shockrah/freechat
shockrah/freechat
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
586 Commits 1 Branch 0 Tags 11 MiB
11251fe6d3
Commit Graph

120 Commits

Author SHA1 Message Date
shockrah
11251fe6d3 1. adding hmac_secret as a private lazy_static variable 
This is only initialized once and is read only after the fact so it should be fine

2. Adding a Claim struct that all JWT's will use for their structure. A helpful .new() function is provided

3. AuthReason::ServerIssue(String) is a now a thing

Should help the auth module be more clear in what's  going on

4. fn get_jwt_json -> renamed from get_jwt to indicate we're getting something from json payload. Nothing more

5. async fn valid_jwt: Attempts to decode the given token, if successful it then looks if that user has given us an active jwt budget-session-key if (returns boolean)

6. wall_entry now returns an AuthReason without the sql wrapping, since thats db-lib's problem anyway

Also we're collecting all data upfront then verifying it as we go.

7. async fn login_get_jwt::ROUTE

On login_auth here we simply create a JWT for the user, store it in cache, then give it back to the user to use.
Tokens take a week to expire

8. Removed busted tests that weren't doing anything useful for the time being
 2020-12-22 21:51:23 -08:00
shockrah
c0f5908089 Tiny auth module for literally just redis and jwt things 
Also we're doing a really budget version of sessions here so we might change things later but this is fine for now
 2020-12-22 21:30:35 -08:00
shockrah
02e6c4145e now hanlding server issues with auth(since those sometimes happen) 
also renamed some vars to be more clear
 2020-12-22 21:29:43 -08:00
shockrah
47b4b7e35f Script for generating a smiple hmac value 2020-12-22 21:28:57 -08:00
shockrah
9a3833ea49 sample .env now uses redis 
Also I'm moving the redis deps to db-lib
Lazy static now added for the sake of holding the only static ref we need/want
the hmac secret
 2020-12-22 21:28:38 -08:00
shockrah
5a5ecfad26 Optimizations for buidling memcacache for our tokens 2020-12-20 19:43:27 -08:00
shockrah
88f6e5b532 skeleton code for jwt things 2020-12-18 13:03:30 -08:00
shockrah
ce79d33380 Basically a rewrite of previous docs but this one is super terse 2020-12-12 15:45:13 -08:00
shockrah
275869a6f7 showing options passed to routes in tests 2020-12-12 14:46:09 -08:00
shockrah
4ac696820e Removing dynamic routes altogether 2020-12-12 14:45:43 -08:00
shockrah
201297f4c1 Checking for valid channel.kind on /channels/create 2020-12-12 13:51:43 -08:00
shockrah
8e2b52d1c9 Moving passable tests to their own function for now as we'll need some failing tests soon 2020-12-12 13:33:21 -08:00
shockrah
13eb58ec06 * Owner perms were not being calculated correctly, this is now fixed 2020-11-21 19:18:40 -08:00
shockrah
063f2c7c48 --create-owner flag now correctly gives back the actual secret value instead of the encrypted value 2020-11-21 19:06:23 -08:00
shockrah
8661bcabe7 Removed redudancies and loud error messages 2020-11-21 19:05:44 -08:00
shockrah
f5f3df2ee2 + Created testing func which is now super easily configurable 
! This lets me specify between release and debug testing now yey
 2020-11-21 19:05:02 -08:00
shockrah
acbbaab68d create_admin flag now behaves correctly 2020-11-21 19:04:06 -08:00
shockrah
1c1bb5f3cd * -c now uses the name parameter given to it 
* new branch for failure of secret generation
 2020-11-21 13:21:44 -08:00
shockrah
b15277348f Better docs inspired jsdocs in db-lib::Member::add 2020-11-21 13:20:46 -08:00
shockrah
c80a1dab40 * clearer branching and some descriptive comments 2020-11-21 13:20:27 -08:00
shockrah
ea5162d185 + Better secret generation 
+ Helper function to clearly encrypt generated secrets
+ New test for auth::valid_secret as a sanity check
! routes::is_open is no longer retarded and behaves as expected
 2020-11-21 13:19:52 -08:00
shockrah
812d9a9615 Upgrading bcrypt's version to 0.8 from 0.6 2020-11-21 12:19:44 -08:00
shockrah
25fb3f5bb2 on delete cascade added to messages which hopefully makes channel deletion a bit better 2020-11-18 00:28:46 -08:00
shockrah
571f3a1630 db-lib::Channel::delete now gives back the actual sql error on failure 2020-11-18 00:28:08 -08:00
shockrah
159262a1f6 Merging cargo fixes from db-interface 2020-11-17 23:47:30 -08:00
shockrah
cd9d676a1e Removal of unused test 2020-11-17 23:46:40 -08:00
shockrah
eaec922693 New dependancies 
Fixing a bunch of things that cargo complains about but that really has no effect on me as a person
 2020-11-17 23:46:03 -08:00
shockrah
e4fdf4feb7 Merging new db-lib code integration 
! I should note that there are two things which are incomplete

