsl::uuid.eq(uuid), "INSERT INTO users (uuid, username, password, email) VALUES ( '{}', $1, $2, $3 )",
udsl::username.eq(&account_information.identifier), uuid
udsl::password.eq(hashed_password.to_string()),
udsl::email.eq(&account_information.email),
)) ))
.execute(&mut conn) .bind(&account_information.identifier)
.await?; .bind(hashed_password.to_string())
.bind(&account_information.email)
.execute(&data.pool)
.await
{
Ok(_out) => {
let refresh_token = generate_refresh_token();
let access_token = generate_access_token();
let refresh_token = generate_refresh_token()?; if refresh_token.is_err() {
let access_token = generate_access_token()?; error!("{}", refresh_token.unwrap_err());
return Ok(HttpResponse::InternalServerError().finish());
}
let refresh_token = refresh_token.unwrap();
if access_token.is_err() {
error!("{}", access_token.unwrap_err());
return Ok(HttpResponse::InternalServerError().finish());
}
let access_token = access_token.unwrap();
let current_time = SystemTime::now() let current_time = SystemTime::now()
.duration_since(UNIX_EPOCH)? .duration_since(UNIX_EPOCH)
.unwrap()
.as_secs() as i64; .as_secs() as i64;
insert_into(refresh_tokens::table) if let Err(error) = sqlx::query(&format!("INSERT INTO refresh_tokens (token, uuid, created_at, device_name) VALUES ($1, '{}', $2, $3 )", uuid))
.values(( .bind(&refresh_token)
rdsl::token.eq(&refresh_token), .bind(current_time)
rdsl::uuid.eq(uuid), .bind(&account_information.device_name)
rdsl::created_at.eq(current_time), .execute(&data.pool)
rdsl::device_name.eq(&account_information.device_name), .await {
)) error!("{}", error);
.execute(&mut conn) return Ok(HttpResponse::InternalServerError().finish())
.await?; }
insert_into(access_tokens::table) if let Err(error) = sqlx::query(&format!("INSERT INTO access_tokens (token, refresh_token, uuid, created_at) VALUES ($1, $2, '{}', $3 )", uuid))
.values(( .bind(&access_token)
adsl::token.eq(&access_token), .bind(&refresh_token)
adsl::refresh_token.eq(&refresh_token), .bind(current_time)
adsl::uuid.eq(uuid), .execute(&data.pool)
adsl::created_at.eq(current_time), .await {
)) error!("{}", error);
.execute(&mut conn) return Ok(HttpResponse::InternalServerError().finish())
.await?; }
return Ok(HttpResponse::Ok() HttpResponse::Ok()
.cookie(refresh_token_cookie(refresh_token)) .cookie(refresh_token_cookie(refresh_token))
.json(Response { access_token })) .json(Response { access_token })
}
Err(error) => {
let err_msg = error.as_database_error().unwrap().message();
match err_msg {
err_msg
if err_msg.contains("unique") && err_msg.contains("username_key") =>
{
HttpResponse::Forbidden().json(ResponseError {
gorb_id_available: false,
..Default::default()
})
}
err_msg if err_msg.contains("unique") && err_msg.contains("email_key") => {
HttpResponse::Forbidden().json(ResponseError {
email_available: false,
..Default::default()
})
}
_ => {
error!("{}", err_msg);
HttpResponse::InternalServerError().finish()
}
}
}
},
);
} }
Ok(HttpResponse::InternalServerError().finish()) Ok(HttpResponse::InternalServerError().finish())

105
src/api/v1/auth/revoke.rs
View file

@ -1,10 +1,10 @@
use actix_web::{HttpRequest, HttpResponse, post, web}; use actix_web::{Error, HttpRequest, HttpResponse, post, web};
use argon2::{PasswordHash, PasswordVerifier}; use argon2::{PasswordHash, PasswordVerifier};
use diesel::{delete, ExpressionMethods, QueryDsl}; use futures::future;
use diesel_async::RunQueryDsl; use log::error;
use serde::Deserialize; use serde::{Deserialize, Serialize};
use crate::{api::v1::auth::check_access_token, error::Error, schema::users::dsl as udsl, schema::refresh_tokens::{self, dsl as rdsl}, utils::get_auth_header, Data}; use crate::{Data, api::v1::auth::check_access_token, utils::get_auth_header};
#[derive(Deserialize)] #[derive(Deserialize)]
struct RevokeRequest { struct RevokeRequest {
@ -12,6 +12,17 @@ struct RevokeRequest {
device_name: String, device_name: String,
} }
#[derive(Serialize)]
struct Response {
deleted: bool,
}
impl Response {
fn new(deleted: bool) -> Self {
Self { deleted }
}
}
// TODO: Should maybe be a delete request? // TODO: Should maybe be a delete request?
#[post("/revoke")] #[post("/revoke")]
pub async fn res( pub async fn res(
@ -21,33 +32,85 @@ pub async fn res(
) -> Result<HttpResponse, Error> { ) -> Result<HttpResponse, Error> {
let headers = req.headers(); let headers = req.headers();
let auth_header = get_auth_header(headers)?; let auth_header = get_auth_header(headers);
let mut conn = data.pool.get().await?; if let Err(error) = auth_header {
return Ok(error);
}
let uuid = check_access_token(auth_header, &mut conn).await?; let authorized = check_access_token(auth_header.unwrap(), &data.pool).await;
let database_password: String = udsl::users if let Err(error) = authorized {
.filter(udsl::uuid.eq(uuid)) return Ok(error);
.select(udsl::password) }
.get_result(&mut conn)
.await?;
let hashed_password = PasswordHash::new(&database_password).map_err(|e| Error::PasswordHashError(e.to_string()))?; let uuid = authorized.unwrap();
let database_password_raw = sqlx::query_scalar(&format!(
"SELECT password FROM users WHERE uuid = '{}'",
uuid
))
.fetch_one(&data.pool)
.await;
if let Err(error) = database_password_raw {
error!("{}", error);
return Ok(HttpResponse::InternalServerError().json(Response::new(false)));
}
let database_password: String = database_password_raw.unwrap();
let hashed_password_raw = PasswordHash::new(&database_password);
if let Err(error) = hashed_password_raw {
error!("{}", error);
return Ok(HttpResponse::InternalServerError().json(Response::new(false)));
}
let hashed_password = hashed_password_raw.unwrap();
if data if data
.argon2 .argon2
.verify_password(revoke_request.password.as_bytes(), &hashed_password) .verify_password(revoke_request.password.as_bytes(), &hashed_password)
.is_err() .is_err()
{ {
return Err(Error::Unauthorized("Wrong username or password".to_string())); return Ok(HttpResponse::Unauthorized().finish());
} }
delete(refresh_tokens::table) let tokens_raw = sqlx::query_scalar(&format!(
.filter(rdsl::uuid.eq(uuid)) "SELECT token FROM refresh_tokens WHERE uuid = '{}' AND device_name = $1",
.filter(rdsl::device_name.eq(&revoke_request.device_name)) uuid
.execute(&mut conn) ))
.await?; .bind(&revoke_request.device_name)
.fetch_all(&data.pool)
.await;
Ok(HttpResponse::Ok().finish()) if tokens_raw.is_err() {
error!("{:?}", tokens_raw);
return Ok(HttpResponse::InternalServerError().json(Response::new(false)));
}
let tokens: Vec<String> = tokens_raw.unwrap();
let mut refresh_tokens_delete = vec![];
for token in tokens {
refresh_tokens_delete.push(
sqlx::query("DELETE FROM refresh_tokens WHERE token = $1")
.bind(token.clone())
.execute(&data.pool),
);
}
let results = future::join_all(refresh_tokens_delete).await;
let errors: Vec<&Result<sqlx::postgres::PgQueryResult, sqlx::Error>> =
results.iter().filter(|r| r.is_err()).collect();
if !errors.is_empty() {
error!("{:?}", errors);
return Ok(HttpResponse::InternalServerError().finish());
}
Ok(HttpResponse::Ok().json(Response::new(true)))
} }

63
src/api/v1/invites/id.rs
View file

@ -1,7 +1,6 @@
use actix_web::{HttpRequest, HttpResponse, get, post, web}; use actix_web::{Error, HttpRequest, HttpResponse, get, post, web};
use crate::{ use crate::{
error::Error,
Data, Data,
api::v1::auth::check_access_token, api::v1::auth::check_access_token,
structs::{Guild, Invite, Member}, structs::{Guild, Invite, Member},
@ -16,17 +15,29 @@ pub async fn get(
) -> Result<HttpResponse, Error> { ) -> Result<HttpResponse, Error> {
let headers = req.headers(); let headers = req.headers();
let auth_header = get_auth_header(headers)?; let auth_header = get_auth_header(headers);
let mut conn = data.pool.get().await?; if let Err(error) = auth_header {
return Ok(error);
check_access_token(auth_header, &mut conn).await?; }
let invite_id = path.into_inner().0; let invite_id = path.into_inner().0;
let invite = Invite::fetch_one(&mut conn, invite_id).await?; let result = Invite::fetch_one(&data.pool, invite_id).await;
let guild = Guild::fetch_one(&mut conn, invite.guild_uuid).await?; if let Err(error) = result {
return Ok(error);
}
let invite = result.unwrap();
let guild_result = Guild::fetch_one(&data.pool, invite.guild_uuid).await;
if let Err(error) = guild_result {
return Ok(error);
}
let guild = guild_result.unwrap();
Ok(HttpResponse::Ok().json(guild)) Ok(HttpResponse::Ok().json(guild))
} }
@ -39,19 +50,43 @@ pub async fn join(
) -> Result<HttpResponse, Error> { ) -> Result<HttpResponse, Error> {
let headers = req.headers(); let headers = req.headers();
let auth_header = get_auth_header(headers)?; let auth_header = get_auth_header(headers);
if let Err(error) = auth_header {
return Ok(error);
}
let invite_id = path.into_inner().0; let invite_id = path.into_inner().0;
let mut conn = data.pool.get().await?; let authorized = check_access_token(auth_header.unwrap(), &data.pool).await;
let uuid = check_access_token(auth_header, &mut conn).await?; if let Err(error) = authorized {
return Ok(error);
}
let invite = Invite::fetch_one(&mut conn, invite_id).await?; let uuid = authorized.unwrap();
let guild = Guild::fetch_one(&mut conn, invite.guild_uuid).await?; let result = Invite::fetch_one(&data.pool, invite_id).await;
Member::new(&mut conn, uuid, guild.uuid).await?; if let Err(error) = result {
return Ok(error);
}
let invite = result.unwrap();
let guild_result = Guild::fetch_one(&data.pool, invite.guild_uuid).await;
if let Err(error) = guild_result {
return Ok(error);
}
let guild = guild_result.unwrap();
let member = Member::new(&data.pool, uuid, guild.uuid).await;
if let Err(error) = member {
return Ok(error);
}
Ok(HttpResponse::Ok().json(guild)) Ok(HttpResponse::Ok().json(guild))
} }

