Implement route for logging in

2023-05-20 11:40:50 +02:00 · 2023-05-20 11:40:50 +02:00 · 6be9ce5c1d
commit 6be9ce5c1d
parent da7d012393
1 changed files with 37 additions and 3 deletions
--- a/src/routes/mod.rs
+++ b/src/routes/mod.rs
@ -8,12 +8,21 @@ use axum::{
    routing::post,
    Json, Router,
 };
+use jwt_simple::prelude::*;
+use sea_orm::prelude::*;
+use sha2::{Digest, Sha512};
 use tower_http::cors::{self, AllowOrigin, CorsLayer};

+use crate::entity::{prelude::*, user};
+
 #[derive(thiserror::Error, Debug)]
 enum RouteError {
    #[error("This account does not exist")]
    UnknownAccount,
+    #[error("Database encountered an error")]
+    Db(#[from] DbErr),
+    #[error("JWT error encountered")]
+    Jwt(#[from] jwt_simple::Error),
 }

 impl IntoResponse for RouteError {
@ -22,6 +31,10 @@ impl IntoResponse for RouteError {
            RouteError::UnknownAccount => {
                (StatusCode::NOT_FOUND, "Account not found").into_response()
            }
+            e => {
+                tracing::error!("Internal error: {e:?}");
+                StatusCode::INTERNAL_SERVER_ERROR.into_response()
+            }
        }
    }
 }
@ -31,10 +44,31 @@ type JsonResult<T, E = RouteError> = Result<Json<T>, E>;
 type AppState = Arc<crate::AppState>;

 async fn login(
-    State(_state): State<AppState>,
-    Json(_req): Json<LoginRequest>,
+    State(state): State<AppState>,
+    Json(req): Json<LoginRequest>,
 ) -> JsonResult<LoginResponse> {
-    Err(RouteError::UnknownAccount)
+    let Some(user) = User::find()
+        .filter(user::Column::Name.eq(&req.username))
+        .one(&state.db)
+        .await? else {
+        return Err(RouteError::UnknownAccount)
+    };
+
+    let mut hasher = Sha512::new();
+    hasher.update(user.id.as_bytes());
+    hasher.update(req.password.as_bytes());
+    let hash = hasher.finalize();
+
+    if hash[..] != user.password {
+        return Err(RouteError::UnknownAccount);
+    }
+
+    let mut claims = Claims::create(Duration::from_secs(3600 * 24 * 31 * 6));
+    claims.subject = Some(user.id.to_string());
+
+    let token = state.jwt_secret.0.authenticate(claims)?;
+
+    Ok(Json(LoginResponse { token }))
 }

 pub(crate) fn router(api_allowed: Option<HeaderValue>) -> Router<AppState> {