annis-web 0.2.0

This is an experimental version of ANNIS corpus search frontend.
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314

use crate::auth::LoginInfo;
use crate::{config::CliConfig, errors::AppError, Result, TEMPLATES_DIR};
use axum::{async_trait, extract::FromRequestParts, http::request::Parts};
use chrono::Utc;
use dashmap::DashMap;
use minijinja::Value;
use oauth2::{basic::BasicClient, PkceCodeVerifier};
use serde::{Deserialize, Serialize};
use std::{collections::BTreeSet, sync::Arc};
use tempfile::NamedTempFile;
use time::OffsetDateTime;
use tokio::{sync::mpsc::Receiver, task::JoinHandle};
use url::Url;

#[derive(Serialize, Deserialize, Debug, Clone, Default)]
pub struct Session {
    selected_corpora: BTreeSet<String>,
    #[serde(skip)]
    session: tower_sessions::Session,
    session_id: String,
}

impl Session {
    pub const SELECTED_CORPORA_KEY: &str = "selected_corpora";

    fn update_session(
        session: &tower_sessions::Session,
        selected_corpora: &BTreeSet<String>,
    ) -> Result<()> {
        session.insert(Self::SELECTED_CORPORA_KEY, selected_corpora.clone())?;
        Ok(())
    }

    pub fn set_selected_corpora(&mut self, selected_corpora: BTreeSet<String>) -> Result<()> {
        self.selected_corpora = selected_corpora;
        Self::update_session(&self.session, &self.selected_corpora)?;
        Ok(())
    }

    pub fn selected_corpora(&self) -> &BTreeSet<String> {
        &self.selected_corpora
    }

    pub fn id(&self) -> &str {
        &self.session_id
    }

    pub fn expiration_time(&self) -> Option<OffsetDateTime> {
        self.session.expiration_time()
    }
}

#[async_trait]
impl<S> FromRequestParts<S> for Session
where
    S: Send + Sync,
{
    type Rejection = AppError;

    async fn from_request_parts(
        req: &mut Parts,
        state: &S,
    ) -> std::result::Result<Self, Self::Rejection> {
        let session = tower_sessions::Session::from_request_parts(req, state).await?;
        let selected_corpora: BTreeSet<String> = session
            .get(Session::SELECTED_CORPORA_KEY)?
            .unwrap_or_default();

        Self::update_session(&session, &selected_corpora)?;

        Ok(Self {
            session_id: session.id().to_string(),
            session,
            selected_corpora,
        })
    }
}

#[derive(Debug)]
pub struct ExportJob {
    pub handle: JoinHandle<Result<NamedTempFile>>,
    progress: f32,
    progress_receiver: Receiver<f32>,
}

impl ExportJob {
    pub fn new(
        handle: JoinHandle<Result<NamedTempFile>>,
        progress_receiver: Receiver<f32>,
    ) -> ExportJob {
        ExportJob {
            handle,
            progress_receiver,
            progress: 0.0,
        }
    }

    pub fn get_progress(&mut self) -> f32 {
        while let Ok(new_progress) = self.progress_receiver.try_recv() {
            self.progress = new_progress;
        }
        self.progress
    }
}

#[derive(Clone)]
pub enum SessionArg {
    Session(Session),
    Id(String),
}

impl SessionArg {
    pub fn id(&self) -> String {
        match self {
            SessionArg::Session(s) => s.id().to_string(),
            SessionArg::Id(id) => id.to_string(),
        }
    }
}

pub struct GlobalAppState {
    pub service_url: Url,
    pub templates: minijinja::Environment<'static>,
    pub oauth2_client: Option<BasicClient>,
    pub background_jobs: DashMap<String, ExportJob>,
    pub auth_requests: DashMap<String, PkceCodeVerifier>,
    pub login_info: Arc<DashMap<String, LoginInfo>>,
    default_client: reqwest::Client,
}

impl GlobalAppState {
    pub fn new(config: &CliConfig) -> Result<Self> {
        let oauth2_client = config.create_oauth2_basic_client()?;

        let mut templates = minijinja::Environment::new();

        // Define any global variables
        templates.add_global("url_prefix", config.frontend_prefix.to_string());
        templates.add_global("login_configured", oauth2_client.is_some());

        // Load templates by name from the included templates folder
        templates.set_loader(|name| {
            if let Some(file) = TEMPLATES_DIR.get_file(name) {
                Ok(file.contents_utf8().map(|s| s.to_string()))
            } else {
                Ok(None)
            }
        });

        let login_info: DashMap<String, LoginInfo> = DashMap::new();
        let login_info = Arc::new(login_info);

