Merge pull request #12 from indnb/feature/add-login-admin

Feature/add login admin
indnb · Jan 12, 2025 · 9557120 · 9557120
2 parents 8290760 + c346955
commit 9557120
Show file tree

Hide file tree

Showing 15 changed files with 110 additions and 0 deletions.
diff --git a/\ b/\
@@ -0,0 +1 @@
+pub mod create_jwt;
diff --git a/api b/api
diff --git a/src/api/admin/get.rs b/src/api/admin/get.rs
@@ -1 +1,9 @@
+use crate::models::admin::admin_jwt;
+use log::info;
+use rocket::get;
 
+#[allow(dead_code)]
+#[get("/admin/get")]
+pub async fn get(claims: admin_jwt::AdminJwt) {
+    info!("Welcome, user with ID: {}", claims.admin_name);
+}
diff --git a/src/api/admin/post.rs b/src/api/admin/post.rs
@@ -1 +1,40 @@
+use crate::dto::request::admin::login_admin::LoginAdminData;
+use crate::error::api_error::ApiError;
+use crate::models::admin::admin_jwt;
+use crate::utils::env_configuration::EnvConfiguration;
+use crate::utils::prelude_api::*;
+use crate::utils::security;
+use chrono::{Duration, Utc};
+use rocket::post;
 
+#[post("/admin/login", data = "<data>")]
+pub async fn login(data: Json<LoginAdminData>) -> Result<String, ApiError> {
+    let data = data.into_inner();
+    let LoginAdminData {
+        admin_name,
+        admin_password,
+    } = data;
+    let password_env = EnvConfiguration::get().admin_password.to_owned();
+    let name_env = EnvConfiguration::get().admin_name.to_owned();
+    if name_env != admin_name {
+        return Err(ApiError::ValidationError(
+            "Error validation admin name".to_string(),
+        ));
+    }
+
+    if password_env != admin_password {
+        return Err(ApiError::ValidationError(
+            "Error validation admin password".to_string(),
+        ));
+    }
+    let my_claims = admin_jwt::AdminJwt {
+        admin_password,
+        admin_name,
+        exp: (Utc::now() + Duration::hours(24)).timestamp() as u64,
+    };
+
+    match security::encoded_data(&my_claims) {
+        Ok(token) => Ok(token),
+        Err(err) => Err(ApiError::TokenGenerationError(err.to_string())),
+    }
+}
diff --git a/src/dto/request/admin/check_jwt.rs b/src/dto/request/admin/check_jwt.rs
@@ -0,0 +1,6 @@
+use serde::Deserialize;
+#[derive(Deserialize)]
+#[allow(dead_code)]
+pub struct CheckJwtAdminData {
+    jwt: String,
+}
diff --git a/src/dto/request/admin/login_admin.rs b/src/dto/request/admin/login_admin.rs
@@ -0,0 +1,7 @@
+use serde::Deserialize;
+
+#[derive(Deserialize)]
+pub struct LoginAdminData {
+    pub admin_password: String,
+    pub admin_name: String,
+}
diff --git a/src/dto/request/admin/mod.rs b/src/dto/request/admin/mod.rs
@@ -0,0 +1,2 @@
+pub mod check_jwt;
+pub mod login_admin;
diff --git a/src/dto/request/mod.rs b/src/dto/request/mod.rs
@@ -1,2 +1,3 @@
+pub mod admin;
 pub mod hackathon_2024;
 pub mod user;
diff --git a/src/middleware/get_user.rs b/src/middleware/get_user.rs
@@ -0,0 +1,26 @@
+use crate::models::admin::admin_jwt;
+use crate::utils::security;
+use rocket::http::Status;
+use rocket::request::FromRequest;
+use rocket::{request, Request};
+
+#[rocket::async_trait]
+impl<'r> FromRequest<'r> for admin_jwt::AdminJwt {
+    type Error = ();
+
+    #[allow(dead_code)]
+    async fn from_request(req: &'r Request<'_>) -> request::Outcome<Self, Self::Error> {
+        let token = req
+            .headers()
+            .get_one("Authorization")
+            .and_then(|header| header.strip_prefix("Bearer "));
+
+        match token {
+            Some(token) => match security::decoded_data::<admin_jwt::AdminJwt>(token) {
+                Ok(token_data) => request::Outcome::Success(token_data.claims),
+                Err(_) => request::Outcome::Error((Status::Unauthorized, ())),
+            },
+            None => request::Outcome::Error((Status::Unauthorized, ())),
+        }
+    }
+}
diff --git a/src/middleware/mod.rs b/src/middleware/mod.rs
@@ -1,2 +1,3 @@
 pub mod admin_match;
 pub mod claims;
+pub mod get_user;
diff --git a/src/models/admin/admin_jwt.rs b/src/models/admin/admin_jwt.rs
@@ -0,0 +1,9 @@
+use serde::{Deserialize, Serialize};
+
+#[allow(dead_code)]
+#[derive(Debug, Serialize, Deserialize)]
+pub struct AdminJwt {
+    pub admin_password: String,
+    pub admin_name: String,
+    pub exp: u64,
+}
diff --git a/src/models/admin/mod.rs b/src/models/admin/mod.rs
@@ -0,0 +1 @@
+pub mod admin_jwt;
diff --git a/src/models/mod.rs b/src/models/mod.rs
@@ -1 +1,2 @@
+pub mod admin;
 pub mod hackathon_2024;
diff --git a/src/server.rs b/src/server.rs
@@ -83,6 +83,9 @@ impl Server {
                     api::hackathon_2024::team::get::by_id,
                     api::hackathon_2024::team::put::by_id,
                     api::hackathon_2024::team::delete::by_id,
+                    // /adnmin/
+                    api::admin::post::login,
+                    api::admin::get::get,
                     // /other/*
                 ],
             )

diff --git a/src/utils/env_configuration.rs b/src/utils/env_configuration.rs
@@ -21,6 +21,8 @@ pub struct EnvConfiguration {
     pub admin_role: UserRoleEnum,
     */
     #[allow(dead_code)]
+    pub admin_name: String,
+    #[allow(dead_code)]
     pub admin_password: String,
     #[allow(dead_code)]
     pub jwt_secret: String,
@@ -58,6 +60,9 @@ impl EnvConfiguration {
             )
             .parse()
             .expect("Invalid ADMIN_PASSWORD"),
+            admin_name: EnvConfiguration::unwrap_env("ADMIN_NAME", Some("ADMIN_NAME".to_owned()))
+                .parse()
+                .expect("Invalid ADMIN_NAME"),
             jwt_secret: EnvConfiguration::unwrap_env("JWT_SECRET", Some("jwt_secret".to_owned()))
                 .parse()
                 .expect("Invalid JWT_SECRET"),