52
src/api/v1/servers/mod.rs
View file

@ -1,9 +1,9 @@
use actix_web::{get, post, web, HttpRequest, HttpResponse, Scope}; use actix_web::{get, post, web, Error, HttpRequest, HttpResponse, Scope};
use serde::Deserialize; use serde::Deserialize;
mod uuid; mod uuid;
use crate::{error::Error, api::v1::auth::check_access_token, structs::{Guild, StartAmountQuery}, utils::get_auth_header, Data}; use crate::{api::v1::auth::check_access_token, structs::{Guild, StartAmountQuery}, utils::get_auth_header, Data};
#[derive(Deserialize)] #[derive(Deserialize)]
struct GuildInfo { struct GuildInfo {
@ -26,21 +26,33 @@ pub async fn create(
) -> Result<HttpResponse, Error> { ) -> Result<HttpResponse, Error> {
let headers = req.headers(); let headers = req.headers();
let auth_header = get_auth_header(headers)?; let auth_header = get_auth_header(headers);
let mut conn = data.pool.get().await?; if let Err(error) = auth_header {
return Ok(error);
}
let uuid = check_access_token(auth_header, &mut conn).await?; let authorized = check_access_token(auth_header.unwrap(), &data.pool).await;
if let Err(error) = authorized {
return Ok(error);
}
let uuid = authorized.unwrap();
let guild = Guild::new( let guild = Guild::new(
&mut conn, &data.pool,
guild_info.name.clone(), guild_info.name.clone(),
guild_info.description.clone(), guild_info.description.clone(),
uuid, uuid,
) )
.await?; .await;
Ok(HttpResponse::Ok().json(guild)) if let Err(error) = guild {
return Ok(error);
}
Ok(HttpResponse::Ok().json(guild.unwrap()))
} }
#[get("")] #[get("")]
@ -51,16 +63,28 @@ pub async fn get(
) -> Result<HttpResponse, Error> { ) -> Result<HttpResponse, Error> {
let headers = req.headers(); let headers = req.headers();
let auth_header = get_auth_header(headers)?; let auth_header = get_auth_header(headers);
let start = request_query.start.unwrap_or(0); let start = request_query.start.unwrap_or(0);
let amount = request_query.amount.unwrap_or(10); let amount = request_query.amount.unwrap_or(10);
check_access_token(auth_header, &mut data.pool.get().await.unwrap()).await?; if let Err(error) = auth_header {
return Ok(error);
let guilds = Guild::fetch_amount(&data.pool, start, amount).await?; }
Ok(HttpResponse::Ok().json(guilds)) let authorized = check_access_token(auth_header.unwrap(), &data.pool).await;
if let Err(error) = authorized {
return Ok(error);
}
let guilds = Guild::fetch_amount(&data.pool, start, amount).await;
if let Err(error) = guilds {
return Ok(error);
}
Ok(HttpResponse::Ok().json(guilds.unwrap()))
} }

69
src/api/v1/servers/uuid/channels/mod.rs
View file

@ -1,12 +1,12 @@
use crate::{ use crate::{
error::Error,
Data, Data,
api::v1::auth::check_access_token, api::v1::auth::check_access_token,
structs::{Channel, Member}, structs::{Channel, Member},
utils::get_auth_header, utils::get_auth_header,
}; };
use ::uuid::Uuid; use ::uuid::Uuid;
use actix_web::{HttpRequest, HttpResponse, get, post, web}; use actix_web::{Error, HttpRequest, HttpResponse, get, post, web};
use log::error;
use serde::Deserialize; use serde::Deserialize;
pub mod uuid; pub mod uuid;
@ -25,27 +25,52 @@ pub async fn get(
) -> Result<HttpResponse, Error> { ) -> Result<HttpResponse, Error> {
let headers = req.headers(); let headers = req.headers();
let auth_header = get_auth_header(headers)?; let auth_header = get_auth_header(headers);
if let Err(error) = auth_header {
return Ok(error);
}
let guild_uuid = path.into_inner().0; let guild_uuid = path.into_inner().0;
let mut conn = data.pool.get().await?; let authorized = check_access_token(auth_header.unwrap(), &data.pool).await;
let uuid = check_access_token(auth_header, &mut conn).await?; if let Err(error) = authorized {
return Ok(error);
}
Member::fetch_one(&mut conn, uuid, guild_uuid).await?; let uuid = authorized.unwrap();
if let Ok(cache_hit) = data.get_cache_key(format!("{}_channels", guild_uuid)).await { let member = Member::fetch_one(&data.pool, uuid, guild_uuid).await;
if let Err(error) = member {
return Ok(error);
}
let cache_result = data.get_cache_key(format!("{}_channels", guild_uuid)).await;
if let Ok(cache_hit) = cache_result {
return Ok(HttpResponse::Ok() return Ok(HttpResponse::Ok()
.content_type("application/json") .content_type("application/json")
.body(cache_hit)); .body(cache_hit));
} }
let channels = Channel::fetch_all(&data.pool, guild_uuid).await?; let channels_result = Channel::fetch_all(&data.pool, guild_uuid).await;
data if let Err(error) = channels_result {
return Ok(error);
}
let channels = channels_result.unwrap();
let cache_result = data
.set_cache_key(format!("{}_channels", guild_uuid), channels.clone(), 1800) .set_cache_key(format!("{}_channels", guild_uuid), channels.clone(), 1800)
.await?; .await;
if let Err(error) = cache_result {
error!("{}", error);
return Ok(HttpResponse::InternalServerError().finish());
}
Ok(HttpResponse::Ok().json(channels)) Ok(HttpResponse::Ok().json(channels))
} }
@ -59,15 +84,27 @@ pub async fn create(
) -> Result<HttpResponse, Error> { ) -> Result<HttpResponse, Error> {
let headers = req.headers(); let headers = req.headers();
let auth_header = get_auth_header(headers)?; let auth_header = get_auth_header(headers);
if let Err(error) = auth_header {
return Ok(error);
}
let guild_uuid = path.into_inner().0; let guild_uuid = path.into_inner().0;
let mut conn = data.pool.get().await?; let authorized = check_access_token(auth_header.unwrap(), &data.pool).await;
let uuid = check_access_token(auth_header, &mut conn).await?; if let Err(error) = authorized {
return Ok(error);
}
Member::fetch_one(&mut conn, uuid, guild_uuid).await?; let uuid = authorized.unwrap();
let member = Member::fetch_one(&data.pool, uuid, guild_uuid).await;
if let Err(error) = member {
return Ok(error);
}
// FIXME: Logic to check permissions, should probably be done in utils.rs // FIXME: Logic to check permissions, should probably be done in utils.rs
@ -79,5 +116,9 @@ pub async fn create(
) )
.await; .await;
if let Err(error) = channel {
return Ok(error);
}
Ok(HttpResponse::Ok().json(channel.unwrap())) Ok(HttpResponse::Ok().json(channel.unwrap()))
} }

57
src/api/v1/servers/uuid/channels/uuid/messages.rs
View file

@ -1,12 +1,12 @@
use crate::{ use crate::{
error::Error,
Data, Data,
api::v1::auth::check_access_token, api::v1::auth::check_access_token,
structs::{Channel, Member}, structs::{Channel, Member},
utils::get_auth_header, utils::get_auth_header,
}; };
use ::uuid::Uuid; use ::uuid::Uuid;
use actix_web::{HttpRequest, HttpResponse, get, web}; use actix_web::{Error, HttpRequest, HttpResponse, get, web};
use log::error;
use serde::Deserialize; use serde::Deserialize;
#[derive(Deserialize)] #[derive(Deserialize)]
@ -24,31 +24,60 @@ pub async fn get(
) -> Result<HttpResponse, Error> { ) -> Result<HttpResponse, Error> {
let headers = req.headers(); let headers = req.headers();
let auth_header = get_auth_header(headers)?; let auth_header = get_auth_header(headers);
if let Err(error) = auth_header {
return Ok(error);
}
let (guild_uuid, channel_uuid) = path.into_inner(); let (guild_uuid, channel_uuid) = path.into_inner();
let mut conn = data.pool.get().await?; let authorized = check_access_token(auth_header.unwrap(), &data.pool).await;
let uuid = check_access_token(auth_header, &mut conn).await?; if let Err(error) = authorized {
return Ok(error);
}
Member::fetch_one(&mut conn, uuid, guild_uuid).await?; let uuid = authorized.unwrap();
let member = Member::fetch_one(&data.pool, uuid, guild_uuid).await;
if let Err(error) = member {
return Ok(error);
}
let cache_result = data.get_cache_key(format!("{}", channel_uuid)).await;
let channel: Channel; let channel: Channel;
if let Ok(cache_hit) = data.get_cache_key(format!("{}", channel_uuid)).await { if let Ok(cache_hit) = cache_result {
channel = serde_json::from_str(&cache_hit)? channel = serde_json::from_str(&cache_hit).unwrap()
} else { } else {
channel = Channel::fetch_one(&mut conn, channel_uuid).await?; let channel_result = Channel::fetch_one(&data.pool, guild_uuid, channel_uuid).await;
data if let Err(error) = channel_result {
return Ok(error);
}
channel = channel_result.unwrap();
let cache_result = data
.set_cache_key(format!("{}", channel_uuid), channel.clone(), 60) .set_cache_key(format!("{}", channel_uuid), channel.clone(), 60)
.await?; .await;
if let Err(error) = cache_result {
error!("{}", error);
return Ok(HttpResponse::InternalServerError().finish());
}
} }
let messages = channel let messages = channel
.fetch_messages(&mut conn, message_request.amount, message_request.offset) .fetch_messages(&data.pool, message_request.amount, message_request.offset)
.await?; .await;
Ok(HttpResponse::Ok().json(messages)) if let Err(error) = messages {
return Ok(error);
}
Ok(HttpResponse::Ok().json(messages.unwrap()))
} }

