bazzar/api/src/main.rs

use std::io::Write;
use std::sync::Arc;

use actix::Actor;
use actix_session::storage::RedisActorSessionStore;
use actix_session::SessionMiddleware;
use actix_web::cookie::Key;
use actix_web::middleware::Logger;
use actix_web::web::Data;
use actix_web::{App, HttpServer};
use gumdrop::Options;
use password_hash::SaltString;
use validator::{validate_email, validate_length};

use crate::actors::{database, token_manager};
use crate::logic::encrypt_password;
use crate::model::{Email, Login, PassHash, Password, Role};

pub mod actors;
pub mod logic;
pub mod model;
pub mod routes;
mod utils;

trait ResolveDbUrl {
    fn own_db_url(&self) -> Option<String>;

    fn db_url(&self) -> String {
        self.own_db_url()
            .or_else(|| std::env::var("DATABASE_URL").ok())
            .unwrap_or_else(|| String::from("postgres://postgres@localhost/bazzar"))
    }
}

#[derive(Debug, thiserror::Error)]
pub enum Error {
    #[error("Failed to boot. {0:?}")]
    Boot(std::io::Error),
    #[error("Unable to read password file. {0:?}")]
    PassFile(std::io::Error),
    #[error("Unable to read password from STDIN. {0:?}")]
    ReadPass(std::io::Error),
    #[error("{0}")]
    Database(#[from] database::Error),
}

pub type Result<T> = std::result::Result<T, Error>;

#[derive(Options, Debug)]
struct Opts {
    help: bool,
    #[options(command)]
    cmd: Option<Command>,
}

#[derive(Options, Debug)]
enum Command {
    #[options(help = "Run server")]
    Server(ServerOpts),
    #[options(help = "Migrate database")]
    Migrate(MigrateOpts),
    #[options(help = "Generate new salt for passwords")]
    GenerateHash(GenerateHashOpts),
    #[options(help = "Create new account")]
    CreateAccount(CreateAccountOpts),
}

impl Default for Command {
    fn default() -> Self {
        Command::Server(ServerOpts::default())
    }
}

#[derive(Options, Debug)]
struct GenerateHashOpts {
    help: bool,
}

#[derive(Options, Debug)]
struct ServerOpts {
    help: bool,
    bind: String,
    port: u16,
    db_url: Option<String>,
}

impl Default for ServerOpts {
    fn default() -> Self {
        Self {
            help: false,
            bind: "0.0.0.0".to_string(),
            port: 8080,
            db_url: None,
        }
    }
}

impl ResolveDbUrl for ServerOpts {
    fn own_db_url(&self) -> Option<String> {
        self.db_url.as_deref().map(String::from)
    }
}

#[derive(Options, Debug)]
struct MigrateOpts {
    help: bool,
    db_url: Option<String>,
}

impl ResolveDbUrl for MigrateOpts {
    fn own_db_url(&self) -> Option<String> {
        self.db_url.as_deref().map(String::from)
    }
}

#[derive(Debug, Options)]
struct CreateAccountOpts {
    help: bool,
    #[options(command)]
    cmd: Option<CreateAccountCmd>,
}

#[derive(Debug, Options)]
enum CreateAccountCmd {
    Admin(CreateAccountDefinition),
    User(CreateAccountDefinition),
}

#[derive(Debug, Options)]
struct CreateAccountDefinition {
    help: bool,
    #[options(free)]
    login: String,
    #[options(free)]
    email: String,
    #[options(free)]
    pass_file: Option<String>,
    #[options(help = "Database url, it will also look for DATABASE_URL env")]
    db_url: Option<String>,
}

impl ResolveDbUrl for CreateAccountDefinition {
    fn own_db_url(&self) -> Option<String> {
        self.db_url.as_deref().map(String::from)
    }
}

pub struct Config {
    pass_salt: SaltString,
}

impl Config {
    fn load() -> Self {
        let pass_salt =
            SaltString::new(&std::env::var("PASS_SALT").expect("PASS_SALT is required"))
                .expect("Invalid password salt");
        Self { pass_salt }
    }
}

async fn server(opts: ServerOpts) -> Result<()> {
    let secret_key = {
        let key_secret = std::env::var("KEY_SECRET")
            .expect("session requires secret key with 64 or more characters");
        Key::from(key_secret.as_bytes())
    };
    let redis_connection_string = "127.0.0.1:6379";

    let config = Arc::new(Config::load());
    let db = database::Database::build(&opts.db_url()).await?.start();
    let token_manager = token_manager::TokenManager::new(db.clone()).start();

