actix-web-sql-identity 0.4.3

A SQL-backend identity provider for Actix Web's identity system
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211

//! Common Test Functions
//!
//! Module: Tests/common

use actix_web_sql_identity::SqlIdentityBuilder;

use actix_web::client::{ClientRequest, ClientRequestBuilder};
use actix_web::http::StatusCode;
use actix_web::middleware::identity::{IdentityService, RequestIdentity};
use actix_web::test::TestServer;
use actix_web::{HttpMessage, HttpRequest, HttpResponse};

use dotenv;

const RESPONSE_HEADER: &'static str = "test-auth";

/// The different kinds of SQL languanges supported
pub enum SqlVariant {
    Sqlite,
    MySql,
    Postgres,
}

/// Builds a new test server using a specific SQL variant and
/// reads the connection string from an environment variable.
/// Returns a new TestServer instance
///
/// # Arguments
///
/// * `sql` - The SQL variant to use (Sqlite, MySQL, or PostgreSQL)
pub fn build_test_server_from_env(variant: SqlVariant) -> TestServer {
    dotenv::from_filename("tests/test.env").ok();

    let uri = match variant {
        SqlVariant::Sqlite => format!(
            "{}/{}",
            dotenv::var("SQLITE_PATH").unwrap(),
            dotenv::var("SQLITE_DB").unwrap(),
        ),
        SqlVariant::MySql => format!(
            "mysql://{}:{}@{}/{}",
            dotenv::var("MYSQL_USER").unwrap(),
            dotenv::var("MYSQL_PASS").unwrap(),
            dotenv::var("MYSQL_HOST").unwrap(),
            dotenv::var("MYSQL_DB").unwrap()
        ),
        SqlVariant::Postgres => format!(
            "postgres://{}:{}@{}/{}",
            dotenv::var("PG_USER").unwrap(),
            dotenv::var("PG_PASS").unwrap(),
            dotenv::var("PG_HOST").unwrap(),
            dotenv::var("PG_DB").unwrap()
        ),
    };

    build_test_server(uri)
}

/// Builds a new test server using a specific SQL variant and
/// reads the connection string from an environment variable.
/// Returns a new TestServer instance
///
/// # Arguments
///
/// * `uri` - Database connection string (e.g., sqlite://, mysql://, postgres://)
pub fn build_test_server<S: Into<String>>(uri: S) -> TestServer {
    let uri = uri.into();
    println!("Connecting to: {}", uri);

    TestServer::new(move |app| {
        // Build SQL Identity policy
        let policy = SqlIdentityBuilder::new(uri.clone()).response_header(RESPONSE_HEADER);

        app.middleware(IdentityService::new(
            policy.finish().expect("failed to connect to database"),
        )).resource("/", |r| r.get().f(|_| HttpResponse::Ok()))
            .resource("/login", |r| {
                r.post().f(|req: &HttpRequest| {
                    req.remember("mike".to_string());
                    HttpResponse::Ok()
                })
            })
            .resource("/profile", |r| {
                r.get().f(|req: &HttpRequest| match req.identity() {
                    Some(_) => HttpResponse::Ok(),
                    None => HttpResponse::Unauthorized(),
                })
            })
            .resource("/logout", |r| {
                r.post().f(|req: &HttpRequest| {
                    req.forget();
                    HttpResponse::Ok()
                })
            });
    })
}

/// Adds an authorization bearer token to a request
///
/// # Arguments
///
/// * `req` - Request to modify
/// * `token` - Token to add to request authorization header
pub fn add_token_to_request(req: &mut ClientRequestBuilder, token: &str) {
    req.header("Authorization", format!("Bearer {}", token));
}

/// Sends a response to the server and checks if the status code matches
/// the expected status code.  Returns true if statuses match, or false
/// otherwise
///
/// # Arugments
///
/// * `srv` - An instance of a TestServer
/// * `req` - The client request to send
/// * `exp` - The expected HTTP status code
pub fn check_response(srv: &mut TestServer, req: ClientRequest, exp: StatusCode) -> bool {
    println!("{:?}", req);
    let resp = srv.execute(req.send()).unwrap();
    println!("{:?}", resp);

    resp.status() == exp
}

/// Attempts to log a user in with the given username
/// Note: The server automatically assumes authentication passes
///
/// # Arguments
///
/// * `srv` - An instance of a TestServer
/// * `username` - Username to login
pub fn login(srv: &mut TestServer, _username: &str) -> Option<String> {
    let request = srv.post().uri(srv.url("/login")).finish().unwrap();

    println!("{:?}", request);
    let response = srv.execute(request.send()).unwrap();
    println!("{:?}", response);
    assert!(response.status() == StatusCode::OK, "Login Failed");

    match response.headers().get(RESPONSE_HEADER) {
        Some(token) => Some(token.to_str().unwrap().to_string()),
        None => None,
    }
}

/// Attempts to log the user out with the provided token
///
/// # Arguments
///
/// * `srv` - An instance of a TestServer
/// * `token` - The token corresponding to the user to log out, or None
/// * `code` - Status code to expect (200 Ok, 401 Unauthorized, etc...)
pub fn logout(srv: &mut TestServer, token: Option<&str>, code: StatusCode) {
    let mut request = srv.post();
    let mut request = request.uri(srv.url("/logout"));

    if token.is_some() {
        add_token_to_request(&mut request, token.unwrap());
    }

    let request = request.finish().unwrap();

    assert!(check_response(srv, request, code));
}

/// Builds a common get request, appending an auth token if provided.
/// The url for the route will hit the endpoint specified in uri
///
/// # Arguments
///
/// * `srv` - An instance of a TestServer
/// * `uri` - Endpoint to hit
/// * `token` - An optional authorization token
fn build_get(srv: &mut TestServer, uri: &str, token: Option<&str>) -> ClientRequest {
    let mut request = srv.get();
    let mut request = request.uri(srv.url(uri));

    match token {
        Some(t) => add_token_to_request(&mut request, t),
        None => (),
    }

    request.finish().unwrap()
}

/// Attempts to get the index page
/// Note: This should always succeed
///
/// # Arguments
///
/// * `srv` - An instance of a TestServer
/// * `token` - An optional authorization token
pub fn index(srv: &mut TestServer, token: Option<&str>) {
    let request = build_get(srv, "/", token);
    assert!(
        check_response(srv, request, StatusCode::OK),
        "Failed to GET /index!"
    );
}

/// Attempts to get the profile page
///
/// # Arguments
///
/// * `srv` - An instance of a TestServer
/// * `token` - An optional authorization token
/// * `code` - Status code to expect (200 Ok, 401 Unauthorized, etc...)
pub fn profile(srv: &mut TestServer, token: Option<&str>, code: StatusCode) {
    let request = build_get(srv, "/profile", token);
    assert!(check_response(srv, request, code));
}