mairie360_api_lib 0.3.2

Lib for mairie360 APIs
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100

use crate::database::db_interface::get_db_interface;
use crate::database::db_interface::QueryResultView;
use crate::database::postgresql::queries::DoesUserExistByIdQuery;
use crate::database::queries_result_views::utils::get_boolean_from_query_result;
use crate::jwt_manager::get_timeout_from_jwt;
use crate::jwt_manager::get_user_id_from_jwt;
use crate::jwt_manager::verify_jwt_timeout;

/**
 * This module provides functionality to check the validity of a JWT token.
 * It verifies if the token is provided, checks if the user exists,
 * and validates the token's expiration.
 *
 * # Errors
 * Returns an error if:
 * - No token is provided
 * - The token is expired
 * - The token is invalid
 * - The user does not exist in the database
 */
pub enum JWTCheckError {
    DatabaseError,
    NoTokenProvided,
    ExpiredToken,
    InvalidToken,
    UnknownUser,
}

/**
 * Checks the validity of a JWT token.
 *
 * # Arguments
 * - `jwt`: A string slice that holds the JWT token to be checked.
 *
 * # Returns
 * - `Ok(())` if the token is valid and the user exists.
 * - `Err(JWTCheckError)` if the token is invalid, expired, or the user does not exist.
 */
pub async fn check_jwt_validity(jwt: &str) -> Result<(), JWTCheckError> {
    if jwt.is_empty() {
        eprintln!("No JWT token provided.");
        return Err(JWTCheckError::NoTokenProvided);
    }
    let user_id = match get_user_id_from_jwt(&jwt) {
        Some(id) => id,
        None => {
            eprintln!("Failed to decode JWT token.");
            return Err(JWTCheckError::InvalidToken);
        }
    };

    let parsed_user_id: usize = match user_id.parse() {
        Ok(id) => id,
        Err(_) => {
            eprintln!("Failed to parse user ID from JWT.");
            return Err(JWTCheckError::InvalidToken);
        }
    };

    let query: DoesUserExistByIdQuery = DoesUserExistByIdQuery::new(parsed_user_id as u64);

    let result = {
        let guard = get_db_interface().lock().unwrap();
        let db = guard.as_ref().unwrap();
        db.execute_query(query).await
    };

    let exist = match result {
        Ok(res) => get_boolean_from_query_result(res.get_result()),
        Err(e) => {
            eprintln!("Database query error: {}", e);
            return Err(JWTCheckError::DatabaseError);
        }
    };

    if exist {
        let timeout: usize = match get_timeout_from_jwt(&jwt) {
            Some(t) => t,
            None => {
                eprintln!("Failed to retrieve timeout from JWT.");
                return Err(JWTCheckError::InvalidToken);
            }
        };

        match verify_jwt_timeout(timeout) {
            Ok(true) => Ok(()),
            Ok(false) => {
                eprintln!("JWT token is expired.");
                Err(JWTCheckError::ExpiredToken)
            }
            Err(e) => {
                eprintln!("Error verifying JWT timeout: {}", e);
                Err(JWTCheckError::InvalidToken)
            }
        }
    } else {
        eprintln!("User does not exist with ID: {}", user_id);
        return Err(JWTCheckError::UnknownUser);
    }
}