2019-05-05 05:20:38 +00:00
use super ::* ;
2019-11-02 06:43:21 +00:00
use crate ::{ generate_random_string , send_email } ;
2019-09-07 15:35:05 +00:00
use bcrypt ::verify ;
2019-05-05 05:20:38 +00:00
use std ::str ::FromStr ;
#[ derive(Serialize, Deserialize, Debug) ]
pub struct Login {
username_or_email : String ,
2019-09-07 15:35:05 +00:00
password : String ,
2019-05-05 05:20:38 +00:00
}
#[ derive(Serialize, Deserialize) ]
pub struct Register {
username : String ,
email : Option < String > ,
password : String ,
password_verify : String ,
admin : bool ,
2019-08-14 02:52:43 +00:00
show_nsfw : bool ,
}
#[ derive(Serialize, Deserialize) ]
pub struct SaveUserSettings {
show_nsfw : bool ,
2019-10-15 19:21:27 +00:00
theme : String ,
2019-10-21 04:21:54 +00:00
default_sort_type : i16 ,
default_listing_type : i16 ,
2019-08-14 02:52:43 +00:00
auth : String ,
2019-05-05 05:20:38 +00:00
}
#[ derive(Serialize, Deserialize) ]
pub struct LoginResponse {
op : String ,
2019-09-07 15:35:05 +00:00
jwt : String ,
2019-05-05 05:20:38 +00:00
}
#[ derive(Serialize, Deserialize) ]
pub struct GetUserDetails {
user_id : Option < i32 > ,
username : Option < String > ,
sort : String ,
page : Option < i64 > ,
limit : Option < i64 > ,
community_id : Option < i32 > ,
saved_only : bool ,
auth : Option < String > ,
}
#[ derive(Serialize, Deserialize) ]
pub struct GetUserDetailsResponse {
op : String ,
user : UserView ,
follows : Vec < CommunityFollowerView > ,
moderates : Vec < CommunityModeratorView > ,
comments : Vec < CommentView > ,
posts : Vec < PostView > ,
2019-10-14 00:36:35 +00:00
admins : Vec < UserView > ,
2019-05-05 05:20:38 +00:00
}
#[ derive(Serialize, Deserialize) ]
pub struct GetRepliesResponse {
op : String ,
replies : Vec < ReplyView > ,
}
2019-10-20 00:46:29 +00:00
#[ derive(Serialize, Deserialize) ]
pub struct GetUserMentionsResponse {
op : String ,
mentions : Vec < UserMentionView > ,
}
2019-05-05 05:20:38 +00:00
#[ derive(Serialize, Deserialize) ]
pub struct MarkAllAsRead {
2019-09-07 15:35:05 +00:00
auth : String ,
2019-05-05 05:20:38 +00:00
}
#[ derive(Serialize, Deserialize) ]
pub struct AddAdmin {
user_id : i32 ,
added : bool ,
2019-09-07 15:35:05 +00:00
auth : String ,
2019-05-05 05:20:38 +00:00
}
#[ derive(Serialize, Deserialize) ]
pub struct AddAdminResponse {
op : String ,
admins : Vec < UserView > ,
}
#[ derive(Serialize, Deserialize) ]
pub struct BanUser {
user_id : i32 ,
ban : bool ,
reason : Option < String > ,
expires : Option < i64 > ,
2019-09-07 15:35:05 +00:00
auth : String ,
2019-05-05 05:20:38 +00:00
}
#[ derive(Serialize, Deserialize) ]
pub struct BanUserResponse {
op : String ,
user : UserView ,
banned : bool ,
}
#[ derive(Serialize, Deserialize) ]
pub struct GetReplies {
sort : String ,
page : Option < i64 > ,
limit : Option < i64 > ,
unread_only : bool ,
2019-09-07 15:35:05 +00:00
auth : String ,
2019-05-05 05:20:38 +00:00
}
2019-10-20 00:46:29 +00:00
#[ derive(Serialize, Deserialize) ]
pub struct GetUserMentions {
sort : String ,
page : Option < i64 > ,
limit : Option < i64 > ,
unread_only : bool ,
auth : String ,
}
#[ derive(Serialize, Deserialize) ]
pub struct EditUserMention {
user_mention_id : i32 ,
read : Option < bool > ,
auth : String ,
}
#[ derive(Serialize, Deserialize, Clone) ]
pub struct UserMentionResponse {
op : String ,
mention : UserMentionView ,
}
2019-10-15 22:09:01 +00:00
#[ derive(Serialize, Deserialize) ]
pub struct DeleteAccount {
2019-10-18 04:25:23 +00:00
password : String ,
2019-10-15 22:09:01 +00:00
auth : String ,
}
2019-10-30 03:35:39 +00:00
#[ derive(Serialize, Deserialize) ]
pub struct PasswordReset {
email : String ,
}
#[ derive(Serialize, Deserialize, Clone) ]
pub struct PasswordResetResponse {
op : String ,
}
#[ derive(Serialize, Deserialize) ]
pub struct PasswordChange {
token : String ,
password : String ,
password_verify : String ,
}
2019-05-05 05:20:38 +00:00
impl Perform < LoginResponse > for Oper < Login > {
fn perform ( & self ) -> Result < LoginResponse , Error > {
2019-05-05 16:20:30 +00:00
let data : & Login = & self . data ;
2019-05-05 05:20:38 +00:00
let conn = establish_connection ( ) ;
// Fetch that username / email
let user : User_ = match User_ ::find_by_email_or_username ( & conn , & data . username_or_email ) {
Ok ( user ) = > user ,
2019-09-07 15:35:05 +00:00
Err ( _e ) = > {
return Err ( APIError ::err (
& self . op ,
" couldnt_find_that_username_or_email " ,
) ) ?
