what2watch/src/users.rs

use argon2::{
    password_hash::{rand_core::OsRng, PasswordHash, PasswordHasher, PasswordVerifier, SaltString},
    Argon2,
};
use sqlx::{error::DatabaseError, Sqlite, SqlitePool};
use tracing::log::log;
use unicode_segmentation::UnicodeSegmentation;
use uuid::Uuid;

const CREATE_QUERY: &str =
    "insert into witches (id, username, displayname, email, pwhash) values ($1, $2, $3, $4, $5)";

pub struct User {
    id: Uuid,
    username: String,
    displayname: Option<String>,
    email: Option<String>,
}

#[derive(Debug, Clone, sqlx::FromRow, sqlx::Encode)]
pub(crate) struct DbUser {
    id: Uuid,
    username: String,
    displayname: Option<String>,
    email: Option<String>,
    last_seen: Option<u64>,
    pwhash: String,
}

impl From<DbUser> for User {
    fn from(dbu: DbUser) -> Self {
        User {
            id: dbu.id,
            username: dbu.username,
            displayname: dbu.displayname,
            email: dbu.email,
        }
    }
}

pub async fn create_user(
    username: &str,
    displayname: &Option<String>,
    email: &Option<String>,
    password: &[u8],
    pool: &SqlitePool,
) -> Result<User, CreateUserError> {
    let username = username.trim();
    let name_len = username.graphemes(true).size_hint().1.unwrap();
    // we are not ascii exclusivists around here
    if !(1..=20).contains(&name_len) {
        return Err(CreateUserErrorKind::BadUsername.into());
    }

    // Argon2 with default params (Argon2id v19)
    let argon2 = Argon2::default();
    let salt = SaltString::generate(&mut OsRng);
    let pwhash = argon2
        .hash_password(password, &salt)
        .unwrap() // safe to unwrap, we know the salt is valid
        .to_string();

    let id = Uuid::new_v4();
    let id_bytes = id.to_bytes_le();
    let id_bytes = id_bytes.as_slice();
    let res = sqlx::query(CREATE_QUERY)
        .bind(id_bytes)
        .bind(username)
        .bind(displayname)
        .bind(email)
        .bind(pwhash)
        .execute(pool)
        .await;

    match res {
        Ok(_) => {
            let user = User {
                id,
                username: username.to_string(),
                displayname: displayname.to_owned(),
                email: email.to_owned(),
            };
            Ok(user)
        }
        Err(sqlx::Error::Database(db)) => {
            if let Some(exit) = db.code() {
                let exit = exit.parse().unwrap_or(0u32);
                // https://www.sqlite.org/rescode.html codes for unique constraint violations:
                if exit == 2067u32 || exit == 1555 {
                    Err(CreateUserErrorKind::AlreadyExists.into())
                } else {
                    Err(CreateUserErrorKind::UnknownDBError.into())
                }
            } else {
                Err(CreateUserErrorKind::UnknownDBError.into())
            }
        }
        _ => Err(CreateUserErrorKind::UnknownDBError.into()),
    }
}

#[Error(desc = "Could not create user.")]
#[non_exhaustive]
pub struct CreateUserError(#[from] CreateUserErrorKind);

#[Error]
#[non_exhaustive]
pub enum CreateUserErrorKind {
    AlreadyExists,
    #[error(desc = "Usernames must be between 1 and 20 non-whitespace characters long")]
    BadUsername,
    PasswordMismatch,
    MissingFields,
    UnknownDBError,
}
move user stuff to module 2023-05-12 21:24:57 +00:00			`use argon2::{`
			`password_hash::{rand_core::OsRng, PasswordHash, PasswordHasher, PasswordVerifier, SaltString},`
			`Argon2,`
			`};`
checkpoint fucking with errors 2023-05-15 03:33:36 +00:00			`use sqlx::{error::DatabaseError, Sqlite, SqlitePool};`
			`use tracing::log::log;`
add username validation (length only) 2023-05-16 19:24:53 +00:00			`use unicode_segmentation::UnicodeSegmentation;`
move user stuff to module 2023-05-12 21:24:57 +00:00			`use uuid::Uuid;`

checkpoint fucking with errors 2023-05-15 03:33:36 +00:00			`const CREATE_QUERY: &str =`
			`"insert into witches (id, username, displayname, email, pwhash) values ($1, $2, $3, $4, $5)";`
add user structs 2023-05-12 22:36:19 +00:00
			`pub struct User {`
			`id: Uuid,`
			`username: String,`
			`displayname: Option<String>,`
			`email: Option<String>,`
			`}`

