2025-05-01 16:43:58 -04:00
|
|
|
use std::time::Duration;
|
2025-03-25 23:58:27 -04:00
|
|
|
use crate::{
|
2025-04-04 21:42:08 -04:00
|
|
|
get_user_from_token,
|
2025-03-25 23:58:27 -04:00
|
|
|
model::{ApiReturn, Error},
|
2025-04-02 11:39:51 -04:00
|
|
|
routes::api::v1::{
|
2025-04-04 21:42:08 -04:00
|
|
|
DeleteUser, DisableTotp, UpdateUserIsVerified, UpdateUserPassword, UpdateUserRole,
|
|
|
|
|
UpdateUserUsername,
|
2025-04-02 11:39:51 -04:00
|
|
|
},
|
2025-04-04 21:42:08 -04:00
|
|
|
State,
|
2025-03-25 23:58:27 -04:00
|
|
|
};
|
2025-03-29 00:26:56 -04:00
|
|
|
use axum::{
|
2025-05-01 16:43:58 -04:00
|
|
|
extract::{
|
|
|
|
|
ws::{Message as WsMessage, WebSocket},
|
|
|
|
|
Path, WebSocketUpgrade,
|
|
|
|
|
},
|
2025-03-29 00:26:56 -04:00
|
|
|
response::{IntoResponse, Redirect},
|
2025-05-01 16:43:58 -04:00
|
|
|
Extension, Json,
|
2025-03-29 00:26:56 -04:00
|
|
|
};
|
2025-03-25 23:58:27 -04:00
|
|
|
use axum_extra::extract::CookieJar;
|
2025-05-01 16:43:58 -04:00
|
|
|
use futures_util::{sink::SinkExt, stream::StreamExt};
|
2025-04-04 21:42:08 -04:00
|
|
|
use tetratto_core::{
|
2025-05-01 16:43:58 -04:00
|
|
|
cache::Cache,
|
2025-04-04 21:42:08 -04:00
|
|
|
model::{
|
|
|
|
|
auth::{Token, UserSettings},
|
|
|
|
|
permissions::FinePermission,
|
2025-05-01 16:43:58 -04:00
|
|
|
socket::{PacketType, SocketMessage, SocketMethod},
|
2025-04-04 21:42:08 -04:00
|
|
|
},
|
|
|
|
|
DataManager,
|
2025-03-26 21:46:21 -04:00
|
|
|
};
|
2025-03-25 23:58:27 -04:00
|
|
|
|
2025-05-01 16:43:58 -04:00
|
|
|
#[cfg(feature = "redis")]
|
|
|
|
|
use redis::Commands;
|
|
|
|
|
|
2025-03-29 00:26:56 -04:00
|
|
|
pub async fn redirect_from_id(
|
|
|
|
|
Extension(data): Extension<State>,
|
|
|
|
|
Path(id): Path<String>,
|
|
|
|
|
) -> impl IntoResponse {
|
2025-03-31 22:35:11 -04:00
|
|
|
match (data.read().await)
|
|
|
|
|
.0
|
2025-03-29 00:26:56 -04:00
|
|
|
.get_user_by_id(match id.parse::<usize>() {
|
|
|
|
|
Ok(id) => id,
|
|
|
|
|
Err(_) => return Redirect::to("/"),
|
|
|
|
|
})
|
|
|
|
|
.await
|
|
|
|
|
{
|
2025-03-31 22:35:11 -04:00
|
|
|
Ok(u) => Redirect::to(&format!("/@{}", u.username)),
|
2025-04-03 11:22:56 -04:00
|
|
|
Err(_) => Redirect::to("/"),
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
pub async fn redirect_from_ip(
|
|
|
|
|
jar: CookieJar,
|
|
|
|
|
Extension(data): Extension<State>,
|
|
|
|
|
Path(ip): Path<String>,
|
|
|
|
|
) -> impl IntoResponse {
|
|
|
|
|
let data = &(data.read().await).0;
|
|
|
|
|
let user = match get_user_from_token!(jar, data) {
|
|
|
|
|
Some(ua) => ua,
|
|
|
|
|
None => return Redirect::to("/"),
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
if !user.permissions.check(FinePermission::MANAGE_BANS) {
|
|
|
|
|
return Redirect::to("/");