}
2019-05-05 05:20:38 +00:00
} ;
// Verify the password
let valid : bool = verify ( & data . password , & user . password_encrypted ) . unwrap_or ( false ) ;
if ! valid {
2019-09-07 15:35:05 +00:00
return Err ( APIError ::err ( & self . op , " password_incorrect " ) ) ? ;
2019-05-05 05:20:38 +00:00
}
// Return the jwt
2019-09-07 15:35:05 +00:00
Ok ( LoginResponse {
op : self . op . to_string ( ) ,
jwt : user . jwt ( ) ,
} )
2019-05-05 05:20:38 +00:00
}
}
impl Perform < LoginResponse > for Oper < Register > {
fn perform ( & self ) -> Result < LoginResponse , Error > {
2019-05-05 16:20:30 +00:00
let data : & Register = & self . data ;
2019-05-05 05:20:38 +00:00
let conn = establish_connection ( ) ;
// Make sure passwords match
if & data . password ! = & data . password_verify {
2019-09-07 15:35:05 +00:00
return Err ( APIError ::err ( & self . op , " passwords_dont_match " ) ) ? ;
2019-05-05 05:20:38 +00:00
}
if has_slurs ( & data . username ) {
2019-09-07 15:35:05 +00:00
return Err ( APIError ::err ( & self . op , " no_slurs " ) ) ? ;
2019-05-05 05:20:38 +00:00
}
// Make sure there are no admins
if data . admin & & UserView ::admins ( & conn ) ? . len ( ) > 0 {
2019-09-07 15:35:05 +00:00
return Err ( APIError ::err ( & self . op , " admin_already_created " ) ) ? ;
2019-05-05 05:20:38 +00:00
}
// Register the new user
let user_form = UserForm {
name : data . username . to_owned ( ) ,
fedi_name : Settings ::get ( ) . hostname . into ( ) ,
email : data . email . to_owned ( ) ,
password_encrypted : data . password . to_owned ( ) ,
preferred_username : None ,
updated : None ,
admin : data . admin ,
banned : false ,
2019-08-14 02:52:43 +00:00
show_nsfw : data . show_nsfw ,
2019-10-15 19:21:27 +00:00
theme : " darkly " . into ( ) ,
2019-10-21 04:21:54 +00:00
default_sort_type : SortType ::Hot as i16 ,
default_listing_type : ListingType ::Subscribed as i16 ,
2019-05-05 05:20:38 +00:00
} ;
// Create the user
let inserted_user = match User_ ::register ( & conn , & user_form ) {
Ok ( user ) = > user ,
2019-09-07 15:35:05 +00:00
Err ( _e ) = > return Err ( APIError ::err ( & self . op , " user_already_exists " ) ) ? ,
2019-05-05 05:20:38 +00:00
} ;
2019-06-02 16:34:45 +00:00
// Create the main community if it doesn't exist
2019-08-17 21:39:20 +00:00
let main_community : Community = match Community ::read ( & conn , 2 ) {
2019-06-02 16:34:45 +00:00
Ok ( c ) = > c ,
Err ( _e ) = > {
let community_form = CommunityForm {
name : " main " . to_string ( ) ,
title : " The Default Community " . to_string ( ) ,
description : Some ( " The Default Community " . to_string ( ) ) ,
category_id : 1 ,
2019-08-14 02:52:43 +00:00
nsfw : false ,
2019-06-02 16:34:45 +00:00
creator_id : inserted_user . id ,
removed : None ,
deleted : None ,
updated : None ,
} ;
Community ::create ( & conn , & community_form ) . unwrap ( )
}
} ;
// Sign them up for main community no matter what
let community_follower_form = CommunityFollowerForm {
community_id : main_community . id ,
user_id : inserted_user . id ,
} ;
2019-09-07 15:35:05 +00:00
let _inserted_community_follower =
match CommunityFollower ::follow ( & conn , & community_follower_form ) {
Ok ( user ) = > user ,
Err ( _e ) = > return Err ( APIError ::err ( & self . op , " community_follower_already_exists " ) ) ? ,
} ;
2019-06-02 16:34:45 +00:00
// If its an admin, add them as a mod and follower to main
if data . admin {
let community_moderator_form = CommunityModeratorForm {
