bazzar/actors/database_manager/src/tokens.rs

use actix::Message;
use model::{AccountId, Audience, Token};

use crate::{db_async_handler, Result};

#[derive(Debug, Copy, Clone, PartialEq, serde::Serialize, thiserror::Error)]
pub enum Error {
    #[error("Failed to save new token")]
    Create,
    #[error("Failed to find token by jti")]
    Jti,
}

/// Find token by JTI field
///
/// # Examples
///
/// ```
/// use actix::Addr;
/// use database_manager::{Database, TokenByJti};
///
/// async fn find(db: Addr<Database>) {
///     match db.send(TokenByJti {
///         jti: uuid::Uuid::new_v4()
///     }).await {
///         Ok(Ok(token)) => { println!("{:?}", token); }
///         Ok(Err(db_err)) => { println!("{:?}", db_err); }
///         Err(actor_err) => { println!("{:?}", actor_err); }
///     }
/// }
/// ```
#[derive(Message)]
#[rtype(result = "Result<Token>")]
pub struct TokenByJti {
    pub jti: uuid::Uuid,
}

db_async_handler!(TokenByJti, token_by_jti, Token, inner_token_by_jti);

pub(crate) async fn token_by_jti(
    msg: TokenByJti,
    t: &mut sqlx::Transaction<'_, sqlx::Postgres>,
) -> Result<Token> {
    sqlx::query_as(r#"
SELECT id, customer_id, role, issuer, subject, audience, expiration_time, not_before_time, issued_at_time, jwt_id
FROM tokens
WHERE jwt_id = $1 AND expiration_time > now()
    "#)
        .bind(msg.jti)
        .fetch_one(t)
        .await
        .map_err(|e| {
            tracing::error!("{e:?}");
            crate::Error::Token(Error::Jti)
        })
}

#[derive(Message)]
#[rtype(result = "Result<Token>")]
pub struct CreateToken {
    pub customer_id: uuid::Uuid,
    pub role: model::Role,
    pub subject: AccountId,
    pub audience: Audience,
}

db_async_handler!(CreateToken, create_token, Token, inner_create_token);

pub(crate) async fn create_token(
    msg: CreateToken,
    t: &mut sqlx::Transaction<'_, sqlx::Postgres>,
) -> Result<Token> {
    let CreateToken {
        customer_id,
        role,
        subject,
        audience,
    } = msg;
    sqlx::query_as(r#"
INSERT INTO tokens (customer_id, role, subject, audience)
VALUES ($1, $2, $3, $4)
RETURNING id, customer_id, role, issuer, subject, audience, expiration_time, not_before_time, issued_at_time, jwt_id
    "#)
        .bind(customer_id)
        .bind(role)
        .bind(subject)
        .bind(audience)
        .fetch_one(t)
        .await
        .map_err(|e| {
            tracing::error!("{e:?}");
            crate::Error::Token(Error::Create)
        })
}

#[derive(Message)]
#[rtype(result = "Result<Token>")]
pub struct CreateExtendedToken {
    pub customer_id: uuid::Uuid,
    pub role: model::Role,
    pub subject: AccountId,
    pub audience: Audience,
    pub expiration_time: chrono::NaiveDateTime,
}

db_async_handler!(
    CreateExtendedToken,
    create_extended_token,
    Token,
    inner_create_extended_token
);

pub(crate) async fn create_extended_token(
    msg: CreateExtendedToken,
    t: &mut sqlx::Transaction<'_, sqlx::Postgres>,
) -> Result<Token> {
    let CreateExtendedToken {
        customer_id,
        role,
        subject,
        audience,
        expiration_time,
    } = msg;
    sqlx::query_as(r#"
INSERT INTO tokens (customer_id, role, subject, audience, expiration_time)
VALUES ($1, $2, $3, $4, $5)
RETURNING id, customer_id, role, issuer, subject, audience, expiration_time, not_before_time, issued_at_time, jwt_id
    "#)
        .bind(customer_id)
        .bind(role)
        .bind(subject)
        .bind(audience)
        .bind(expiration_time)
        .fetch_one(t)
        .await
        .map_err(|e| {
            tracing::error!("{e:?}");
            crate::Error::Token(Error::Create)
        })
}