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
match data.get_user_by_token(&ip).await {
|
|
|
|
|
Ok(u) => Redirect::to(&format!("/@{}", u.username)),
|
2025-03-29 00:26:56 -04:00
|
|
|
Err(_) => Redirect::to("/"),
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2025-04-26 16:27:18 -04:00
|
|
|
pub async fn me_request(jar: CookieJar, Extension(data): Extension<State>) -> impl IntoResponse {
|
|
|
|
|
let data = &(data.read().await).0;
|
|
|
|
|
let user = match get_user_from_token!(jar, data) {
|
|
|
|
|
Some(ua) => ua,
|
|
|
|
|
None => return Json(Error::NotAllowed.into()),
|
|
|
|
|
};
|
|
|
|
|
|
2025-04-29 16:53:34 -04:00
|
|
|
Json(ApiReturn {
|
2025-04-26 16:27:18 -04:00
|
|
|
ok: true,
|
|
|
|
|
message: "User exists".to_string(),
|
|
|
|
|
payload: Some(user),
|
2025-04-29 16:53:34 -04:00
|
|
|
})
|
2025-04-26 16:27:18 -04:00
|
|
|
}
|
|
|
|
|
|
2025-03-25 23:58:27 -04:00
|
|
|
/// Update the settings of the given user.
|
2025-04-01 16:12:13 -04:00
|
|
|
pub async fn update_user_settings_request(
|
2025-03-25 23:58:27 -04:00
|
|
|
jar: CookieJar,
|
|
|
|
|
Path(id): Path<usize>,
|
|
|
|
|
Extension(data): Extension<State>,
|
2025-04-09 20:31:05 -04:00
|
|
|
Json(mut req): Json<UserSettings>,
|
2025-03-25 23:58:27 -04:00
|
|
|
) -> impl IntoResponse {
|
|
|
|
|
let data = &(data.read().await).0;
|
|
|
|
|
let user = match get_user_from_token!(jar, data) {
|
|
|
|
|
Some(ua) => ua,
|
|
|
|
|
None => return Json(Error::NotAllowed.into()),
|
|
|
|
|
};
|
|
|
|
|
|
2025-03-31 15:39:49 -04:00
|
|
|
if user.id != id && !user.permissions.check(FinePermission::MANAGE_USERS) {
|
|
|
|
|
return Json(Error::NotAllowed.into());
|
2025-03-25 23:58:27 -04:00
|
|
|
}
|
|
|
|
|
|
2025-05-20 23:30:40 -04:00
|
|
|
// check lengths
|
|
|
|
|
if req.display_name.len() > 32 {
|
|
|
|
|
return Json(Error::DataTooLong("display name".to_string()).into());
|
|
|
|
|
}
|
|
|
|
|
|
2025-05-28 13:06:48 -04:00
|
|
|
if req.warning.len() > 2048 {
|
|
|
|
|
return Json(Error::DataTooLong("warning".to_string()).into());
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if req.status.len() > 256 {
|
|
|
|
|
return Json(Error::DataTooLong("status".to_string()).into());
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if req.biography.len() > 4096 {
|
|
|
|
|
return Json(Error::DataTooLong("warning".to_string()).into());
|
|
|
|
|
}
|
|
|
|
|
|
2025-04-09 20:31:05 -04:00
|
|
|
// check percentage themes
|
|
|
|
|
if !req.theme_sat.is_empty() && !req.theme_sat.ends_with("%") {
|
|
|
|
|
req.theme_sat = format!("{}%", req.theme_sat)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if !req.theme_lit.is_empty() && !req.theme_lit.ends_with("%") {
|
|
|
|
|
req.theme_lit = format!("{}%", req.theme_lit)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// ...