91
src/api/v1/servers/uuid/channels/uuid/mod.rs
View file

@ -2,14 +2,14 @@ pub mod messages;
pub mod socket; pub mod socket;
use crate::{ use crate::{
error::Error,
Data, Data,
api::v1::auth::check_access_token, api::v1::auth::check_access_token,
structs::{Channel, Member}, structs::{Channel, Member},
utils::get_auth_header, utils::get_auth_header,
}; };
use uuid::Uuid; use ::uuid::Uuid;
use actix_web::{HttpRequest, HttpResponse, delete, get, web}; use actix_web::{Error, HttpRequest, HttpResponse, delete, get, web};
use log::error;
#[get("{uuid}/channels/{channel_uuid}")] #[get("{uuid}/channels/{channel_uuid}")]
pub async fn get( pub async fn get(
@ -19,27 +19,52 @@ pub async fn get(
) -> Result<HttpResponse, Error> { ) -> Result<HttpResponse, Error> {
let headers = req.headers(); let headers = req.headers();
let auth_header = get_auth_header(headers)?; let auth_header = get_auth_header(headers);
if let Err(error) = auth_header {
return Ok(error);
}
let (guild_uuid, channel_uuid) = path.into_inner(); let (guild_uuid, channel_uuid) = path.into_inner();
let mut conn = data.pool.get().await?; let authorized = check_access_token(auth_header.unwrap(), &data.pool).await;
let uuid = check_access_token(auth_header, &mut conn).await?; if let Err(error) = authorized {
return Ok(error);
}
Member::fetch_one(&mut conn, uuid, guild_uuid).await?; let uuid = authorized.unwrap();
if let Ok(cache_hit) = data.get_cache_key(format!("{}", channel_uuid)).await { let member = Member::fetch_one(&data.pool, uuid, guild_uuid).await;
if let Err(error) = member {
return Ok(error);
}
let cache_result = data.get_cache_key(format!("{}", channel_uuid)).await;
if let Ok(cache_hit) = cache_result {
return Ok(HttpResponse::Ok() return Ok(HttpResponse::Ok()
.content_type("application/json") .content_type("application/json")
.body(cache_hit)); .body(cache_hit));
} }
let channel = Channel::fetch_one(&mut conn, channel_uuid).await?; let channel_result = Channel::fetch_one(&data.pool, guild_uuid, channel_uuid).await;
data if let Err(error) = channel_result {
return Ok(error);
}
let channel = channel_result.unwrap();
let cache_result = data
.set_cache_key(format!("{}", channel_uuid), channel.clone(), 60) .set_cache_key(format!("{}", channel_uuid), channel.clone(), 60)
.await?; .await;
if let Err(error) = cache_result {
error!("{}", error);
return Ok(HttpResponse::InternalServerError().finish());
}
Ok(HttpResponse::Ok().json(channel)) Ok(HttpResponse::Ok().json(channel))
} }
@ -52,27 +77,55 @@ pub async fn delete(
) -> Result<HttpResponse, Error> { ) -> Result<HttpResponse, Error> {
let headers = req.headers(); let headers = req.headers();
let auth_header = get_auth_header(headers)?; let auth_header = get_auth_header(headers);
if let Err(error) = auth_header {
return Ok(error);
}
let (guild_uuid, channel_uuid) = path.into_inner(); let (guild_uuid, channel_uuid) = path.into_inner();
let mut conn = data.pool.get().await?; let authorized = check_access_token(auth_header.unwrap(), &data.pool).await;
let uuid = check_access_token(auth_header, &mut conn).await?; if let Err(error) = authorized {
return Ok(error);
}
Member::fetch_one(&mut conn, uuid, guild_uuid).await?; let uuid = authorized.unwrap();
let member = Member::fetch_one(&data.pool, uuid, guild_uuid).await;
if let Err(error) = member {
return Ok(error);
}
let cache_result = data.get_cache_key(format!("{}", channel_uuid)).await;
let channel: Channel; let channel: Channel;
if let Ok(cache_hit) = data.get_cache_key(format!("{}", channel_uuid)).await { if let Ok(cache_hit) = cache_result {
channel = serde_json::from_str(&cache_hit).unwrap(); channel = serde_json::from_str(&cache_hit).unwrap();
data.del_cache_key(format!("{}", channel_uuid)).await?; let result = data.del_cache_key(format!("{}", channel_uuid)).await;
if let Err(error) = result {
error!("{}", error)
}
} else { } else {
channel = Channel::fetch_one(&mut conn, channel_uuid).await?; let channel_result = Channel::fetch_one(&data.pool, guild_uuid, channel_uuid).await;
if let Err(error) = channel_result {
return Ok(error);
} }
channel.delete(&mut conn).await?; channel = channel_result.unwrap();
}
let delete_result = channel.delete(&data.pool).await;
if let Err(error) = delete_result {
return Ok(error);
}
Ok(HttpResponse::Ok().finish()) Ok(HttpResponse::Ok().finish())
} }

56
src/api/v1/servers/uuid/channels/uuid/socket.rs
View file

@ -1,6 +1,7 @@
use actix_web::{Error, HttpRequest, HttpResponse, get, rt, web}; use actix_web::{Error, HttpRequest, HttpResponse, get, rt, web};
use actix_ws::AggregatedMessage; use actix_ws::AggregatedMessage;
use futures_util::StreamExt as _; use futures_util::StreamExt as _;
use log::error;
use uuid::Uuid; use uuid::Uuid;
use crate::{ use crate::{
@ -21,30 +22,57 @@ pub async fn echo(
let headers = req.headers(); let headers = req.headers();
// Retrieve auth header // Retrieve auth header
let auth_header = get_auth_header(headers)?; let auth_header = get_auth_header(headers);
if let Err(error) = auth_header {
return Ok(error);
}
// Get uuids from path // Get uuids from path
let (guild_uuid, channel_uuid) = path.into_inner(); let (guild_uuid, channel_uuid) = path.into_inner();
let mut conn = data.pool.get().await.map_err(|e| crate::error::Error::from(e))?;
// Authorize client using auth header // Authorize client using auth header
let uuid = check_access_token(auth_header, &mut conn).await?; let authorized = check_access_token(auth_header.unwrap(), &data.pool).await;
if let Err(error) = authorized {
return Ok(error);
}
// Unwrap user uuid from authorization
let uuid = authorized.unwrap();
// Get server member from psql // Get server member from psql
Member::fetch_one(&mut conn, uuid, guild_uuid).await?; let member = Member::fetch_one(&data.pool, uuid, guild_uuid).await;
if let Err(error) = member {
return Ok(error);
}
// Get cache for channel
let cache_result = data.get_cache_key(format!("{}", channel_uuid)).await;
let channel: Channel; let channel: Channel;
// Return channel cache or result from psql as `channel` variable // Return channel cache or result from psql as `channel` variable
if let Ok(cache_hit) = data.get_cache_key(format!("{}", channel_uuid)).await { if let Ok(cache_hit) = cache_result {
channel = serde_json::from_str(&cache_hit).unwrap() channel = serde_json::from_str(&cache_hit).unwrap()
} else { } else {
channel = Channel::fetch_one(&mut conn, channel_uuid).await?; let channel_result = Channel::fetch_one(&data.pool, guild_uuid, channel_uuid).await;
data if let Err(error) = channel_result {
return Ok(error);
}
channel = channel_result.unwrap();
let cache_result = data
.set_cache_key(format!("{}", channel_uuid), channel.clone(), 60) .set_cache_key(format!("{}", channel_uuid), channel.clone(), 60)
.await?; .await;
if let Err(error) = cache_result {
error!("{}", error);
return Ok(HttpResponse::InternalServerError().finish());
}
} }
let (res, mut session_1, stream) = actix_ws::handle(&req, stream)?; let (res, mut session_1, stream) = actix_ws::handle(&req, stream)?;
@ -54,11 +82,17 @@ pub async fn echo(
// aggregate continuation frames up to 1MiB // aggregate continuation frames up to 1MiB
.max_continuation_size(2_usize.pow(20)); .max_continuation_size(2_usize.pow(20));
let mut pubsub = data.cache_pool.get_async_pubsub().await.map_err(|e| crate::error::Error::from(e))?; let pubsub_result = data.cache_pool.get_async_pubsub().await;
if let Err(error) = pubsub_result {
error!("{}", error);
return Ok(HttpResponse::InternalServerError().finish());
}
let mut session_2 = session_1.clone(); let mut session_2 = session_1.clone();
rt::spawn(async move { rt::spawn(async move {
let mut pubsub = pubsub_result.unwrap();
pubsub.subscribe(channel_uuid.to_string()).await.unwrap(); pubsub.subscribe(channel_uuid.to_string()).await.unwrap();
while let Some(msg) = pubsub.on_message().next().await { while let Some(msg) = pubsub.on_message().next().await {
let payload: String = msg.get_payload().unwrap(); let payload: String = msg.get_payload().unwrap();
@ -84,7 +118,7 @@ pub async fn echo(
.await .await
.unwrap(); .unwrap();
channel channel
.new_message(&mut data.pool.get().await.unwrap(), uuid, text.to_string()) .new_message(&data.pool, uuid, text.to_string())
.await .await
.unwrap(); .unwrap();
} }

77
src/api/v1/servers/uuid/invites/mod.rs
View file

@ -1,9 +1,8 @@
use actix_web::{HttpRequest, HttpResponse, get, post, web}; use actix_web::{Error, HttpRequest, HttpResponse, get, post, web};
use serde::Deserialize; use serde::Deserialize;
use uuid::Uuid; use uuid::Uuid;
use crate::{ use crate::{
error::Error,
Data, Data,
api::v1::auth::check_access_token, api::v1::auth::check_access_token,
structs::{Guild, Member}, structs::{Guild, Member},
@ -23,21 +22,43 @@ pub async fn get(
) -> Result<HttpResponse, Error> { ) -> Result<HttpResponse, Error> {
let headers = req.headers(); let headers = req.headers();
let auth_header = get_auth_header(headers)?; let auth_header = get_auth_header(headers);
if let Err(error) = auth_header {
return Ok(error);
}
let guild_uuid = path.into_inner().0; let guild_uuid = path.into_inner().0;
let mut conn = data.pool.get().await?; let authorized = check_access_token(auth_header.unwrap(), &data.pool).await;
let uuid = check_access_token(auth_header, &mut conn).await?; if let Err(error) = authorized {
return Ok(error);
}
Member::fetch_one(&mut conn, uuid, guild_uuid).await?; let uuid = authorized.unwrap();
let guild = Guild::fetch_one(&mut conn, guild_uuid).await?; let member = Member::fetch_one(&data.pool, uuid, guild_uuid).await;
let invites = guild.get_invites(&mut conn).await?; if let Err(error) = member {
return Ok(error);
}
Ok(HttpResponse::Ok().json(invites)) let guild_result = Guild::fetch_one(&data.pool, guild_uuid).await;
if let Err(error) = guild_result {
return Ok(error);
}
let guild = guild_result.unwrap();
let invites = guild.get_invites(&data.pool).await;
if let Err(error) = invites {
return Ok(error);
}
Ok(HttpResponse::Ok().json(invites.unwrap()))
} }
#[post("{uuid}/invites")] #[post("{uuid}/invites")]
@ -49,21 +70,45 @@ pub async fn create(
) -> Result<HttpResponse, Error> { ) -> Result<HttpResponse, Error> {
let headers = req.headers(); let headers = req.headers();
let auth_header = get_auth_header(headers)?; let auth_header = get_auth_header(headers);
if let Err(error) = auth_header {
return Ok(error);
}
let guild_uuid = path.into_inner().0; let guild_uuid = path.into_inner().0;
let mut conn = data.pool.get().await?; let authorized = check_access_token(auth_header.unwrap(), &data.pool).await;
let uuid = check_access_token(auth_header, &mut conn).await?; if let Err(error) = authorized {
return Ok(error);
}
let member = Member::fetch_one(&mut conn, uuid, guild_uuid).await?; let uuid = authorized.unwrap();
let guild = Guild::fetch_one(&mut conn, guild_uuid).await?; let member_result = Member::fetch_one(&data.pool, uuid, guild_uuid).await;
if let Err(error) = member_result {
return Ok(error);
}
let member = member_result.unwrap();
let guild_result = Guild::fetch_one(&data.pool, guild_uuid).await;
if let Err(error) = guild_result {
return Ok(error);
}
let guild = guild_result.unwrap();
let custom_id = invite_request.as_ref().map(|ir| ir.custom_id.clone()); let custom_id = invite_request.as_ref().map(|ir| ir.custom_id.clone());
let invite = guild.create_invite(&mut conn, &member, custom_id).await?; let invite = guild.create_invite(&data.pool, &member, custom_id).await;
Ok(HttpResponse::Ok().json(invite)) if let Err(error) = invite {
return Ok(error);
}
Ok(HttpResponse::Ok().json(invite.unwrap()))
} }

