rocket 0.5.1

Web framework with a focus on usability, security, extensibility, and speed.
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108

#[macro_use] extern crate rocket;

use rocket::http::Status;
use rocket::request::{self, Request, FromRequest};

struct Authenticated;

#[rocket::async_trait]
impl<'r> FromRequest<'r> for Authenticated {
    type Error = std::convert::Infallible;

    async fn from_request(request: &'r Request<'_>) -> request::Outcome<Self, Self::Error> {
        if request.headers().contains("Authenticated") {
            request::Outcome::Success(Authenticated)
        } else {
            request::Outcome::Forward(Status::Unauthorized)
        }
    }
}

struct TeapotForward;

#[rocket::async_trait]
impl<'r> FromRequest<'r> for TeapotForward {
    type Error = std::convert::Infallible;

    async fn from_request(_: &'r Request<'_>) -> request::Outcome<Self, Self::Error> {
        request::Outcome::Forward(Status::ImATeapot)
    }
}

#[get("/auth")]
fn auth(_name: Authenticated) -> &'static str {
    "Protected"
}

#[get("/auth", rank = 2)]
fn public() -> &'static str {
    "Public"
}

#[get("/auth", rank = 3)]
fn teapot(_teapot: TeapotForward) -> &'static str {
    "Protected"
}

#[get("/need-auth")]
fn auth_needed(_auth: Authenticated) -> &'static str {
    "Have Auth"
}

#[catch(401)]
fn catcher() -> &'static str {
    "Custom Catcher"
}

mod tests {
    use super::*;
    use rocket::routes;
    use rocket::local::blocking::Client;
    use rocket::http::{Header, Status};

    #[test]
    fn authorized_forwards() {
        let client = Client::debug_with(routes![auth, public, auth_needed]).unwrap();

        let response = client.get("/auth")
            .header(Header::new("Authenticated", "true"))
            .dispatch();

        assert_eq!(response.status(), Status::Ok);
        assert_eq!(response.into_string().unwrap(), "Protected");

        let response = client.get("/auth").dispatch();
        assert_eq!(response.status(), Status::Ok);
        assert_eq!(response.into_string().unwrap(), "Public");

        let response = client.get("/need-auth")
            .header(Header::new("Authenticated", "true"))
            .dispatch();

        assert_eq!(response.status(), Status::Ok);
        assert_eq!(response.into_string().unwrap(), "Have Auth");

        let response = client.get("/need-auth").dispatch();
        assert_eq!(response.status(), Status::Unauthorized);
        assert!(response.into_string().unwrap().contains("Rocket"));
    }

    #[test]
    fn unauthorized_custom_catcher() {
        let rocket = rocket::build()
            .mount("/", routes![auth_needed])
            .register("/", catchers![catcher]);

        let client = Client::debug(rocket).unwrap();
        let response = client.get("/need-auth").dispatch();
        assert_eq!(response.status(), Status::Unauthorized);
        assert_eq!(response.into_string().unwrap(), "Custom Catcher");
    }

    #[test]
    fn use_last_forward() {
        let client = Client::debug_with(routes![auth, teapot]).unwrap();
        let response = client.get("/auth").dispatch();
        assert_eq!(response.status(), Status::ImATeapot);
    }
}