|
2025-03-25 23:58:27 -04:00
|
|
|
match data.update_user_settings(id, req).await {
|
|
|
|
|
Ok(_) => Json(ApiReturn {
|
|
|
|
|
ok: true,
|
2025-03-26 21:46:21 -04:00
|
|
|
message: "Settings updated".to_string(),
|
|
|
|
|
payload: (),
|
|
|
|
|
}),
|
|
|
|
|
Err(e) => Json(e.into()),
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2025-03-31 11:45:34 -04:00
|
|
|
/// Update the password of the given user.
|
2025-04-01 16:12:13 -04:00
|
|
|
pub async fn update_user_password_request(
|
2025-03-31 11:45:34 -04:00
|
|
|
jar: CookieJar,
|
|
|
|
|
Path(id): Path<usize>,
|
|
|
|
|
Extension(data): Extension<State>,
|
|
|
|
|
Json(req): Json<UpdateUserPassword>,
|
|
|
|
|
) -> impl IntoResponse {
|
|
|
|
|
let data = &(data.read().await).0;
|
|
|
|
|
let user = match get_user_from_token!(jar, data) {
|
|
|
|
|
Some(ua) => ua,
|
|
|
|
|
None => return Json(Error::NotAllowed.into()),
|
|
|
|
|
};
|
|
|
|
|
|
2025-05-15 23:59:26 -04:00
|
|
|
let can_force = user.permissions.check(FinePermission::MANAGE_USERS);
|
|
|
|
|
if user.id != id && !can_force {
|
2025-03-31 15:39:49 -04:00
|
|
|
return Json(Error::NotAllowed.into());
|
2025-03-31 11:45:34 -04:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
match data
|
2025-05-15 23:59:26 -04:00
|
|
|
.update_user_password(id, req.from, req.to, user, can_force)
|
2025-03-31 11:45:34 -04:00
|
|
|
.await
|
|
|
|
|
{
|
|
|
|
|
Ok(_) => Json(ApiReturn {
|
|
|
|
|
ok: true,
|
|
|
|
|
message: "Password updated".to_string(),
|
|
|
|
|
payload: (),
|
|
|
|
|
}),
|
|
|
|
|
Err(e) => Json(e.into()),
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2025-04-01 16:12:13 -04:00
|
|
|
pub async fn update_user_username_request(
|
2025-03-31 11:45:34 -04:00
|
|
|
jar: CookieJar,
|
|
|
|
|
Path(id): Path<usize>,
|
|
|
|
|
Extension(data): Extension<State>,
|
|
|
|
|
Json(req): Json<UpdateUserUsername>,
|
|
|
|
|
) -> impl IntoResponse {
|
|
|
|
|
let data = &(data.read().await).0;
|
|
|
|
|
let user = match get_user_from_token!(jar, data) {
|
|
|
|
|
Some(ua) => ua,
|
|
|
|
|
None => return Json(Error::NotAllowed.into()),
|
|
|
|
|
};
|
|
|
|
|
|
2025-03-31 15:39:49 -04:00
|
|
|
if user.id != id && !user.permissions.check(FinePermission::MANAGE_USERS) {
|
|
|
|
|
return Json(Error::NotAllowed.into());
|
2025-03-31 11:45:34 -04:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if data.get_user_by_username(&req.to).await.is_ok() {
|
|
|
|
|
return Json(Error::UsernameInUse.into());
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
match data.update_user_username(id, req.to, user).await {
|
|
|
|
|
Ok(_) => Json(ApiReturn {
|
|
|
|
|
ok: true,
|
|
|
|
|
message: "Username updated".to_string(),
|
|
|
|
|
payload: (),
|
|
|
|
|
}),
|
|
|
|
|
Err(e) => Json(e.into()),
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2025-03-26 21:46:21 -04:00
|
|
|
/// Update the tokens of the given user.