37
src/api/v1/servers/uuid/mod.rs
View file

@ -1,4 +1,4 @@
use actix_web::{HttpRequest, HttpResponse, Scope, get, web}; use actix_web::{Error, HttpRequest, HttpResponse, Scope, get, web};
use uuid::Uuid; use uuid::Uuid;
mod channels; mod channels;
@ -6,7 +6,6 @@ mod invites;
mod roles; mod roles;
use crate::{ use crate::{
error::Error,
Data, Data,
api::v1::auth::check_access_token, api::v1::auth::check_access_token,
structs::{Guild, Member}, structs::{Guild, Member},
@ -41,17 +40,33 @@ pub async fn res(
) -> Result<HttpResponse, Error> { ) -> Result<HttpResponse, Error> {
let headers = req.headers(); let headers = req.headers();
let auth_header = get_auth_header(headers)?; let auth_header = get_auth_header(headers);
if let Err(error) = auth_header {
return Ok(error);
}
let guild_uuid = path.into_inner().0; let guild_uuid = path.into_inner().0;
let mut conn = data.pool.get().await?; let authorized = check_access_token(auth_header.unwrap(), &data.pool).await;
let uuid = check_access_token(auth_header, &mut conn).await?; if let Err(error) = authorized {
return Ok(error);
Member::fetch_one(&mut conn, uuid, guild_uuid).await?; }
let guild = Guild::fetch_one(&mut conn, guild_uuid).await?; let uuid = authorized.unwrap();
Ok(HttpResponse::Ok().json(guild)) let member = Member::fetch_one(&data.pool, uuid, guild_uuid).await;
if let Err(error) = member {
return Ok(error);
}
let guild = Guild::fetch_one(&data.pool, guild_uuid).await;
if let Err(error) = guild {
return Ok(error);
}
Ok(HttpResponse::Ok().json(guild.unwrap()))
} }

78
src/api/v1/servers/uuid/roles/mod.rs
View file

@ -1,14 +1,13 @@
use ::uuid::Uuid;
use actix_web::{HttpRequest, HttpResponse, get, post, web};
use serde::Deserialize;
use crate::{ use crate::{
error::Error,
Data, Data,
api::v1::auth::check_access_token, api::v1::auth::check_access_token,
structs::{Member, Role}, structs::{Member, Role},
utils::get_auth_header, utils::get_auth_header,
}; };
use ::uuid::Uuid;
use actix_web::{Error, HttpRequest, HttpResponse, get, post, web};
use log::error;
use serde::Deserialize;
pub mod uuid; pub mod uuid;
@ -25,27 +24,52 @@ pub async fn get(
) -> Result<HttpResponse, Error> { ) -> Result<HttpResponse, Error> {
let headers = req.headers(); let headers = req.headers();
let auth_header = get_auth_header(headers)?; let auth_header = get_auth_header(headers);
if let Err(error) = auth_header {
return Ok(error);
}
let guild_uuid = path.into_inner().0; let guild_uuid = path.into_inner().0;
let mut conn = data.pool.get().await?; let authorized = check_access_token(auth_header.unwrap(), &data.pool).await;
let uuid = check_access_token(auth_header, &mut conn).await?; if let Err(error) = authorized {
return Ok(error);
}
Member::fetch_one(&mut conn, uuid, guild_uuid).await?; let uuid = authorized.unwrap();
if let Ok(cache_hit) = data.get_cache_key(format!("{}_roles", guild_uuid)).await { let member = Member::fetch_one(&data.pool, uuid, guild_uuid).await;
if let Err(error) = member {
return Ok(error);
}
let cache_result = data.get_cache_key(format!("{}_roles", guild_uuid)).await;
if let Ok(cache_hit) = cache_result {
return Ok(HttpResponse::Ok() return Ok(HttpResponse::Ok()
.content_type("application/json") .content_type("application/json")
.body(cache_hit)); .body(cache_hit));
} }
let roles = Role::fetch_all(&mut conn, guild_uuid).await?; let roles_result = Role::fetch_all(&data.pool, guild_uuid).await;
data if let Err(error) = roles_result {
return Ok(error);
}
let roles = roles_result.unwrap();
let cache_result = data
.set_cache_key(format!("{}_roles", guild_uuid), roles.clone(), 1800) .set_cache_key(format!("{}_roles", guild_uuid), roles.clone(), 1800)
.await?; .await;
if let Err(error) = cache_result {
error!("{}", error);
return Ok(HttpResponse::InternalServerError().finish());
}
Ok(HttpResponse::Ok().json(roles)) Ok(HttpResponse::Ok().json(roles))
} }
@ -59,19 +83,35 @@ pub async fn create(
) -> Result<HttpResponse, Error> { ) -> Result<HttpResponse, Error> {
let headers = req.headers(); let headers = req.headers();
let auth_header = get_auth_header(headers)?; let auth_header = get_auth_header(headers);
if let Err(error) = auth_header {
return Ok(error);
}
let guild_uuid = path.into_inner().0; let guild_uuid = path.into_inner().0;
let mut conn = data.pool.get().await.unwrap(); let authorized = check_access_token(auth_header.unwrap(), &data.pool).await;
let uuid = check_access_token(auth_header, &mut conn).await?; if let Err(error) = authorized {
return Ok(error);
}
Member::fetch_one(&mut conn, uuid, guild_uuid).await?; let uuid = authorized.unwrap();
let member = Member::fetch_one(&data.pool, uuid, guild_uuid).await;
if let Err(error) = member {
return Ok(error);
}
// FIXME: Logic to check permissions, should probably be done in utils.rs // FIXME: Logic to check permissions, should probably be done in utils.rs
let role = Role::new(&mut conn, guild_uuid, role_info.name.clone()).await?; let role = Role::new(&data.pool, guild_uuid, role_info.name.clone()).await;
Ok(HttpResponse::Ok().json(role)) if let Err(error) = role {
return Ok(error);
}
Ok(HttpResponse::Ok().json(role.unwrap()))
} }

45
src/api/v1/servers/uuid/roles/uuid.rs
View file

@ -1,12 +1,12 @@
use crate::{ use crate::{
error::Error,
Data, Data,
api::v1::auth::check_access_token, api::v1::auth::check_access_token,
structs::{Member, Role}, structs::{Member, Role},
utils::get_auth_header, utils::get_auth_header,
}; };
use ::uuid::Uuid; use ::uuid::Uuid;
use actix_web::{HttpRequest, HttpResponse, get, web}; use actix_web::{Error, HttpRequest, HttpResponse, get, web};
use log::error;
#[get("{uuid}/roles/{role_uuid}")] #[get("{uuid}/roles/{role_uuid}")]
pub async fn get( pub async fn get(
@ -16,27 +16,52 @@ pub async fn get(
) -> Result<HttpResponse, Error> { ) -> Result<HttpResponse, Error> {
let headers = req.headers(); let headers = req.headers();
let auth_header = get_auth_header(headers)?; let auth_header = get_auth_header(headers);
if let Err(error) = auth_header {
return Ok(error);
}
let (guild_uuid, role_uuid) = path.into_inner(); let (guild_uuid, role_uuid) = path.into_inner();
let mut conn = data.pool.get().await?; let authorized = check_access_token(auth_header.unwrap(), &data.pool).await;
let uuid = check_access_token(auth_header, &mut conn).await?; if let Err(error) = authorized {
return Ok(error);
}
Member::fetch_one(&mut conn, uuid, guild_uuid).await?; let uuid = authorized.unwrap();
if let Ok(cache_hit) = data.get_cache_key(format!("{}", role_uuid)).await { let member = Member::fetch_one(&data.pool, uuid, guild_uuid).await;
if let Err(error) = member {
return Ok(error);
}
let cache_result = data.get_cache_key(format!("{}", role_uuid)).await;
if let Ok(cache_hit) = cache_result {
return Ok(HttpResponse::Ok() return Ok(HttpResponse::Ok()
.content_type("application/json") .content_type("application/json")
.body(cache_hit)); .body(cache_hit));
} }
let role = Role::fetch_one(&mut conn, role_uuid).await?; let role_result = Role::fetch_one(&data.pool, guild_uuid, role_uuid).await;
data if let Err(error) = role_result {
return Ok(error);
}
let role = role_result.unwrap();
let cache_result = data
.set_cache_key(format!("{}", role_uuid), role.clone(), 60) .set_cache_key(format!("{}", role_uuid), role.clone(), 60)
.await?; .await;
if let Err(error) = cache_result {
error!("{}", error);
return Ok(HttpResponse::InternalServerError().finish());
}
Ok(HttpResponse::Ok().json(role)) Ok(HttpResponse::Ok().json(role))
} }

26
src/api/v1/stats.rs
View file

@ -1,31 +1,31 @@
use std::time::SystemTime; use std::time::SystemTime;
use actix_web::{HttpResponse, get, web}; use actix_web::{HttpResponse, Responder, get, web};
use diesel::QueryDsl;
use diesel_async::RunQueryDsl;
use serde::Serialize; use serde::Serialize;
use crate::error::Error;
use crate::Data; use crate::Data;
use crate::schema::users::dsl::{users, uuid};
const VERSION: Option<&'static str> = option_env!("CARGO_PKG_VERSION"); const VERSION: Option<&'static str> = option_env!("CARGO_PKG_VERSION");
#[derive(Serialize)] #[derive(Serialize)]
struct Response { struct Response {
accounts: i64, accounts: usize,
uptime: u64, uptime: u64,
version: String, version: String,
build_number: String, build_number: String,
} }
#[get("/stats")] #[get("/stats")]
pub async fn res(data: web::Data<Data>) -> Result<HttpResponse, Error> { pub async fn res(data: web::Data<Data>) -> impl Responder {
let accounts: i64 = users let accounts;
.select(uuid) if let Ok(users) = sqlx::query("SELECT uuid FROM users")
.count() .fetch_all(&data.pool)
.get_result(&mut data.pool.get().await?) .await
.await?; {
accounts = users.len();
} else {
return HttpResponse::InternalServerError().finish();
}
let response = Response { let response = Response {
// TODO: Get number of accounts from db // TODO: Get number of accounts from db
@ -39,5 +39,5 @@ pub async fn res(data: web::Data<Data>) -> Result<HttpResponse, Error> {
build_number: String::from("how do i implement this?"), build_number: String::from("how do i implement this?"),
}; };
Ok(HttpResponse::Ok().json(response)) HttpResponse::Ok().json(response)
} }

50
src/api/v1/users/me.rs
View file

@ -1,41 +1,51 @@
use actix_web::{HttpRequest, HttpResponse, get, web}; use actix_web::{Error, HttpRequest, HttpResponse, get, web};
use diesel::{prelude::Queryable, ExpressionMethods, QueryDsl, Selectable, SelectableHelper};
use diesel_async::RunQueryDsl;
use log::error; use log::error;
use serde::Serialize; use serde::Serialize;
use uuid::Uuid;
use crate::{error::Error, api::v1::auth::check_access_token, schema::users::{self, dsl}, utils::get_auth_header, Data}; use crate::{Data, api::v1::auth::check_access_token, utils::get_auth_header};
#[derive(Serialize, Queryable, Selectable)] #[derive(Serialize)]
#[diesel(table_name = users)]
#[diesel(check_for_backend(diesel::pg::Pg))]
struct Response { struct Response {
uuid: Uuid, uuid: String,
username: String, username: String,
display_name: Option<String>, display_name: String,
} }
#[get("/me")] #[get("/me")]
pub async fn res(req: HttpRequest, data: web::Data<Data>) -> Result<HttpResponse, Error> { pub async fn res(req: HttpRequest, data: web::Data<Data>) -> Result<HttpResponse, Error> {
let headers = req.headers(); let headers = req.headers();
let auth_header = get_auth_header(headers)?; let auth_header = get_auth_header(headers);
let mut conn = data.pool.get().await?; if let Err(error) = auth_header {
return Ok(error);
}
let uuid = check_access_token(auth_header, &mut conn).await?; let authorized = check_access_token(auth_header.unwrap(), &data.pool).await;
let user: Result<Response, diesel::result::Error> = dsl::users if let Err(error) = authorized {
.filter(dsl::uuid.eq(uuid)) return Ok(error);
.select(Response::as_select()) }
.get_result(&mut conn)
let uuid = authorized.unwrap();
let row = sqlx::query_as(&format!(
"SELECT username, display_name FROM users WHERE uuid = '{}'",
uuid
))
.fetch_one(&data.pool)
.await; .await;
if let Err(error) = user { if let Err(error) = row {
error!("{}", error); error!("{}", error);
return Ok(HttpResponse::InternalServerError().finish()) return Ok(HttpResponse::InternalServerError().finish());
} }
Ok(HttpResponse::Ok().json(user.unwrap())) let (username, display_name): (String, Option<String>) = row.unwrap();
Ok(HttpResponse::Ok().json(Response {
uuid: uuid.to_string(),
username,
display_name: display_name.unwrap_or_default(),
}))
} }

