Change status code associated with missing session
This commit is contained in:
parent
24a7fdd4ef
commit
3768cd26e6
6 changed files with 84 additions and 46 deletions
|
|
@ -5,7 +5,7 @@ use bb8_redis::bb8::RunError;
|
|||
use http::StatusCode;
|
||||
use redis::RedisError;
|
||||
use sqlx::{error::DatabaseError, migrate::MigrateError, Error as SqlxError};
|
||||
use tracing::{field, trace};
|
||||
use tracing::trace;
|
||||
|
||||
use super::ApiResponse;
|
||||
|
||||
|
|
@ -45,10 +45,14 @@ impl AppError {
|
|||
Self::new(ErrorKind::MissingEnvironmentVariables(missing_vars))
|
||||
}
|
||||
|
||||
pub fn missing_session_field(field: &'static str) -> Self {
|
||||
pub fn _missing_session_field(field: &'static str) -> Self {
|
||||
Self::new(ErrorKind::MissingSessionField(field))
|
||||
}
|
||||
|
||||
pub fn no_session_found() -> Self {
|
||||
Self::new(ErrorKind::NoSessionFound)
|
||||
}
|
||||
|
||||
pub fn token_key() -> Self {
|
||||
Self::new(ErrorKind::TokenKey)
|
||||
}
|
||||
|
|
@ -128,6 +132,7 @@ impl Display for AppError {
|
|||
f,
|
||||
"Cannot retrieve session: missing required field: {field}"
|
||||
),
|
||||
ErrorKind::NoSessionFound => write!(f, "No session found"),
|
||||
ErrorKind::Sqlx(err) => write!(f, "{err}"),
|
||||
ErrorKind::TokenKey => write!(
|
||||
f,
|
||||
|
|
@ -137,6 +142,7 @@ impl Display for AppError {
|
|||
}
|
||||
}
|
||||
|
||||
#[allow(dead_code)]
|
||||
#[derive(Debug)]
|
||||
enum ErrorKind {
|
||||
AppStartupError(io::Error),
|
||||
|
|
@ -149,6 +155,7 @@ enum ErrorKind {
|
|||
InvalidToken,
|
||||
MissingEnvironmentVariables(Vec<&'static str>),
|
||||
MissingSessionField(&'static str),
|
||||
NoSessionFound,
|
||||
Sqlx(SqlxError),
|
||||
TokenKey,
|
||||
}
|
||||
|
|
@ -164,6 +171,10 @@ impl IntoResponse for AppError {
|
|||
StatusCode::BAD_REQUEST,
|
||||
ApiResponse::new_with_error(self).into_json_response(),
|
||||
),
|
||||
&ErrorKind::NoSessionFound => (
|
||||
StatusCode::UNAUTHORIZED,
|
||||
ApiResponse::new_with_error(self).into_json_response(),
|
||||
),
|
||||
_ => (
|
||||
StatusCode::INTERNAL_SERVER_ERROR,
|
||||
ApiResponse::new_with_error(self).into_json_response(),
|
||||
|
|
|
|||
|
|
@ -2,4 +2,4 @@ mod request;
|
|||
mod response;
|
||||
|
||||
pub use request::*;
|
||||
pub use response::*;
|
||||
// pub use response::*;
|
||||
|
|
|
|||
|
|
@ -8,7 +8,7 @@ use axum::{
|
|||
};
|
||||
use http::StatusCode;
|
||||
use pasetors::{claims::ClaimsValidationRules, keys::SymmetricKey, version4::V4};
|
||||
use tracing::{debug, error, trace};
|
||||
use tracing::{debug, error};
|
||||
use uuid::Uuid;
|
||||
|
||||
use crate::{
|
||||
|
|
@ -64,7 +64,15 @@ async fn verify_new_user_request(
|
|||
.map(|jti| Uuid::from_str(jti.as_str().unwrap()).unwrap())
|
||||
.unwrap();
|
||||
|
||||
let _ = user_session::get_user_session(cache_pool, token_id).await?;
|
||||
user_session::exists(cache_pool, token_id)
|
||||
.await
|
||||
.and_then(|exists| {
|
||||
if exists {
|
||||
Ok(())
|
||||
} else {
|
||||
Err(AppError::no_session_found())
|
||||
}
|
||||
})?;
|
||||
|
||||
let response = verify_token(
|
||||
token_key,
|
||||
|
|
|
|||
|
|
@ -46,7 +46,10 @@ pub fn verify_token(
|
|||
Some("TODO_ENV_NAME_HERE".as_bytes()),
|
||||
)
|
||||
.inspect_err(|err| error!(?err))
|
||||
.map_err(|_| AppError::invalid_token())?;
|
||||
.map_err(|err| {
|
||||
error!(?err);
|
||||
AppError::invalid_token()
|
||||
})?;
|
||||
|
||||
Ok(token)
|
||||
}
|
||||
|
|
|
|||
|
|
@ -57,7 +57,7 @@ pub async fn store_object_with_expiration<
|
|||
Ok(())
|
||||
}
|
||||
|
||||