|
2025-04-01 16:12:13 -04:00
|
|
|
pub async fn update_user_tokens_request(
|
2025-03-26 21:46:21 -04:00
|
|
|
jar: CookieJar,
|
|
|
|
|
Path(id): Path<usize>,
|
|
|
|
|
Extension(data): Extension<State>,
|
|
|
|
|
Json(req): Json<Vec<Token>>,
|
|
|
|
|
) -> impl IntoResponse {
|
|
|
|
|
let data = &(data.read().await).0;
|
|
|
|
|
let user = match get_user_from_token!(jar, data) {
|
|
|
|
|
Some(ua) => ua,
|
|
|
|
|
None => return Json(Error::NotAllowed.into()),
|
|
|
|
|
};
|
|
|
|
|
|
2025-03-31 15:39:49 -04:00
|
|
|
if user.id != id && !user.permissions.check(FinePermission::MANAGE_USERS) {
|
|
|
|
|
return Json(Error::NotAllowed.into());
|
2025-03-26 21:46:21 -04:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
match data.update_user_tokens(id, req).await {
|
|
|
|
|
Ok(_) => Json(ApiReturn {
|
|
|
|
|
ok: true,
|
|
|
|
|
message: "Tokens updated".to_string(),
|
|
|
|
|
payload: (),
|
|
|
|
|
}),
|
|
|
|
|
Err(e) => Json(e.into()),
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/// Update the verification status of the given user.
|
2025-04-01 16:12:13 -04:00
|
|
|
pub async fn update_user_is_verified_request(
|
2025-03-26 21:46:21 -04:00
|
|
|
jar: CookieJar,
|
|
|
|
|
Path(id): Path<usize>,
|
|
|
|
|
Extension(data): Extension<State>,
|
|
|
|
|
Json(req): Json<UpdateUserIsVerified>,
|
|
|
|
|
) -> impl IntoResponse {
|
|
|
|
|
let data = &(data.read().await).0;
|
|
|
|
|
let user = match get_user_from_token!(jar, data) {
|
|
|
|
|
Some(ua) => ua,
|
|
|
|
|
None => return Json(Error::NotAllowed.into()),
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
match data
|
|
|
|
|
.update_user_verified_status(id, req.is_verified, user)
|
|
|
|
|
.await
|
|
|
|
|
{
|
|
|
|
|
Ok(_) => Json(ApiReturn {
|
|
|
|
|
ok: true,
|
|
|
|
|
message: "Verified status updated".to_string(),
|
2025-03-25 23:58:27 -04:00
|
|
|
payload: (),
|
|
|
|
|
}),
|
|
|
|
|
Err(e) => Json(e.into()),
|
|
|
|
|
}
|
|
|
|
|
}
|
2025-04-01 16:12:13 -04:00
|
|
|
|
2025-04-02 11:39:51 -04:00
|
|
|
/// Update the role of the given user.
|
|
|
|
|
pub async fn update_user_role_request(
|
|
|
|
|
jar: CookieJar,
|
|
|
|
|
Path(id): Path<usize>,
|
|
|
|
|
Extension(data): Extension<State>,
|
|
|
|
|
Json(req): Json<UpdateUserRole>,
|
|
|
|
|
) -> impl IntoResponse {
|
|
|
|
|
let data = &(data.read().await).0;
|
|
|
|
|
let user = match get_user_from_token!(jar, data) {
|
|
|
|
|
Some(ua) => ua,
|
|
|
|
|
None => return Json(Error::NotAllowed.into()),
|
|
|
|
|
};
|
|
|
|
|
|
2025-05-05 19:38:01 -04:00
|
|
|
match data.update_user_role(id, req.role, user, false).await {
|
2025-04-02 11:39:51 -04:00
|
|
|
Ok(_) => Json(ApiReturn {
|
|
|
|
|
ok: true,
|
|
|
|
|
message: "User updated".to_string(),
|
|
|
|
|
payload: (),
|
|
|
|
|
}),
|
|
|
|
|
Err(e) => Json(e.into()),
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2025-04-02 14:11:01 -04:00
|
|
|
/// Update the current user's last seen value.
