tetratto/crates/core/src/database/ipbans.rs

use super::*;
use crate::cache::Cache;
use crate::model::moderation::AuditLogEntry;
use crate::model::{Error, Result, auth::IpBan, auth::User, permissions::FinePermission};
use crate::{auto_method, execute, get, query_row};

#[cfg(feature = "sqlite")]
use rusqlite::Row;

#[cfg(feature = "postgres")]
use tokio_postgres::Row;

impl DataManager {
    /// Get a [`IpBan`] from an SQL row.
    pub(crate) fn get_ipban_from_row(
        #[cfg(feature = "sqlite")] x: &Row<'_>,
        #[cfg(feature = "postgres")] x: &Row,
    ) -> IpBan {
        IpBan {
            ip: get!(x->0(String)),
            created: get!(x->1(isize)) as usize,
            reason: get!(x->2(String)),
            moderator: get!(x->3(isize)) as usize,
        }
    }

    auto_method!(get_ipban_by_ip(&str)@get_ipban_from_row -> "SELECT * FROM ipbans WHERE ip = $1" --name="ip ban" --returns=IpBan --cache-key-tmpl="atto.ipban:{}");

    /// Create a new user block in the database.
    ///
    /// # Arguments
    /// * `data` - a mock [`IpBan`] object to insert
    pub async fn create_ipban(&self, data: IpBan) -> Result<()> {
        let user = self.get_user_by_id(data.moderator).await?;

        // ONLY moderators can create ip bans
        if !user.permissions.check(FinePermission::MANAGE_BANS) {
            return Err(Error::NotAllowed);
        }

        let conn = match self.connect().await {
            Ok(c) => c,
            Err(e) => return Err(Error::DatabaseConnection(e.to_string())),
        };

        let res = execute!(
            &conn,
            "INSERT INTO ipbans VALUES ($1, $2, $3, $4)",
            &[
                &data.ip.as_str(),
                &data.created.to_string().as_str(),
                &data.reason.as_str(),
                &data.moderator.to_string().as_str()
            ]
        );

        if let Err(e) = res {
            return Err(Error::DatabaseError(e.to_string()));
        }

        // create audit log entry
        self.create_audit_log_entry(AuditLogEntry::new(
            user.id,
            format!("invoked `create_ipban` with x value `{}`", data.ip),
        ))
        .await?;

        // return
        Ok(())
    }

    pub async fn delete_ipban(&self, ip: &str, user: User) -> Result<()> {
        // ONLY moderators can manage ip bans
        if !user.permissions.check(FinePermission::MANAGE_BANS) {
            return Err(Error::NotAllowed);
        }

        let conn = match self.connect().await {
            Ok(c) => c,
            Err(e) => return Err(Error::DatabaseConnection(e.to_string())),
        };

        let res = execute!(&conn, "DELETE FROM ipbans WHERE ip = $1", &[ip]);

        if let Err(e) = res {
            return Err(Error::DatabaseError(e.to_string()));
        }

        self.2.remove(format!("atto.ipban:{}", ip)).await;

        // create audit log entry
        self.create_audit_log_entry(AuditLogEntry::new(
            user.id,
            format!("invoked `delete_ipban` with x value `{ip}`"),
        ))
        .await?;

        // return
        Ok(())
    }
}
add: user follows, user blocks, ip bans TODO: implement user following API endpoints TODO: implement user blocking API endpoints TODO: don't allow blocked users to interact with the users who blocked them 2025-03-25 21:19:55 -04:00			`use super::*;`
			`use crate::cache::Cache;`
add: audit log, reports add: theme preference setting 2025-04-02 11:39:51 -04:00			`use crate::model::moderation::AuditLogEntry;`
add: user follows, user blocks, ip bans TODO: implement user following API endpoints TODO: implement user blocking API endpoints TODO: don't allow blocked users to interact with the users who blocked them 2025-03-25 21:19:55 -04:00			`use crate::model::{Error, Result, auth::IpBan, auth::User, permissions::FinePermission};`
			`use crate::{auto_method, execute, get, query_row};`

