corund 0.2.0

Portable auth server.
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195

use diesel::prelude::*;
use serde::{Deserialize, Serialize};
use serde_json;

use crate::{
    db::{Con, Id},
    password::hash_password,
    quco::{Collection, Query},
    ryz::{err, res::Res},
    schema,
    user_change::{self, ChangeAction, NewUserChange},
    InsertReg, Reg,
};

#[derive(Serialize, Deserialize, Debug)]
pub struct User {
    pub id: Id,
    pub username: String,
    pub firstname: Option<String>,
    pub patronym: Option<String>,
    pub surname: Option<String>,
    pub rt: Option<String>,
}

#[derive(Queryable, Selectable)]
#[diesel(table_name = schema::appuser)]
#[diesel(check_for_backend(diesel::pg::Pg))]
pub struct UserTable {
    pub id: Id,
    pub hpassword: String,
    pub username: String,
    pub firstname: Option<String>,
    pub patronym: Option<String>,
    pub surname: Option<String>,
    pub rt: Option<String>,
}

impl Collection<User> for UserTable {
    fn to_msg(&self) -> User {
        User {
            id: self.id.to_owned(),
            username: self.username.to_owned(),
            firstname: self.firstname.to_owned(),
            patronym: self.patronym.to_owned(),
            surname: self.surname.to_owned(),
            rt: self.rt.to_owned(),
        }
    }
}

pub fn new(reg: &Reg, con: &mut Con) -> Res<User> {
    if reg.username.starts_with("archive::") {
        return err::res_msg("cannot accept archived usernames");
    }
    let hpassword = hash_password(&reg.password).unwrap();
    let user: UserTable = diesel::insert_into(schema::appuser::table)
        .values(&InsertReg {
            username: reg.username.to_owned(),
            hpassword: hpassword.to_owned(),
            firstname: reg.firstname.to_owned(),
            patronym: reg.patronym.to_owned(),
            surname: reg.surname.to_owned(),
        })
        .returning(UserTable::as_returning())
        .get_result(con)
        .unwrap();

    user_change::new(
        &NewUserChange {
            user_id: user.id,
            action: ChangeAction::New,
        },
        con,
    )
    .unwrap();

    Ok(user.to_msg())
}

/// Instead of deletion, users are archived, their usernames are changed to
/// be `archive::<username>` and they are no more accessible. This needs to be
/// done due to user_change synchronization needs, the changes will still point
/// to the archived user.
pub fn del(sq: &Query, con: &mut Con) -> Res<()> {
    let id = sq.get("id");
    let username = sq.get("username");
    let mut q = schema::appuser::table.into_boxed();
    if id.is_some() {
        let val = serde_json::from_value::<Id>(id.unwrap().clone()).unwrap();
        q = q.filter(schema::appuser::id.eq(val));
    }
    if username.is_some() {
        let username =
            serde_json::from_value::<String>(username.unwrap().clone())
                .unwrap();
        if username.starts_with("archive::") {
            return err::res_msg("cannot accept archived usernames");
        }
        q = q.filter(schema::appuser::username.eq(username));
    }

    let username = q
        .select(schema::appuser::username)
        .get_result::<String>(con)
        .unwrap();
    let archived_username = "archived::".to_string() + username.as_str();

    let id = diesel::update(schema::appuser::table)
        .filter(schema::appuser::username.eq(username))
        .set(schema::appuser::username.eq(archived_username))
        .returning(schema::appuser::id)
        .get_result::<Id>(con)
        .unwrap();

    user_change::new(
        &NewUserChange {
            user_id: id,
            action: ChangeAction::Del,
        },
        con,
    )
    .unwrap();

    Ok(())
}

pub fn get_by_id(id: i32, con: &mut Con) -> Res<User> {
    Ok(schema::appuser::table
        .filter(schema::appuser::id.eq(id))
        .filter(schema::appuser::username.not_like("archived::%"))
        .select(UserTable::as_select())
        .first(con)
        .unwrap()
        .to_msg())
}

pub fn get_by_username(
    username: &String,
    con: &mut Con,
) -> Res<(User, String)> {
    if username.starts_with("archive::") {
        return err::res_msg("cannot accept archived usernames");
    }
    let user: UserTable = schema::appuser::table
        .filter(schema::appuser::username.eq(username))
        .select(UserTable::as_select())
        .first(con)
        .unwrap();
    Ok((user.to_msg(), user.hpassword))
}

pub fn get_by_rt(rt: &String, con: &mut Con) -> Res<(User, String)> {
    let user: UserTable = schema::appuser::table
        .filter(schema::appuser::rt.eq(rt))
        .filter(schema::appuser::username.not_like("archived::%"))
        .select(UserTable::as_select())
        .first(con)
        .unwrap();
    Ok((user.to_msg(), user.hpassword))
}

pub fn del_rt(rt: &String, con: &mut Con) -> Res<()> {
    // here we can delete rt even for archived users
    diesel::update(schema::appuser::table.filter(schema::appuser::rt.eq(rt)))
        .set(schema::appuser::rt.eq::<Option<String>>(None))
        .execute(con)
        .unwrap();
    Ok(())
}

pub fn set_rt_for_username(
    username: &String,
    rt: &String,
    con: &mut Con,
) -> Res<()> {
    if username.starts_with("archive::") {
        return err::res_msg("cannot accept archived usernames");
    }
    diesel::update(
        schema::appuser::table.filter(schema::appuser::username.eq(username)),
    )
    .set(schema::appuser::rt.eq::<Option<String>>(Some(rt.to_owned())))
    .execute(con)
    .unwrap();
    Ok(())
}

pub fn get_many_as_ids(con: &mut Con) -> Res<Vec<Id>> {
    let ids = schema::appuser::table
        .filter(schema::appuser::username.not_like("archived::%"))
        .select(schema::appuser::id)
        .get_results::<Id>(con)
        .unwrap();
    Ok(ids)
}