nikdoof/rustical
1
1
Fork 0
mirror of https://github.com/lennart-k/rustical.git synced 2025-12-14 12:52:27 +00:00
Code Issues Packages Projects Releases Wiki Activity

Refactoring to move authentication out of the ResourceService layer

Browse Source
This commit is contained in:
Lennart
2024-09-29 15:01:46 +02:00
parent f2f66c95d2
commit 3469252cd3
8 changed files with 29 additions and 52 deletions
Download Patch File Download Diff File Expand all files Collapse all files

14
crates/caldav/src/calendar/resource.rs
View File

@@ -3,7 +3,6 @@ use crate::Error;
use actix_web::{web::Data, HttpRequest}; use actix_web::{web::Data, HttpRequest};
use async_trait::async_trait; use async_trait::async_trait;
use derive_more::derive::{From, Into}; use derive_more::derive::{From, Into};
use rustical_auth::AuthInfo;
use rustical_dav::resource::{InvalidProperty, Resource, ResourceService}; use rustical_dav::resource::{InvalidProperty, Resource, ResourceService};
use rustical_dav::xml::HrefElement; use rustical_dav::xml::HrefElement;
use rustical_store::calendar::Calendar; use rustical_store::calendar::Calendar;
@@ -224,7 +223,10 @@ impl<C: CalendarStore + ?Sized> ResourceService for CalendarResourceService<C> {
type Resource = CalendarResource; type Resource = CalendarResource;
type Error = Error; type Error = Error;
async fn get_resource(&self) -> Result<Self::Resource, Error> { async fn get_resource(&self, principal: String) -> Result<Self::Resource, Error> {
if self.principal != principal {
return Err(Error::Unauthorized);
}
let calendar = self let calendar = self
.cal_store .cal_store
.read() .read()
@@ -235,10 +237,7 @@ impl<C: CalendarStore + ?Sized> ResourceService for CalendarResourceService<C> {
Ok(calendar.into()) Ok(calendar.into())
} }
async fn get_members( async fn get_members(&self) -> Result<Vec<(String, Self::MemberType)>, Self::Error> {
&self,
_auth_info: AuthInfo,
) -> Result<Vec<(String, Self::MemberType)>, Self::Error> {
// As of now the calendar resource has no members since events are shown with REPORT // As of now the calendar resource has no members since events are shown with REPORT
Ok(self Ok(self
.cal_store .cal_store
@@ -253,7 +252,6 @@ impl<C: CalendarStore + ?Sized> ResourceService for CalendarResourceService<C> {
async fn new( async fn new(
req: &HttpRequest, req: &HttpRequest,
auth_info: &AuthInfo,
path_components: Self::PathComponents, path_components: Self::PathComponents,
) -> Result<Self, Self::Error> { ) -> Result<Self, Self::Error> {
let cal_store = req let cal_store = req
@@ -264,7 +262,7 @@ impl<C: CalendarStore + ?Sized> ResourceService for CalendarResourceService<C> {
Ok(Self { Ok(Self {
path: req.path().to_owned(), path: req.path().to_owned(),
principal: auth_info.user_id.to_owned(), principal: path_components.0,
calendar_id: path_components.1, calendar_id: path_components.1,
cal_store, cal_store,
}) })

