src/controller/login.rs


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86

use bcrypt;
use hyper::{Body, Response};
use sqlx::sqlite::SqlitePool;
use std::collections::HashMap;
use tera::{Context, Tera};
use uuid::Uuid;

use crate::controller::wallet::Wallet;
use crate::controller::{error, utils};
use crate::db;
use crate::model::config::Config;
use crate::model::user::User;
use crate::validation;

pub async fn page(
    assets: &HashMap<String, String>,
    templates: &Tera,
    error: Option<String>,
) -> Response<Body> {
    let connected_user: Option<User> = None;

    let mut context = Context::new();
    context.insert("connected_user", &connected_user);
    context.insert("error", &error);

    utils::template(assets, templates, "login.html", context)
}

pub async fn login(
    config: Config,
    assets: &HashMap<String, String>,
    templates: &Tera,
    form: HashMap<String, String>,
    pool: SqlitePool,
) -> Response<Body> {
    let not_authorized = page(
        assets,
        templates,
        Some("Vous n’êtes pas autorisé à vous connecter.".to_string()),
    )
    .await;
    let server_error =
        page(assets, templates, Some("Erreur serveur.".to_string())).await;
    match validation::login::login(&form) {
        Some(login) => {
            match db::users::get_password_hash(&pool, login.email.clone()).await
            {
                Some(hash) => match bcrypt::verify(login.password, &hash) {
                    Ok(true) => {
                        let login_token = Uuid::new_v4();
                        if db::users::set_login_token(
                            &pool,
                            login.email,
                            login_token.clone().to_string(),
                        )
                        .await
                        {
                            utils::with_login_cookie(
                                config,
                                login_token,
                                utils::redirect("/"),
                            )
                        } else {
                            server_error
                        }
                    }
                    Ok(false) => not_authorized,
                    Err(err) => {
                        error!("Error verifying bcrypt password: {:?}", err);
                        server_error
                    }
                },
                None => not_authorized,
            }
        }
        None => not_authorized,
    }
}

pub async fn logout(config: Config, wallet: &Wallet) -> Response<Body> {
    if db::users::remove_login_token(&wallet.pool, wallet.user.id).await {
        utils::with_logout_cookie(config, utils::redirect("/"))
    } else {
        error::error(&wallet, "Erreur serveur", "Erreur serveur")
    }
}