|
|
|
|
|
pub async fn seen_request(jar: CookieJar, Extension(data): Extension<State>) -> impl IntoResponse {
|
|
|
|
|
let data = &(data.read().await).0;
|
|
|
|
|
let user = match get_user_from_token!(jar, data) {
|
|
|
|
|
Some(ua) => ua,
|
|
|
|
|
None => return Json(Error::NotAllowed.into()),
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
match data.seen_user(&user).await {
|
|
|
|
|
Ok(_) => Json(ApiReturn {
|
|
|
|
|
ok: true,
|
|
|
|
|
message: "User updated".to_string(),
|
|
|
|
|
payload: (),
|
|
|
|
|
}),
|
|
|
|
|
Err(e) => Json(e.into()),
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2025-04-01 16:12:13 -04:00
|
|
|
/// Delete the given user.
|
|
|
|
|
pub async fn delete_user_request(
|
|
|
|
|
jar: CookieJar,
|
|
|
|
|
Path(id): Path<usize>,
|
|
|
|
|
Extension(data): Extension<State>,
|
|
|
|
|
Json(req): Json<DeleteUser>,
|
|
|
|
|
) -> impl IntoResponse {
|
|
|
|
|
let data = &(data.read().await).0;
|
|
|
|
|
let user = match get_user_from_token!(jar, data) {
|
|
|
|
|
Some(ua) => ua,
|
|
|
|
|
None => return Json(Error::NotAllowed.into()),
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
if user.id != id && !user.permissions.check(FinePermission::MANAGE_USERS) {
|
|
|
|
|
return Json(Error::NotAllowed.into());
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
match data
|
|
|
|
|
.delete_user(id, &req.password, user.permissions.check_manager())
|
|
|
|
|
.await
|
|
|
|
|
{
|
|
|
|
|
Ok(_) => Json(ApiReturn {
|
|
|
|
|
ok: true,
|
|
|
|
|
message: "User deleted".to_string(),
|
|
|
|
|
payload: (),
|
|
|
|
|
}),
|
|
|
|
|
Err(e) => Json(e.into()),
|
|
|
|
|
}
|
|
|
|
|
}
|
2025-04-04 21:42:08 -04:00
|
|
|
|
|
|
|
|
/// Enable TOTP for a user.
|
|
|
|
|
pub async fn enable_totp_request(
|
|
|
|
|
jar: CookieJar,
|
|
|
|
|
Path(id): Path<usize>,
|
|
|
|
|
Extension(data): Extension<State>,
|
|
|
|
|
) -> impl IntoResponse {
|
|
|
|
|
let data = &(data.read().await).0;
|
|
|
|
|
let user = match get_user_from_token!(jar, data) {
|
|
|
|
|
Some(ua) => ua,
|
|
|
|
|
None => return Json(Error::NotAllowed.into()),
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
match data.enable_totp(id, user).await {
|
|
|
|
|
Ok(x) => Json(ApiReturn {
|
|
|
|
|
ok: true,
|
|
|
|
|
message: "TOTP enabled".to_string(),
|
|
|
|
|
payload: Some(x),
|
|
|
|
|
}),
|
|
|
|
|
Err(e) => Json(e.into()),
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/// Disable TOTP for a user.
|
|
|
|
|
pub async fn disable_totp_request(
|
|
|
|
|
jar: CookieJar,
|
|
|
|
|
Path(id): Path<usize>,
|
|
|
|
|
Extension(data): Extension<State>,
|
|
|
|
|
Json(req): Json<DisableTotp>,
|
|
|
|
|
) -> impl IntoResponse {
|
|
|
|
|
let data = &(data.read().await).0;
|
|
|
|
|
let user = match get_user_from_token!(jar, data) {
|
|
|
|
|
Some(ua) => ua,
|
|
|
|
|
None => return Json(Error::NotAllowed.into()),
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
if user.id != id && !user.permissions.check(FinePermission::MANAGE_USERS) {
|
|
|
|
|
return Json(Error::NotAllowed.into());
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// check totp code
|
|
|
|
|
let other_user = match data.get_user_by_id(id).await {
|
|
|
|
|
Ok(u) => u,
|
|
|
|
|
Err(e) => return Json(e.into()),
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
if !data.check_totp(&other_user, &req.totp) {
|
|
|
|
|
return Json(Error::NotAllowed.into());
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// ...