			`#[cfg(feature = "sqlite")]`
			`use rusqlite::Row;`

			`#[cfg(feature = "postgres")]`
			`use tokio_postgres::Row;`

			`impl DataManager {`
			/// Get a [`IpBan`] from an SQL row.
			`pub(crate) fn get_ipban_from_row(`
			`#[cfg(feature = "sqlite")] x: &Row<'_>,`
			`#[cfg(feature = "postgres")] x: &Row,`
			`) -> IpBan {`
			`IpBan {`
			`ip: get!(x->0(String)),`
add: profiles ui, communities ui, posts ui 2025-03-29 00:26:56 -04:00			`created: get!(x->1(isize)) as usize,`
add: user follows, user blocks, ip bans TODO: implement user following API endpoints TODO: implement user blocking API endpoints TODO: don't allow blocked users to interact with the users who blocked them 2025-03-25 21:19:55 -04:00			`reason: get!(x->2(String)),`
add: profiles ui, communities ui, posts ui 2025-03-29 00:26:56 -04:00			`moderator: get!(x->3(isize)) as usize,`
add: user follows, user blocks, ip bans TODO: implement user following API endpoints TODO: implement user blocking API endpoints TODO: don't allow blocked users to interact with the users who blocked them 2025-03-25 21:19:55 -04:00			`}`
			`}`

			`auto_method!(get_ipban_by_ip(&str)@get_ipban_from_row -> "SELECT * FROM ipbans WHERE ip = $1" --name="ip ban" --returns=IpBan --cache-key-tmpl="atto.ipban:{}");`

			`/// Create a new user block in the database.`
			`///`
			`/// # Arguments`
			/// * `data` - a mock [`IpBan`] object to insert
			`pub async fn create_ipban(&self, data: IpBan) -> Result<()> {`
			`let user = self.get_user_by_id(data.moderator).await?;`

			`// ONLY moderators can create ip bans`
			`if !user.permissions.check(FinePermission::MANAGE_BANS) {`
			`return Err(Error::NotAllowed);`
			`}`

			`let conn = match self.connect().await {`
			`Ok(c) => c,`
			`Err(e) => return Err(Error::DatabaseConnection(e.to_string())),`
			`};`

			`let res = execute!(`
			`&conn,`
			`"INSERT INTO ipbans VALUES ($1, $2, $3, $4)",`
			`&[`
			`&data.ip.as_str(),`
			`&data.created.to_string().as_str(),`
			`&data.reason.as_str(),`
			`&data.moderator.to_string().as_str()`
			`]`
			`);`

			`if let Err(e) = res {`
			`return Err(Error::DatabaseError(e.to_string()));`
			`}`

add: audit log, reports add: theme preference setting 2025-04-02 11:39:51 -04:00			`// create audit log entry`
			`self.create_audit_log_entry(AuditLogEntry::new(`
			`user.id,`
			format!("invoked `create_ipban` with x value `{}`", data.ip),
			`))`
			`.await?;`

add: user follows, user blocks, ip bans TODO: implement user following API endpoints TODO: implement user blocking API endpoints TODO: don't allow blocked users to interact with the users who blocked them 2025-03-25 21:19:55 -04:00			`// return`
			`Ok(())`
			`}`

add: audit log, reports add: theme preference setting 2025-04-02 11:39:51 -04:00			`pub async fn delete_ipban(&self, ip: &str, user: User) -> Result<()> {`
add: user follows, user blocks, ip bans TODO: implement user following API endpoints TODO: implement user blocking API endpoints TODO: don't allow blocked users to interact with the users who blocked them 2025-03-25 21:19:55 -04:00			`// ONLY moderators can manage ip bans`
			`if !user.permissions.check(FinePermission::MANAGE_BANS) {`
			`return Err(Error::NotAllowed);`
			`}`

			`let conn = match self.connect().await {`
			`Ok(c) => c,`
			`Err(e) => return Err(Error::DatabaseConnection(e.to_string())),`
			`};`

add: audit log, reports add: theme preference setting 2025-04-02 11:39:51 -04:00			`let res = execute!(&conn, "DELETE FROM ipbans WHERE ip = $1", &[ip]);`
add: user follows, user blocks, ip bans TODO: implement user following API endpoints TODO: implement user blocking API endpoints TODO: don't allow blocked users to interact with the users who blocked them 2025-03-25 21:19:55 -04:00
			`if let Err(e) = res {`
			`return Err(Error::DatabaseError(e.to_string()));`
			`}`

add: audit log, reports add: theme preference setting 2025-04-02 11:39:51 -04:00			`self.2.remove(format!("atto.ipban:{}", ip)).await;`

			`// create audit log entry`
			`self.create_audit_log_entry(AuditLogEntry::new(`
			`user.id,`
			format!("invoked `delete_ipban` with x value `{ip}`"),
			`))`
			`.await?;`
add: user follows, user blocks, ip bans TODO: implement user following API endpoints TODO: implement user blocking API endpoints TODO: don't allow blocked users to interact with the users who blocked them 2025-03-25 21:19:55 -04:00
			`// return`
			`Ok(())`
			`}`
			`}`