#[cfg(test)]
mod tests {
    use config::UpdateConfig;
    use fake::Fake;
    use model::*;
    use uuid::Uuid;

    use crate::*;

    pub struct NoOpts;

    impl UpdateConfig for NoOpts {}

    async fn test_create_account(t: &mut sqlx::Transaction<'_, sqlx::Postgres>) -> FullAccount {
        use fake::faker::internet::en;
        let login: String = en::Username().fake();
        let email: String = en::FreeEmail().fake();
        let hash: String = en::Password(10..20).fake();

        crate::create_account(
            CreateAccount {
                email: Email::new(email),
                login: Login::new(login),
                pass_hash: PassHash::new(hash),
                role: Role::Admin,
            },
            t,
        )
        .await
        .unwrap()
    }

    async fn test_create_token_extended(
        t: &mut sqlx::Transaction<'_, sqlx::Postgres>,
        customer_id: Option<Uuid>,
        role: Option<Role>,
        subject: Option<AccountId>,
        audience: Option<Audience>,
        expiration_time: Option<chrono::NaiveDateTime>,
    ) -> Token {
        let customer_id = customer_id.unwrap_or_else(|| Uuid::new_v4());
        let role = role.unwrap_or_else(|| Role::Admin);
        let subject = match subject {
            Some(id) => id,
            _ => test_create_account(t).await.id,
        };
        let audience = audience.unwrap_or_else(|| Audience::Web);
        let expiration_time = expiration_time
            .unwrap_or_else(|| (chrono::Utc::now() + chrono::Duration::days(60)).naive_utc());

        super::create_extended_token(
            CreateExtendedToken {
                customer_id,
                role,
                subject,
                audience,
                expiration_time,
            },
            t,
        )
        .await
        .unwrap()
    }

    #[actix::test]
    async fn create_token() {
        testx::db_t!(t);

        super::create_token(
            CreateToken {
                customer_id: Uuid::new_v4(),
                role: Role::Admin,
                subject: test_create_account(&mut t).await.id,
                audience: Audience::Web,
            },
            &mut t,
        )
        .await
        .unwrap();
    }

    #[actix::test]
    async fn create_extended_token() {
        testx::db_t!(t);

        test_create_account(&mut t).await;

        testx::db_rollback!(t);
    }

    #[actix::test]
    async fn find_by_jti() {
        testx::db_t!(t);

        let original = test_create_token_extended(&mut t, None, None, None, None, None).await;

        let found = super::token_by_jti(
            TokenByJti {
                jti: original.jwt_id,
            },
            &mut t,
        )
        .await
        .unwrap();

        testx::db_rollback!(t);
        assert_eq!(found, original);
    }

    #[actix::test]
    async fn find_by_jti_expired() {
        testx::db_t!(t);

        let original = test_create_token_extended(
            &mut t,
            None,
            None,
            None,
            None,
            Some((chrono::Utc::now() - chrono::Duration::seconds(1)).naive_utc()),
        )
        .await;

        let found = super::token_by_jti(
            TokenByJti {
                jti: original.jwt_id,
            },
            &mut t,
        )
        .await;

        testx::db_rollback!(t);
        assert_eq!(found, Err(crate::Error::Token(super::Error::Jti)));
    }
}
Token validation 2022-04-18 22:07:52 +02:00			`use actix::Message;`
Add working search ingest 2022-05-06 11:47:18 +02:00			`use model::{AccountId, Audience, Token};`
Token validation 2022-04-18 22:07:52 +02:00
Add seed and photos 2022-05-06 16:02:38 +02:00			`use crate::{db_async_handler, Result};`
Token validation 2022-04-18 22:07:52 +02:00
Fix update account, db tests 2022-06-04 16:55:29 +02:00			`#[derive(Debug, Copy, Clone, PartialEq, serde::Serialize, thiserror::Error)]`
Token validation 2022-04-18 22:07:52 +02:00			`pub enum Error {`
			`#[error("Failed to save new token")]`
			`Create,`
			`#[error("Failed to find token by jti")]`
			`Jti,`
			`}`

Fix update account, db tests 2022-06-04 16:05:18 +02:00			`/// Find token by JTI field`
			`///`
			`/// # Examples`
			`///`
			/// ```
			`/// use actix::Addr;`
			`/// use database_manager::{Database, TokenByJti};`
			`///`
			`/// async fn find(db: Addr<Database>) {`
			`/// match db.send(TokenByJti {`
			`/// jti: uuid::Uuid::new_v4()`
			`/// }).await {`
			`/// Ok(Ok(token)) => { println!("{:?}", token); }`
			`/// Ok(Err(db_err)) => { println!("{:?}", db_err); }`
			`/// Err(actor_err) => { println!("{:?}", actor_err); }`
			`/// }`
			`/// }`
			/// ```
Token validation 2022-04-18 22:07:52 +02:00			`#[derive(Message)]`
			`#[rtype(result = "Result<Token>")]`
			`pub struct TokenByJti {`
Add lots of API endpoints 2022-04-19 16:49:30 +02:00			`pub jti: uuid::Uuid,`
Token validation 2022-04-18 22:07:52 +02:00			`}`