|
2025-04-10 18:16:52 -04:00
|
|
|
match data.update_user_totp(id, "", &Vec::new()).await {
|
2025-04-04 21:42:08 -04:00
|
|
|
Ok(()) => Json(ApiReturn {
|
|
|
|
|
ok: true,
|
|
|
|
|
message: "TOTP disabled".to_string(),
|
|
|
|
|
payload: (),
|
|
|
|
|
}),
|
|
|
|
|
Err(e) => Json(e.into()),
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/// Refresh TOTP recovery codes for a user.
|
|
|
|
|
pub async fn refresh_totp_codes_request(
|
|
|
|
|
jar: CookieJar,
|
|
|
|
|
Path(id): Path<usize>,
|
|
|
|
|
Extension(data): Extension<State>,
|
|
|
|
|
Json(req): Json<DisableTotp>,
|
|
|
|
|
) -> impl IntoResponse {
|
|
|
|
|
let data = &(data.read().await).0;
|
|
|
|
|
let user = match get_user_from_token!(jar, data) {
|
|
|
|
|
Some(ua) => ua,
|
|
|
|
|
None => return Json(Error::NotAllowed.into()),
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
if user.id != id && !user.permissions.check(FinePermission::MANAGE_USERS) {
|
|
|
|
|
return Json(Error::NotAllowed.into());
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// check totp code
|
|
|
|
|
let other_user = match data.get_user_by_id(id).await {
|
|
|
|
|
Ok(u) => u,
|
|
|
|
|
Err(e) => return Json(e.into()),
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
if !data.check_totp(&other_user, &req.totp) {
|
|
|
|
|
return Json(Error::NotAllowed.into());
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// ...
|
|
|
|
|
let recovery_codes = DataManager::generate_totp_recovery_codes();
|
|
|
|
|
match data.update_user_totp(id, &user.totp, &recovery_codes).await {
|
|
|
|
|
Ok(()) => Json(ApiReturn {
|
|
|
|
|
ok: true,
|
|
|
|
|
message: "Recovery codes refreshed".to_string(),
|
|
|
|
|
payload: Some(recovery_codes),
|
|
|
|
|
}),
|
|
|
|
|
Err(e) => Json(e.into()),
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/// Check if the given user has TOTP enabled.
|
|
|
|
|
pub async fn has_totp_enabled_request(
|
|
|
|
|
Path(username): Path<String>,
|
|
|
|
|
Extension(data): Extension<State>,
|
|
|
|
|
) -> impl IntoResponse {
|
|
|
|
|
let data = &(data.read().await).0;
|
|
|
|
|
let user = match data.get_user_by_username(&username).await {
|
|
|
|
|
Ok(u) => u,
|
|
|
|
|
Err(e) => return Json(e.into()),
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
Json(ApiReturn {
|
|
|
|
|
ok: true,
|
|
|
|
|
message: "User exists".to_string(),
|
|
|
|
|
payload: Some(!user.totp.is_empty()),
|
|
|
|
|
})
|
|
|
|
|
}
|
2025-05-01 16:43:58 -04:00
|
|
|
|
|
|
|
|
/// Handle a subscription to the websocket.