pub async fn get_object<K: FromRedisValue + Eq + Hash>(
|
||||
pub async fn _get_object<K: FromRedisValue + Eq + Hash>(
|
||||
cache_pool: &CachePool,
|
||||
key: &str,
|
||||
) -> Result<Option<HashMap<K, Value>>, AppError> {
|
||||
|
|
@ -67,6 +67,11 @@ pub async fn get_object<K: FromRedisValue + Eq + Hash>(
|
|||
Ok(hash_fields)
|
||||
}
|
||||
|
||||
pub async fn exists(cache_pool: &CachePool, key: &str) -> Result<bool, AppError> {
|
||||
let mut conn = get_connection_from_pool(cache_pool).await?;
|
||||
conn.exists(key).await.map_err(Into::into)
|
||||
}
|
||||
|
||||
async fn get_connection_from_pool(
|
||||
cache_pool: &CachePool,
|
||||
) -> Result<PooledConnection<'_, RedisConnectionManager>, AppError> {
|
||||
|
|
|
|||
|
|
@ -38,45 +38,48 @@ pub async fn store_user_session(
|
|||
Ok(())
|
||||
}
|
||||
|
||||
pub async fn get_user_session(
|
||||
pub async fn _get_user_session(
|
||||
cache_pool: &CachePool,
|
||||
token_id: Uuid,
|
||||
) -> Result<Option<Session>, AppError> {
|
||||
let key = make_key(token_id);
|
||||
let object = cache::get_object::<String>(cache_pool, key.as_str()).await?;
|
||||
let session_exists = cache::exists(cache_pool, key.as_str()).await?;
|
||||
|
||||
if session_exists {
|
||||
let object = cache::_get_object::<String>(cache_pool, key.as_str()).await?;
|
||||
|
||||
if let Some(object) = object {
|
||||
let user_id: i32 = object
|
||||
.get("userId")
|
||||
.ok_or(AppError::missing_session_field("userId"))
|
||||
.ok_or(AppError::_missing_session_field("userId"))
|
||||
.and_then(|value| {
|
||||
FromRedisValue::from_redis_value(value)
|
||||
.map_err(|_| AppError::missing_session_field("userId"))
|
||||
.map_err(|_| AppError::_missing_session_field("userId"))
|
||||
})?;
|
||||
|
||||
let username: String = object
|
||||
.get("username")
|
||||
.ok_or(AppError::missing_session_field("username"))
|
||||
.ok_or(AppError::_missing_session_field("username"))
|
||||
.and_then(|value| {
|
||||
FromRedisValue::from_redis_value(value)
|
||||
.map_err(|_| AppError::missing_session_field("username"))
|
||||
.map_err(|_| AppError::_missing_session_field("username"))
|
||||
})?;
|
||||
|
||||
let created_at: SystemTime = object
|
||||
.get("createdAt")
|
||||
.ok_or(AppError::missing_session_field("createdAt"))
|
||||
.ok_or(AppError::_missing_session_field("createdAt"))
|
||||
.and_then(|value| {
|
||||
FromRedisValue::from_redis_value(value)
|
||||
.map_err(|_| AppError::missing_session_field("createdAt"))
|
||||
.map_err(|_| AppError::_missing_session_field("createdAt"))
|
||||
})
|
||||
.map(|serialized: String| parse_rfc3339(serialized.as_str()).unwrap())?;
|
||||
|
||||
let expires_at: SystemTime = object
|
||||
.get("createdAt")
|
||||
.ok_or(AppError::missing_session_field("expiresAt"))
|
||||
.ok_or(AppError::_missing_session_field("expiresAt"))
|
||||
.and_then(|value| {
|
||||
FromRedisValue::from_redis_value(value)
|
||||
.map_err(|_| AppError::missing_session_field("expiresAt"))
|
||||
.map_err(|_| AppError::_missing_session_field("expiresAt"))
|
||||
})
|
||||
.map(|serialized: String| parse_rfc3339(serialized.as_str()).unwrap())?;
|
||||
|
||||
|
|
@ -89,6 +92,14 @@ pub async fn get_user_session(
|
|||
} else {
|
||||
Ok(None)
|
||||
}
|
||||
} else {
|
||||
Ok(None)
|
||||
}
|
||||
}
|
||||
|
||||
pub async fn exists(cache_pool: &CachePool, token_id: Uuid) -> Result<bool, AppError> {
|
||||
let key = make_key(token_id);
|
||||
cache::exists(cache_pool, key.as_str()).await
|
||||
}
|
||||
|
||||
fn make_key(token_id: Uuid) -> String {
|
||||
|
|
|
|||
Loading…
Add table
Reference in a new issue