cyaxon_authifier/models/

account.rs

use iso8601_timestamp::Timestamp;

use super::MultiFactorAuthentication;

/// Email verification status
#[derive(Debug, Serialize, Deserialize, Clone)]
#[serde(tag = "status")]
pub enum EmailVerification {
	/// Account is verified
	Verified,
	/// Pending email verification
	Pending { token: String, expiry: Timestamp },
	/// Moving to a new email
	Moving {
		new_email: String,
		token: String,
		expiry: Timestamp,
	},
}

/// Password reset information
#[derive(Debug, Serialize, Deserialize, Clone)]
pub struct PasswordReset {
	/// Token required to change password
	pub token: String,
	/// Time at which this token expires
	pub expiry: Timestamp,
}

/// Account deletion information
#[derive(Debug, Serialize, Deserialize, Clone)]
#[serde(tag = "status")]
pub enum DeletionInfo {
	/// The user must confirm deletion by email
	WaitingForVerification { token: String, expiry: Timestamp },
	/// The account is scheduled for deletion
	Scheduled { after: Timestamp },
	/// This account was deleted
	Deleted,
}

/// Lockout information
#[derive(Debug, Serialize, Deserialize, Clone)]
pub struct Lockout {
	/// Attempt counter
	pub attempts: i32,
	/// Time at which this lockout expires
	pub expiry: Option<Timestamp>,
}

/// Account model
#[derive(Debug, Serialize, Deserialize, Clone)]
pub struct Account {
	/// Unique Id
	#[serde(rename = "_id")]
	pub id: String,

	/// User's email
	pub email: String,

	/// Normalized email
	pub email_normalized: String,

	/// Bcrypt hashed password
	pub password: String,

	/// Whether the account is disabled
	#[serde(default)]
	pub disabled: bool,

	/// Email verification status
	pub verification: EmailVerification,

	/// Password reset information
	pub password_reset: Option<PasswordReset>,

	/// Account deletion information
	pub deletion: Option<DeletionInfo>,

	/// Account lockout
	pub lockout: Option<Lockout>,

	/// Multi-factor authentication information
	pub mfa: MultiFactorAuthentication,
}