    HttpServer::new(move || {
        App::new()
            .wrap(Logger::default())
            .wrap(actix_web::middleware::Compress::default())
            .wrap(actix_web::middleware::NormalizePath::trim())
            .wrap(SessionMiddleware::new(
                RedisActorSessionStore::new(redis_connection_string),
                secret_key.clone(),
            ))
            .app_data(Data::new(config.clone()))
            .app_data(Data::new(db.clone()))
            .app_data(Data::new(token_manager.clone()))
            .configure(routes::configure)
        // .default_service(web::to(HttpResponse::Ok))
    })
    .bind((opts.bind, opts.port))
    .map_err(Error::Boot)?
    .run()
    .await
    .map_err(Error::Boot)
}

async fn migrate(opts: MigrateOpts) -> Result<()> {
    use sqlx::migrate::MigrateError;

    let db = database::Database::build(&opts.db_url()).await?;
    let res: std::result::Result<(), MigrateError> =
        sqlx::migrate!("../db/migrate").run(db.pool()).await;
    match res {
        Ok(()) => Ok(()),
        Err(e) => {
            eprintln!("{e}");
            std::process::exit(1);
        }
    }
}

async fn generate_hash(_opts: GenerateHashOpts) -> Result<()> {
    use argon2::password_hash::rand_core::OsRng;
    let salt = SaltString::generate(&mut OsRng);
    println!("{salt}");
    Ok(())
}

async fn create_account(opts: CreateAccountOpts) -> Result<()> {
    let (role, opts) = match opts.cmd.expect("Account type is mandatory") {
        CreateAccountCmd::Admin(opts) => (Role::Admin, opts),
        CreateAccountCmd::User(opts) => (Role::User, opts),
    };
    if !validate_email(&opts.email) {
        panic!("Invalid email address");
    }
    if !validate_length(&opts.login, Some(4), Some(100), None) {
        panic!("Login must have at least 4 characters and no more than 100");
    }
    let db = database::Database::build(&opts.db_url()).await?.start();
    let pass = match opts.pass_file {
        Some(path) => std::fs::read_to_string(path).map_err(Error::PassFile)?,
        None => {
            let mut s = String::with_capacity(100);
            {
                let mut std_out = std::io::stdout();
                let std_in = std::io::stdin();

                std_out
                    .write_all(b"PASS > ")
                    .expect("Failed to write to stdout");
                std_out.flush().expect("Failed to write to stdout");

                std_in.read_line(&mut s).map_err(Error::ReadPass)?;
            }
            if let Some(pos) = s.chars().position(|c| c == '\n') {
                s.remove(pos);
            }
            s
        }
    };
    if pass.trim().is_empty() {
        panic!("Password cannot be empty!");
    }
    let config = Config::load();
    let hash = encrypt_password(&Password::from(pass), &config.pass_salt).unwrap();

    db.send(database::CreateAccount {
        email: Email::from(opts.email),
        login: Login::from(opts.login),
        pass_hash: PassHash::from(hash),
        role,
    })
    .await
    .unwrap()
    .unwrap();
    Ok(())
}

#[actix_web::main]
async fn main() -> Result<()> {
    dotenv::dotenv().ok();
    pretty_env_logger::init();

    let opts: Opts = gumdrop::Options::parse_args_default_or_exit();
    match opts.cmd.unwrap_or_default() {
        Command::Migrate(opts) => migrate(opts).await,
        Command::Server(opts) => server(opts).await,
        Command::GenerateHash(opts) => generate_hash(opts).await,
        Command::CreateAccount(opts) => create_account(opts).await,
    }
}
Add lots of API endpoints 2022-04-19 16:49:30 +02:00			`use std::io::Write;`
All some logic 2022-04-14 21:40:26 +02:00			`use std::sync::Arc;`

