Closes #16. Impl auth as extractor

author: FxQnLr <[email protected]> 2024-02-25 15:15:19 +0100
committer: FxQnLr <[email protected]> 2024-02-25 15:15:19 +0100
commit: 9058f191b69ecafc8fdeace227ac113412d03888 (patch)
tree: 88ae071fa31c9a5831722ec82878ccf8fd2b224a /src/routes
parent: 2f9f18b80a9e2134f674f345e48a5f21de5efadd (diff)
download: webol-9058f191b69ecafc8fdeace227ac113412d03888.tar
webol-9058f191b69ecafc8fdeace227ac113412d03888.tar.gz
webol-9058f191b69ecafc8fdeace227ac113412d03888.zip
2 files changed, 73 insertions, 105 deletions
diff --git a/src/routes/device.rs b/src/routes/device.rs
index 2f0093d..d39d98e 100644
--- a/src/routes/device.rs
+++ b/src/routes/device.rs
@@ -1,8 +1,6 @@
-use crate::auth::auth;
 use crate::db::Device;
 use crate::error::Error;
 use axum::extract::State;
-use axum::http::HeaderMap;
 use axum::Json;
 use mac_address::MacAddress;
 use serde::{Deserialize, Serialize};
@@ -13,31 +11,24 @@ use tracing::{debug, info};
 pub async fn get(
    State(state): State<Arc<crate::AppState>>,
-    headers: HeaderMap,
    Json(payload): Json<GetDevicePayload>,
 ) -> Result<Json<Value>, Error> {
    info!("get device {}", payload.id);
-    let secret = headers.get("authorization");
+    let device = sqlx::query_as!(
-    let authorized = matches!(auth(&state.config, secret)?, crate::auth::Response::Success);
+        Device,
-    if authorized {
+        r#"
-        let device = sqlx::query_as!(
+        SELECT id, mac, broadcast_addr, ip, times
-            Device,
+        FROM devices
-            r#"
+        WHERE id = $1;
-            SELECT id, mac, broadcast_addr, ip, times
+        "#,
-            FROM devices
+        payload.id
-            WHERE id = $1;
+    )
-            "#,
+    .fetch_one(&state.db)
-            payload.id
+    .await?;
-        )
-        .fetch_one(&state.db)
-        .await?;
-        debug!("got device {:?}", device);
+    debug!("got device {:?}", device);
-        Ok(Json(json!(device)))
+    Ok(Json(json!(device)))
-    } else {
-        Err(Error::Generic)
-    }
 }
 #[derive(Deserialize)]
@@ -47,7 +38,6 @@ pub struct GetDevicePayload {
 pub async fn put(
    State(state): State<Arc<crate::AppState>>,
-    headers: HeaderMap,
    Json(payload): Json<PutDevicePayload>,
 ) -> Result<Json<Value>, Error> {
    info!(
@@ -55,28 +45,22 @@ pub async fn put(
        payload.id, payload.mac, payload.broadcast_addr, payload.ip
    );
    
-    let secret = headers.get("authorization");
+    let ip = IpNetwork::from_str(&payload.ip)?;
-    let authorized = matches!(auth(&state.config, secret)?, crate::auth::Response::Success);
+    let mac = MacAddress::from_str(&payload.mac)?;
-    if authorized {
+    sqlx::query!(
-        let ip = IpNetwork::from_str(&payload.ip)?;
+        r#"
-        let mac = MacAddress::from_str(&payload.mac)?;
+        INSERT INTO devices (id, mac, broadcast_addr, ip)
-        sqlx::query!(
+        VALUES ($1, $2, $3, $4);
-            r#"
+        "#,
-            INSERT INTO devices (id, mac, broadcast_addr, ip)
+        payload.id,
-            VALUES ($1, $2, $3, $4);
+        mac,
-            "#,
+        payload.broadcast_addr,
-            payload.id,
+        ip
