shockrah/freechat
shockrah/freechat
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

auth module now parses from the query string hashmap, not serde_values

Browse Source
This commit is contained in:
shockrah 2021-02-03 13:55:25 -08:00
parent 9ceeabea3b
commit e21c5c7624
1 changed files with 17 additions and 15 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

32
json-api/src/auth.rs
View File

@ -3,6 +3,8 @@ use bcrypt::{self, BcryptResult};
use mysql_async::Pool; use mysql_async::Pool;
use chrono::{Utc, Duration}; use chrono::{Utc, Duration};
use std::collections::HashMap;
use crate::routes; use crate::routes;
use db::{member::Member, common::FromDB}; use db::{member::Member, common::FromDB};
@ -101,11 +103,6 @@ pub fn encrypt_secret(raw: &str) -> BcryptResult<String> {
return bcrypt::hash(raw, BCRYPT_COST); return bcrypt::hash(raw, BCRYPT_COST);
} }
fn jwt_from_serde(params: &serde_json::Value) -> Option<&str> {
// gets the `token` from the parameters
// option<value> -> some(value) -> string
return params.get("jwt")?.as_str();
}
async fn valid_jwt(p: &Pool, token: &str) -> AuthReason { async fn valid_jwt(p: &Pool, token: &str) -> AuthReason {
use jsonwebtoken::{ use jsonwebtoken::{
@ -131,16 +128,21 @@ async fn valid_jwt(p: &Pool, token: &str) -> AuthReason {
} }
} }
fn login_params_from_serde(params: &serde_json::Value) -> Option<(db::UBigInt, &str)> { fn login_params_from_qs<'value>(params: &HashMap<&str, &'value str>)
let id_v = params.get("id"); -> Option<(db::UBigInt, &'value str)> {
let secret_v = params.get("secret");
return match (id_v, secret_v) { return match (params.get("id"), params.get("secret")) {
(Some(id_v), Some(secret_v)) => { // partially accpept if both keys are present
match (id_v.as_u64(), secret_v.as_str()) { (Some(id), Some(secret)) => {
(Some(id), Some(secret)) => Some((id, secret)), let id_s: String = String::from(*id);
match id_s.parse::<db::UBigInt>() {
// full accpet if id can parse + secret is present
Ok(id) => Some((id, secret)),
_ => None _ => None
} }
}, },
_ => None _ => None
} }
} }
@ -149,12 +151,12 @@ fn login_params_from_serde(params: &serde_json::Value) -> Option<(db::UBigInt, &
pub async fn wall_entry<'path, 'pool, 'params>( pub async fn wall_entry<'path, 'pool, 'params>(
path: &'path str, path: &'path str,
pool: &'pool Pool, pool: &'pool Pool,
params: &'params serde_json::Value) params: &'params HashMap<&str, &str>)
-> AuthReason { -> AuthReason {
// Dont need to auth if it's not required // Dont need to auth if it's not required
let open_path = routes::is_open(path); let open_path = routes::is_open(path);
let jwt = jwt_from_serde(params); let jwt = params.get("jwt");
if open_path { // ignore the parameters since they're irelevant if open_path { // ignore the parameters since they're irelevant
return AuthReason::OpenAuth; return AuthReason::OpenAuth;
@ -164,7 +166,7 @@ pub async fn wall_entry<'path, 'pool, 'params>(
// get the headers here // get the headers here
return valid_jwt(pool, jwt).await; return valid_jwt(pool, jwt).await;
} }
if let Some((id, secret)) = login_params_from_serde(params) { if let Some((id, secret)) = login_params_from_qs(params) {
// Last chance we might be hitting the /login route so we have to do the heavy auth flow // Last chance we might be hitting the /login route so we have to do the heavy auth flow
if path != routes::AUTH_LOGIN { if path != routes::AUTH_LOGIN {