			`use actix::Actor;`
Token validation 2022-04-18 22:07:52 +02:00			`use actix_session::storage::RedisActorSessionStore;`
			`use actix_session::SessionMiddleware;`
All some logic 2022-04-14 21:40:26 +02:00			`use actix_web::cookie::Key;`
			`use actix_web::middleware::Logger;`
			`use actix_web::web::Data;`
Fix order, add non negative constructor 2022-04-16 07:31:19 +02:00			`use actix_web::{App, HttpServer};`
All some logic 2022-04-14 21:40:26 +02:00			`use gumdrop::Options;`
			`use password_hash::SaltString;`
			`use validator::{validate_email, validate_length};`

Token validation 2022-04-18 22:07:52 +02:00			`use crate::actors::{database, token_manager};`
Add endpoints, creating accounts and so on 2022-04-15 17:04:23 +02:00			`use crate::logic::encrypt_password;`
			`use crate::model::{Email, Login, PassHash, Password, Role};`
All some logic 2022-04-14 21:40:26 +02:00
			`pub mod actors;`
			`pub mod logic;`
			`pub mod model;`
			`pub mod routes;`
Logic for add item 2022-04-16 18:57:37 +02:00			`mod utils;`
All some logic 2022-04-14 21:40:26 +02:00
Add endpoints, creating accounts and so on 2022-04-15 17:04:23 +02:00			`trait ResolveDbUrl {`
			`fn own_db_url(&self) -> Option<String>;`

			`fn db_url(&self) -> String {`
			`self.own_db_url()`
			`.or_else(\|\| std::env::var("DATABASE_URL").ok())`
			`.unwrap_or_else(\|\| String::from("postgres://postgres@localhost/bazzar"))`
			`}`
			`}`

All some logic 2022-04-14 21:40:26 +02:00			`#[derive(Debug, thiserror::Error)]`
			`pub enum Error {`
			`#[error("Failed to boot. {0:?}")]`
			`Boot(std::io::Error),`
			`#[error("Unable to read password file. {0:?}")]`
			`PassFile(std::io::Error),`
			`#[error("Unable to read password from STDIN. {0:?}")]`
			`ReadPass(std::io::Error),`
			`#[error("{0}")]`
			`Database(#[from] database::Error),`
			`}`

			`pub type Result<T> = std::result::Result<T, Error>;`

			`#[derive(Options, Debug)]`
			`struct Opts {`
			`help: bool,`
			`#[options(command)]`
			`cmd: Option<Command>,`
			`}`

			`#[derive(Options, Debug)]`
			`enum Command {`
			`#[options(help = "Run server")]`
			`Server(ServerOpts),`
			`#[options(help = "Migrate database")]`
			`Migrate(MigrateOpts),`
			`#[options(help = "Generate new salt for passwords")]`
			`GenerateHash(GenerateHashOpts),`
			`#[options(help = "Create new account")]`
			`CreateAccount(CreateAccountOpts),`
			`}`

			`impl Default for Command {`
			`fn default() -> Self {`
			`Command::Server(ServerOpts::default())`
			`}`
			`}`

			`#[derive(Options, Debug)]`
			`struct GenerateHashOpts {`
			`help: bool,`
			`}`

			`#[derive(Options, Debug)]`
			`struct ServerOpts {`
			`help: bool,`
			`bind: String,`
			`port: u16,`
			`db_url: Option<String>,`
			`}`

			`impl Default for ServerOpts {`
			`fn default() -> Self {`
Token validation 2022-04-18 22:07:52 +02:00			`Self {`
			`help: false,`
			`bind: "0.0.0.0".to_string(),`
			`port: 8080,`
			`db_url: None,`
			`}`
All some logic 2022-04-14 21:40:26 +02:00			`}`
			`}`

Add endpoints, creating accounts and so on 2022-04-15 17:04:23 +02:00			`impl ResolveDbUrl for ServerOpts {`
			`fn own_db_url(&self) -> Option<String> {`
			`self.db_url.as_deref().map(String::from)`
All some logic 2022-04-14 21:40:26 +02:00			`}`
			`}`

			`#[derive(Options, Debug)]`
			`struct MigrateOpts {`
			`help: bool,`
			`db_url: Option<String>,`
			`}`