community_id : main_community . id ,
user_id : inserted_user . id ,
} ;
2019-09-07 15:35:05 +00:00
let _inserted_community_moderator =
match CommunityModerator ::join ( & conn , & community_moderator_form ) {
Ok ( user ) = > user ,
Err ( _e ) = > {
return Err ( APIError ::err (
& self . op ,
" community_moderator_already_exists " ,
) ) ?
}
} ;
2019-06-02 16:34:45 +00:00
}
2019-05-05 05:20:38 +00:00
// Return the jwt
2019-09-07 15:35:05 +00:00
Ok ( LoginResponse {
op : self . op . to_string ( ) ,
jwt : inserted_user . jwt ( ) ,
} )
2019-05-05 05:20:38 +00:00
}
}
2019-08-14 02:52:43 +00:00
impl Perform < LoginResponse > for Oper < SaveUserSettings > {
fn perform ( & self ) -> Result < LoginResponse , Error > {
let data : & SaveUserSettings = & self . data ;
let conn = establish_connection ( ) ;
let claims = match Claims ::decode ( & data . auth ) {
Ok ( claims ) = > claims . claims ,
2019-09-07 15:35:05 +00:00
Err ( _e ) = > return Err ( APIError ::err ( & self . op , " not_logged_in " ) ) ? ,
2019-08-14 02:52:43 +00:00
} ;
let user_id = claims . id ;
2019-09-07 15:35:05 +00:00
2019-08-14 02:52:43 +00:00
let read_user = User_ ::read ( & conn , user_id ) ? ;
let user_form = UserForm {
name : read_user . name ,
fedi_name : read_user . fedi_name ,
email : read_user . email ,
password_encrypted : read_user . password_encrypted ,
preferred_username : read_user . preferred_username ,
updated : Some ( naive_now ( ) ) ,
admin : read_user . admin ,
banned : read_user . banned ,
show_nsfw : data . show_nsfw ,
2019-10-15 19:21:27 +00:00
theme : data . theme . to_owned ( ) ,
2019-10-21 04:21:54 +00:00
default_sort_type : data . default_sort_type ,
default_listing_type : data . default_listing_type ,
2019-08-14 02:52:43 +00:00
} ;
let updated_user = match User_ ::update ( & conn , user_id , & user_form ) {
Ok ( user ) = > user ,
2019-09-07 15:35:05 +00:00
Err ( _e ) = > return Err ( APIError ::err ( & self . op , " couldnt_update_user " ) ) ? ,
2019-08-14 02:52:43 +00:00
} ;
// Return the jwt
2019-09-07 15:35:05 +00:00
Ok ( LoginResponse {
op : self . op . to_string ( ) ,
jwt : updated_user . jwt ( ) ,
} )
2019-08-14 02:52:43 +00:00
}
}
2019-05-05 05:20:38 +00:00
impl Perform < GetUserDetailsResponse > for Oper < GetUserDetails > {
fn perform ( & self ) -> Result < GetUserDetailsResponse , Error > {
2019-05-05 16:20:30 +00:00
let data : & GetUserDetails = & self . data ;
2019-05-05 05:20:38 +00:00
let conn = establish_connection ( ) ;
2019-08-14 02:52:43 +00:00
let user_claims : Option < Claims > = match & data . auth {
2019-09-07 15:35:05 +00:00
Some ( auth ) = > match Claims ::decode ( & auth ) {
Ok ( claims ) = > Some ( claims . claims ) ,
Err ( _e ) = > None ,
} ,
None = > None ,
2019-05-05 05:20:38 +00:00
} ;
2019-09-07 15:35:05 +00:00
2019-08-14 02:52:43 +00:00
let user_id = match & user_claims {
Some ( claims ) = > Some ( claims . id ) ,
2019-09-07 15:35:05 +00:00
None = > None ,
2019-08-14 02:52:43 +00:00
} ;
let show_nsfw = match & user_claims {
Some ( claims ) = > claims . show_nsfw ,
2019-09-07 15:35:05 +00:00
None = > false ,
2019-08-14 02:52:43 +00:00
} ;
2019-05-05 05:20:38 +00:00
let sort = SortType ::from_str ( & data . sort ) ? ;
let user_details_id = match data . user_id {
Some ( id ) = > id ,
2019-09-07 15:35:05 +00:00
None = > {
User_ ::read_from_name (
& conn ,
data . username . to_owned ( ) . unwrap_or ( " admin " . to_string ( ) ) ,
) ?