-            mac,
+    )
-            payload.broadcast_addr,
+    .execute(&state.db)
-            ip
+    .await?;
-        )
-        .execute(&state.db)
-        .await?;
-        Ok(Json(json!(PutDeviceResponse { success: true })))
+    Ok(Json(json!(PutDeviceResponse { success: true })))
-    } else {
-        Err(Error::Generic)
-    }
 }
 #[derive(Deserialize)]
@@ -94,37 +78,30 @@ pub struct PutDeviceResponse {
 pub async fn post(
    State(state): State<Arc<crate::AppState>>,
-    headers: HeaderMap,
    Json(payload): Json<PostDevicePayload>,
 ) -> Result<Json<Value>, Error> {
    info!(
        "edit device {} ({}, {}, {})",
        payload.id, payload.mac, payload.broadcast_addr, payload.ip
    );
-    let secret = headers.get("authorization");
+    let ip = IpNetwork::from_str(&payload.ip)?;
-    let authorized = matches!(auth(&state.config, secret)?, crate::auth::Response::Success);
+    let mac = MacAddress::from_str(&payload.mac)?;
-    if authorized {
+    let device = sqlx::query_as!(
-        let ip = IpNetwork::from_str(&payload.ip)?;
+        Device,
-        let mac = MacAddress::from_str(&payload.mac)?;
+        r#"
-        let device = sqlx::query_as!(
+        UPDATE devices
-            Device,
+        SET mac = $1, broadcast_addr = $2, ip = $3 WHERE id = $4
-            r#"
+        RETURNING id, mac, broadcast_addr, ip, times;
-            UPDATE devices
+        "#,
-            SET mac = $1, broadcast_addr = $2, ip = $3 WHERE id = $4
+        mac,
-            RETURNING id, mac, broadcast_addr, ip, times;
+        payload.broadcast_addr,
-            "#,
+        ip,
-            mac,
+        payload.id
-            payload.broadcast_addr,
+    )
-            ip,
+    .fetch_one(&state.db)
-            payload.id
+    .await?;
-        )
-        .fetch_one(&state.db)
-        .await?;
-        Ok(Json(json!(device)))
+    Ok(Json(json!(device)))
-    } else {
-        Err(Error::Generic)
-    }
 }
 #[derive(Deserialize)]
diff --git a/src/routes/start.rs b/src/routes/start.rs
index 4888325..d4c0802 100644
--- a/src/routes/start.rs
+++ b/src/routes/start.rs
@@ -1,10 +1,8 @@
-use crate::auth::auth;
 use crate::db::Device;
 use crate::error::Error;
 use crate::services::ping::Value as PingValue;
 use crate::wol::{create_buffer, send_packet};
 use axum::extract::State;
-use axum::http::HeaderMap;
 use axum::Json;
 use serde::{Deserialize, Serialize};
 use serde_json::{json, Value};
@@ -14,48 +12,41 @@ use uuid::Uuid;
 pub async fn start(
    State(state): State<Arc<crate::AppState>>,
-    headers: HeaderMap,
    Json(payload): Json<Payload>,
 ) -> Result<Json<Value>, Error> {
    info!("POST request");
-    let secret = headers.get("authorization");
+    let device = sqlx::query_as!(
-    let authorized = matches!(auth(&state.config, secret)?, crate::auth::Response::Success);
+        Device,
-    if authorized {
+        r#"
-        let device = sqlx::query_as!(
+        SELECT id, mac, broadcast_addr, ip, times
-            Device,
+        FROM devices
-            r#"
+        WHERE id = $1;
-            SELECT id, mac, broadcast_addr, ip, times
+        "#,
-            FROM devices
+        payload.id