Add endpoints, creating accounts and so on 2022-04-15 17:04:23 +02:00			`impl ResolveDbUrl for MigrateOpts {`
			`fn own_db_url(&self) -> Option<String> {`
			`self.db_url.as_deref().map(String::from)`
All some logic 2022-04-14 21:40:26 +02:00			`}`
			`}`

			`#[derive(Debug, Options)]`
			`struct CreateAccountOpts {`
			`help: bool,`
			`#[options(command)]`
			`cmd: Option<CreateAccountCmd>,`
			`}`

			`#[derive(Debug, Options)]`
			`enum CreateAccountCmd {`
			`Admin(CreateAccountDefinition),`
			`User(CreateAccountDefinition),`
			`}`

			`#[derive(Debug, Options)]`
			`struct CreateAccountDefinition {`
			`help: bool,`
			`#[options(free)]`
			`login: String,`
			`#[options(free)]`
			`email: String,`
			`#[options(free)]`
			`pass_file: Option<String>,`
			`#[options(help = "Database url, it will also look for DATABASE_URL env")]`
			`db_url: Option<String>,`
			`}`

Add endpoints, creating accounts and so on 2022-04-15 17:04:23 +02:00			`impl ResolveDbUrl for CreateAccountDefinition {`
			`fn own_db_url(&self) -> Option<String> {`
			`self.db_url.as_deref().map(String::from)`
All some logic 2022-04-14 21:40:26 +02:00			`}`
			`}`

			`pub struct Config {`
			`pass_salt: SaltString,`
			`}`

			`impl Config {`
			`fn load() -> Self {`
			`let pass_salt =`
			`SaltString::new(&std::env::var("PASS_SALT").expect("PASS_SALT is required"))`
			`.expect("Invalid password salt");`
			`Self { pass_salt }`
			`}`
			`}`

			`async fn server(opts: ServerOpts) -> Result<()> {`
Improve tests 2022-04-17 22:15:09 +02:00			`let secret_key = {`
			`let key_secret = std::env::var("KEY_SECRET")`
			`.expect("session requires secret key with 64 or more characters");`
			`Key::from(key_secret.as_bytes())`
			`};`
All some logic 2022-04-14 21:40:26 +02:00			`let redis_connection_string = "127.0.0.1:6379";`

			`let config = Arc::new(Config::load());`
			`let db = database::Database::build(&opts.db_url()).await?.start();`
Token validation 2022-04-18 22:07:52 +02:00			`let token_manager = token_manager::TokenManager::new(db.clone()).start();`
All some logic 2022-04-14 21:40:26 +02:00
			`HttpServer::new(move \|\| {`
			`App::new()`
			`.wrap(Logger::default())`
			`.wrap(actix_web::middleware::Compress::default())`
Update cart and items, add cart state 2022-04-16 12:48:38 +02:00			`.wrap(actix_web::middleware::NormalizePath::trim())`
All some logic 2022-04-14 21:40:26 +02:00			`.wrap(SessionMiddleware::new(`
			`RedisActorSessionStore::new(redis_connection_string),`
			`secret_key.clone(),`
			`))`
			`.app_data(Data::new(config.clone()))`
			`.app_data(Data::new(db.clone()))`
Token validation 2022-04-18 22:07:52 +02:00			`.app_data(Data::new(token_manager.clone()))`
All some logic 2022-04-14 21:40:26 +02:00			`.configure(routes::configure)`
Add endpoints, creating accounts and so on 2022-04-15 17:04:23 +02:00			`// .default_service(web::to(HttpResponse::Ok))`
All some logic 2022-04-14 21:40:26 +02:00			`})`
			`.bind((opts.bind, opts.port))`
			`.map_err(Error::Boot)?`
			`.run()`
			`.await`
			`.map_err(Error::Boot)`
			`}`

			`async fn migrate(opts: MigrateOpts) -> Result<()> {`
Add customer_id and order_id 2022-04-18 08:08:55 +02:00			`use sqlx::migrate::MigrateError;`

