examples/simple-auth-server/src/auth_handler.rs

use actix::{Handler, Message};
use actix_web::{middleware::identity::RequestIdentity, FromRequest, HttpRequest};
use bcrypt::verify;
use diesel::prelude::*;
use errors::ServiceError;
use models::{DbExecutor, SlimUser, User};
use utils::decode_token;

#[derive(Debug, Deserialize)]
pub struct AuthData {
    pub email: String,
    pub password: String,
}

impl Message for AuthData {
    type Result = Result<SlimUser, ServiceError>;
}

impl Handler<AuthData> for DbExecutor {
    type Result = Result<SlimUser, ServiceError>;
    fn handle(&mut self, msg: AuthData, _: &mut Self::Context) -> Self::Result {
        use schema::users::dsl::{email, users};
        let conn: &PgConnection = &self.0.get().unwrap();

        let mut items = users.filter(email.eq(&msg.email)).load::<User>(conn)?;

        if let Some(user) = items.pop() {
            match verify(&msg.password, &user.password) {
                Ok(matching) => {
                    if matching {
                        return Ok(user.into());
                    }
                }
                Err(_) => (),
            }
        }
        Err(ServiceError::BadRequest(
            "Username and Password don't match".into(),
        ))
    }
}

// we need the same data
// simple aliasing makes the intentions clear and its more readable
pub type LoggedUser = SlimUser;

impl<S> FromRequest<S> for LoggedUser {
    type Config = ();
    type Result = Result<LoggedUser, ServiceError>;
    fn from_request(req: &HttpRequest<S>, _: &Self::Config) -> Self::Result {
        if let Some(identity) = req.identity() {
            let user: SlimUser = decode_token(&identity)?;
            return Ok(user as LoggedUser);
        }
        Err(ServiceError::Unauthorized)
    }
}
simple-auth-server added to examples (#65) 2018-12-09 15:55:36 +00:00			`use actix::{Handler, Message};`
update more examples and rustfmt 2019-03-09 18:03:09 -08:00			`use actix_web::{middleware::identity::RequestIdentity, FromRequest, HttpRequest};`
			`use bcrypt::verify;`
simple-auth-server added to examples (#65) 2018-12-09 15:55:36 +00:00			`use diesel::prelude::*;`
			`use errors::ServiceError;`
update more examples and rustfmt 2019-03-09 18:03:09 -08:00			`use models::{DbExecutor, SlimUser, User};`
simple-auth-server added to examples (#65) 2018-12-09 15:55:36 +00:00			`use utils::decode_token;`

			`#[derive(Debug, Deserialize)]`
			`pub struct AuthData {`
			`pub email: String,`
			`pub password: String,`
			`}`

			`impl Message for AuthData {`
			`type Result = Result<SlimUser, ServiceError>;`
			`}`

			`impl Handler<AuthData> for DbExecutor {`
			`type Result = Result<SlimUser, ServiceError>;`
			`fn handle(&mut self, msg: AuthData, _: &mut Self::Context) -> Self::Result {`
update more examples and rustfmt 2019-03-09 18:03:09 -08:00			`use schema::users::dsl::{email, users};`
simple-auth-server added to examples (#65) 2018-12-09 15:55:36 +00:00			`let conn: &PgConnection = &self.0.get().unwrap();`

update more examples and rustfmt 2019-03-09 18:03:09 -08:00			`let mut items = users.filter(email.eq(&msg.email)).load::<User>(conn)?;`
simple-auth-server added to examples (#65) 2018-12-09 15:55:36 +00:00
			`if let Some(user) = items.pop() {`
			`match verify(&msg.password, &user.password) {`
update more examples and rustfmt 2019-03-09 18:03:09 -08:00			`Ok(matching) => {`
			`if matching {`
simple-auth-server added to examples (#65) 2018-12-09 15:55:36 +00:00			`return Ok(user.into());`
update more examples and rustfmt 2019-03-09 18:03:09 -08:00			`}`
			`}`
simple-auth-server added to examples (#65) 2018-12-09 15:55:36 +00:00			`Err(_) => (),`
			`}`
			`}`
update more examples and rustfmt 2019-03-09 18:03:09 -08:00			`Err(ServiceError::BadRequest(`
			`"Username and Password don't match".into(),`
			`))`
simple-auth-server added to examples (#65) 2018-12-09 15:55:36 +00:00			`}`
			`}`

			`// we need the same data`
			`// simple aliasing makes the intentions clear and its more readable`
			`pub type LoggedUser = SlimUser;`

			`impl<S> FromRequest<S> for LoggedUser {`
			`type Config = ();`
			`type Result = Result<LoggedUser, ServiceError>;`
			`fn from_request(req: &HttpRequest<S>, _: &Self::Config) -> Self::Result {`
			`if let Some(identity) = req.identity() {`
			`let user: SlimUser = decode_token(&identity)?;`
			`return Ok(user as LoggedUser);`
			`}`
			`Err(ServiceError::Unauthorized)`
			`}`
			`}`