7
crates/caldav/src/event/resource.rs
View File

@@ -2,7 +2,6 @@ use crate::Error;
use actix_web::{web::Data, HttpRequest}; use actix_web::{web::Data, HttpRequest};
use async_trait::async_trait; use async_trait::async_trait;
use derive_more::derive::{From, Into}; use derive_more::derive::{From, Into};
use rustical_auth::AuthInfo;
use rustical_dav::resource::{InvalidProperty, Resource, ResourceService}; use rustical_dav::resource::{InvalidProperty, Resource, ResourceService};
use rustical_store::event::Event; use rustical_store::event::Event;
use rustical_store::CalendarStore; use rustical_store::CalendarStore;
@@ -72,7 +71,6 @@ impl<C: CalendarStore + ?Sized> ResourceService for EventResourceService<C> {
async fn new( async fn new(
req: &HttpRequest, req: &HttpRequest,
_auth_info: &AuthInfo,
path_components: Self::PathComponents, path_components: Self::PathComponents,
) -> Result<Self, Self::Error> { ) -> Result<Self, Self::Error> {
let (principal, cid, mut uid) = path_components; let (principal, cid, mut uid) = path_components;
@@ -96,7 +94,10 @@ impl<C: CalendarStore + ?Sized> ResourceService for EventResourceService<C> {
}) })
} }
async fn get_resource(&self) -> Result<Self::Resource, Self::Error> { async fn get_resource(&self, principal: String) -> Result<Self::Resource, Self::Error> {
if self.principal != principal {
return Err(Error::Unauthorized);
}
let event = self let event = self
.cal_store .cal_store
.read() .read()

15
crates/caldav/src/principal/mod.rs
View File

@@ -2,7 +2,6 @@ use crate::Error;
use actix_web::web::Data; use actix_web::web::Data;
use actix_web::HttpRequest; use actix_web::HttpRequest;
use async_trait::async_trait; use async_trait::async_trait;
use rustical_auth::AuthInfo;
use rustical_dav::resource::{InvalidProperty, Resource, ResourceService}; use rustical_dav::resource::{InvalidProperty, Resource, ResourceService};
use rustical_dav::xml::HrefElement; use rustical_dav::xml::HrefElement;
use rustical_store::CalendarStore; use rustical_store::CalendarStore;
@@ -93,12 +92,8 @@ impl<C: CalendarStore + ?Sized> ResourceService for PrincipalResourceService<C>
async fn new( async fn new(
req: &HttpRequest, req: &HttpRequest,
auth_info: &AuthInfo,
(principal,): Self::PathComponents, (principal,): Self::PathComponents,
) -> Result<Self, Self::Error> { ) -> Result<Self, Self::Error> {
if auth_info.user_id != principal {
return Err(Error::Unauthorized);
}
let cal_store = req let cal_store = req
.app_data::<Data<RwLock<C>>>() .app_data::<Data<RwLock<C>>>()
.expect("no calendar store in app_data!") .expect("no calendar store in app_data!")
@@ -112,16 +107,16 @@ impl<C: CalendarStore + ?Sized> ResourceService for PrincipalResourceService<C>
}) })
} }
async fn get_resource(&self) -> Result<Self::Resource, Self::Error> { async fn get_resource(&self, principal: String) -> Result<Self::Resource, Self::Error> {
if self.principal != principal {
return Err(Error::Unauthorized);
}
Ok(PrincipalResource { Ok(PrincipalResource {
principal: self.principal.to_owned(), principal: self.principal.to_owned(),
}) })
} }
async fn get_members( async fn get_members(&self) -> Result<Vec<(String, Self::MemberType)>, Self::Error> {
&self,
_auth_info: AuthInfo,
) -> Result<Vec<(String, Self::MemberType)>, Self::Error> {
let calendars = self let calendars = self
.cal_store .cal_store
.read() .read()