All some logic 2022-04-14 21:40:26 +02:00			`let db = database::Database::build(&opts.db_url()).await?;`
Add customer_id and order_id 2022-04-18 08:08:55 +02:00			`let res: std::result::Result<(), MigrateError> =`
			`sqlx::migrate!("../db/migrate").run(db.pool()).await;`
			`match res {`
Add lots of API endpoints 2022-04-19 16:49:30 +02:00			`Ok(()) => Ok(()),`
Add customer_id and order_id 2022-04-18 08:08:55 +02:00			`Err(e) => {`
			`eprintln!("{e}");`
			`std::process::exit(1);`
			`}`
Add lots of API endpoints 2022-04-19 16:49:30 +02:00			`}`
All some logic 2022-04-14 21:40:26 +02:00			`}`

			`async fn generate_hash(_opts: GenerateHashOpts) -> Result<()> {`
			`use argon2::password_hash::rand_core::OsRng;`
			`let salt = SaltString::generate(&mut OsRng);`
			`println!("{salt}");`
			`Ok(())`
			`}`

			`async fn create_account(opts: CreateAccountOpts) -> Result<()> {`
			`let (role, opts) = match opts.cmd.expect("Account type is mandatory") {`
			`CreateAccountCmd::Admin(opts) => (Role::Admin, opts),`
			`CreateAccountCmd::User(opts) => (Role::User, opts),`
			`};`
			`if !validate_email(&opts.email) {`
			`panic!("Invalid email address");`
			`}`
			`if !validate_length(&opts.login, Some(4), Some(100), None) {`
			`panic!("Login must have at least 4 characters and no more than 100");`
			`}`
			`let db = database::Database::build(&opts.db_url()).await?.start();`
			`let pass = match opts.pass_file {`
			`Some(path) => std::fs::read_to_string(path).map_err(Error::PassFile)?,`
			`None => {`
			`let mut s = String::with_capacity(100);`
Token validation 2022-04-18 22:07:52 +02:00			`{`
Add lots of API endpoints 2022-04-19 16:49:30 +02:00			`let mut std_out = std::io::stdout();`
			`let std_in = std::io::stdin();`
Token validation 2022-04-18 22:07:52 +02:00
			`std_out`
			`.write_all(b"PASS > ")`
			`.expect("Failed to write to stdout");`
			`std_out.flush().expect("Failed to write to stdout");`

			`std_in.read_line(&mut s).map_err(Error::ReadPass)?;`
			`}`
Add endpoints, creating accounts and so on 2022-04-15 17:04:23 +02:00			`if let Some(pos) = s.chars().position(\|c\| c == '\n') {`
			`s.remove(pos);`
			`}`
All some logic 2022-04-14 21:40:26 +02:00			`s`
			`}`
			`};`
Token validation 2022-04-18 22:07:52 +02:00			`if pass.trim().is_empty() {`
			`panic!("Password cannot be empty!");`
			`}`
All some logic 2022-04-14 21:40:26 +02:00			`let config = Config::load();`
Add lots of API endpoints 2022-04-19 16:49:30 +02:00			`let hash = encrypt_password(&Password::from(pass), &config.pass_salt).unwrap();`
All some logic 2022-04-14 21:40:26 +02:00
			`db.send(database::CreateAccount {`
Add lots of API endpoints 2022-04-19 16:49:30 +02:00			`email: Email::from(opts.email),`
			`login: Login::from(opts.login),`
			`pass_hash: PassHash::from(hash),`
All some logic 2022-04-14 21:40:26 +02:00			`role,`
			`})`
			`.await`
			`.unwrap()`
			`.unwrap();`
			`Ok(())`
			`}`

			`#[actix_web::main]`
			`async fn main() -> Result<()> {`
			`dotenv::dotenv().ok();`
			`pretty_env_logger::init();`

			`let opts: Opts = gumdrop::Options::parse_args_default_or_exit();`
			`match opts.cmd.unwrap_or_default() {`
			`Command::Migrate(opts) => migrate(opts).await,`
			`Command::Server(opts) => server(opts).await,`
			`Command::GenerateHash(opts) => generate_hash(opts).await,`
			`Command::CreateAccount(opts) => create_account(opts).await,`
			`}`
Init 2022-04-14 08:07:59 +02:00			`}`