|
|
|
|
|
#[cfg(feature = "redis")]
|
|
|
|
|
pub async fn subscription_handler(
|
|
|
|
|
jar: CookieJar,
|
|
|
|
|
ws: WebSocketUpgrade,
|
|
|
|
|
Extension(data): Extension<State>,
|
|
|
|
|
Path((user_id, id)): Path<(String, String)>,
|
|
|
|
|
) -> impl IntoResponse {
|
|
|
|
|
let data = &(data.read().await).0;
|
|
|
|
|
let user = match get_user_from_token!(jar, data) {
|
|
|
|
|
Some(ua) => ua,
|
|
|
|
|
None => return Err("Socket refused"),
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
if user.id.to_string() != user_id {
|
|
|
|
|
// TODO: maybe allow moderators to connect anyway
|
|
|
|
|
return Err("Socket refused (auth)");
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
let data = data.clone();
|
|
|
|
|
Ok(ws.on_upgrade(|socket| async move {
|
2025-05-02 22:59:44 -04:00
|
|
|
handle_socket(socket, data, user_id, id).await;
|
2025-05-01 16:43:58 -04:00
|
|
|
}))
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
#[cfg(feature = "redis")]
|
|
|
|
|
pub async fn handle_socket(socket: WebSocket, db: DataManager, user_id: String, stream_id: String) {
|
|
|
|
|
let (mut sink, mut stream) = socket.split();
|
2025-05-02 22:59:44 -04:00
|
|
|
let socket_id = tetratto_shared::hash::salt();
|
|
|
|
|
db.2.incr("atto.active_connections:users".to_string()).await;
|
2025-05-01 16:43:58 -04:00
|
|
|
|
|
|
|
|
// get channel permissions
|
2025-05-01 23:35:40 -04:00
|
|
|
let channel = format!("{user_id}/{stream_id}");
|
2025-05-01 16:43:58 -04:00
|
|
|
|
2025-05-02 23:29:38 -04:00
|
|
|
// identify socket
|
|
|
|
|
sink.send(WsMessage::Text(
|
|
|
|
|
serde_json::to_string(&SocketMessage {
|
|
|
|
|
method: SocketMethod::Forward(PacketType::Key),
|
|
|
|
|
data: socket_id.clone(),
|
|
|
|
|
})
|
|
|
|
|
.unwrap()
|
|
|
|
|
.into(),
|
|
|
|
|
))
|
|
|
|
|
.await
|
|
|
|
|
.unwrap();
|
|
|
|
|
|
2025-05-01 16:43:58 -04:00
|
|
|
// ...
|
|
|
|
|
let mut recv_task = tokio::spawn(async move {
|
|
|
|
|
while let Some(Ok(WsMessage::Text(text))) = stream.next().await {
|
|
|
|
|
if text != "Close" {
|
|
|
|
|
continue;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
});
|
|
|
|
|
|
2025-05-02 22:59:44 -04:00
|
|
|
let heartbeat_uri = format!("{channel}/{socket_id}");
|
|
|
|
|
|
2025-05-01 16:43:58 -04:00
|
|
|
let dbc = db.clone();
|
|
|
|
|
let channel_c = channel.clone();
|
2025-05-02 22:59:44 -04:00
|
|
|
let heartbeat_c = heartbeat_uri.clone();
|
2025-05-01 16:43:58 -04:00
|
|
|
let mut redis_task = tokio::spawn(async move {
|
|
|
|
|
// forward messages from redis to the socket
|
2025-05-02 22:59:44 -04:00
|
|
|
let mut pubsub = dbc.2.client.get_async_pubsub().await.unwrap();
|
|
|
|
|
|
|
|
|
|
pubsub.subscribe(channel_c).await.unwrap();
|
|
|
|
|
pubsub.subscribe(heartbeat_c).await.unwrap();
|
2025-05-01 16:43:58 -04:00
|
|
|
|
|
|
|
|
// listen for pubsub messages
|
2025-05-02 22:59:44 -04:00
|
|
|
let mut pubsub = pubsub.into_on_message();
|
|
|
|
|
while let Some(msg) = pubsub.next().await {
|
2025-05-01 16:43:58 -04:00
|
|
|
