Temp updated
This commit is contained in:
Benjamin Sherriff
@@ -1,6 +1,6 @@
|
||||
use std::future::{ready, Ready};
|
||||
use std::{future::{ready, Ready, Future}, pin::Pin};
|
||||
use actix_identity::Identity;
|
||||
use actix_web::{FromRequest, Error as ActixError, HttpRequest, dev::Payload};
|
||||
use actix_web::{FromRequest, Error as ActixError, HttpRequest, dev::Payload, error::{ErrorUnauthorized, ErrorInternalServerError}};
|
||||
use argon2::{password_hash::{rand_core::OsRng, PasswordHasher, PasswordVerifier, SaltString, Error as HashError}, Argon2, PasswordHash};
|
||||
use diesel::prelude::*;
|
||||
use serde::{Serialize, Deserialize};
|
||||
@@ -42,25 +42,47 @@ pub struct LoggedUser {
|
||||
|
||||
impl FromRequest for LoggedUser {
|
||||
type Error = ActixError;
|
||||
type Future = Ready<Result<LoggedUser, ActixError>>;
|
||||
// type Future = Ready<Result<LoggedUser, ActixError>>;
|
||||
// type Future = std::pin::Pin<Box<dyn std::future::Future<Output = Result<LoggedUser, ActixError>>>>;
|
||||
type Future = Pin<Box<dyn Future<Output = Result<Self, Self::Error>>>>;
|
||||
|
||||
fn from_request(req: &HttpRequest, pl: &mut Payload) -> Self::Future {
|
||||
if let Ok(identity) = Identity::from_request(req, pl).into_inner() {
|
||||
if let Ok(user_json) = identity.id() {
|
||||
if let Ok(user) = serde_json::from_str(&user_json) {
|
||||
return ready(Ok(user));
|
||||
}
|
||||
}
|
||||
}
|
||||
std::future::ready(Err(
|
||||
ActixError::from(ServiceError {
|
||||
status: 401,
|
||||
message: "Unauthorized".to_string(),
|
||||
})
|
||||
))
|
||||
// if let Ok(identity) = Identity::from_request(req, pl).into_inner() {
|
||||
// if let Ok(user_json) = identity.id() {
|
||||
// if let Ok(user) = serde_json::from_str(&user_json) {
|
||||
// return ready(Ok(user));
|
||||
// }
|
||||
// }
|
||||
// }
|
||||
// std::future::ready(Err(
|
||||
// ActixError::from(ServiceError {
|
||||
// status: 401,
|
||||
// message: "Unauthorized".to_string(),
|
||||
// })
|
||||
// ))
|
||||
let identity = Identity::extract(req).into_inner();
|
||||
Box::pin(async move {
|
||||
process_req_auth_data(identity).await
|
||||
})
|
||||
}
|
||||
}
|
||||
|
||||
async fn process_req_auth_data(identity: Result<Identity, ActixError>) -> Result<LoggedUser, ActixError> {
|
||||
let id = identity
|
||||
.map_err(|_| ErrorUnauthorized("You are not logged in; 1"))?
|
||||
.id()
|
||||
.map_err(|_| ErrorUnauthorized("You are not logged in; 3"))?;
|
||||
let logged_user = match serde_json::from_str::<LoggedUser>(&id) {
|
||||
Ok(user) => user,
|
||||
Err(err) => return Err(ErrorInternalServerError(err))
|
||||
};
|
||||
|
||||
let user = QueryUser::get_by_email(&logged_user.email)
|
||||
.map_err(|_| ErrorUnauthorized("You are not logged in; 3"))?;
|
||||
|
||||
Ok(LoggedUser { email: user.email })
|
||||
}
|
||||
|
||||
#[derive(Debug, Queryable, QueryableByName, Serialize, Deserialize)]
|
||||
#[diesel(table_name = users)]
|
||||
pub struct QueryUser {
|
||||
|
||||
@@ -30,39 +30,38 @@ async fn register(user: web::Json<RegisterUser>) -> HttpResponse {
|
||||
async fn login(req: HttpRequest, auth: web::Json<LoginAuth>) -> HttpResponse {
|
||||
let email = auth.email.clone();
|
||||
|
||||
match QueryUser::get_by_email(&email) {
|
||||
Ok(query_user) => {
|
||||
let hash = query_user.hash;
|
||||
let password = auth.password.as_bytes();
|
||||
match verify(&hash, password) {
|
||||
Ok(_) => {
|
||||
let user = LoggedUser {
|
||||
email: email.clone()
|
||||
};
|
||||
let user_string = serde_json::to_string(&user).unwrap();
|
||||
match Identity::login(&req.extensions(), user_string) {
|
||||
Ok(_) => HttpResponse::Ok().finish(),
|
||||
Err(err) => return ResponseError::error_response(&err)
|
||||
}
|
||||
},
|
||||