1. channel deletion with linked messages
2. Invites module has not been refactored BUT behaves beautifully in all tests so far so i cba
 2020-11-17 22:51:59 -08:00
shockrah
774e7c679e serde_json added to db-libs depdancies list 2020-11-17 22:42:42 -08:00
shockrah
8b7684c0a7 + Fixed issue with /channels/delete return 200 on db-lib failure 2020-11-17 22:31:33 -08:00
shockrah
5d8ecdfdb7 userland::admin.rs: now uses db-lib to update permissions 
Also removed a ton of code in general
$ makes it much easier to read/debug
 2020-11-17 22:30:58 -08:00
shockrah
56041c1da5 db-lib::Member::Update no longer does 2 network hits 
Also is a lot more straight forward to use as it basically return Response::Success and Other in case of issue

Member::update_perms now a thing which is again pasted from previously working code and uses Result<_, _> return types so we can ? everywhere
$ Using ? is basically a try so latency should be reduced in this method
 2020-11-17 22:29:58 -08:00
shockrah
7c41db0648 updated dependancies for db-lib so that serde::Serialize works as intended 
Also added a macro arm to sql_err which allows for the passing of SqlError Objects through
 2020-11-17 22:27:28 -08:00
shockrah
77f6850c52 l a r g e visual cleanup 2020-11-17 00:09:03 -08:00
shockrah
751b947bef db/src/channels.rs/ : Clerical error fix in Response::Other<String> message 
src/channels.rs/ : simple log of sql error to stderr
main.rs : swapped secret and name parameters as they were backwards somehow (tfw cant type)
src/messages.sr : more clerical shit(mispelled parameter name) and logging sql to stderr
 2020-11-17 00:08:13 -08:00
shockrah
88a5d63e4f changed dev account because i nuked my db again lmao 2020-11-17 00:06:09 -08:00
shockrah
a33e517078 Messages now has a correct reference type to author_id 
Member schema just got a visual change kekw
 2020-11-17 00:05:38 -08:00
shockrah
25de3eb240 removing cargo test from actual tests because they by passed way too much logic 
also they were super aids to configure
 2020-11-17 00:04:08 -08:00
shockrah
474696eb4b Visual cleanup of routes.rs since it was basically just... awful, more cleanup one day 2020-11-16 23:12:32 -08:00
shockrah
75fcd5aef5 -c now uses db-lib as its backend 
also updated the error messages to help out server owners a bit
 2020-11-16 23:04:09 -08:00
shockrah
c6d8e3d360 userland invites endpoint now uses db::members::add as its intended 2020-11-16 22:59:28 -08:00
shockrah
f0f0272c32 Removal of unused uses or random code that was dead anyway 2020-11-16 22:58:58 -08:00
shockrah
cfc060b645 Member::add now supported however its up to the user of db-lib to create the secret(ideally one that doesn't suck) 
Literally pasted from the old version which proved to be working to I'm calling this one half way done
 2020-11-16 22:57:46 -08:00
shockrah
a9fafa8fdc casting to avoid calamity with signedness memes 2020-11-16 22:56:56 -08:00
shockrah
aa9c515b95 invites::valid_invite now uses proper db-lib function calls 2020-11-16 22:18:37 -08:00
shockrah
2448e1b200 get_online_members now uses db-lib for its back end 
This means we've removed a ton of old raw sql code
 2020-11-16 20:20:37 -08:00
shockrah
b966c61c20 Finally the change over to db::messages::Messages::send in userland code 
- removed old helper function which is no longer needed
* cleaned up responses for empty,other, and _ in /channels/create endpoint handler
 2020-11-12 13:18:43 -08:00
shockrah
d615a41c0c Messages schema now contains foreign references to channel_id; not channel_name 2020-11-12 13:17:19 -08:00
shockrah
c78c8a5502 First pass build of messages::send functionality 2020-11-12 13:16:50 -08:00
shockrah
3925e2c57f adding chrono to cargo.toml in db-lib 2020-11-12 13:15:24 -08:00