Plume/src/routes/session.rs

use gettextrs::gettext;
use rocket::{
    http::{Cookie, Cookies, uri::Uri},
    response::{Redirect, status::NotFound},
    request::{Form,FlashMessage}
};
use rocket_contrib::Template;

use db_conn::DbConn;
use models::users::{User, AUTH_COOKIE};

#[get("/login")]
fn new(user: Option<User>) -> Template {
    Template::render("session/login", json!({
        "account": user
    }))
}

#[derive(FromForm)]
struct Message {
	m: String
}

#[get("/login?<message>")]
fn new_message(user: Option<User>, message: Message) -> Template {
    Template::render("session/login", json!({
        "account": user,
        "message": message.m
    }))
}


#[derive(FromForm)]
struct LoginForm {
    email_or_name: String,
    password: String
}

#[post("/login", data = "<data>")]
fn create(conn: DbConn, data: Form<LoginForm>, flash: Option<FlashMessage>, mut cookies: Cookies) -> Result<Redirect, NotFound<String>> {
    let form = data.get();
    let user = match User::find_by_email(&*conn, form.email_or_name.to_string()) {
        Some(usr) => Ok(usr),
        None => match User::find_local(&*conn, form.email_or_name.to_string()) {
            Some(usr) => Ok(usr),
            None => Err(gettext("Invalid username or password"))
        }
    };
    match user {
        Ok(usr) => {
            if usr.auth(form.password.to_string()) {
                cookies.add_private(Cookie::new(AUTH_COOKIE, usr.id.to_string()));
                Ok(Redirect::to(Uri::new(flash
                    .and_then(|f| if f.name() == "callback" { Some(f.msg().to_owned()) } else { None })
                    .unwrap_or("/".to_owned()))
                ))
            } else {
                Err(NotFound(gettext("Invalid username or password")))
            }
        },
        Err(e) => Err(NotFound(String::from(e)))
    }
}

#[get("/logout")]
fn delete(mut cookies: Cookies) -> Redirect {
    let cookie = cookies.get_private(AUTH_COOKIE).unwrap();
    cookies.remove_private(cookie);
    Redirect::to("/")
}