18
crates/caldav/src/root/mod.rs
View File

@@ -1,15 +1,12 @@
use crate::Error; use crate::Error;
use actix_web::HttpRequest; use actix_web::HttpRequest;
use async_trait::async_trait; use async_trait::async_trait;
use rustical_auth::AuthInfo;
use rustical_dav::resource::{InvalidProperty, Resource, ResourceService}; use rustical_dav::resource::{InvalidProperty, Resource, ResourceService};
use rustical_dav::xml::HrefElement; use rustical_dav::xml::HrefElement;
use serde::{Deserialize, Serialize}; use serde::{Deserialize, Serialize};
use strum::{EnumString, VariantNames}; use strum::{EnumString, VariantNames};
pub struct RootResourceService { pub struct RootResourceService;
principal: String,
}
#[derive(EnumString, Debug, VariantNames, Clone)] #[derive(EnumString, Debug, VariantNames, Clone)]
#[strum(serialize_all = "kebab-case")] #[strum(serialize_all = "kebab-case")]
@@ -42,7 +39,7 @@ impl InvalidProperty for RootProp {
#[derive(Clone)] #[derive(Clone)]
pub struct RootResource { pub struct RootResource {
pub principal: String, principal: String,
} }
impl Resource for RootResource { impl Resource for RootResource {
@@ -69,18 +66,13 @@ impl ResourceService for RootResourceService {
async fn new( async fn new(
_req: &HttpRequest, _req: &HttpRequest,
auth_info: &AuthInfo,
_path_components: Self::PathComponents, _path_components: Self::PathComponents,
) -> Result<Self, Self::Error> { ) -> Result<Self, Self::Error> {
Ok(Self { Ok(Self)
principal: auth_info.user_id.to_owned(),
})
} }
async fn get_resource(&self) -> Result<Self::Resource, Self::Error> { async fn get_resource(&self, principal: String) -> Result<Self::Resource, Self::Error> {
Ok(RootResource { Ok(RootResource { principal })
principal: self.principal.to_owned(),
})
} }
async fn save_resource(&self, _file: Self::Resource) -> Result<(), Self::Error> { async fn save_resource(&self, _file: Self::Resource) -> Result<(), Self::Error> {

6
crates/dav/src/methods/delete.rs
View File

@@ -3,14 +3,12 @@ use actix_web::web::Path;
use actix_web::HttpRequest; use actix_web::HttpRequest;
use actix_web::HttpResponse; use actix_web::HttpResponse;
use actix_web::Responder; use actix_web::Responder;
use rustical_auth::{AuthInfoExtractor, CheckAuthentication}; use rustical_auth::CheckAuthentication;
pub async fn route_delete<A: CheckAuthentication, R: ResourceService>( pub async fn route_delete<A: CheckAuthentication, R: ResourceService>(
path_components: Path<R::PathComponents>, path_components: Path<R::PathComponents>,
req: HttpRequest, req: HttpRequest,
auth: AuthInfoExtractor<A>,
) -> Result<impl Responder, R::Error> { ) -> Result<impl Responder, R::Error> {
let auth_info = auth.inner;
let path_components = path_components.into_inner(); let path_components = path_components.into_inner();
let no_trash = req let no_trash = req
@@ -19,7 +17,7 @@ pub async fn route_delete<A: CheckAuthentication, R: ResourceService>(
.map(|val| matches!(val.to_str(), Ok("1"))) .map(|val| matches!(val.to_str(), Ok("1")))
.unwrap_or(false); .unwrap_or(false);
let resource_service = R::new(&req, &auth_info, path_components.clone()).await?; let resource_service = R::new(&req, path_components.clone()).await?;
resource_service.delete_resource(!no_trash).await?; resource_service.delete_resource(!no_trash).await?;
Ok(HttpResponse::Ok().body("")) Ok(HttpResponse::Ok().body(""))