. id
}
2019-05-05 05:20:38 +00:00
} ;
let user_view = UserView ::read ( & conn , user_details_id ) ? ;
2019-12-07 22:54:42 +00:00
let mut posts_query = PostQueryBuilder ::create ( & conn )
. sort ( & sort )
. show_nsfw ( show_nsfw )
. saved_only ( data . saved_only )
. for_community_id_optional ( data . community_id )
. my_user_id_optional ( user_id )
. page_optional ( data . page )
. limit_optional ( data . limit ) ;
2019-12-07 12:03:03 +00:00
2019-05-05 05:20:38 +00:00
// If its saved only, you don't care what creator it was
2019-12-07 12:03:03 +00:00
if ! data . saved_only {
posts_query = posts_query . for_creator_id ( user_details_id ) ;
}
let posts = posts_query . list ( ) ? ;
2019-05-05 05:20:38 +00:00
let comments = if data . saved_only {
2019-08-14 02:52:43 +00:00
CommentView ::list (
2019-09-07 15:35:05 +00:00
& conn ,
& sort ,
None ,
None ,
None ,
Some ( user_details_id ) ,
data . saved_only ,
data . page ,
data . limit ,
) ?
2019-05-05 05:20:38 +00:00
} else {
2019-08-14 02:52:43 +00:00
CommentView ::list (
2019-09-07 15:35:05 +00:00
& conn ,
& sort ,
None ,
Some ( user_details_id ) ,
None ,
user_id ,
data . saved_only ,
data . page ,
data . limit ,
) ?
2019-05-05 05:20:38 +00:00
} ;
let follows = CommunityFollowerView ::for_user ( & conn , user_details_id ) ? ;
let moderates = CommunityModeratorView ::for_user ( & conn , user_details_id ) ? ;
2019-10-14 00:36:35 +00:00
let site_creator_id = Site ::read ( & conn , 1 ) ? . creator_id ;
let mut admins = UserView ::admins ( & conn ) ? ;
let creator_index = admins . iter ( ) . position ( | r | r . id = = site_creator_id ) . unwrap ( ) ;
let creator_user = admins . remove ( creator_index ) ;
admins . insert ( 0 , creator_user ) ;
2019-05-05 05:20:38 +00:00
// Return the jwt
2019-09-07 15:35:05 +00:00
Ok ( GetUserDetailsResponse {
op : self . op . to_string ( ) ,
user : user_view ,
follows : follows ,
moderates : moderates ,
comments : comments ,
posts : posts ,
2019-10-14 00:36:35 +00:00
admins : admins ,
2019-09-07 15:35:05 +00:00
} )
2019-05-05 05:20:38 +00:00
}
}
impl Perform < AddAdminResponse > for Oper < AddAdmin > {
fn perform ( & self ) -> Result < AddAdminResponse , Error > {
2019-05-05 16:20:30 +00:00
let data : & AddAdmin = & self . data ;
2019-05-05 05:20:38 +00:00
let conn = establish_connection ( ) ;
let claims = match Claims ::decode ( & data . auth ) {
Ok ( claims ) = > claims . claims ,
2019-09-07 15:35:05 +00:00
Err ( _e ) = > return Err ( APIError ::err ( & self . op , " not_logged_in " ) ) ? ,
2019-05-05 05:20:38 +00:00
} ;
let user_id = claims . id ;
// Make sure user is an admin
if UserView ::read ( & conn , user_id ) ? . admin = = false {
2019-09-07 15:35:05 +00:00
return Err ( APIError ::err ( & self . op , " not_an_admin " ) ) ? ;
2019-05-05 05:20:38 +00:00
}
let read_user = User_ ::read ( & conn , data . user_id ) ? ;
let user_form = UserForm {
name : read_user . name ,
fedi_name : read_user . fedi_name ,
email : read_user . email ,
password_encrypted : read_user . password_encrypted ,
preferred_username : read_user . preferred_username ,
updated : Some ( naive_now ( ) ) ,
admin : data . added ,
banned : read_user . banned ,
2019-08-14 02:52:43 +00:00
show_nsfw : read_user . show_nsfw ,
2019-10-15 19:21:27 +00:00
theme : read_user . theme ,
2019-10-21 04:21:54 +00:00
default_sort_type : read_user . default_sort_type ,
default_listing_type : read_user . default_listing_type ,
