micron 0.1.0

Build web apps fast. Repeat.
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108

use std::time::{Duration, Instant};

use argon2::password_hash::SaltString;
use argon2::{Argon2, PasswordHash, PasswordHasher, PasswordVerifier};
use axum::routing::{get, post};
use axum::{Extension, Router};
use chrono::{DateTime, Utc};
use serde::{Deserialize, Serialize};
use uuid::Uuid;

use crate::api::{AuthDuration, AuthScope};
use crate::db::{decode, encode, Collectable, Database, Identifiable};
use crate::error::{Error, ErrorKind, Result};
use crate::{Config, UserId};

pub mod login;

pub fn hash_password(password: &str) -> Result<String> {
    let salt = SaltString::generate(&mut rand::thread_rng());
    // TODO argon params?
    let password_hash = Argon2::default()
        .hash_password(password.as_bytes(), &salt)?
        .to_string();
    Ok(password_hash)
}

pub fn validate_password(password: &[u8], expected_password_hash: &str) -> Result<()> {
    let expected_password_hash = PasswordHash::new(expected_password_hash)
        .map_err(|_| ErrorKind::Other("Failed to parse hash in PHC string format.".to_string()))?;
    Argon2::default().verify_password(password, &expected_password_hash)?;
    // .context("Invalid password.")
    // .map(Error::AuthFailed)?;

    Ok(())
}

pub type TokenId = Uuid;

#[derive(Clone, Debug, Default, Serialize, Deserialize)]
#[serde(default)]
pub struct TokenMeta {
    pub id: Uuid,
    pub user_id: Uuid,
    pub issued_at: DateTime<Utc>,
    pub scope: AuthScope,
    pub duration: AuthDuration,

    pub browser: String,
    pub ip_addr: String,
    pub context: String,
}

impl Collectable for TokenMeta {
    fn get_collection_name() -> &'static str {
        "access_tokens"
    }
}

impl Identifiable for TokenMeta {
    fn get_id(&self) -> Uuid {
        self.id
    }
}

impl TokenMeta {
    pub fn new(user_id: Uuid) -> Self {
        Self {
            id: TokenId::new_v4(),
            user_id,
            issued_at: Utc::now(),
            scope: AuthScope::Public,
            duration: AuthDuration::Short,
            context: "".to_string(),
            browser: "Unknown".to_string(),
            ip_addr: "Unknown".to_string(),
        }
    }

    /// Returns true if the token is expired.
    pub fn is_expired(&self) -> bool {
        let delta_time = Utc::now() - self.issued_at;
        let duration: Duration = self.duration.into();
        if delta_time.num_seconds() as u64 > duration.as_secs() {
            true
        } else {
            false
        }
    }
}

#[derive(Clone, Debug, Serialize, Deserialize)]
pub struct ConfirmationKey {
    pub user: UserId,
    pub key: Uuid,
}

impl Collectable for ConfirmationKey {
    fn get_collection_name() -> &'static str {
        "confirmation_keys"
    }
}

impl Identifiable for ConfirmationKey {
    fn get_id(&self) -> Uuid {
        // here the key itself is also the identificator
        self.key
    }
}