Additional tests, macros for tests 2022-06-05 21:03:22 +02:00			`db_async_handler!(TokenByJti, token_by_jti, Token, inner_token_by_jti);`
Token validation 2022-04-18 22:07:52 +02:00
Additional tests, macros for tests 2022-06-05 21:03:22 +02:00			`pub(crate) async fn token_by_jti(`
			`msg: TokenByJti,`
			`t: &mut sqlx::Transaction<'_, sqlx::Postgres>,`
			`) -> Result<Token> {`
Token validation 2022-04-18 22:07:52 +02:00			`sqlx::query_as(r#"`
			`SELECT id, customer_id, role, issuer, subject, audience, expiration_time, not_before_time, issued_at_time, jwt_id`
			`FROM tokens`
Refresh tokens, sign in and so on 2022-05-10 16:20:37 +02:00			`WHERE jwt_id = $1 AND expiration_time > now()`
Token validation 2022-04-18 22:07:52 +02:00			`"#)`
			`.bind(msg.jti)`
Additional tests, macros for tests 2022-06-05 21:03:22 +02:00			`.fetch_one(t)`
Token validation 2022-04-18 22:07:52 +02:00			`.await`
			`.map_err(\|e\| {`
Move to tracing, test create order with payments 2022-06-07 11:36:01 +02:00			`tracing::error!("{e:?}");`
Add working search ingest 2022-05-06 11:47:18 +02:00			`crate::Error::Token(Error::Jti)`
Token validation 2022-04-18 22:07:52 +02:00			`})`
			`}`

			`#[derive(Message)]`
			`#[rtype(result = "Result<Token>")]`
			`pub struct CreateToken {`
			`pub customer_id: uuid::Uuid,`
Add working search ingest 2022-05-06 11:47:18 +02:00			`pub role: model::Role,`
Token validation 2022-04-18 22:07:52 +02:00			`pub subject: AccountId,`
			`pub audience: Audience,`
			`}`

Additional tests, macros for tests 2022-06-05 21:03:22 +02:00			`db_async_handler!(CreateToken, create_token, Token, inner_create_token);`
Token validation 2022-04-18 22:07:52 +02:00
Additional tests, macros for tests 2022-06-05 21:03:22 +02:00			`pub(crate) async fn create_token(`
			`msg: CreateToken,`
			`t: &mut sqlx::Transaction<'_, sqlx::Postgres>,`
			`) -> Result<Token> {`
Token validation 2022-04-18 22:07:52 +02:00			`let CreateToken {`
			`customer_id,`
			`role,`
			`subject,`
			`audience,`
			`} = msg;`
			`sqlx::query_as(r#"`
			`INSERT INTO tokens (customer_id, role, subject, audience)`
			`VALUES ($1, $2, $3, $4)`
			`RETURNING id, customer_id, role, issuer, subject, audience, expiration_time, not_before_time, issued_at_time, jwt_id`
			`"#)`
			`.bind(customer_id)`
			`.bind(role)`
			`.bind(subject)`
			`.bind(audience)`
Additional tests, macros for tests 2022-06-05 21:03:22 +02:00			`.fetch_one(t)`
Token validation 2022-04-18 22:07:52 +02:00			`.await`
			`.map_err(\|e\| {`
Move to tracing, test create order with payments 2022-06-07 11:36:01 +02:00			`tracing::error!("{e:?}");`
Add working search ingest 2022-05-06 11:47:18 +02:00			`crate::Error::Token(Error::Create)`
Token validation 2022-04-18 22:07:52 +02:00			`})`
			`}`
Refresh tokens, sign in and so on 2022-05-10 16:20:37 +02:00
			`#[derive(Message)]`
			`#[rtype(result = "Result<Token>")]`
			`pub struct CreateExtendedToken {`
			`pub customer_id: uuid::Uuid,`
			`pub role: model::Role,`
			`pub subject: AccountId,`
			`pub audience: Audience,`
			`pub expiration_time: chrono::NaiveDateTime,`
			`}`

