+52 -49

src/actor_endpoints.rs

··· 3 3 use constcat::concat; 4 4 use diesel::prelude::*; 5 5 6 6 + use crate::actor_store::ActorStore; 7 7 + 6 8 use super::*; 7 9 8 10 async fn put_preferences( ··· 14 16 let json_string = 15 17 serde_json::to_string(&input.preferences).context("failed to serialize preferences")?; 16 18 17 17 - let conn = &mut actor_pools 18 18 - .get(&did) 19 19 - .context("failed to get actor pool")? 20 20 - .repo 21 21 - .get() 22 22 - .await 23 23 - .expect("failed to get database connection"); 24 24 - conn.interact(move |conn| { 25 25 - diesel::update(accounts::table) 26 26 - .filter(accounts::did.eq(did)) 27 27 - .set(accounts::private_prefs.eq(json_string)) 28 28 - .execute(conn) 29 29 - .context("failed to update user preferences") 30 30 - }); 31 31 - 19 19 + // let conn = &mut actor_pools 20 20 + // .get(&did) 21 21 + // .context("failed to get actor pool")? 22 22 + // .repo 23 23 + // .get() 24 24 + // .await 25 25 + // .expect("failed to get database connection"); 26 26 + // conn.interact(move |conn| { 27 27 + // diesel::update(accounts::table) 28 28 + // .filter(accounts::did.eq(did)) 29 29 + // .set(accounts::private_prefs.eq(json_string)) 30 30 + // .execute(conn) 31 31 + // .context("failed to update user preferences") 32 32 + // }); 33 33 + todo!("Use actor_store's preferences writer instead"); 32 34 Ok(()) 33 35 } 34 36 ··· 37 39 State(actor_pools): State<std::collections::HashMap<String, ActorPools>>, 38 40 ) -> Result<Json<actor::get_preferences::Output>> { 39 41 let did = user.did(); 40 40 - let conn = &mut actor_pools 41 41 - .get(&did) 42 42 - .context("failed to get actor pool")? 43 43 - .repo 44 44 - .get() 45 45 - .await 46 46 - .expect("failed to get database connection"); 42 42 + // let conn = &mut actor_pools 43 43 + // .get(&did) 44 44 + // .context("failed to get actor pool")? 45 45 + // .repo 46 46 + // .get() 47 47 + // .await 48 48 + // .expect("failed to get database connection"); 47 49 48 48 - #[derive(QueryableByName)] 49 49 - struct Prefs { 50 50 - #[diesel(sql_type = diesel::sql_types::Text)] 51 51 - private_prefs: Option<String>, 52 52 - } 50 50 + // #[derive(QueryableByName)] 51 51 + // struct Prefs { 52 52 + // #[diesel(sql_type = diesel::sql_types::Text)] 53 53 + // private_prefs: Option<String>, 54 54 + // } 53 55 54 54 - let result = conn 55 55 - .interact(move |conn| { 56 56 - diesel::sql_query("SELECT private_prefs FROM accounts WHERE did = ?") 57 57 - .bind::<diesel::sql_types::Text, _>(did) 58 58 - .get_result::<Prefs>(conn) 59 59 - }) 60 60 - .await 61 61 - .expect("failed to fetch preferences"); 56 56 + // let result = conn 57 57 + // .interact(move |conn| { 58 58 + // diesel::sql_query("SELECT private_prefs FROM accounts WHERE did = ?") 59 59 + // .bind::<diesel::sql_types::Text, _>(did) 60 60 + // .get_result::<Prefs>(conn) 61 61 + // }) 62 62 + // .await 63 63 + // .expect("failed to fetch preferences"); 62 64 63 63 - if let Some(prefs_json) = result.private_prefs { 64 64 - let prefs: actor::defs::Preferences = 65 65 - serde_json::from_str(&prefs_json).context("failed to deserialize preferences")?; 65 65 + // if let Some(prefs_json) = result.private_prefs { 66 66 + // let prefs: actor::defs::Preferences = 67 67 + // serde_json::from_str(&prefs_json).context("failed to deserialize preferences")?; 66 68 67 67 - Ok(Json( 68 68 - actor::get_preferences::OutputData { preferences: prefs }.into(), 69 69 - )) 70 70 - } else { 71 71 - Ok(Json( 72 72 - actor::get_preferences::OutputData { 73 73 - preferences: Vec::new(), 74 74 - } 75 75 - .into(), 76 76 - )) 77 77 - } 69 69 + // Ok(Json( 70 70 + // actor::get_preferences::OutputData { preferences: prefs }.into(), 71 71 + // )) 72 72 + // } else { 73 73 + // Ok(Json( 74 74 + // actor::get_preferences::OutputData { 75 75 + // preferences: Vec::new(), 76 76 + // } 77 77 + // .into(), 78 78 + // )) 79 79 + // } 80 80 + todo!("Use actor_store's preferences writer instead"); 78 81 } 79 82 80 83 /// Register all actor endpoints.