// payload is a stringified SocketMessage
|
|
|
|
|
let smsg = msg.get_payload::<String>().unwrap();
|
|
|
|
|
let packet: SocketMessage = serde_json::from_str(&smsg).unwrap();
|
|
|
|
|
|
|
|
|
|
if packet.method == SocketMethod::Forward(PacketType::Ping) {
|
|
|
|
|
// forward with custom message
|
|
|
|
|
if sink.send(WsMessage::Text("Ping".into())).await.is_err() {
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
} else if packet.method == SocketMethod::Message {
|
|
|
|
|
if sink.send(WsMessage::Text(smsg.into())).await.is_err() {
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
} else {
|
|
|
|
|
// forward to client
|
|
|
|
|
if sink.send(WsMessage::Text(smsg.into())).await.is_err() {
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
let db2c = db.2.clone();
|
2025-05-02 22:59:44 -04:00
|
|
|
let heartbeat_c = heartbeat_uri.clone();
|
2025-05-01 16:43:58 -04:00
|
|
|
let heartbeat_task = tokio::spawn(async move {
|
|
|
|
|
let mut con = db2c.get_con().await;
|
2025-05-02 22:59:44 -04:00
|
|
|
let mut heartbeat = tokio::time::interval(Duration::from_secs(10));
|
2025-05-01 16:43:58 -04:00
|
|
|
|
|
|
|
|
loop {
|
2025-05-01 23:35:40 -04:00
|
|
|
con.publish::<&str, String, ()>(
|
2025-05-02 22:59:44 -04:00
|
|
|
&heartbeat_c,
|
2025-05-01 16:43:58 -04:00
|
|
|
serde_json::to_string(&SocketMessage {
|
|
|
|
|
method: SocketMethod::Forward(PacketType::Ping),
|
|
|
|
|
data: "Ping".to_string(),
|
|
|
|
|
})
|
|
|
|
|
.unwrap(),
|
|
|
|
|
)
|
|
|
|
|
.unwrap();
|
|
|
|
|
|
|
|
|
|
heartbeat.tick().await;
|
|
|
|
|
}
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
tokio::select! {
|
|
|
|
|
_ = (&mut recv_task) => redis_task.abort(),
|
|
|
|
|
_ = (&mut redis_task) => recv_task.abort()
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
heartbeat_task.abort(); // kill
|
2025-05-02 20:54:48 -04:00
|
|
|
db.2.decr("atto.active_connections:users".to_string()).await;
|
2025-05-01 16:43:58 -04:00
|
|
|
tracing::info!("socket terminate");
|
|
|
|
|
}
|
2025-05-01 23:35:40 -04:00
|
|
|
|
|
|
|
|
pub async fn post_to_socket_request(
|
|
|
|
|
jar: CookieJar,
|
|
|
|
|
Extension(data): Extension<State>,
|
|
|
|
|
Path((user_id, id)): Path<(String, String)>,
|
|
|
|
|
Json(msg): Json<SocketMessage>,
|
|
|
|
|
) -> impl IntoResponse {
|
|
|
|
|
let data = &(data.read().await).0;
|
|
|
|
|
let user = match get_user_from_token!(jar, data) {
|
|
|
|
|
Some(ua) => ua,
|
|
|
|
|
None => return Json(Error::NotAllowed.into()),
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
if user.id.to_string() != user_id {
|
|
|
|
|
return Json(Error::NotAllowed.into());
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
let mut con = data.2.get_con().await;
|
|
|
|
|
con.publish::<String, String, ()>(
|
|
|
|
|
format!("{user_id}/{id}"),
|
|
|
|
|
serde_json::to_string(&msg).unwrap(),
|
|
|
|
|
)
|
|
|
|
|
.unwrap();
|
|
|
|
|
|
|
|
|
|
Json(ApiReturn {
|
|
|
|
|
ok: true,
|
|
|
|
|
message: "Data sent to socket".to_string(),
|
|
|
|
|
payload: (),
|
|
|
|
|
})
|
|
|
|
|
}
|