2019-05-05 05:20:38 +00:00
} ;
match User_ ::update ( & conn , data . user_id , & user_form ) {
Ok ( user ) = > user ,
2019-09-07 15:35:05 +00:00
Err ( _e ) = > return Err ( APIError ::err ( & self . op , " couldnt_update_user " ) ) ? ,
2019-05-05 05:20:38 +00:00
} ;
// Mod tables
let form = ModAddForm {
mod_user_id : user_id ,
other_user_id : data . user_id ,
removed : Some ( ! data . added ) ,
} ;
ModAdd ::create ( & conn , & form ) ? ;
2019-08-24 02:40:41 +00:00
let site_creator_id = Site ::read ( & conn , 1 ) ? . creator_id ;
let mut admins = UserView ::admins ( & conn ) ? ;
let creator_index = admins . iter ( ) . position ( | r | r . id = = site_creator_id ) . unwrap ( ) ;
let creator_user = admins . remove ( creator_index ) ;
admins . insert ( 0 , creator_user ) ;
2019-05-05 05:20:38 +00:00
2019-09-07 15:35:05 +00:00
Ok ( AddAdminResponse {
op : self . op . to_string ( ) ,
admins : admins ,
} )
2019-05-05 05:20:38 +00:00
}
}
impl Perform < BanUserResponse > for Oper < BanUser > {
fn perform ( & self ) -> Result < BanUserResponse , Error > {
2019-05-05 16:20:30 +00:00
let data : & BanUser = & self . data ;
2019-05-05 05:20:38 +00:00
let conn = establish_connection ( ) ;
let claims = match Claims ::decode ( & data . auth ) {
Ok ( claims ) = > claims . claims ,
2019-09-07 15:35:05 +00:00
Err ( _e ) = > return Err ( APIError ::err ( & self . op , " not_logged_in " ) ) ? ,
2019-05-05 05:20:38 +00:00
} ;
let user_id = claims . id ;
// Make sure user is an admin
if UserView ::read ( & conn , user_id ) ? . admin = = false {
2019-09-07 15:35:05 +00:00
return Err ( APIError ::err ( & self . op , " not_an_admin " ) ) ? ;
2019-05-05 05:20:38 +00:00
}
let read_user = User_ ::read ( & conn , data . user_id ) ? ;
let user_form = UserForm {
name : read_user . name ,
fedi_name : read_user . fedi_name ,
email : read_user . email ,
password_encrypted : read_user . password_encrypted ,
preferred_username : read_user . preferred_username ,
updated : Some ( naive_now ( ) ) ,
admin : read_user . admin ,
banned : data . ban ,
2019-08-14 02:52:43 +00:00
show_nsfw : read_user . show_nsfw ,
2019-10-15 19:21:27 +00:00
theme : read_user . theme ,
2019-10-21 04:21:54 +00:00
default_sort_type : read_user . default_sort_type ,
default_listing_type : read_user . default_listing_type ,
2019-05-05 05:20:38 +00:00
} ;
match User_ ::update ( & conn , data . user_id , & user_form ) {
Ok ( user ) = > user ,
2019-09-07 15:35:05 +00:00
Err ( _e ) = > return Err ( APIError ::err ( & self . op , " couldnt_update_user " ) ) ? ,
2019-05-05 05:20:38 +00:00
} ;
// Mod tables
let expires = match data . expires {
Some ( time ) = > Some ( naive_from_unix ( time ) ) ,
2019-09-07 15:35:05 +00:00
None = > None ,
2019-05-05 05:20:38 +00:00
} ;
let form = ModBanForm {
mod_user_id : user_id ,
other_user_id : data . user_id ,
reason : data . reason . to_owned ( ) ,
banned : Some ( data . ban ) ,
expires : expires ,
} ;
ModBan ::create ( & conn , & form ) ? ;
let user_view = UserView ::read ( & conn , data . user_id ) ? ;
2019-09-07 15:35:05 +00:00
Ok ( BanUserResponse {
op : self . op . to_string ( ) ,
user : user_view ,
banned : data . ban ,
} )
2019-05-05 05:20:38 +00:00
}
}
impl Perform < GetRepliesResponse > for Oper < GetReplies > {
fn perform ( & self ) -> Result < GetRepliesResponse , Error > {
2019-05-05 16:20:30 +00:00
let data : & GetReplies = & self . data ;
2019-05-05 05:20:38 +00:00