-            WHERE id = $1;
+    )
-            "#,
+    .fetch_one(&state.db)
-            payload.id
+    .await?;
-        )
-        .fetch_one(&state.db)
-        .await?;
-        info!("starting {}", device.id);
+    info!("starting {}", device.id);
-        let bind_addr = "0.0.0.0:0";
+    let bind_addr = "0.0.0.0:0";
-        let _ = send_packet(
+    let _ = send_packet(
-            bind_addr,
+        bind_addr,
-            &device.broadcast_addr,
+        &device.broadcast_addr,
-            &create_buffer(&device.mac.to_string())?,
+        &create_buffer(&device.mac.to_string())?,
-        )?;
+    )?;
-        let dev_id = device.id.clone();
+    let dev_id = device.id.clone();
-        let uuid = if payload.ping.is_some_and(|ping| ping) {
+    let uuid = if payload.ping.is_some_and(|ping| ping) {
-            Some(setup_ping(state, device))
+        Some(setup_ping(state, device))
-        } else {
-            None
-        };
-        Ok(Json(json!(Response {
-            id: dev_id,
-            boot: true,
-            uuid
-        })))
    } else {
-        Err(Error::Generic)
+        None
-    }
+    };
+    Ok(Json(json!(Response {
+        id: dev_id,
+        boot: true,
+        uuid
+    })))
 }
 fn setup_ping(state: Arc<crate::AppState>, device: Device) -> String {
author	FxQnLr <[email protected]>	2024-02-25 15:15:19 +0100
committer	FxQnLr <[email protected]>	2024-02-25 15:15:19 +0100
commit	9058f191b69ecafc8fdeace227ac113412d03888 (patch)
tree	88ae071fa31c9a5831722ec82878ccf8fd2b224a /src/routes
parent	2f9f18b80a9e2134f674f345e48a5f21de5efadd (diff)
download	webol-9058f191b69ecafc8fdeace227ac113412d03888.tar webol-9058f191b69ecafc8fdeace227ac113412d03888.tar.gz webol-9058f191b69ecafc8fdeace227ac113412d03888.zip

diff --git a/src/routes/device.rs b/src/routes/device.rs index 2f0093d..d39d98e 100644 --- a/src/routes/device.rs +++ b/src/routes/device.rs
@@ -1,8 +1,6 @@
1	use crate::auth::auth;
2	use crate::db::Device;	1	use crate::db::Device;
3	use crate::error::Error;	2	use crate::error::Error;
4	use axum::extract::State;	3	use axum::extract::State;
5	use axum::http::HeaderMap;
6	use axum::Json;	4	use axum::Json;
7	use mac_address::MacAddress;	5	use mac_address::MacAddress;
8	use serde::{Deserialize, Serialize};	6	use serde::{Deserialize, Serialize};
@@ -13,31 +11,24 @@ use tracing::{debug, info};
13		11
14	pub async fn get(	12	pub async fn get(
15	State(state): State<Arc<crate::AppState>>,	13	State(state): State<Arc<crate::AppState>>,
16	headers: HeaderMap,
17	Json(payload): Json<GetDevicePayload>,	14	Json(payload): Json<GetDevicePayload>,
18	) -> Result<Json<Value>, Error> {	15	) -> Result<Json<Value>, Error> {
19	info!("get device {}", payload.id);	16	info!("get device {}", payload.id);
20	let secret = headers.get("authorization");	17	let device = sqlx::query_as!(
21	let authorized = matches!(auth(&state.config, secret)?, crate::auth::Response::Success);	18	Device,
22	if authorized {	19	r#"
23	let device = sqlx::query_as!(	20	SELECT id, mac, broadcast_addr, ip, times
24	Device,	21	FROM devices
25	r#"	22	WHERE id = $1;
26	SELECT id, mac, broadcast_addr, ip, times	23	"#,
27	FROM devices	24	payload.id
28	WHERE id = $1;	25	)