+22 -18

src/auth.rs

··· 130 130 131 131 // Extract subject (DID) 132 132 if let Some(did) = claims.get("sub").and_then(serde_json::Value::as_str) { 133 133 - use crate::schema::accounts::dsl as AccountSchema; 133 133 + use rsky_pds::schema::pds::account::dsl as AccountSchema; 134 134 + let did_clone = did.to_owned(); 134 135 135 135 - let _status = state 136 136 + let _did = state 136 137 .db 137 138 .get() 138 139 .await 139 140 .expect("failed to get db connection") 140 141 .interact(move |conn| { 141 141 - AccountSchema::accounts 142 142 - .filter(AccountSchema::did.eq(did.to_string())) 143 143 - .select(AccountSchema::status) 142 142 + AccountSchema::account 143 143 + .filter(AccountSchema::did.eq(did_clone)) 144 144 + .select(AccountSchema::did) 144 145 .first::<String>(conn) 145 146 }) 146 147 .await 147 147 - .with_context(|| format!("failed to query account {did}")) 148 148 - .context("should fetch account status")?; 148 148 + .expect("failed to query account"); 149 149 150 150 Ok(AuthenticatedUser { 151 151 did: did.to_owned(), ··· 338 338 339 339 let timestamp = chrono::Utc::now().timestamp(); 340 340 341 341 - use crate::schema::oauth_used_jtis::dsl as JtiSchema; 341 341 + use crate::schema::pds::oauth_used_jtis::dsl as JtiSchema; 342 342 343 343 // Check if JTI has been used before 344 344 let jti_string = jti.to_string(); ··· 354 354 .get_result::<i64>(conn) 355 355 }) 356 356 .await 357 357 - .context("failed to check JTI")?; 357 357 + .expect("failed to query JTI") 358 358 + .expect("failed to get JTI count"); 358 359 359 360 if jti_used > 0 { 360 361 return Err(Error::with_status( ··· 389 390 .execute(conn) 390 391 }) 391 392 .await 392 392 - .context("failed to store JTI")?; 393 393 + .expect("failed to insert JTI") 394 394 + .expect("failed to insert JTI"); 393 395 394 396 // Extract subject (DID) from access token 395 395 - if let Some(did) = claims.get("sub").and_then(|v| v.as_str) { 396 396 - use crate::schema::accounts::dsl as AccountSchema; 397 397 + if let Some(did) = claims.get("sub").and_then(|v| v.as_str()) { 398 398 + use rsky_pds::schema::pds::account::dsl as AccountSchema; 397 399 398 398 - let _status = state 400 400 + let did_clone = did.to_owned(); 401 401 + 402 402 + let _did = state 399 403 .db 400 404 .get() 401 405 .await 402 406 .expect("failed to get db connection") 403 407 .interact(move |conn| { 404 404 - AccountSchema::accounts 405 405 - .filter(AccountSchema::did.eq(did.to_string())) 406 406 - .select(AccountSchema::status) 408 408 + AccountSchema::account 409 409 + .filter(AccountSchema::did.eq(did_clone)) 410 410 + .select(AccountSchema::did) 407 411 .first::<String>(conn) 408 412 }) 409 413 .await 410 410 - .with_context(|| format!("failed to query account {did}")) 411 411 - .context("should fetch account status")?; 414 414 + .expect("failed to query account") 415 415 + .expect("failed to get account"); 412 416 413 417 Ok(AuthenticatedUser { 414 418 did: did.to_owned(),

+1

src/main.rs

··· 12 12 mod mmap; 13 13 mod oauth; 14 14 mod plc; 15 15 + mod schema; 15 16 #[cfg(test)] 16 17 mod tests; 17 18

