use actix_web::{web, HttpRequest, HttpResponse};
use sqlx::PgPool;
use tracing::field::Empty;
use crate::{
db::NewUser, services::auth::validate_request_with_basic_auth, services::jwt::JwtClient,
};
use super::ApplicationResponse;
#[tracing::instrument(name = "handlers::auth::login", skip(request, pool, jwt_client), fields(username=Empty, user_id=Empty))]
pub async fn login(
request: web::HttpRequest,
pool: web::Data<PgPool>,
jwt_client: web::Data<JwtClient>,
) -> ApplicationResponse {
let user = validate_request_with_basic_auth(request, &pool).await?;
tracing::Span::current().record("username", &tracing::field::display(&user.username));
tracing::Span::current().record("user_id", &tracing::field::display(&user.id));
let token = jwt_client.encode_token(user.id)?;
Ok(HttpResponse::Ok().body(token))
}
#[tracing::instrument(name = "handlers::auth::logout")]
pub async fn logout() -> ApplicationResponse {
Ok(HttpResponse::BadRequest().body("Logouts with JWT's are performed client-side"))
}
#[derive(serde::Deserialize)]
pub struct RegistrationRequest {
pub username: String,
pub password: String,
}
#[tracing::instrument(name = "handlers::auth::register", skip(pool, query), fields(username=%query.username, user_id=Empty))]
pub async fn register(
pool: web::Data<PgPool>,
query: web::Form<RegistrationRequest>,
) -> ApplicationResponse {
let new_user = NewUser::new(query.username.clone(), query.password.clone());
new_user.store(&pool).await?;
tracing::Span::current().record("user_id", &tracing::field::display(&new_user.id));
Ok(HttpResponse::Ok().body("New user stored.".to_string()))
}
#[tracing::instrument(name = "handlers::auth::whoami", skip(request, jwt_client), fields(username=Empty, user_id=Empty))]
pub async fn who_am_i(
request: HttpRequest,
jwt_client: web::Data<JwtClient>,
) -> ApplicationResponse {
let user = jwt_client.user_or_403(request).await?;
Ok(HttpResponse::Ok().body(user.username))
}