49
src/api/v1/users/mod.rs
View file

@ -1,19 +1,15 @@
use actix_web::{HttpRequest, HttpResponse, Scope, get, web}; use crate::{api::v1::auth::check_access_token, structs::StartAmountQuery, utils::get_auth_header, Data};
use diesel::{prelude::Queryable, QueryDsl, Selectable, SelectableHelper}; use actix_web::{Error, HttpRequest, HttpResponse, Scope, get, web};
use diesel_async::RunQueryDsl; use log::error;
use serde::Serialize; use serde::Serialize;
use ::uuid::Uuid; use sqlx::prelude::FromRow;
use crate::{error::Error,api::v1::auth::check_access_token, schema::users::{self, dsl}, structs::StartAmountQuery, utils::get_auth_header, Data};
mod me; mod me;
mod uuid; mod uuid;
#[derive(Serialize, Queryable, Selectable)] #[derive(Serialize, FromRow)]
#[diesel(table_name = users)]
#[diesel(check_for_backend(diesel::pg::Pg))]
struct Response { struct Response {
uuid: Uuid, uuid: String,
username: String, username: String,
display_name: Option<String>, display_name: Option<String>,
email: String, email: String,
@ -34,7 +30,7 @@ pub async fn res(
) -> Result<HttpResponse, Error> { ) -> Result<HttpResponse, Error> {
let headers = req.headers(); let headers = req.headers();
let auth_header = get_auth_header(headers)?; let auth_header = get_auth_header(headers);
let start = request_query.start.unwrap_or(0); let start = request_query.start.unwrap_or(0);
@ -44,17 +40,24 @@ pub async fn res(
return Ok(HttpResponse::BadRequest().finish()); return Ok(HttpResponse::BadRequest().finish());
} }
let mut conn = data.pool.get().await?; let authorized = check_access_token(auth_header.unwrap(), &data.pool).await;
check_access_token(auth_header, &mut conn).await?; if let Err(error) = authorized {
return Ok(error);
let users: Vec<Response> = dsl::users }
.order_by(dsl::username)
.offset(start) let row = sqlx::query_as("SELECT CAST(uuid AS VARCHAR), username, display_name, email FROM users ORDER BY username LIMIT $1 OFFSET $2")
.limit(amount) .bind(amount)
.select(Response::as_select()) .bind(start)
.load(&mut conn) .fetch_all(&data.pool)
.await?; .await;
Ok(HttpResponse::Ok().json(users)) if let Err(error) = row {
error!("{}", error);
return Ok(HttpResponse::InternalServerError().finish());
}
let accounts: Vec<Response> = row.unwrap();
Ok(HttpResponse::Ok().json(accounts))
} }

50
src/api/v1/users/uuid.rs
View file

@ -1,19 +1,15 @@
use actix_web::{HttpRequest, HttpResponse, get, web}; use actix_web::{Error, HttpRequest, HttpResponse, get, web};
use diesel::{ExpressionMethods, QueryDsl, Queryable, Selectable, SelectableHelper};
use diesel_async::RunQueryDsl;
use log::error; use log::error;
use serde::Serialize; use serde::Serialize;
use uuid::Uuid; use uuid::Uuid;
use crate::{error::Error, api::v1::auth::check_access_token, schema::users::{self, dsl}, utils::get_auth_header, Data}; use crate::{Data, api::v1::auth::check_access_token, utils::get_auth_header};
#[derive(Serialize, Queryable, Selectable, Clone)] #[derive(Serialize, Clone)]
#[diesel(table_name = users)]
#[diesel(check_for_backend(diesel::pg::Pg))]
struct Response { struct Response {
uuid: Uuid, uuid: String,
username: String, username: String,
display_name: Option<String>, display_name: String,
} }
#[get("/{uuid}")] #[get("/{uuid}")]
@ -26,11 +22,17 @@ pub async fn res(
let uuid = path.into_inner().0; let uuid = path.into_inner().0;
let auth_header = get_auth_header(headers)?; let auth_header = get_auth_header(headers);
let mut conn = data.pool.get().await?; if let Err(error) = auth_header {
return Ok(error);
}
check_access_token(auth_header, &mut conn).await?; let authorized = check_access_token(auth_header.unwrap(), &data.pool).await;
if let Err(error) = authorized {
return Ok(error);
}
let cache_result = data.get_cache_key(uuid.to_string()).await; let cache_result = data.get_cache_key(uuid.to_string()).await;
@ -40,11 +42,25 @@ pub async fn res(
.body(cache_hit)); .body(cache_hit));
} }
let user: Response = dsl::users let row = sqlx::query_as(&format!(
.filter(dsl::uuid.eq(uuid)) "SELECT username, display_name FROM users WHERE uuid = '{}'",
.select(Response::as_select()) uuid
.get_result(&mut conn) ))
.await?; .fetch_one(&data.pool)
.await;
if let Err(error) = row {
error!("{}", error);
return Ok(HttpResponse::InternalServerError().finish());
}
let (username, display_name): (String, Option<String>) = row.unwrap();
let user = Response {
uuid: uuid.to_string(),
username,
display_name: display_name.unwrap_or_default(),
};
let cache_result = data let cache_result = data
.set_cache_key(uuid.to_string(), user.clone(), 1800) .set_cache_key(uuid.to_string(), user.clone(), 1800)

2
src/config.rs
View file

@ -1,4 +1,4 @@
use crate::error::Error; use crate::Error;
use log::debug; use log::debug;
use serde::Deserialize; use serde::Deserialize;
use tokio::fs::read_to_string; use tokio::fs::read_to_string;

79
src/error.rs
View file

@ -1,79 +0,0 @@
use std::{io, time::SystemTimeError};
use actix_web::{error::ResponseError, http::{header::{ContentType, ToStrError}, StatusCode}, HttpResponse};
use deadpool::managed::{BuildError, PoolError};
use redis::RedisError;
use serde::Serialize;
use thiserror::Error;
use diesel::{result::Error as DieselError, ConnectionError};
use diesel_async::pooled_connection::PoolError as DieselPoolError;
use tokio::task::JoinError;
use serde_json::Error as JsonError;
use toml::de::Error as TomlError;
use log::error;
#[derive(Debug, Error)]
pub enum Error {
#[error(transparent)]
SqlError(#[from] DieselError),
#[error(transparent)]
PoolError(#[from] PoolError<DieselPoolError>),
#[error(transparent)]
BuildError(#[from] BuildError),
#[error(transparent)]
RedisError(#[from] RedisError),
#[error(transparent)]
ConnectionError(#[from] ConnectionError),
#[error(transparent)]
JoinError(#[from] JoinError),
#[error(transparent)]
IoError(#[from] io::Error),
#[error(transparent)]
TomlError(#[from] TomlError),
#[error(transparent)]
JsonError(#[from] JsonError),
#[error(transparent)]
SystemTimeError(#[from] SystemTimeError),
#[error(transparent)]
ToStrError(#[from] ToStrError),
#[error(transparent)]
RandomError(#[from] getrandom::Error),
#[error("{0}")]
PasswordHashError(String),
#[error("{0}")]
BadRequest(String),
#[error("{0}")]
Unauthorized(String),
}
impl ResponseError for Error {
fn error_response(&self) -> HttpResponse {
error!("{}: {}", self.status_code(), self.to_string());
HttpResponse::build(self.status_code())
.insert_header(ContentType::json())
.json(WebError::new(self.to_string()))
}
fn status_code(&self) -> StatusCode {
match *self {
Error::SqlError(DieselError::NotFound) => StatusCode::NOT_FOUND,
Error::BadRequest(_) => StatusCode::BAD_REQUEST,
Error::Unauthorized(_) => StatusCode::UNAUTHORIZED,
_ => StatusCode::INTERNAL_SERVER_ERROR,
}
}
}
#[derive(Serialize)]
struct WebError {
message: String,
}
impl WebError {
fn new(message: String) -> Self {
Self {
message,
}
}
}

22
src/main.rs
View file

@ -2,24 +2,22 @@ use actix_cors::Cors;
use actix_web::{App, HttpServer, web}; use actix_web::{App, HttpServer, web};
use argon2::Argon2; use argon2::Argon2;
use clap::Parser; use clap::Parser;
use error::Error;
use simple_logger::SimpleLogger; use simple_logger::SimpleLogger;
use diesel_async::pooled_connection::AsyncDieselConnectionManager; use diesel_async::pooled_connection::AsyncDieselConnectionManager;
use diesel_async::pooled_connection::deadpool::Pool; use diesel_async::pooled_connection::deadpool::Pool;
use diesel_async::RunQueryDsl;
use std::time::SystemTime; use std::time::SystemTime;
mod config; mod config;
use config::{Config, ConfigBuilder}; use config::{Config, ConfigBuilder};
use diesel_migrations::{embed_migrations, EmbeddedMigrations, MigrationHarness}; mod api;
pub const MIGRATIONS: EmbeddedMigrations = embed_migrations!();
type Conn = deadpool::managed::Object<AsyncDieselConnectionManager<diesel_async::AsyncPgConnection>>; type Conn = deadpool::managed::Object<AsyncDieselConnectionManager<diesel_async::AsyncPgConnection>>;
mod api;
pub mod structs; pub mod structs;
pub mod utils; pub mod utils;
pub mod schema; pub mod schema;
pub mod error;
type Error = Box<dyn std::error::Error>;
#[derive(Parser, Debug)] #[derive(Parser, Debug)]
#[command(version, about, long_about = None)] #[command(version, about, long_about = None)]
@ -57,18 +55,8 @@ async fn main() -> Result<(), Error> {
let cache_pool = redis::Client::open(config.cache_database.url())?; let cache_pool = redis::Client::open(config.cache_database.url())?;
let database_url = config.database.url(); let mut conn = pool.get().await?;
tokio::task::spawn_blocking(move || {
use diesel::prelude::Connection;
use diesel_async::async_connection_wrapper::AsyncConnectionWrapper;
let mut conn = AsyncConnectionWrapper::<diesel_async::AsyncPgConnection>::establish(&database_url)?;
conn.run_pending_migrations(MIGRATIONS)?;
Ok::<_, Box<dyn std::error::Error + Send + Sync>>(())
}).await?.unwrap();
/* /*
**Stored for later possible use** **Stored for later possible use**