+116

src/schema.rs

··· 1 1 + pub mod pds { 2 2 + 3 3 + // Legacy tables 4 4 + 5 5 + diesel::table! { 6 6 + pds.oauth_par_requests (request_uri) { 7 7 + request_uri -> Varchar, 8 8 + client_id -> Varchar, 9 9 + response_type -> Varchar, 10 10 + code_challenge -> Varchar, 11 11 + code_challenge_method -> Varchar, 12 12 + state -> Nullable<Varchar>, 13 13 + login_hint -> Nullable<Varchar>, 14 14 + scope -> Nullable<Varchar>, 15 15 + redirect_uri -> Nullable<Varchar>, 16 16 + response_mode -> Nullable<Varchar>, 17 17 + display -> Nullable<Varchar>, 18 18 + created_at -> Int8, 19 19 + expires_at -> Int8, 20 20 + } 21 21 + } 22 22 + diesel::table! { 23 23 + pds.oauth_authorization_codes (code) { 24 24 + code -> Varchar, 25 25 + client_id -> Varchar, 26 26 + subject -> Varchar, 27 27 + code_challenge -> Varchar, 28 28 + code_challenge_method -> Varchar, 29 29 + redirect_uri -> Varchar, 30 30 + scope -> Nullable<Varchar>, 31 31 + created_at -> Int8, 32 32 + expires_at -> Int8, 33 33 + used -> Bool, 34 34 + } 35 35 + } 36 36 + diesel::table! { 37 37 + pds.oauth_refresh_tokens (token) { 38 38 + token -> Varchar, 39 39 + client_id -> Varchar, 40 40 + subject -> Varchar, 41 41 + dpop_thumbprint -> Varchar, 42 42 + scope -> Nullable<Varchar>, 43 43 + created_at -> Int8, 44 44 + expires_at -> Int8, 45 45 + revoked -> Bool, 46 46 + } 47 47 + } 48 48 + diesel::table! { 49 49 + pds.oauth_used_jtis (jti) { 50 50 + jti -> Varchar, 51 51 + issuer -> Varchar, 52 52 + created_at -> Int8, 53 53 + expires_at -> Int8, 54 54 + } 55 55 + } 56 56 + 57 57 + // Upcoming tables 58 58 + 59 59 + diesel::table! { 60 60 + pds.authorization_request (id) { 61 61 + id -> Varchar, 62 62 + did -> Nullable<Varchar>, 63 63 + deviceId -> Nullable<Varchar>, 64 64 + clientId -> Varchar, 65 65 + clientAuth -> Varchar, 66 66 + parameters -> Varchar, 67 67 + expiresAt -> Timestamptz, 68 68 + code -> Nullable<Varchar>, 69 69 + } 70 70 + } 71 71 + 72 72 + diesel::table! { 73 73 + pds.device (id) { 74 74 + id -> Varchar, 75 75 + sessionId -> Nullable<Varchar>, 76 76 + userAgent -> Nullable<Varchar>, 77 77 + ipAddress -> Varchar, 78 78 + lastSeenAt -> Timestamptz, 79 79 + } 80 80 + } 81 81 + 82 82 + diesel::table! { 83 83 + pds.device_account (deviceId, did) { 84 84 + did -> Varchar, 85 85 + deviceId -> Varchar, 86 86 + authenticatedAt -> Timestamptz, 87 87 + remember -> Bool, 88 88 + authorizedClients -> Varchar, 89 89 + } 90 90 + } 91 91 + 92 92 + diesel::table! { 93 93 + pds.token (id) { 94 94 + id -> Varchar, 95 95 + did -> Varchar, 96 96 + tokenId -> Varchar, 97 97 + createdAt -> Timestamptz, 98 98 + updatedAt -> Timestamptz, 99 99 + expiresAt -> Timestamptz, 100 100 + clientId -> Varchar, 101 101 + clientAuth -> Varchar, 102 102 + deviceId -> Nullable<Varchar>, 103 103 + parameters -> Varchar, 104 104 + details -> Nullable<Varchar>, 105 105 + code -> Nullable<Varchar>, 106 106 + currentRefreshToken -> Nullable<Varchar>, 107 107 + } 108 108 + } 109 109 + 110 110 + diesel::table! { 111 111 + pds.used_refresh_token (refreshToken) { 112 112 + refreshToken -> Varchar, 113 113 + tokenId -> Varchar, 114 114 + } 115 115 + } 116 116 + }