        // Add a function for the template that allows to easily extract the username
        let login_info_for_template = login_info.clone();
        templates.add_function("username", move |session: Value| -> Value {
            if let Ok(session_id) = session.get_attr("session_id") {
                if let Some(l) = login_info_for_template.get(&session_id.to_string()) {
                    if let Ok(Some(username)) = l.user_id() {
                        return Value::from(username);
                    }
                }
            }
            Value::UNDEFINED
        });

        let service_url = if config.service_url.is_empty() {
            Url::parse("http://127.0.0.1:5711")?
        } else {
            Url::parse(&config.service_url)?
        };
        let default_client = reqwest::ClientBuilder::new().build()?;
        let result = Self {
            service_url,
            background_jobs: DashMap::new(),
            templates,
            auth_requests: DashMap::new(),
            login_info,
            oauth2_client,
            default_client,
        };
        Ok(result)
    }

    pub fn create_client(&self, session: &SessionArg) -> Result<reqwest::Client> {
        if let SessionArg::Session(session) = session {
            // Mark this login info as accessed, so we know it is not stale and should not be removed
            self.login_info
                .alter(&session.id().to_string(), |_, mut l| {
                    if let (Some(old_expiry), Some(new_expiry)) =
                        (l.expires_unix(), session.expiration_time())
                    {
                        // Check if the new expiration date is actually longer before replacing it
                        if old_expiry < new_expiry.unix_timestamp() {
                            l.set_expiration_unix(Some(new_expiry.unix_timestamp()));
                        }
                    } else {
                        // Use the new expiration date
                        l.set_expiration_unix(
                            session.expiration_time().map(|t| t.unix_timestamp()),
                        );
                    }
                    l
                });
        }

        if let Some(login) = &self.login_info.get(&session.id()) {
            // Return the authentifacted client
            Ok(login.get_client())
        } else {
            // Fallback to the default client
            Ok(self.default_client.clone())
        }
    }

    /// Cleans up ressources coupled to sessions that are expired or non-existing.
    pub async fn cleanup(&self) {
        self.login_info.retain(|_session_id, login_info| {
            if let Some(expiry) = login_info.expires_unix() {
                Utc::now().timestamp() < expiry
            } else {
                true
            }
        });
    }
}

#[cfg(test)]
mod tests {

    use crate::config::CliConfig;

    use super::*;

    use oauth2::{basic::BasicTokenType, AccessToken, StandardTokenResponse};

    #[test]
    fn client_access_time_updated_existing() {
        let config = CliConfig::default();
        let state = GlobalAppState::new(&config).unwrap();

        // Create a session that should be updated when accessed
        let now = OffsetDateTime::now_utc();

        // The user session will only expire in 1 day
        let session_expiration = now.checked_add(time::Duration::days(1)).unwrap();
        let raw_session = tower_sessions::Session::new(Some(session_expiration));
        let session_id = raw_session.id().to_string();

        let mut session = Session::default();
        session.session_id = session_id.clone();
        session.session = raw_session;

        let access_token = AccessToken::new("ABC".into());
        let token_response = StandardTokenResponse::new(
            access_token,
            BasicTokenType::Bearer,
            oauth2::EmptyExtraTokenFields {},
        );
        // Simulate an old access to the login info, which would trigger a cleanup
        let expired_login_info =
            LoginInfo::from_token(token_response, Some(now.unix_timestamp() - 1)).unwrap();

        state
            .login_info
            .insert(session.session_id.clone(), expired_login_info.clone());

        let session_arg = SessionArg::Session(session.clone());
        state.create_client(&session_arg).unwrap();
        // The login info expiration time must be updated to match the session
        assert_eq!(
            Some(session_expiration.unix_timestamp()),
            state.login_info.get(&session_id).unwrap().expires_unix()
        );
    }

    #[test]
    fn client_access_time_updated_set_from_session() {
        let config = CliConfig::default();
        let state = GlobalAppState::new(&config).unwrap();

        // Create a session that should be updated when accessed
        let now = OffsetDateTime::now_utc();

        // The user session will only expire in 1 day
        let session_expiration = now.checked_add(time::Duration::days(1)).unwrap();
        let raw_session = tower_sessions::Session::new(Some(session_expiration));
        let session_id = raw_session.id().to_string();

        let mut session = Session::default();
        session.session_id = session_id.clone();
        session.session = raw_session;

        let access_token = AccessToken::new("ABC".into());
        let token_response = StandardTokenResponse::new(
            access_token,
            BasicTokenType::Bearer,
            oauth2::EmptyExtraTokenFields {},
        );
        // Simulate an old access to the login info, which does not have a expiration date
        let expired_login_info = LoginInfo::from_token(token_response, None).unwrap();

        state
            .login_info
            .insert(session.session_id.clone(), expired_login_info.clone());

        let session_arg = SessionArg::Session(session.clone());
        state.create_client(&session_arg).unwrap();
        // The login info expiration time must be updated to match the session
        assert_eq!(
            Some(session_expiration.unix_timestamp()),
            state.login_info.get(&session_id).unwrap().expires_unix()
        );
    }
}