2
src/schema.rs
View file

@ -26,7 +26,7 @@ diesel::table! {
#[max_length = 32] #[max_length = 32]
name -> Varchar, name -> Varchar,
#[max_length = 500] #[max_length = 500]
description -> Nullable<Varchar>, description -> Varchar,
} }
} }

786
src/structs.rs
View file

@ -1,50 +1,15 @@
use diesel::{delete, insert_into, prelude::{Insertable, Queryable}, ExpressionMethods, QueryDsl, Selectable, SelectableHelper}; use std::str::FromStr;
use actix_web::HttpResponse;
use diesel::Selectable;
use log::error;
use serde::{Deserialize, Serialize}; use serde::{Deserialize, Serialize};
use uuid::Uuid; use uuid::Uuid;
use diesel_async::{pooled_connection::AsyncDieselConnectionManager, RunQueryDsl};
use crate::{error::Error, Conn, Data, schema::*}; use crate::{Conn, Data, schema::*};
fn load_or_empty<T>(query_result: Result<Vec<T>, diesel::result::Error>) -> Result<Vec<T>, diesel::result::Error> { #[derive(Serialize, Deserialize, Clone, Selectable)]
match query_result {
Ok(vec) => Ok(vec),
Err(diesel::result::Error::NotFound) => Ok(Vec::new()),
Err(e) => Err(e),
}
}
#[derive(Queryable, Selectable, Insertable, Clone)]
#[diesel(table_name = channels)] #[diesel(table_name = channels)]
#[diesel(check_for_backend(diesel::pg::Pg))]
struct ChannelBuilder {
uuid: Uuid,
guild_uuid: Uuid,
name: String,
description: Option<String>,
}
impl ChannelBuilder {
async fn build(self, conn: &mut Conn) -> Result<Channel, Error> {
use self::channel_permissions::dsl::*;
let channel_permission: Vec<ChannelPermission> = load_or_empty(
channel_permissions
.filter(channel_uuid.eq(self.uuid))
.select(ChannelPermission::as_select())
.load(conn)
.await
)?;
Ok(Channel {
uuid: self.uuid,
guild_uuid: self.guild_uuid,
name: self.name,
description: self.description,
permissions: channel_permission,
})
}
}
#[derive(Serialize, Deserialize, Clone)]
pub struct Channel { pub struct Channel {
pub uuid: Uuid, pub uuid: Uuid,
pub guild_uuid: Uuid, pub guild_uuid: Uuid,
@ -53,50 +18,116 @@ pub struct Channel {
pub permissions: Vec<ChannelPermission>, pub permissions: Vec<ChannelPermission>,
} }
#[derive(Serialize, Deserialize, Clone, Queryable, Selectable)] #[derive(Serialize, Clone)]
struct ChannelPermissionBuilder {
role_uuid: String,
permissions: i32,
}
impl ChannelPermissionBuilder {
fn build(&self) -> ChannelPermission {
ChannelPermission {
role_uuid: Uuid::from_str(&self.role_uuid).unwrap(),
permissions: self.permissions,
}
}
}
#[derive(Serialize, Deserialize, Clone, Selectable)]
#[diesel(table_name = channel_permissions)] #[diesel(table_name = channel_permissions)]
#[diesel(check_for_backend(diesel::pg::Pg))]
pub struct ChannelPermission { pub struct ChannelPermission {
pub role_uuid: Uuid, pub role_uuid: Uuid,
pub permissions: i64, pub permissions: i32,
} }
impl Channel { impl Channel {
pub async fn fetch_all( pub async fn fetch_all(
pool: &deadpool::managed::Pool<AsyncDieselConnectionManager<diesel_async::AsyncPgConnection>, Conn>, conn: &mut Conn,
guild_uuid: Uuid, guild_uuid: Uuid,
) -> Result<Vec<Self>, Error> { ) -> Result<Vec<Self>, HttpResponse> {
let mut conn = pool.get().await?;
use channels::dsl;
let channel_builders: Vec<ChannelBuilder> = load_or_empty(
dsl::channels
.filter(dsl::guild_uuid.eq(guild_uuid))
.select(ChannelBuilder::as_select())
.load(&mut conn)
.await
)?;
let channel_futures = channel_builders.iter().map(async move |c| { if let Err(error) = row {
let mut conn = pool.get().await?; error!("{}", error);
c.clone().build(&mut conn).await
return Err(HttpResponse::InternalServerError().finish());
}
let channels: Vec<(String, String, Option<String>)> = row.unwrap();
let futures = channels.iter().map(async |t| {
let (uuid, name, description) = t.to_owned();
let row = sqlx::query_as(&format!("SELECT CAST(role_uuid AS VARCHAR), permissions FROM channel_permissions WHERE channel_uuid = '{}'", uuid))
.fetch_all(pool)
.await;
if let Err(error) = row {
error!("{}", error);
return Err(HttpResponse::InternalServerError().finish())
}
let channel_permission_builders: Vec<ChannelPermissionBuilder> = row.unwrap();
Ok(Self {
uuid: Uuid::from_str(&uuid).unwrap(),
guild_uuid,
name,
description,
permissions: channel_permission_builders.iter().map(|b| b.build()).collect(),
})
}); });
futures::future::try_join_all(channel_futures).await let channels = futures::future::join_all(futures).await;
let channels: Result<Vec<Channel>, HttpResponse> = channels.into_iter().collect();
channels
} }
pub async fn fetch_one( pub async fn fetch_one(
conn: &mut Conn, pool: &Pool<Postgres>,
guild_uuid: Uuid,
channel_uuid: Uuid, channel_uuid: Uuid,
) -> Result<Self, Error> { ) -> Result<Self, HttpResponse> {
use channels::dsl; let row = sqlx::query_as(&format!(
let channel_builder: ChannelBuilder = dsl::channels "SELECT name, description FROM channels WHERE guild_uuid = '{}' AND uuid = '{}'",
.filter(dsl::uuid.eq(channel_uuid)) guild_uuid, channel_uuid
.select(ChannelBuilder::as_select()) ))
.get_result(conn) .fetch_one(pool)
.await?; .await;
channel_builder.build(conn).await if let Err(error) = row {
error!("{}", error);
return Err(HttpResponse::InternalServerError().finish());
}
let (name, description): (String, Option<String>) = row.unwrap();
let row = sqlx::query_as(&format!("SELECT CAST(role_uuid AS VARCHAR), permissions FROM channel_permissions WHERE channel_uuid = '{}'", channel_uuid))
.fetch_all(pool)
.await;
if let Err(error) = row {
error!("{}", error);
return Err(HttpResponse::InternalServerError().finish());
}
let channel_permission_builders: Vec<ChannelPermissionBuilder> = row.unwrap();
Ok(Self {
uuid: channel_uuid,
guild_uuid,
name,
description,
permissions: channel_permission_builders
.iter()
.map(|b| b.build())
.collect(),
})
} }
pub async fn new( pub async fn new(
@ -104,24 +135,20 @@ impl Channel {
guild_uuid: Uuid, guild_uuid: Uuid,
name: String, name: String,
description: Option<String>, description: Option<String>,
) -> Result<Self, Error> { ) -> Result<Self, HttpResponse> {
let mut conn = data.pool.get().await?;
let channel_uuid = Uuid::now_v7(); let channel_uuid = Uuid::now_v7();
let new_channel = ChannelBuilder { let row = sqlx::query(&format!("INSERT INTO channels (uuid, guild_uuid, name, description) VALUES ('{}', '{}', $1, $2)", channel_uuid, guild_uuid))
uuid: channel_uuid, .bind(&name)
guild_uuid: guild_uuid, .bind(&description)
name: name.clone(), .execute(&data.pool)
description: description.clone(), .await;
};
insert_into(channels::table) if let Err(error) = row {
.values(new_channel) error!("{}", error);
.execute(&mut conn) return Err(HttpResponse::InternalServerError().finish());
.await?; }
// returns different object because there's no reason to build the channelbuilder (wastes 1 database request)
let channel = Self { let channel = Self {
uuid: channel_uuid, uuid: channel_uuid,
guild_uuid, guild_uuid,
@ -130,66 +157,88 @@ impl Channel {
permissions: vec![], permissions: vec![],
}; };
data let cache_result = data
.set_cache_key(channel_uuid.to_string(), channel.clone(), 1800) .set_cache_key(channel_uuid.to_string(), channel.clone(), 1800)
.await?; .await;
data.del_cache_key(format!("{}_channels", guild_uuid)).await?; if let Err(error) = cache_result {
error!("{}", error);
return Err(HttpResponse::InternalServerError().finish());
}
let cache_deletion_result = data.del_cache_key(format!("{}_channels", guild_uuid)).await;
if let Err(error) = cache_deletion_result {
error!("{}", error);
return Err(HttpResponse::InternalServerError().finish());
}
Ok(channel) Ok(channel)
} }
pub async fn delete(self, conn: &mut Conn) -> Result<(), Error> { pub async fn delete(self, pool: &Pool<Postgres>) -> Result<(), HttpResponse> {
use channels::dsl; let result = sqlx::query(&format!(
delete(channels::table) "DELETE FROM channels WHERE channel_uuid = '{}'",
.filter(dsl::uuid.eq(self.uuid)) self.uuid
.execute(conn) ))
.await?; .execute(pool)
.await;
if let Err(error) = result {
error!("{}", error);
return Err(HttpResponse::InternalServerError().finish());
}
Ok(()) Ok(())
} }
pub async fn fetch_messages( pub async fn fetch_messages(
&self, &self,
conn: &mut Conn, pool: &Pool<Postgres>,
amount: i64, amount: i64,
offset: i64, offset: i64,
) -> Result<Vec<Message>, Error> { ) -> Result<Vec<Message>, HttpResponse> {
use messages::dsl; let row = sqlx::query_as(&format!("SELECT CAST(uuid AS VARCHAR), CAST(user_uuid AS VARCHAR), CAST(channel_uuid AS VARCHAR), message FROM messages WHERE channel_uuid = '{}' ORDER BY uuid DESC LIMIT $1 OFFSET $2", self.uuid))
let messages: Vec<Message> = load_or_empty( .bind(amount)
dsl::messages .bind(offset)
.filter(dsl::channel_uuid.eq(self.uuid)) .fetch_all(pool)
.select(Message::as_select()) .await;
.limit(amount)
.offset(offset)
.load(conn)
.await
)?;
Ok(messages) if let Err(error) = row {
error!("{}", error);
return Err(HttpResponse::InternalServerError().finish());
}
let message_builders: Vec<MessageBuilder> = row.unwrap();
Ok(message_builders.iter().map(|b| b.build()).collect())
} }
pub async fn new_message( pub async fn new_message(
&self, &self,
conn: &mut Conn, pool: &Pool<Postgres>,
user_uuid: Uuid, user_uuid: Uuid,
message: String, message: String,
) -> Result<Message, Error> { ) -> Result<Message, HttpResponse> {
let message_uuid = Uuid::now_v7(); let message_uuid = Uuid::now_v7();
let message = Message { let row = sqlx::query(&format!("INSERT INTO messages (uuid, channel_uuid, user_uuid, message) VALUES ('{}', '{}', '{}', $1)", message_uuid, self.uuid, user_uuid))
.bind(&message)
.execute(pool)
.await;
if let Err(error) = row {
error!("{}", error);
return Err(HttpResponse::InternalServerError().finish());
}
Ok(Message {
uuid: message_uuid, uuid: message_uuid,
channel_uuid: self.uuid, channel_uuid: self.uuid,
user_uuid, user_uuid,
message, message,
}; })
insert_into(messages::table)
.values(message.clone())
.execute(conn)
.await?;
Ok(message)
} }
} }
@ -231,34 +280,6 @@ impl Permissions {
} }
} }
#[derive(Serialize, Queryable, Selectable, Insertable, Clone)]
#[diesel(table_name = guilds)]
#[diesel(check_for_backend(diesel::pg::Pg))]
struct GuildBuilder {
uuid: Uuid,
name: String,
description: Option<String>,
owner_uuid: Uuid,
}
impl GuildBuilder {
async fn build(self, conn: &mut Conn) -> Result<Guild, Error> {
let member_count = Member::count(conn, self.uuid).await?;
let roles = Role::fetch_all(conn, self.uuid).await?;
Ok(Guild {
uuid: self.uuid,
name: self.name,
description: self.description,
icon: String::from("bogus"),
owner_uuid: self.owner_uuid,
roles: roles,
member_count: member_count,
})
}
}
#[derive(Serialize)] #[derive(Serialize)]
pub struct Guild { pub struct Guild {
pub uuid: Uuid, pub uuid: Uuid,
@ -271,40 +292,85 @@ pub struct Guild {
} }
impl Guild { impl Guild {
pub async fn fetch_one(conn: &mut Conn, guild_uuid: Uuid) -> Result<Self, Error> { pub async fn fetch_one(pool: &Pool<Postgres>, guild_uuid: Uuid) -> Result<Self, HttpResponse> {
use guilds::dsl; let row = sqlx::query_as(&format!(
let guild_builder: GuildBuilder = dsl::guilds "SELECT CAST(owner_uuid AS VARCHAR), name, description FROM guilds WHERE uuid = '{}'",
.filter(dsl::uuid.eq(guild_uuid)) guild_uuid
.select(GuildBuilder::as_select()) ))
.get_result(conn) .fetch_one(pool)
.await?; .await;
guild_builder.build(conn).await if let Err(error) = row {
error!("{}", error);
return Err(HttpResponse::InternalServerError().finish());
}
let (owner_uuid_raw, name, description): (String, String, Option<String>) = row.unwrap();
let owner_uuid = Uuid::from_str(&owner_uuid_raw).unwrap();
let member_count = Member::count(pool, guild_uuid).await?;
let roles = Role::fetch_all(pool, guild_uuid).await?;
Ok(Self {
uuid: guild_uuid,
name,
description,
// FIXME: This isnt supposed to be bogus
icon: String::from("bogus"),
owner_uuid,
roles,
member_count,
})
} }
pub async fn fetch_amount( pub async fn fetch_amount(
pool: &deadpool::managed::Pool<AsyncDieselConnectionManager<diesel_async::AsyncPgConnection>, Conn>, pool: &Pool<Postgres>,
offset: i64, start: i32,
amount: i64, amount: i32,
) -> Result<Vec<Self>, Error> { ) -> Result<Vec<Self>, HttpResponse> {
// Fetch guild data from database // Fetch guild data from database
let mut conn = pool.get().await?; let rows = sqlx::query_as::<_, (String, String, String, Option<String>)>(
"SELECT CAST(uuid AS VARCHAR), CAST(owner_uuid AS VARCHAR), name, description
use guilds::dsl; FROM guilds
let guild_builders: Vec<GuildBuilder> = load_or_empty( ORDER BY name
dsl::guilds LIMIT $1 OFFSET $2",
.select(GuildBuilder::as_select()) )
.order_by(dsl::uuid) .bind(amount)
.offset(offset) .bind(start)
.limit(amount) .fetch_all(pool)
.load(&mut conn)
.await .await
)?; .map_err(|error| {
error!("{}", error);
HttpResponse::InternalServerError().finish()
})?;
// Process each guild concurrently // Process each guild concurrently