let conn = establish_connection ( ) ;
let claims = match Claims ::decode ( & data . auth ) {
Ok ( claims ) = > claims . claims ,
2019-09-07 15:35:05 +00:00
Err ( _e ) = > return Err ( APIError ::err ( & self . op , " not_logged_in " ) ) ? ,
2019-05-05 05:20:38 +00:00
} ;
let user_id = claims . id ;
let sort = SortType ::from_str ( & data . sort ) ? ;
2019-09-07 15:35:05 +00:00
let replies = ReplyView ::get_replies (
& conn ,
user_id ,
& sort ,
data . unread_only ,
data . page ,
data . limit ,
) ? ;
2019-05-05 05:20:38 +00:00
2019-09-07 15:35:05 +00:00
Ok ( GetRepliesResponse {
op : self . op . to_string ( ) ,
replies : replies ,
} )
2019-05-05 05:20:38 +00:00
}
}
2019-10-20 00:46:29 +00:00
impl Perform < GetUserMentionsResponse > for Oper < GetUserMentions > {
fn perform ( & self ) -> Result < GetUserMentionsResponse , Error > {
let data : & GetUserMentions = & self . data ;
let conn = establish_connection ( ) ;
let claims = match Claims ::decode ( & data . auth ) {
Ok ( claims ) = > claims . claims ,
Err ( _e ) = > return Err ( APIError ::err ( & self . op , " not_logged_in " ) ) ? ,
} ;
let user_id = claims . id ;
let sort = SortType ::from_str ( & data . sort ) ? ;
let mentions = UserMentionView ::get_mentions (
& conn ,
user_id ,
& sort ,
data . unread_only ,
data . page ,
data . limit ,
) ? ;
Ok ( GetUserMentionsResponse {
op : self . op . to_string ( ) ,
mentions : mentions ,
} )
}
}
impl Perform < UserMentionResponse > for Oper < EditUserMention > {
fn perform ( & self ) -> Result < UserMentionResponse , Error > {
let data : & EditUserMention = & self . data ;
let conn = establish_connection ( ) ;
let claims = match Claims ::decode ( & data . auth ) {
Ok ( claims ) = > claims . claims ,
Err ( _e ) = > return Err ( APIError ::err ( & self . op , " not_logged_in " ) ) ? ,
} ;
let user_id = claims . id ;
let user_mention = UserMention ::read ( & conn , data . user_mention_id ) ? ;
let user_mention_form = UserMentionForm {
recipient_id : user_id ,
comment_id : user_mention . comment_id ,
read : data . read . to_owned ( ) ,
} ;
let _updated_user_mention =
match UserMention ::update ( & conn , user_mention . id , & user_mention_form ) {
Ok ( comment ) = > comment ,
Err ( _e ) = > return Err ( APIError ::err ( & self . op , " couldnt_update_comment " ) ) ? ,
} ;
let user_mention_view = UserMentionView ::read ( & conn , user_mention . id , user_id ) ? ;
Ok ( UserMentionResponse {
op : self . op . to_string ( ) ,
mention : user_mention_view ,
} )
}
}
2019-05-05 05:20:38 +00:00
impl Perform < GetRepliesResponse > for Oper < MarkAllAsRead > {
fn perform ( & self ) -> Result < GetRepliesResponse , Error > {
2019-05-05 16:20:30 +00:00
let data : & MarkAllAsRead = & self . data ;
2019-05-05 05:20:38 +00:00
let conn = establish_connection ( ) ;
let claims = match Claims ::decode ( & data . auth ) {
Ok ( claims ) = > claims . claims ,
2019-09-07 15:35:05 +00:00
Err ( _e ) = > return Err ( APIError ::err ( & self . op , " not_logged_in " ) ) ? ,
2019-05-05 05:20:38 +00:00
} ;
let user_id = claims . id ;
let replies = ReplyView ::get_replies ( & conn , user_id , & SortType ::New , true , Some ( 1 ) , Some ( 999 ) ) ? ;
for reply in & replies {
let comment_form = CommentForm {
content : reply . to_owned ( ) . content ,
parent_id : reply . to_owned ( ) . parent_id ,
post_id : reply . to_owned ( ) . post_id ,
creator_id : reply . to_owned ( ) . creator_id ,