Additional tests, macros for tests 2022-06-05 21:03:22 +02:00			`db_async_handler!(`
			`CreateExtendedToken,`
			`create_extended_token,`
			`Token,`
			`inner_create_extended_token`
			`);`

			`pub(crate) async fn create_extended_token(`
			`msg: CreateExtendedToken,`
			`t: &mut sqlx::Transaction<'_, sqlx::Postgres>,`
			`) -> Result<Token> {`
Refresh tokens, sign in and so on 2022-05-10 16:20:37 +02:00			`let CreateExtendedToken {`
			`customer_id,`
			`role,`
			`subject,`
			`audience,`
			`expiration_time,`
			`} = msg;`
			`sqlx::query_as(r#"`
			`INSERT INTO tokens (customer_id, role, subject, audience, expiration_time)`
			`VALUES ($1, $2, $3, $4, $5)`
			`RETURNING id, customer_id, role, issuer, subject, audience, expiration_time, not_before_time, issued_at_time, jwt_id`
			`"#)`
			`.bind(customer_id)`
			`.bind(role)`
			`.bind(subject)`
			`.bind(audience)`
			`.bind(expiration_time)`
Additional tests, macros for tests 2022-06-05 21:03:22 +02:00			`.fetch_one(t)`
Refresh tokens, sign in and so on 2022-05-10 16:20:37 +02:00			`.await`
			`.map_err(\|e\| {`
Move to tracing, test create order with payments 2022-06-07 11:36:01 +02:00			`tracing::error!("{e:?}");`
Refresh tokens, sign in and so on 2022-05-10 16:20:37 +02:00			`crate::Error::Token(Error::Create)`
			`})`
			`}`
Fix update account, db tests 2022-06-04 16:05:18 +02:00
			`#[cfg(test)]`
			`mod tests {`
Fix update account, db tests 2022-06-04 16:42:27 +02:00			`use config::UpdateConfig;`
			`use fake::Fake;`
Fix update account, db tests 2022-06-04 16:05:18 +02:00			`use model::*;`
			`use uuid::Uuid;`

			`use crate::*;`

Fix update account, db tests 2022-06-04 16:42:27 +02:00			`pub struct NoOpts;`

			`impl UpdateConfig for NoOpts {}`

Additional tests, macros for tests 2022-06-05 21:03:22 +02:00			`async fn test_create_account(t: &mut sqlx::Transaction<'_, sqlx::Postgres>) -> FullAccount {`
Fix update account, db tests 2022-06-04 16:05:18 +02:00			`use fake::faker::internet::en;`
			`let login: String = en::Username().fake();`
			`let email: String = en::FreeEmail().fake();`
			`let hash: String = en::Password(10..20).fake();`

Additional tests, macros for tests 2022-06-05 21:03:22 +02:00			`crate::create_account(`
			`CreateAccount {`
			`email: Email::new(email),`
			`login: Login::new(login),`
			`pass_hash: PassHash::new(hash),`
			`role: Role::Admin,`
			`},`
			`t,`
			`)`
Fix update account, db tests 2022-06-04 16:05:18 +02:00			`.await`
			`.unwrap()`
			`}`

Fix update account, db tests 2022-06-04 16:42:27 +02:00			`async fn test_create_token_extended(`
Additional tests, macros for tests 2022-06-05 21:03:22 +02:00			`t: &mut sqlx::Transaction<'_, sqlx::Postgres>,`
Fix update account, db tests 2022-06-04 16:42:27 +02:00			`customer_id: Option<Uuid>,`
Fix update account, db tests 2022-06-04 16:05:18 +02:00			`role: Option<Role>,`
			`subject: Option<AccountId>,`
			`audience: Option<Audience>,`
			`expiration_time: Option<chrono::NaiveDateTime>,`
			`) -> Token {`
Fix update account, db tests 2022-06-04 16:42:27 +02:00			`let customer_id = customer_id.unwrap_or_else(\|\| Uuid::new_v4());`
Fix update account, db tests 2022-06-04 16:05:18 +02:00			`let role = role.unwrap_or_else(\|\| Role::Admin);`
			`let subject = match subject {`
			`Some(id) => id,`
Additional tests, macros for tests 2022-06-05 21:03:22 +02:00			`_ => test_create_account(t).await.id,`
Fix update account, db tests 2022-06-04 16:05:18 +02:00			`};`
			`let audience = audience.unwrap_or_else(\|\| Audience::Web);`
			`let expiration_time = expiration_time`
			`.unwrap_or_else(\|\| (chrono::Utc::now() + chrono::Duration::days(60)).naive_utc());`

