2018-10-23 11:37:24 +02:00
|
|
|
use rocket::{
|
|
|
|
Outcome,
|
|
|
|
http::Status,
|
|
|
|
request::{self, FromRequest, Request}
|
|
|
|
};
|
2018-10-24 13:21:42 +02:00
|
|
|
use std::marker::PhantomData;
|
2018-10-23 11:37:24 +02:00
|
|
|
use plume_models::{self, api_tokens::ApiToken};
|
|
|
|
|
|
|
|
// Actions
|
|
|
|
pub trait Action {
|
|
|
|
fn to_str() -> &'static str;
|
|
|
|
}
|
|
|
|
pub struct Read;
|
|
|
|
impl Action for Read {
|
|
|
|
fn to_str() -> &'static str {
|
|
|
|
"read"
|
|
|
|
}
|
|
|
|
}
|
|
|
|
pub struct Write;
|
|
|
|
impl Action for Write {
|
|
|
|
fn to_str() -> &'static str {
|
|
|
|
"write"
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
// Scopes
|
|
|
|
pub trait Scope {
|
|
|
|
fn to_str() -> &'static str;
|
|
|
|
}
|
|
|
|
impl Scope for plume_models::posts::Post {
|
|
|
|
fn to_str() -> &'static str {
|
|
|
|
"posts"
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2018-10-30 10:11:53 +01:00
|
|
|
pub struct Authorization<A, S> (pub ApiToken, PhantomData<(A, S)>);
|
2018-10-23 11:37:24 +02:00
|
|
|
|
|
|
|
impl<'a, 'r, A, S> FromRequest<'a, 'r> for Authorization<A, S>
|
|
|
|
where A: Action,
|
|
|
|
S: Scope
|
|
|
|
{
|
|
|
|
type Error = ();
|
|
|
|
|
|
|
|
fn from_request(request: &'a Request<'r>) -> request::Outcome<Authorization<A, S>, ()> {
|
|
|
|
request.guard::<ApiToken>()
|
|
|
|
.map_failure(|_| (Status::Unauthorized, ()))
|
|
|
|
.and_then(|token| if token.can(A::to_str(), S::to_str()) {
|
2018-10-30 10:11:53 +01:00
|
|
|
Outcome::Success(Authorization(token, PhantomData))
|
2018-10-23 11:37:24 +02:00
|
|
|
} else {
|
|
|
|
Outcome::Failure((Status::Unauthorized, ()))
|
|
|
|
})
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|