removed : None ,
deleted : None ,
read : Some ( true ) ,
2019-09-07 15:35:05 +00:00
updated : reply . to_owned ( ) . updated ,
2019-05-05 05:20:38 +00:00
} ;
let _updated_comment = match Comment ::update ( & conn , reply . id , & comment_form ) {
Ok ( comment ) = > comment ,
2019-09-07 15:35:05 +00:00
Err ( _e ) = > return Err ( APIError ::err ( & self . op , " couldnt_update_comment " ) ) ? ,
2019-05-05 05:20:38 +00:00
} ;
}
2019-10-20 00:46:29 +00:00
// Mentions
let mentions =
UserMentionView ::get_mentions ( & conn , user_id , & SortType ::New , true , Some ( 1 ) , Some ( 999 ) ) ? ;
for mention in & mentions {
let mention_form = UserMentionForm {
recipient_id : mention . to_owned ( ) . recipient_id ,
comment_id : mention . to_owned ( ) . id ,
read : Some ( true ) ,
} ;
let _updated_mention =
match UserMention ::update ( & conn , mention . user_mention_id , & mention_form ) {
Ok ( mention ) = > mention ,
Err ( _e ) = > return Err ( APIError ::err ( & self . op , " couldnt_update_comment " ) ) ? ,
} ;
}
2019-05-05 05:20:38 +00:00
2019-09-07 15:35:05 +00:00
Ok ( GetRepliesResponse {
op : self . op . to_string ( ) ,
2019-10-20 00:46:29 +00:00
replies : vec ! [ ] ,
2019-09-07 15:35:05 +00:00
} )
2019-05-05 05:20:38 +00:00
}
}
2019-10-15 22:09:01 +00:00
impl Perform < LoginResponse > for Oper < DeleteAccount > {
fn perform ( & self ) -> Result < LoginResponse , Error > {
let data : & DeleteAccount = & self . data ;
let conn = establish_connection ( ) ;
let claims = match Claims ::decode ( & data . auth ) {
Ok ( claims ) = > claims . claims ,
Err ( _e ) = > return Err ( APIError ::err ( & self . op , " not_logged_in " ) ) ? ,
} ;
let user_id = claims . id ;
2019-10-18 04:25:23 +00:00
let user : User_ = User_ ::read ( & conn , user_id ) ? ;
// Verify the password
let valid : bool = verify ( & data . password , & user . password_encrypted ) . unwrap_or ( false ) ;
if ! valid {
return Err ( APIError ::err ( & self . op , " password_incorrect " ) ) ? ;
}
2019-10-15 22:09:01 +00:00
// Comments
2019-10-15 22:10:42 +00:00
let comments = CommentView ::list (
& conn ,
& SortType ::New ,
None ,
Some ( user_id ) ,
None ,
None ,
false ,
None ,
Some ( std ::i64 ::MAX ) ,
) ? ;
2019-10-15 22:09:01 +00:00
for comment in & comments {
let comment_form = CommentForm {
content : " *Permananently Deleted* " . to_string ( ) ,
parent_id : comment . to_owned ( ) . parent_id ,
post_id : comment . to_owned ( ) . post_id ,
creator_id : comment . to_owned ( ) . creator_id ,
removed : None ,
deleted : Some ( true ) ,
read : None ,
updated : Some ( naive_now ( ) ) ,
} ;
let _updated_comment = match Comment ::update ( & conn , comment . id , & comment_form ) {
Ok ( comment ) = > comment ,
Err ( _e ) = > return Err ( APIError ::err ( & self . op , " couldnt_update_comment " ) ) ? ,
} ;
}
// Posts
2019-12-07 22:54:42 +00:00
let posts = PostQueryBuilder ::create ( & conn )
. sort ( & SortType ::New )
. show_nsfw ( true )
2019-12-07 12:03:03 +00:00
. for_creator_id ( user_id )
. limit ( std ::i64 ::MAX )
. list ( ) ? ;
2019-10-15 22:09:01 +00:00
for post in & posts {
let post_form = PostForm {
name : " *Permananently Deleted* " . to_string ( ) ,
url : Some ( " https://deleted.com " . to_string ( ) ) ,
body : Some ( " *Permananently Deleted* " . to_string ( ) ) ,
creator_id : post . to_owned ( ) . creator_id ,
community_id : post . to_owned ( ) . community_id ,
removed : None ,