let guild_futures = guild_builders.iter().map(async move |g| { let guild_futures = rows.into_iter().map(|(guild_uuid_raw, owner_uuid_raw, name, description)| async move {
let mut conn = pool.get().await?; let uuid = Uuid::from_str(&guild_uuid_raw).map_err(|_| {
g.clone().build(&mut conn).await HttpResponse::BadRequest().body("Invalid guild UUID format")
})?;
let owner_uuid = Uuid::from_str(&owner_uuid_raw).map_err(|_| {
HttpResponse::BadRequest().body("Invalid owner UUID format")
})?;
let (member_count, roles) = tokio::try_join!(
Member::count(pool, uuid),
Role::fetch_all(pool, uuid)
)?;
Ok::<Guild, HttpResponse>(Self {
uuid,
name,
description,
icon: String::from("bogus"), // FIXME: Replace with actual icon handling
owner_uuid,
roles,
member_count,
})
}); });
// Execute all futures concurrently and collect results // Execute all futures concurrently and collect results
@ -312,38 +378,49 @@ impl Guild {
} }
pub async fn new( pub async fn new(
conn: &mut Conn, pool: &Pool<Postgres>,
name: String, name: String,
description: Option<String>, description: Option<String>,
owner_uuid: Uuid, owner_uuid: Uuid,
) -> Result<Self, Error> { ) -> Result<Self, HttpResponse> {
let guild_uuid = Uuid::now_v7(); let guild_uuid = Uuid::now_v7();
let guild_builder = GuildBuilder { let row = sqlx::query(&format!(
uuid: guild_uuid, "INSERT INTO guilds (uuid, owner_uuid, name, description) VALUES ('{}', '{}', $1, $2)",
name: name.clone(), guild_uuid, owner_uuid
description: description.clone(), ))
owner_uuid, .bind(&name)
}; .bind(&description)
.execute(pool)
.await;
insert_into(guilds::table) if let Err(error) = row {
.values(guild_builder) error!("{}", error);
.execute(conn) return Err(HttpResponse::InternalServerError().finish());
.await?; }
let member_uuid = Uuid::now_v7(); let row = sqlx::query(&format!(
"INSERT INTO guild_members (uuid, guild_uuid, user_uuid) VALUES ('{}', '{}', '{}')",
let member = Member { Uuid::now_v7(),
uuid: member_uuid,
nickname: None,
user_uuid: owner_uuid,
guild_uuid, guild_uuid,
}; owner_uuid
))
.execute(pool)
.await;
insert_into(guild_members::table) if let Err(error) = row {
.values(member) error!("{}", error);
.execute(conn)
.await?; let row = sqlx::query(&format!("DELETE FROM guilds WHERE uuid = '{}'", guild_uuid))
.execute(pool)
.await;
if let Err(error) = row {
error!("{}", error);
}
return Err(HttpResponse::InternalServerError().finish());
}
Ok(Guild { Ok(Guild {
uuid: guild_uuid, uuid: guild_uuid,
@ -356,104 +433,168 @@ impl Guild {
}) })
} }
pub async fn get_invites(&self, conn: &mut Conn) -> Result<Vec<Invite>, Error> { pub async fn get_invites(&self, pool: &Pool<Postgres>) -> Result<Vec<Invite>, HttpResponse> {
use invites::dsl; let invites = sqlx::query_as(&format!(
let invites = load_or_empty( "SELECT (id, guild_uuid, user_uuid) FROM invites WHERE guild_uuid = '{}'",
dsl::invites self.uuid
.filter(dsl::guild_uuid.eq(self.uuid)) ))
.select(Invite::as_select()) .fetch_all(pool)
.load(conn) .await;
.await
)?;
Ok(invites) if let Err(error) = invites {
error!("{}", error);
return Err(HttpResponse::InternalServerError().finish());
}
Ok(invites
.unwrap()
.iter()
.map(|b: &InviteBuilder| b.build())
.collect())
} }
pub async fn create_invite( pub async fn create_invite(
&self, &self,
conn: &mut Conn, pool: &Pool<Postgres>,
member: &Member, member: &Member,
custom_id: Option<String>, custom_id: Option<String>,
) -> Result<Invite, Error> { ) -> Result<Invite, HttpResponse> {
let invite_id; let invite_id;
if let Some(id) = custom_id { if custom_id.is_none() {
invite_id = id;
if invite_id.len() > 32 {
return Err(Error::BadRequest("MAX LENGTH".to_string()))
}
} else {
let charset = "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789"; let charset = "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789";
invite_id = random_string::generate(8, charset); invite_id = random_string::generate(8, charset);
} else {
invite_id = custom_id.unwrap();
if invite_id.len() > 32 {
return Err(HttpResponse::BadRequest().finish());
}
} }
let invite = Invite { let result = sqlx::query(&format!(
"INSERT INTO invites (id, guild_uuid, user_uuid) VALUES ($1, '{}', '{}'",
self.uuid, member.user_uuid
))
.bind(&invite_id)
.execute(pool)
.await;
if let Err(error) = result {
error!("{}", error);
return Err(HttpResponse::InternalServerError().finish());
}
Ok(Invite {
id: invite_id, id: invite_id,
user_uuid: member.user_uuid, user_uuid: member.user_uuid,
guild_uuid: self.uuid, guild_uuid: self.uuid,
}; })
insert_into(invites::table)
.values(invite.clone())
.execute(conn)
.await?;
Ok(invite)
} }
} }
#[derive(Serialize, Clone, Queryable, Selectable, Insertable)] #[derive(FromRow)]
#[diesel(table_name = roles)] struct RoleBuilder {
#[diesel(check_for_backend(diesel::pg::Pg))] uuid: String,
guild_uuid: String,
name: String,
color: i64,
position: i32,
permissions: i64,
}
impl RoleBuilder {
fn build(&self) -> Role {
Role {
uuid: Uuid::from_str(&self.uuid).unwrap(),
guild_uuid: Uuid::from_str(&self.guild_uuid).unwrap(),
name: self.name.clone(),
color: self.color,
position: self.position,
permissions: self.permissions,
}
}
}
#[derive(Serialize, Clone)]
pub struct Role { pub struct Role {
uuid: Uuid, uuid: Uuid,
guild_uuid: Uuid, guild_uuid: Uuid,
name: String, name: String,
color: i32, color: i64,
position: i32, position: i32,
permissions: i64, permissions: i64,
} }
impl Role { impl Role {
pub async fn fetch_all( pub async fn fetch_all(
conn: &mut Conn, pool: &Pool<Postgres>,
guild_uuid: Uuid, guild_uuid: Uuid,
) -> Result<Vec<Self>, Error> { ) -> Result<Vec<Self>, HttpResponse> {
use roles::dsl; let role_builders_result = sqlx::query_as(&format!("SELECT (uuid, guild_uuid, name, color, position, permissions) FROM roles WHERE guild_uuid = '{}'", guild_uuid))
let roles: Vec<Role> = load_or_empty( .fetch_all(pool)
dsl::roles .await;
.filter(dsl::guild_uuid.eq(guild_uuid))
.select(Role::as_select())
.load(conn)
.await
)?;
Ok(roles) if let Err(error) = role_builders_result {
error!("{}", error);
return Err(HttpResponse::InternalServerError().finish());
}
let role_builders: Vec<RoleBuilder> = role_builders_result.unwrap();
Ok(role_builders.iter().map(|b| b.build()).collect())
} }
pub async fn fetch_one( pub async fn fetch_one(
conn: &mut Conn, pool: &Pool<Postgres>,
role_uuid: Uuid, role_uuid: Uuid,
) -> Result<Self, Error> { guild_uuid: Uuid,
use roles::dsl; ) -> Result<Self, HttpResponse> {
let role: Role = dsl::roles let row = sqlx::query_as(&format!("SELECT (name, color, position, permissions) FROM roles WHERE guild_uuid = '{}' AND uuid = '{}'", guild_uuid, role_uuid))
.filter(dsl::uuid.eq(role_uuid)) .fetch_one(pool)
.select(Role::as_select()) .await;
.get_result(conn)
.await?;
Ok(role) if let Err(error) = row {
error!("{}", error);
return Err(HttpResponse::InternalServerError().finish());
}
let (name, color, position, permissions) = row.unwrap();
Ok(Role {
uuid: role_uuid,
guild_uuid,
name,
color,
position,
permissions,
})
} }
pub async fn new( pub async fn new(
conn: &mut Conn, pool: &Pool<Postgres>,
guild_uuid: Uuid, guild_uuid: Uuid,
name: String, name: String,
) -> Result<Self, Error> { ) -> Result<Self, HttpResponse> {
let role_uuid = Uuid::now_v7(); let role_uuid = Uuid::now_v7();
let role = Role { let row = sqlx::query(&format!(
"INSERT INTO channels (uuid, guild_uuid, name, position) VALUES ('{}', '{}', $1, $2)",
role_uuid, guild_uuid
))
.bind(&name)
.bind(0)
.execute(pool)
.await;
if let Err(error) = row {
error!("{}", error);
return Err(HttpResponse::InternalServerError().finish());
}
let role = Self {
uuid: role_uuid, uuid: role_uuid,
guild_uuid, guild_uuid,
name, name,
@ -462,18 +603,10 @@ impl Role {
permissions: 0, permissions: 0,
}; };
insert_into(roles::table)
.values(role.clone())
.execute(conn)
.await?;
Ok(role) Ok(role)
} }
} }
#[derive(Queryable, Selectable, Insertable)]
#[diesel(table_name = guild_members)]
#[diesel(check_for_backend(diesel::pg::Pg))]
pub struct Member { pub struct Member {
pub uuid: Uuid, pub uuid: Uuid,
pub nickname: Option<String>, pub nickname: Option<String>,
@ -482,51 +615,67 @@ pub struct Member {
} }
impl Member { impl Member {
async fn count(conn: &mut Conn, guild_uuid: Uuid) -> Result<i64, Error> { async fn count(pool: &Pool<Postgres>, guild_uuid: Uuid) -> Result<i64, HttpResponse> {
use guild_members::dsl; let member_count = sqlx::query_scalar(&format!(
let count: i64 = dsl::guild_members "SELECT COUNT(uuid) FROM guild_members WHERE guild_uuid = '{}'",
.filter(dsl::guild_uuid.eq(guild_uuid)) guild_uuid
.count() ))
.get_result(conn) .fetch_one(pool)
.await?; .await;
Ok(count) if let Err(error) = member_count {
error!("{}", error);
return Err(HttpResponse::InternalServerError().finish());
}
Ok(member_count.unwrap())
} }
pub async fn fetch_one( pub async fn fetch_one(
conn: &mut Conn, pool: &Pool<Postgres>,
user_uuid: Uuid, user_uuid: Uuid,
guild_uuid: Uuid, guild_uuid: Uuid,
) -> Result<Self, Error> { ) -> Result<Self, HttpResponse> {
use guild_members::dsl; let row = sqlx::query_as(&format!("SELECT CAST(uuid AS VARCHAR), nickname FROM guild_members WHERE guild_uuid = '{}' AND user_uuid = '{}'", guild_uuid, user_uuid))
let member: Member = dsl::guild_members .fetch_one(pool)
.filter(dsl::user_uuid.eq(user_uuid)) .await;
.filter(dsl::guild_uuid.eq(guild_uuid))
.select(Member::as_select())
.get_result(conn)
.await?;
Ok(member) if let Err(error) = row {
error!("{}", error);
return Err(HttpResponse::InternalServerError().finish());
}
let (uuid, nickname): (String, Option<String>) = row.unwrap();
Ok(Self {
uuid: Uuid::from_str(&uuid).unwrap(),
nickname,
user_uuid,
guild_uuid,
})
} }
pub async fn new( pub async fn new(
conn: &mut Conn, pool: &Pool<Postgres>,
user_uuid: Uuid, user_uuid: Uuid,
guild_uuid: Uuid, guild_uuid: Uuid,
) -> Result<Self, Error> { ) -> Result<Self, HttpResponse> {
let member_uuid = Uuid::now_v7(); let member_uuid = Uuid::now_v7();
let member = Member { let row = sqlx::query(&format!(
uuid: member_uuid, "INSERT INTO guild_members uuid, guild_uuid, user_uuid VALUES ('{}', '{}', '{}')",
guild_uuid, member_uuid, guild_uuid, user_uuid
user_uuid, ))
nickname: None, .execute(pool)
}; .await;
insert_into(guild_members::table) if let Err(error) = row {
.values(member) error!("{}", error);
.execute(conn)
.await?; return Err(HttpResponse::InternalServerError().finish());
}
Ok(Self { Ok(Self {
uuid: member_uuid, uuid: member_uuid,
@ -537,9 +686,26 @@ impl Member {
} }
} }
#[derive(Clone, Serialize, Queryable, Selectable, Insertable)] #[derive(FromRow)]
#[diesel(table_name = messages)] struct MessageBuilder {
#[diesel(check_for_backend(diesel::pg::Pg))] uuid: String,
channel_uuid: String,
user_uuid: String,
message: String,
}
impl MessageBuilder {
fn build(&self) -> Message {
Message {
uuid: Uuid::from_str(&self.uuid).unwrap(),
channel_uuid: Uuid::from_str(&self.channel_uuid).unwrap(),
user_uuid: Uuid::from_str(&self.user_uuid).unwrap(),
message: self.message.clone(),
}
}
}
#[derive(Serialize)]
pub struct Message { pub struct Message {
uuid: Uuid, uuid: Uuid,
channel_uuid: Uuid, channel_uuid: Uuid,
@ -547,8 +713,25 @@ pub struct Message {
message: String, message: String,
} }
#[derive(FromRow)]
pub struct InviteBuilder {
id: String,
user_uuid: String,
guild_uuid: String,
}
impl InviteBuilder {
fn build(&self) -> Invite {
Invite {
id: self.id.clone(),
user_uuid: Uuid::from_str(&self.user_uuid).unwrap(),
guild_uuid: Uuid::from_str(&self.guild_uuid).unwrap(),
}
}
}
/// Server invite struct /// Server invite struct
#[derive(Clone, Serialize, Queryable, Selectable, Insertable)] #[derive(Serialize)]
pub struct Invite { pub struct Invite {
/// case-sensitive alphanumeric string with a fixed length of 8 characters, can be up to 32 characters for custom invites /// case-sensitive alphanumeric string with a fixed length of 8 characters, can be up to 32 characters for custom invites
id: String, id: String,
@ -559,20 +742,25 @@ pub struct Invite {
} }
impl Invite { impl Invite {
pub async fn fetch_one(conn: &mut Conn, invite_id: String) -> Result<Self, Error> { pub async fn fetch_one(pool: &Pool<Postgres>, invite_id: String) -> Result<Self, HttpResponse> {
use invites::dsl; let invite: Result<InviteBuilder, sqlx::Error> =
let invite: Invite = dsl::invites sqlx::query_as("SELECT id, user_uuid, guild_uuid FROM invites WHERE id = $1")
.filter(dsl::id.eq(invite_id)) .bind(invite_id)
.select(Invite::as_select()) .fetch_one(pool)
.get_result(conn) .await;
.await?;
Ok(invite) if let Err(error) = invite {
error!("{}", error);
return Err(HttpResponse::InternalServerError().finish());
}
Ok(invite.unwrap().build())
} }
} }
#[derive(Deserialize)] #[derive(Deserialize)]
pub struct StartAmountQuery { pub struct StartAmountQuery {
pub start: Option<i64>, pub start: Option<i32>,
pub amount: Option<i64>, pub amount: Option<i32>,
} }

