feat: basic user token check

2022-03-15 15:03:58 +08:00
parent a9d7576ed4
commit e4fbbb1b7b
6 changed files with 92 additions and 38 deletions
--- a/src/api/mod.rs
+++ b/src/api/mod.rs
@@ -1,8 +1,9 @@
+use crate::models::*;
 use crate::random_hasher::RandomHasher;
 use rocket::http::Status;
 use rocket::request::{self, FromRequest, Request};
-use rocket::serde::json::{Value, json};
 use rocket::response::{self, Responder};
+use rocket::serde::json::{json, Value};

 #[catch(401)]
 pub fn catch_401_error() -> Value {
@@ -21,31 +22,32 @@ pub struct CurrentUser {
 impl<'r> FromRequest<'r> for CurrentUser {
    type Error = ();
    async fn from_request(request: &'r Request<'_>) -> request::Outcome<Self, Self::Error> {
-        let token = request.headers().get_one("User-Token");
-        match token {
-            Some(t) => request::Outcome::Success(CurrentUser {
-                namehash: request
-                    .rocket()
-                    .state::<RandomHasher>()
-                    .unwrap()
-                    .hash_with_salt(t),
-                is_admin: t == "admin",  // TODO
-            }),
-            None => request::Outcome::Failure((Status::Unauthorized, ())),
+        if let Some(token) = request.headers().get_one("User-Token") {
+            let conn = establish_connection();
+            if let Some(user) = User::get_by_token(&conn, token) {
+                return request::Outcome::Success(CurrentUser {
+                    namehash: request
+                        .rocket()
+                        .state::<RandomHasher>()
+                        .unwrap()
+                        .hash_with_salt(&user.name),
+                    is_admin: user.is_admin,
+                });
+            }
        }
+        request::Outcome::Failure((Status::Unauthorized, ()))
    }
 }

 pub enum PolicyError {
    IsReported,
    IsDeleted,
-    NotAllowed
+    NotAllowed,
 }

-
 pub enum APIError {
    DbError(diesel::result::Error),
-    PcError(PolicyError)
+    PcError(PolicyError),
 }

 impl APIError {
@@ -57,20 +59,20 @@ impl APIError {
 impl<'r> Responder<'r, 'static> for APIError {
    fn respond_to(self, req: &'r Request<'_>) -> response::Result<'static> {
        match self {
-            APIError::DbError(e) =>
-                json!({
-                    "code": -1,
-                    "msg": e.to_string()
-                }).respond_to(req),
-            APIError::PcError(e) =>
-                json!({
-                    "code": -1,
-                    "msg": match e {
-                        PolicyError::IsReported => "内容被举报，处理中",
-                        PolicyError::IsDeleted => "内容被删除",
-                        PolicyError::NotAllowed => "不允许的操作",
-                    }
-                }).respond_to(req),
+            APIError::DbError(e) => json!({
+                "code": -1,
+                "msg": e.to_string()
+            })
+            .respond_to(req),
+            APIError::PcError(e) => json!({
+                "code": -1,
+                "msg": match e {
+                    PolicyError::IsReported => "内容被举报，处理中",
+                    PolicyError::IsDeleted => "内容被删除",
+                    PolicyError::NotAllowed => "不允许的操作",
+                }
+            })
+            .respond_to(req),
        }
    }
 }