deleted : Some ( true ) ,
nsfw : post . to_owned ( ) . nsfw ,
locked : None ,
stickied : None ,
updated : Some ( naive_now ( ) ) ,
} ;
let _updated_post = match Post ::update ( & conn , post . id , & post_form ) {
Ok ( post ) = > post ,
Err ( _e ) = > return Err ( APIError ::err ( & self . op , " couldnt_update_post " ) ) ? ,
} ;
}
Ok ( LoginResponse {
op : self . op . to_string ( ) ,
jwt : data . auth . to_owned ( ) ,
} )
}
}
2019-10-30 03:35:39 +00:00
impl Perform < PasswordResetResponse > for Oper < PasswordReset > {
fn perform ( & self ) -> Result < PasswordResetResponse , Error > {
let data : & PasswordReset = & self . data ;
let conn = establish_connection ( ) ;
// Fetch that email
let user : User_ = match User_ ::find_by_email ( & conn , & data . email ) {
Ok ( user ) = > user ,
Err ( _e ) = > {
return Err ( APIError ::err (
& self . op ,
" couldnt_find_that_username_or_email " ,
) ) ?
}
} ;
// Generate a random token
let token = generate_random_string ( ) ;
2019-11-02 06:43:21 +00:00
2019-10-30 03:35:39 +00:00
// Insert the row
PasswordResetRequest ::create_token ( & conn , user . id , & token ) ? ;
// Email the pure token to the user.
// TODO no i18n support here.
let user_email = & user . email . expect ( " email " ) ;
let subject = & format! ( " Password reset for {} " , user . name ) ;
2019-11-02 20:07:19 +00:00
let hostname = & format! ( " https:// {} " , Settings ::get ( ) . hostname ) ; //TODO add https for now.
2019-11-02 06:41:57 +00:00
let html = & format! ( " <h1>Password Reset Request for {} </h1><br><a href= {} /password_change/ {} >Click here to reset your password</a> " , user . name , hostname , & token ) ;
2019-10-30 03:35:39 +00:00
match send_email ( subject , user_email , & user . name , html ) {
Ok ( _o ) = > _o ,
2019-11-02 06:43:21 +00:00
Err ( _e ) = > return Err ( APIError ::err ( & self . op , & _e . to_string ( ) ) ) ? ,
2019-10-30 03:35:39 +00:00
} ;
Ok ( PasswordResetResponse {
op : self . op . to_string ( ) ,
} )
}
}
impl Perform < LoginResponse > for Oper < PasswordChange > {
fn perform ( & self ) -> Result < LoginResponse , Error > {
let data : & PasswordChange = & self . data ;
let conn = establish_connection ( ) ;
// Fetch the user_id from the token
let user_id = PasswordResetRequest ::read_from_token ( & conn , & data . token ) ? . user_id ;
// Make sure passwords match
if & data . password ! = & data . password_verify {
return Err ( APIError ::err ( & self . op , " passwords_dont_match " ) ) ? ;
}
// Fetch the user
let read_user = User_ ::read ( & conn , user_id ) ? ;
// Update the user with the new password
let user_form = UserForm {
name : read_user . name ,
fedi_name : read_user . fedi_name ,
email : read_user . email ,
password_encrypted : data . password . to_owned ( ) ,
preferred_username : read_user . preferred_username ,
updated : Some ( naive_now ( ) ) ,
admin : read_user . admin ,
banned : read_user . banned ,
show_nsfw : read_user . show_nsfw ,
theme : read_user . theme ,
default_sort_type : read_user . default_sort_type ,
default_listing_type : read_user . default_listing_type ,
} ;
let updated_user = match User_ ::update_password ( & conn , user_id , & user_form ) {
Ok ( user ) = > user ,
Err ( _e ) = > return Err ( APIError ::err ( & self . op , " couldnt_update_user " ) ) ? ,
} ;
// Return the jwt
Ok ( LoginResponse {
op : self . op . to_string ( ) ,
jwt : updated_user . jwt ( ) ,
} )
}
}