Additional tests, macros for tests 2022-06-05 21:03:22 +02:00			`super::create_extended_token(`
			`CreateExtendedToken {`
			`customer_id,`
			`role,`
			`subject,`
			`audience,`
			`expiration_time,`
			`},`
			`t,`
			`)`
Fix update account, db tests 2022-06-04 16:05:18 +02:00			`.await`
			`.unwrap()`
			`}`

			`#[actix::test]`
Fix update account, db tests 2022-06-04 16:42:27 +02:00			`async fn create_token() {`
Additional tests, macros for tests 2022-06-05 21:03:22 +02:00			`testx::db_t!(t);`

			`super::create_token(`
			`CreateToken {`
			`customer_id: Uuid::new_v4(),`
			`role: Role::Admin,`
			`subject: test_create_account(&mut t).await.id,`
			`audience: Audience::Web,`
			`},`
			`&mut t,`
			`)`
Fix update account, db tests 2022-06-04 16:05:18 +02:00			`.await`
			`.unwrap();`
			`}`
Fix update account, db tests 2022-06-04 16:42:27 +02:00
			`#[actix::test]`
			`async fn create_extended_token() {`
Additional tests, macros for tests 2022-06-05 21:03:22 +02:00			`testx::db_t!(t);`
Fix update account, db tests 2022-06-04 16:42:27 +02:00
Additional tests, macros for tests 2022-06-05 21:03:22 +02:00			`test_create_account(&mut t).await;`
Fix update account, db tests 2022-06-04 16:42:27 +02:00
Additional tests, macros for tests 2022-06-05 21:03:22 +02:00			`testx::db_rollback!(t);`
Fix update account, db tests 2022-06-04 16:42:27 +02:00			`}`
Fix update account, db tests 2022-06-04 16:55:29 +02:00
			`#[actix::test]`
			`async fn find_by_jti() {`
Additional tests, macros for tests 2022-06-05 21:03:22 +02:00			`testx::db_t!(t);`
Fix update account, db tests 2022-06-04 16:55:29 +02:00
Additional tests, macros for tests 2022-06-05 21:03:22 +02:00			`let original = test_create_token_extended(&mut t, None, None, None, None, None).await;`
Fix update account, db tests 2022-06-04 16:55:29 +02:00
Additional tests, macros for tests 2022-06-05 21:03:22 +02:00			`let found = super::token_by_jti(`
			`TokenByJti {`
Fix update account, db tests 2022-06-04 16:55:29 +02:00			`jti: original.jwt_id,`
Additional tests, macros for tests 2022-06-05 21:03:22 +02:00			`},`
			`&mut t,`
			`)`
			`.await`
			`.unwrap();`
Fix update account, db tests 2022-06-04 16:55:29 +02:00
Additional tests, macros for tests 2022-06-05 21:03:22 +02:00			`testx::db_rollback!(t);`
Fix update account, db tests 2022-06-04 16:55:29 +02:00			`assert_eq!(found, original);`
			`}`

			`#[actix::test]`
			`async fn find_by_jti_expired() {`
Additional tests, macros for tests 2022-06-05 21:03:22 +02:00			`testx::db_t!(t);`
Fix update account, db tests 2022-06-04 16:55:29 +02:00
			`let original = test_create_token_extended(`
Additional tests, macros for tests 2022-06-05 21:03:22 +02:00			`&mut t,`
Fix update account, db tests 2022-06-04 16:55:29 +02:00			`None,`
			`None,`
			`None,`
			`None,`
			`Some((chrono::Utc::now() - chrono::Duration::seconds(1)).naive_utc()),`
			`)`
			`.await;`

Additional tests, macros for tests 2022-06-05 21:03:22 +02:00			`let found = super::token_by_jti(`
			`TokenByJti {`
Fix update account, db tests 2022-06-04 16:55:29 +02:00			`jti: original.jwt_id,`
Additional tests, macros for tests 2022-06-05 21:03:22 +02:00			`},`
			`&mut t,`
			`)`
			`.await;`
Fix update account, db tests 2022-06-04 16:55:29 +02:00
Additional tests, macros for tests 2022-06-05 21:03:22 +02:00			`testx::db_rollback!(t);`
Fix update account, db tests 2022-06-04 16:55:29 +02:00			`assert_eq!(found, Err(crate::Error::Token(super::Error::Jti)));`
			`}`
Fix update account, db tests 2022-06-04 16:05:18 +02:00			`}`