ayb 0.1.12-rc.7

ayb makes it easy to create, host, and share embedded databases like SQLite and DuckDB
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63

use crate::ayb_db::db_interfaces::AybDb;
use crate::ayb_db::models::{
    EntityDatabasePermission, EntityDatabaseSharingLevel, InstantiatedEntity,
};
use std::str::FromStr;

use crate::error::AybError;
use crate::http::structs::EntityDatabasePath;
use crate::server::permissions::can_manage_database;
use crate::server::utils::{get_required_header, unwrap_authenticated_entity};
use actix_web::{post, web, HttpRequest, HttpResponse};

#[post("/{entity}/{database}/share")]
async fn share(
    path: web::Path<EntityDatabasePath>,
    req: HttpRequest,
    ayb_db: web::Data<Box<dyn AybDb>>,
    authenticated_entity: Option<web::ReqData<InstantiatedEntity>>,
) -> Result<HttpResponse, AybError> {
    let entity_for_database_slug = &path.entity.to_lowercase();
    let database_slug = &path.database;
    let database = ayb_db
        .get_database(entity_for_database_slug, database_slug)
        .await?;
    let sharing_level =
        EntityDatabaseSharingLevel::from_str(&get_required_header(&req, "sharing-level")?)?;
    let entity_for_permission = ayb_db
        .get_entity_by_slug(&get_required_header(&req, "entity-for-permission")?)
        .await?;
    let authenticated_entity = unwrap_authenticated_entity(&authenticated_entity)?;
    if entity_for_permission.id == database.entity_id {
        Err(AybError::CantSetOwnerPermissions {
            message: format!(
                "{} owns {}/{}, so their permissions can't be changed",
                entity_for_permission.slug, entity_for_database_slug, database_slug
            ),
        })
    } else if can_manage_database(&authenticated_entity, &database, &ayb_db).await? {
        if sharing_level == EntityDatabaseSharingLevel::NoAccess {
            ayb_db
                .delete_entity_database_permission(entity_for_permission.id, database.id)
                .await?;
        } else {
            let permission = EntityDatabasePermission {
                entity_id: entity_for_permission.id,
                database_id: database.id,
                sharing_level: sharing_level as i16,
            };
            ayb_db
                .update_or_create_entity_database_permission(&permission)
                .await?;
        }

        Ok(HttpResponse::NoContent().into())
    } else {
        Err(AybError::Other {
            message: format!(
                "Authenticated entity {} can't set permissions for database {}/{}",
                authenticated_entity.slug, entity_for_database_slug, database_slug
            ),
        })
    }
}