Err(err) => ResponseError::error_response(&ServiceError {
|
||||
status: 401,
|
||||
message: err.to_string()
|
||||
})
|
||||
let query_user = match QueryUser::get_by_email(&email) {
|
||||
Ok(query_user) => query_user,
|
||||
Err(err) => return ResponseError::error_response(&err)
|
||||
};
|
||||
let hash = query_user.hash;
|
||||
let password = auth.password.as_bytes();
|
||||
match verify(&hash, password) {
|
||||
Ok(_) => {
|
||||
let user = LoggedUser {
|
||||
email: email.clone()
|
||||
};
|
||||
let user_string = serde_json::to_string(&user).unwrap();
|
||||
match Identity::login(&req.extensions(), user_string) {
|
||||
Ok(_) => HttpResponse::Ok().finish(),
|
||||
Err(err) => return ResponseError::error_response(&err)
|
||||
}
|
||||
},
|
||||
Err(err) => ResponseError::error_response(&err)
|
||||
Err(err) => ResponseError::error_response(&ServiceError {
|
||||
status: 401,
|
||||
message: err.to_string()
|
||||
})
|
||||
}
|
||||
}
|
||||
|
||||
#[post("/logout")]
|
||||
async fn logout(id: Identity) -> HttpResponse {
|
||||
id.logout();
|
||||
async fn logout(identity: Identity) -> HttpResponse {
|
||||
identity.logout();
|
||||
HttpResponse::Ok().finish()
|
||||
}
|
||||
|
||||
#[get("/me")]
|
||||
async fn me(user: LoggedUser) -> HttpResponse {
|
||||
#[get("/ping")]
|
||||
async fn ping(user: LoggedUser) -> HttpResponse {
|
||||
HttpResponse::Ok().json(user)
|
||||
}
|
||||
|
||||
@@ -71,5 +70,5 @@ pub fn init_routes(config: &mut web::ServiceConfig) {
|
||||
.service(register)
|
||||
.service(login)
|
||||
.service(logout)
|
||||
.service(me));
|
||||
.service(ping));
|
||||
}
|
||||
@@ -6,8 +6,7 @@ use std::env;
|
||||
use std::collections::HashSet;
|
||||
use std::sync::Arc;
|
||||
use actix_identity::IdentityMiddleware;
|
||||
use actix_session::{SessionMiddleware, storage::{RedisActorSessionStore, CookieSessionStore}, config::{PersistentSession, BrowserSession, CookieContentSecurity}};
|
||||
// use db::users::validator;
|
||||
use actix_session::{SessionMiddleware, storage::{RedisActorSessionStore, CookieSessionStore}, config::BrowserSession};
|
||||
use log::{error, warn, info};
|
||||
use serenity::client::Cache;
|
||||
use serenity::framework::StandardFramework;
|
||||
@@ -16,7 +15,7 @@ use serenity::prelude::*;
|
||||
use songbird::{SerenityInit, Songbird};
|
||||
|
||||
use actix_cors::Cors;
|
||||
use actix_web::{HttpServer, App, web, cookie::{time::Duration, SameSite}};
|
||||
use actix_web::{HttpServer, App, web};
|
||||
use crate::bot::{commands::oai::GPTModel, handler::Handler};
|
||||
|
||||
use dotenv::dotenv;
|
||||
@@ -114,7 +113,6 @@ async fn main() -> std::io::Result<()> {
|
||||
let port = env::var("SERVICE_PORT").unwrap_or("5000".to_string());
|
||||
|
||||
let server = match HttpServer::new(move || {
|
||||
// let auth = HttpAuthentication::bearer(validator);
|
||||
let private_key = actix_web::cookie::Key::generate();
|
||||
// let redis_host = env::var("REDIS_HOST").unwrap_or("localhost".to_string());
|
||||
// let redis_port = env::var("REDIS_PORT").unwrap_or("6379".to_string());
|
||||
@@ -127,7 +125,6 @@ async fn main() -> std::io::Result<()> {
|
||||
.cookie_name("auth".to_owned())
|
||||
.cookie_secure(false)
|
||||
.cookie_http_only(false)
|
||||
// .cookie_content_security(CookieContentSecurity::Private)
|
||||
.cookie_domain(Some("localhost".to_owned()))
|
||||
.cookie_path("/".to_owned())
|
||||
.build();
|
||||
@@ -137,9 +134,7 @@ async fn main() -> std::io::Result<()> {
|
||||
.allow_any_header()
|
||||
.supports_credentials()
|
||||
.max_age(3600);
|
||||
// let cors = Cors::permissive();
|
||||
App::new()
|
||||
// .wrap(auth)
|
||||
.wrap(IdentityMiddleware::default())
|
||||
.wrap(session)
|
||||
.wrap(cors)
|
||||
|
||||
Reference in New Issue
Block a user