			`#[derive(Debug, Clone, sqlx::FromRow, sqlx::Encode)]`
add check for uniqueness violation in account creation 2023-05-16 18:55:32 +00:00			`pub(crate) struct DbUser {`
add user structs 2023-05-12 22:36:19 +00:00			`id: Uuid,`
			`username: String,`
			`displayname: Option<String>,`
			`email: Option<String>,`
			`last_seen: Option<u64>,`
			`pwhash: String,`
			`}`

			`impl From<DbUser> for User {`
			`fn from(dbu: DbUser) -> Self {`
			`User {`
			`id: dbu.id,`
			`username: dbu.username,`
			`displayname: dbu.displayname,`
			`email: dbu.email,`
			`}`
			`}`
			`}`

checkpoint fucking with errors 2023-05-15 03:33:36 +00:00			`pub async fn create_user(`
			`username: &str,`
			`displayname: &Option<String>,`
			`email: &Option<String>,`
			`password: &[u8],`
			`pool: &SqlitePool,`
			`) -> Result<User, CreateUserError> {`
add username validation (length only) 2023-05-16 19:24:53 +00:00			`let username = username.trim();`
			`let name_len = username.graphemes(true).size_hint().1.unwrap();`
			`// we are not ascii exclusivists around here`
			`if !(1..=20).contains(&name_len) {`
			`return Err(CreateUserErrorKind::BadUsername.into());`
			`}`

move user stuff to module 2023-05-12 21:24:57 +00:00			`// Argon2 with default params (Argon2id v19)`
			`let argon2 = Argon2::default();`
			`let salt = SaltString::generate(&mut OsRng);`
checkpoint fucking with errors 2023-05-15 03:33:36 +00:00			`let pwhash = argon2`
move user stuff to module 2023-05-12 21:24:57 +00:00			`.hash_password(password, &salt)`
			`.unwrap() // safe to unwrap, we know the salt is valid`
			`.to_string();`

checkpoint fucking with errors 2023-05-15 03:33:36 +00:00			`let id = Uuid::new_v4();`
add username validation (length only) 2023-05-16 19:24:53 +00:00			`let id_bytes = id.to_bytes_le();`
			`let id_bytes = id_bytes.as_slice();`
checkpoint fucking with errors 2023-05-15 03:33:36 +00:00			`let res = sqlx::query(CREATE_QUERY)`
			`.bind(id_bytes)`
			`.bind(username)`
			`.bind(displayname)`
			`.bind(email)`
			`.bind(pwhash)`
			`.execute(pool)`
			`.await;`

			`match res {`
			`Ok(_) => {`
			`let user = User {`
			`id,`
			`username: username.to_string(),`
			`displayname: displayname.to_owned(),`
			`email: email.to_owned(),`
			`};`
			`Ok(user)`
			`}`
			`Err(sqlx::Error::Database(db)) => {`
			`if let Some(exit) = db.code() {`
add check for uniqueness violation in account creation 2023-05-16 18:55:32 +00:00			`let exit = exit.parse().unwrap_or(0u32);`
			`// https://www.sqlite.org/rescode.html codes for unique constraint violations:`
			`if exit == 2067u32 \|\| exit == 1555 {`
checkpoint fucking with errors 2023-05-15 03:33:36 +00:00			`Err(CreateUserErrorKind::AlreadyExists.into())`
			`} else {`
rename error 2023-05-16 23:24:24 +00:00			`Err(CreateUserErrorKind::UnknownDBError.into())`
checkpoint fucking with errors 2023-05-15 03:33:36 +00:00			`}`
			`} else {`
rename error 2023-05-16 23:24:24 +00:00			`Err(CreateUserErrorKind::UnknownDBError.into())`
checkpoint fucking with errors 2023-05-15 03:33:36 +00:00			`}`
			`}`
rename error 2023-05-16 23:24:24 +00:00			`_ => Err(CreateUserErrorKind::UnknownDBError.into()),`
checkpoint fucking with errors 2023-05-15 03:33:36 +00:00			`}`
move user stuff to module 2023-05-12 21:24:57 +00:00			`}`

			`#[Error(desc = "Could not create user.")]`
			`#[non_exhaustive]`
			`pub struct CreateUserError(#[from] CreateUserErrorKind);`

			`#[Error]`
			`#[non_exhaustive]`
			`pub enum CreateUserErrorKind {`
			`AlreadyExists,`
add username validation (length only) 2023-05-16 19:24:53 +00:00			`#[error(desc = "Usernames must be between 1 and 20 non-whitespace characters long")]`
checkpoint fucking with errors 2023-05-15 03:33:36 +00:00			`BadUsername,`
move user stuff to module 2023-05-12 21:24:57 +00:00			`PasswordMismatch,`
			`MissingFields,`
rename error 2023-05-16 23:24:24 +00:00			`UnknownDBError,`
move user stuff to module 2023-05-12 21:24:57 +00:00			`}`