29	"#,	26	.fetch_one(&state.db)
30	payload.id	27	.await?;
31	)
32	.fetch_one(&state.db)
33	.await?;
34		28
35	debug!("got device {:?}", device);	29	debug!("got device {:?}", device);
36		30
37	Ok(Json(json!(device)))	31	Ok(Json(json!(device)))
38	} else {
39	Err(Error::Generic)
40	}
41	}	32	}
42		33
43	#[derive(Deserialize)]	34	#[derive(Deserialize)]
@@ -47,7 +38,6 @@ pub struct GetDevicePayload {
47		38
48	pub async fn put(	39	pub async fn put(
49	State(state): State<Arc<crate::AppState>>,	40	State(state): State<Arc<crate::AppState>>,
50	headers: HeaderMap,
51	Json(payload): Json<PutDevicePayload>,	41	Json(payload): Json<PutDevicePayload>,
52	) -> Result<Json<Value>, Error> {	42	) -> Result<Json<Value>, Error> {
53	info!(	43	info!(
@@ -55,28 +45,22 @@ pub async fn put(
55	payload.id, payload.mac, payload.broadcast_addr, payload.ip	45	payload.id, payload.mac, payload.broadcast_addr, payload.ip
56	);	46	);
57		47
58	let secret = headers.get("authorization");	48	let ip = IpNetwork::from_str(&payload.ip)?;
59	let authorized = matches!(auth(&state.config, secret)?, crate::auth::Response::Success);	49	let mac = MacAddress::from_str(&payload.mac)?;
60	if authorized {	50	sqlx::query!(
61	let ip = IpNetwork::from_str(&payload.ip)?;	51	r#"
62	let mac = MacAddress::from_str(&payload.mac)?;	52	INSERT INTO devices (id, mac, broadcast_addr, ip)
63	sqlx::query!(	53	VALUES ($1, $2, $3, $4);
64	r#"	54	"#,
65	INSERT INTO devices (id, mac, broadcast_addr, ip)	55	payload.id,
66	VALUES ($1, $2, $3, $4);	56	mac,
67	"#,	57	payload.broadcast_addr,
68	payload.id,	58	ip
69	mac,	59	)
70	payload.broadcast_addr,	60	.execute(&state.db)
71	ip	61	.await?;
72	)
73	.execute(&state.db)
74	.await?;
75		62
76	Ok(Json(json!(PutDeviceResponse { success: true })))	63	Ok(Json(json!(PutDeviceResponse { success: true })))
77	} else {
78	Err(Error::Generic)
79	}
80	}	64	}
81		65
82	#[derive(Deserialize)]	66	#[derive(Deserialize)]
@@ -94,37 +78,30 @@ pub struct PutDeviceResponse {
94		78
95	pub async fn post(	79	pub async fn post(
96	State(state): State<Arc<crate::AppState>>,	80	State(state): State<Arc<crate::AppState>>,
97	headers: HeaderMap,
98	Json(payload): Json<PostDevicePayload>,	81	Json(payload): Json<PostDevicePayload>,
99	) -> Result<Json<Value>, Error> {	82	) -> Result<Json<Value>, Error> {
100	info!(	83	info!(
101	"edit device {} ({}, {}, {})",	84	"edit device {} ({}, {}, {})",
102	payload.id, payload.mac, payload.broadcast_addr, payload.ip	85	payload.id, payload.mac, payload.broadcast_addr, payload.ip
103	);	86	);
104	let secret = headers.get("authorization");	87	let ip = IpNetwork::from_str(&payload.ip)?;
105	let authorized = matches!(auth(&state.config, secret)?, crate::auth::Response::Success);	88	let mac = MacAddress::from_str(&payload.mac)?;
106	if authorized {	89	let device = sqlx::query_as!(
107	let ip = IpNetwork::from_str(&payload.ip)?;	90	Device,
108	let mac = MacAddress::from_str(&payload.mac)?;	91	r#"
109	let device = sqlx::query_as!(	92	UPDATE devices
110	Device,	93	SET mac = $1, broadcast_addr = $2, ip = $3 WHERE id = $4
111	r#"	94	RETURNING id, mac, broadcast_addr, ip, times;
112	UPDATE devices	95	"#,
113	SET mac = $1, broadcast_addr = $2, ip = $3 WHERE id = $4	96	mac,
