125 lines
2.8 KiB
Rust
125 lines
2.8 KiB
Rust
use anyhow::*;
|
|
use core::ops::Deref;
|
|
use diesel;
|
|
use diesel::prelude::*;
|
|
|
|
use crate::db::users;
|
|
use crate::db::ConnectionSource;
|
|
|
|
#[derive(Debug, Insertable, Queryable)]
|
|
#[table_name = "users"]
|
|
pub struct User {
|
|
pub name: String,
|
|
pub password_hash: String,
|
|
pub admin: i32,
|
|
}
|
|
|
|
const HASH_ITERATIONS: u32 = 10000;
|
|
|
|
impl User {
|
|
pub fn new(name: &str, password: &str) -> Result<User> {
|
|
let hash = hash_password(password)?;
|
|
Ok(User {
|
|
name: name.to_owned(),
|
|
password_hash: hash,
|
|
admin: 0,
|
|
})
|
|
}
|
|
}
|
|
|
|
pub fn hash_password(password: &str) -> Result<String> {
|
|
match pbkdf2::pbkdf2_simple(password, HASH_ITERATIONS) {
|
|
Ok(hash) => Ok(hash),
|
|
Err(e) => Err(e.into()),
|
|
}
|
|
}
|
|
|
|
fn verify_password(password_hash: &str, attempted_password: &str) -> bool {
|
|
pbkdf2::pbkdf2_check(attempted_password, password_hash).is_ok()
|
|
}
|
|
|
|
pub fn auth<T>(db: &T, username: &str, password: &str) -> Result<bool>
|
|
where
|
|
T: ConnectionSource,
|
|
{
|
|
use crate::db::users::dsl::*;
|
|
let connection = db.get_connection();
|
|
match users
|
|
.select(password_hash)
|
|
.filter(name.eq(username))
|
|
.get_result(connection.deref())
|
|
{
|
|
Err(diesel::result::Error::NotFound) => Ok(false),
|
|
Ok(hash) => {
|
|
let hash: String = hash;
|
|
Ok(verify_password(&hash, password))
|
|
}
|
|
Err(e) => Err(e.into()),
|
|
}
|
|
}
|
|
|
|
pub fn count<T>(db: &T) -> Result<i64>
|
|
where
|
|
T: ConnectionSource,
|
|
{
|
|
use crate::db::users::dsl::*;
|
|
let connection = db.get_connection();
|
|
let count = users.count().get_result(connection.deref())?;
|
|
Ok(count)
|
|
}
|
|
|
|
pub fn is_admin<T>(db: &T, username: &str) -> Result<bool>
|
|
where
|
|
T: ConnectionSource,
|
|
{
|
|
use crate::db::users::dsl::*;
|
|
let connection = db.get_connection();
|
|
let is_admin: i32 = users
|
|
.filter(name.eq(username))
|
|
.select(admin)
|
|
.get_result(connection.deref())?;
|
|
Ok(is_admin != 0)
|
|
}
|
|
|
|
pub fn lastfm_link<T>(db: &T, username: &str, lastfm_login: &str, session_key: &str) -> Result<()>
|
|
where
|
|
T: ConnectionSource,
|
|
{
|
|
use crate::db::users::dsl::*;
|
|
let connection = db.get_connection();
|
|
diesel::update(users.filter(name.eq(username)))
|
|
.set((
|
|
lastfm_username.eq(lastfm_login),
|
|
lastfm_session_key.eq(session_key),
|
|
))
|
|
.execute(connection.deref())?;
|
|
Ok(())
|
|
}
|
|
|
|
pub fn get_lastfm_session_key<T>(db: &T, username: &str) -> Result<String>
|
|
where
|
|
T: ConnectionSource,
|
|
{
|
|
use crate::db::users::dsl::*;
|
|
let connection = db.get_connection();
|
|
let token = users
|
|
.filter(name.eq(username))
|
|
.select(lastfm_session_key)
|
|
.get_result(connection.deref())?;
|
|
match token {
|
|
Some(t) => Ok(t),
|
|
_ => Err(anyhow!("Missing LastFM credentials")),
|
|
}
|
|
}
|
|
|
|
pub fn lastfm_unlink<T>(db: &T, username: &str) -> Result<()>
|
|
where
|
|
T: ConnectionSource,
|
|
{
|
|
use crate::db::users::dsl::*;
|
|
let connection = db.get_connection();
|
|
diesel::update(users.filter(name.eq(username)))
|
|
.set((lastfm_session_key.eq(""), lastfm_username.eq("")))
|
|
.execute(connection.deref())?;
|
|
Ok(())
|
|
}
|