33
src/utils.rs
View file

@ -1,4 +1,5 @@
use actix_web::{ use actix_web::{
HttpResponse,
cookie::{Cookie, SameSite, time::Duration}, cookie::{Cookie, SameSite, time::Duration},
http::header::HeaderMap, http::header::HeaderMap,
}; };
@ -7,31 +8,25 @@ use hex::encode;
use redis::RedisError; use redis::RedisError;
use serde::Serialize; use serde::Serialize;
use crate::{error::Error, Data}; use crate::Data;
pub fn get_auth_header(headers: &HeaderMap) -> Result<&str, Error> { pub fn get_auth_header(headers: &HeaderMap) -> Result<&str, HttpResponse> {
let auth_token = headers.get(actix_web::http::header::AUTHORIZATION); let auth_token = headers.get(actix_web::http::header::AUTHORIZATION);
if auth_token.is_none() { if auth_token.is_none() {
return Err(Error::Unauthorized("No authorization header provided".to_string())); return Err(HttpResponse::Unauthorized().finish());
} }
let auth_raw = auth_token.unwrap().to_str()?; let auth = auth_token.unwrap().to_str();
let mut auth = auth_raw.split_whitespace(); if let Err(error) = auth {
return Err(HttpResponse::Unauthorized().json(format!(r#" {{ "error": "{}" }} "#, error)));
let auth_type = auth.nth(0);
let auth_value = auth.nth(0);
if auth_type.is_none() {
return Err(Error::BadRequest("Authorization header is empty".to_string()));
} else if auth_type.is_some_and(|at| at != "Bearer") {
return Err(Error::BadRequest("Only token auth is supported".to_string()));
} }
let auth_value = auth.unwrap().split_whitespace().nth(1);
if auth_value.is_none() { if auth_value.is_none() {
return Err(Error::BadRequest("No token provided".to_string())); return Err(HttpResponse::BadRequest().finish());
} }
Ok(auth_value.unwrap()) Ok(auth_value.unwrap())
@ -65,12 +60,12 @@ impl Data {
key: String, key: String,
value: impl Serialize, value: impl Serialize,
expire: u32, expire: u32,
) -> Result<(), Error> { ) -> Result<(), RedisError> {
let mut conn = self.cache_pool.get_multiplexed_tokio_connection().await?; let mut conn = self.cache_pool.get_multiplexed_tokio_connection().await?;
let key_encoded = encode(key); let key_encoded = encode(key);
let value_json = serde_json::to_string(&value)?; let value_json = serde_json::to_string(&value).unwrap();
redis::cmd("SET") redis::cmd("SET")
.arg(&[key_encoded.clone(), value_json]) .arg(&[key_encoded.clone(), value_json])
@ -80,9 +75,7 @@ impl Data {
redis::cmd("EXPIRE") redis::cmd("EXPIRE")
.arg(&[key_encoded, expire.to_string()]) .arg(&[key_encoded, expire.to_string()])
.exec_async(&mut conn) .exec_async(&mut conn)
.await?; .await
Ok(())
} }
pub async fn get_cache_key(&self, key: String) -> Result<String, RedisError> { pub async fn get_cache_key(&self, key: String) -> Result<String, RedisError> {