7
crates/dav/src/methods/propfind.rs
View File

@@ -54,11 +54,10 @@ pub async fn route_propfind<A: CheckAuthentication, R: ResourceService>(
R::Error, R::Error,
> { > {
debug!("{body}"); debug!("{body}");
let auth_info = auth.inner;
let prefix = prefix.into_inner(); let prefix = prefix.into_inner();
let path = req.path().to_owned(); let path = req.path().to_owned();
let resource_service = R::new(&req, &auth_info, path_components.into_inner()).await?; let resource_service = R::new(&req, path_components.into_inner()).await?;
// A request body is optional. If empty we MUST return all props // A request body is optional. If empty we MUST return all props
let propfind: PropfindElement = if !body.is_empty() { let propfind: PropfindElement = if !body.is_empty() {
@@ -83,12 +82,12 @@ pub async fn route_propfind<A: CheckAuthentication, R: ResourceService>(
let mut member_responses = Vec::new(); let mut member_responses = Vec::new();
if depth != Depth::Zero { if depth != Depth::Zero {
for (path, member) in resource_service.get_members(auth_info).await? { for (path, member) in resource_service.get_members().await? {
member_responses.push(member.propfind(&prefix, path, props.clone()).await?); member_responses.push(member.propfind(&prefix, path, props.clone()).await?);
} }
} }
let resource = resource_service.get_resource().await?; let resource = resource_service.get_resource(auth.inner.user_id).await?;
let response = resource.propfind(&prefix, path, props).await?; let response = resource.propfind(&prefix, path, props).await?;
Ok(MultistatusElement { Ok(MultistatusElement {

5
crates/dav/src/methods/proppatch.rs
View File

@@ -53,10 +53,9 @@ pub async fn route_proppatch<A: CheckAuthentication, R: ResourceService>(
req: HttpRequest, req: HttpRequest,
auth: AuthInfoExtractor<A>, auth: AuthInfoExtractor<A>,
) -> Result<MultistatusElement<PropstatWrapper<String>, PropstatWrapper<String>>, R::Error> { ) -> Result<MultistatusElement<PropstatWrapper<String>, PropstatWrapper<String>>, R::Error> {
let auth_info = auth.inner;
let path_components = path.into_inner(); let path_components = path.into_inner();
let href = req.path().to_owned(); let href = req.path().to_owned();
let resource_service = R::new(&req, &auth_info, path_components.clone()).await?; let resource_service = R::new(&req, path_components.clone()).await?;
debug!("{body}"); debug!("{body}");
@@ -76,7 +75,7 @@ pub async fn route_proppatch<A: CheckAuthentication, R: ResourceService>(
}) })
.collect(); .collect();
let mut resource = resource_service.get_resource().await?; let mut resource = resource_service.get_resource(auth.inner.user_id).await?;
let mut props_ok = Vec::new(); let mut props_ok = Vec::new();
let mut props_conflict = Vec::new(); let mut props_conflict = Vec::new();

9
crates/dav/src/resource.rs
View File

@@ -5,7 +5,6 @@ use actix_web::{http::StatusCode, HttpRequest, ResponseError};
use async_trait::async_trait; use async_trait::async_trait;
use core::fmt; use core::fmt;
use itertools::Itertools; use itertools::Itertools;
use rustical_auth::AuthInfo;
use serde::{Deserialize, Serialize}; use serde::{Deserialize, Serialize};
use std::str::FromStr; use std::str::FromStr;
use strum::VariantNames; use strum::VariantNames;
@@ -47,18 +46,14 @@ pub trait ResourceService: Sized {
async fn new( async fn new(
req: &HttpRequest, req: &HttpRequest,
auth_info: &AuthInfo,
path_components: Self::PathComponents, path_components: Self::PathComponents,
) -> Result<Self, Self::Error>; ) -> Result<Self, Self::Error>;
async fn get_members( async fn get_members(&self) -> Result<Vec<(String, Self::MemberType)>, Self::Error> {
&self,
_auth_info: AuthInfo,
) -> Result<Vec<(String, Self::MemberType)>, Self::Error> {
Ok(vec![]) Ok(vec![])
} }
async fn get_resource(&self) -> Result<Self::Resource, Self::Error>; async fn get_resource(&self, principal: String) -> Result<Self::Resource, Self::Error>;
async fn save_resource(&self, file: Self::Resource) -> Result<(), Self::Error>; async fn save_resource(&self, file: Self::Resource) -> Result<(), Self::Error>;
async fn delete_resource(&self, _use_trashbin: bool) -> Result<(), Self::Error> { async fn delete_resource(&self, _use_trashbin: bool) -> Result<(), Self::Error> {
Err(crate::Error::Unauthorized.into()) Err(crate::Error::Unauthorized.into())