114	RETURNING id, mac, broadcast_addr, ip, times;	97	payload.broadcast_addr,
115	"#,	98	ip,
116	mac,	99	payload.id
117	payload.broadcast_addr,	100	)
118	ip,	101	.fetch_one(&state.db)
119	payload.id	102	.await?;
120	)
121	.fetch_one(&state.db)
122	.await?;
123		103
124	Ok(Json(json!(device)))	104	Ok(Json(json!(device)))
125	} else {
126	Err(Error::Generic)
127	}
128	}	105	}
129		106
130	#[derive(Deserialize)]	107	#[derive(Deserialize)]


diff --git a/src/routes/start.rs b/src/routes/start.rs index 4888325..d4c0802 100644 --- a/src/routes/start.rs +++ b/src/routes/start.rs
@@ -1,10 +1,8 @@
1	use crate::auth::auth;
2	use crate::db::Device;	1	use crate::db::Device;
3	use crate::error::Error;	2	use crate::error::Error;
4	use crate::services::ping::Value as PingValue;	3	use crate::services::ping::Value as PingValue;
5	use crate::wol::{create_buffer, send_packet};	4	use crate::wol::{create_buffer, send_packet};
6	use axum::extract::State;	5	use axum::extract::State;
7	use axum::http::HeaderMap;
8	use axum::Json;	6	use axum::Json;
9	use serde::{Deserialize, Serialize};	7	use serde::{Deserialize, Serialize};
10	use serde_json::{json, Value};	8	use serde_json::{json, Value};
@@ -14,48 +12,41 @@ use uuid::Uuid;
14		12
15	pub async fn start(	13	pub async fn start(
16	State(state): State<Arc<crate::AppState>>,	14	State(state): State<Arc<crate::AppState>>,
17	headers: HeaderMap,
18	Json(payload): Json<Payload>,	15	Json(payload): Json<Payload>,
19	) -> Result<Json<Value>, Error> {	16	) -> Result<Json<Value>, Error> {
20	info!("POST request");	17	info!("POST request");
21	let secret = headers.get("authorization");	18	let device = sqlx::query_as!(
22	let authorized = matches!(auth(&state.config, secret)?, crate::auth::Response::Success);	19	Device,
23	if authorized {	20	r#"
24	let device = sqlx::query_as!(	21	SELECT id, mac, broadcast_addr, ip, times
25	Device,	22	FROM devices
26	r#"	23	WHERE id = $1;
27	SELECT id, mac, broadcast_addr, ip, times	24	"#,
28	FROM devices	25	payload.id
29	WHERE id = $1;	26	)
30	"#,	27	.fetch_one(&state.db)
31	payload.id	28	.await?;
32	)
33	.fetch_one(&state.db)
34	.await?;
35		29
36	info!("starting {}", device.id);	30	info!("starting {}", device.id);
37		31
38	let bind_addr = "0.0.0.0:0";	32	let bind_addr = "0.0.0.0:0";
39		33
40	let _ = send_packet(	34	let _ = send_packet(
41	bind_addr,	35	bind_addr,
42	&device.broadcast_addr,	36	&device.broadcast_addr,
43	&create_buffer(&device.mac.to_string())?,	37	&create_buffer(&device.mac.to_string())?,
44	)?;	38	)?;
45	let dev_id = device.id.clone();	39	let dev_id = device.id.clone();
46	let uuid = if payload.ping.is_some_and(\|ping\| ping) {	40	let uuid = if payload.ping.is_some_and(\|ping\| ping) {
47	Some(setup_ping(state, device))	41	Some(setup_ping(state, device))
48	} else {
49	None
50	};
51	Ok(Json(json!(Response {
52	id: dev_id,
53	boot: true,
54	uuid
55	})))
56	} else {	42	} else {
57	Err(Error::Generic)	43	None
58	}	44	};
		45	Ok(Json(json!(Response {
		46	id: dev_id,
		47	boot: true,
		48	uuid
		49	})))
59	}	50	}
60		51
61	fn setup_ping(state: Arc<crate::AppState>, device: Device) -> String {	52	fn setup_ping(state: Arc<crate::AppState>, device: Device) -> String {