add: user associations
This commit is contained in:
parent
50319f9124
commit
675b3e4ee6
11 changed files with 131 additions and 9 deletions
|
|
@ -3,8 +3,8 @@ use crate::{
|
|||
get_user_from_token,
|
||||
model::{ApiReturn, Error},
|
||||
routes::api::v1::{
|
||||
DeleteUser, DisableTotp, UpdateUserIsVerified, UpdateUserPassword, UpdateUserRole,
|
||||
UpdateUserUsername,
|
||||
AppendAssociations, DeleteUser, DisableTotp, UpdateUserIsVerified, UpdateUserPassword,
|
||||
UpdateUserRole, UpdateUserUsername,
|
||||
},
|
||||
State,
|
||||
};
|
||||
|
|
@ -30,6 +30,7 @@ use tetratto_core::{
|
|||
|
||||
#[cfg(feature = "redis")]
|
||||
use redis::Commands;
|
||||
use tetratto_shared::hash;
|
||||
|
||||
pub async fn redirect_from_id(
|
||||
Extension(data): Extension<State>,
|
||||
|
|
@ -137,6 +138,53 @@ pub async fn update_user_settings_request(
|
|||
}
|
||||
}
|
||||
|
||||
/// Append associations to the current user.
|
||||
pub async fn append_associations_request(
|
||||
jar: CookieJar,
|
||||
Extension(data): Extension<State>,
|
||||
Json(req): Json<AppendAssociations>,
|
||||
) -> impl IntoResponse {
|
||||
let data = &(data.read().await).0;
|
||||
let mut user = match get_user_from_token!(jar, data) {
|
||||
Some(ua) => ua,
|
||||
None => return Json(Error::NotAllowed.into()),
|
||||
};
|
||||
|
||||
// check existing associations to remove associations to deleted users
|
||||
// the user should take care of cleaning their ui themselves
|
||||
for (idx, id) in user.associated.clone().iter().enumerate() {
|
||||
if data.get_user_by_id(id.to_owned()).await.is_err() {
|
||||
user.associated.remove(idx);
|
||||
}
|
||||
}
|
||||
|
||||
// resolve tokens
|
||||
for token in req.tokens {
|
||||
let hashed = hash::hash(token);
|
||||
let user_from_token = match data.get_user_by_token(&hashed).await {
|
||||
Ok(ua) => ua,
|
||||
Err(_) => continue,
|
||||
};
|
||||
|
||||
if user.associated.contains(&user_from_token.id) {
|
||||
// we already know about this; skip
|
||||
continue;
|
||||
}
|
||||
|
||||
user.associated.push(user_from_token.id);
|
||||
}
|
||||
|
||||
// ...
|
||||
match data.update_user_associated(user.id, user.associated).await {
|
||||
Ok(_) => Json(ApiReturn {
|
||||
ok: true,
|
||||
message: "Associations updated".to_string(),
|
||||
payload: (),
|
||||
}),
|
||||
Err(e) => Json(e.into()),
|
||||
}
|
||||
}
|
||||
|
||||
/// Update the password of the given user.
|
||||
pub async fn update_user_password_request(
|
||||
jar: CookieJar,
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue