session-open-group-server/src/rpc.rs

use std::collections::HashMap;

use serde::{Deserialize, Serialize};
use warp::{http::StatusCode, reply::Reply, reply::Response, Rejection};

use super::errors::Error;
use super::handlers;
use super::models;
use super::storage;

enum Mode {
    FileServer,
    OpenGroupServer,
}

#[derive(Deserialize, Serialize, Debug)]
pub struct RpcCall {
    pub endpoint: String,
    pub body: String,
    pub method: String,
    pub headers: HashMap<String, String>,
}

const MODE: Mode = Mode::OpenGroupServer;

pub async fn handle_rpc_call(rpc_call: RpcCall) -> Result<Response, Rejection> {
    // Check that the endpoint is a valid URI and deconstruct it into a path
    // and query parameters.
    // Adding "http://placeholder.io" in front of the endpoint is a workaround
    // for the fact that the URL crate doesn't accept relative URLs. There are
    // other (cleaner) ways to fix this but they tend to be much more complex.
    let raw_uri = format!("http://placeholder.io/{}", rpc_call.endpoint.trim_start_matches("/"));
    let path: String = match raw_uri.parse::<http::Uri>() {
        Ok(uri) => uri.path().trim_start_matches("/").to_string(),
        Err(e) => {
            println!("Couldn't parse URI from: {} due to error: {}.", &raw_uri, e);
            return Err(warp::reject::custom(Error::InvalidRpcCall));
        }
    };
    let query_params: HashMap<String, String> = match url::Url::parse(&raw_uri) {
        Ok(url) => url.query_pairs().into_owned().collect(),
        Err(e) => {
            println!("Couldn't parse URL from: {} due to error: {}.", &raw_uri, e);
            return Err(warp::reject::custom(Error::InvalidRpcCall));
        }
    };
    // Get the auth token if possible
    let auth_token = get_auth_token(&rpc_call);
    // Get a database connection pool
    let pool = get_pool_for_room(&rpc_call)?;
    // Switch on the HTTP method
    match rpc_call.method.as_ref() {
        "GET" => return handle_get_request(rpc_call, &path, auth_token, query_params, &pool).await,
        "POST" => return handle_post_request(rpc_call, &path, auth_token, &pool).await,
        "DELETE" => return handle_delete_request(&path, auth_token, &pool).await,
        _ => {
            println!("Ignoring RPC call with invalid or unused HTTP method: {}.", rpc_call.method);
            return Err(warp::reject::custom(Error::InvalidRpcCall));
        }
    }
}

async fn handle_get_request(
    rpc_call: RpcCall, path: &str, auth_token: Option<String>,
    query_params: HashMap<String, String>, pool: &storage::DatabaseConnectionPool,
) -> Result<Response, Rejection> {
    // Handle routes that don't require authorization first
    if path == "auth_token_challenge" {
        let challenge = handlers::get_auth_token_challenge(query_params, pool).await?;
        #[derive(Debug, Deserialize, Serialize)]
        struct Response {
            status_code: u16,
            challenge: models::Challenge,
        }
        let response = Response { status_code: StatusCode::OK.as_u16(), challenge };
        return Ok(warp::reply::json(&response).into_response());
    } else if path.starts_with("rooms") {
        reject_if_file_server_mode(path)?;
        let components: Vec<&str> = path.split("/").collect(); // Split on subsequent slashes
        if components.len() == 1 {
            return handlers::get_all_rooms().await;
        } else if components.len() == 2 {
            let room_id = components[1];
            return handlers::get_room(&room_id).await;
        } else {
            println!("Invalid endpoint: {}.", rpc_call.endpoint);
            return Err(warp::reject::custom(Error::InvalidRpcCall));
        }
    }
    // Check that the auth token is present
    let auth_token = auth_token.ok_or(warp::reject::custom(Error::NoAuthToken))?;
    // Switch on the path
    if path.starts_with("files") {
        let components: Vec<&str> = path.split("/").collect(); // Split on subsequent slashes
        if components.len() != 2 {
            println!("Invalid endpoint: {}.", rpc_call.endpoint);
            return Err(warp::reject::custom(Error::InvalidRpcCall));
        }
        let file_id: i64 = match components[1].parse() {
            Ok(file_id) => file_id,
            Err(_) => {
                println!("Invalid endpoint: {}.", rpc_call.endpoint);
                return Err(warp::reject::custom(Error::InvalidRpcCall));
            }
        };
        return handlers::get_file(file_id, &auth_token, pool)
            .await
            .map(|json| warp::reply::json(&json).into_response());
    }
    match path {
        "messages" => {
            reject_if_file_server_mode(path)?;
            return handlers::get_messages(query_params, &auth_token, pool).await;
        }
        "deleted_messages" => {
            reject_if_file_server_mode(path)?;
            return handlers::get_deleted_messages(query_params, &auth_token, pool).await;
        }
        "moderators" => {
            reject_if_file_server_mode(path)?;
            return handlers::get_moderators(&auth_token, pool).await;
        }
        "block_list" => {
            reject_if_file_server_mode(path)?;
            return handlers::get_banned_public_keys(&auth_token, pool).await;
        }
        "member_count" => {
            reject_if_file_server_mode(path)?;
            return handlers::get_member_count(&auth_token, pool).await;
        }
        "auth_token_challenge" => {
            let challenge = handlers::get_auth_token_challenge(query_params, pool).await?;
            #[derive(Debug, Deserialize, Serialize)]
            struct Response {
                status_code: u16,
                challenge: models::Challenge,
            }
            let response = Response { status_code: StatusCode::OK.as_u16(), challenge };
            return Ok(warp::reply::json(&response).into_response());
        }
        _ => {
            println!("Ignoring RPC call with invalid or unused endpoint: {}.", rpc_call.endpoint);
            return Err(warp::reject::custom(Error::InvalidRpcCall));
        }
    }
}

async fn handle_post_request(
    rpc_call: RpcCall, path: &str, auth_token: Option<String>,
    pool: &storage::DatabaseConnectionPool,
) -> Result<Response, Rejection> {
    // Check that the auth token is present
    let auth_token = auth_token.ok_or(warp::reject::custom(Error::NoAuthToken))?;
    // Switch on the path
    match path {
        "messages" => {
            reject_if_file_server_mode(path)?;
            let message = match serde_json::from_str(&rpc_call.body) {
                Ok(message) => message,
                Err(e) => {
                    println!("Couldn't parse message from: {} due to error: {}.", rpc_call.body, e);
                    return Err(warp::reject::custom(Error::InvalidRpcCall));
                }
            };
            return handlers::insert_message(message, &auth_token, pool).await;
        }
        "block_list" => {
            reject_if_file_server_mode(path)?;
            #[derive(Debug, Deserialize)]
            struct JSON {
                public_key: String,
            }
            let json: JSON = match serde_json::from_str(&rpc_call.body) {
                Ok(message) => message,
                Err(e) => {
                    println!("Couldn't parse JSON from: {} due to error: {}.", rpc_call.body, e);
                    return Err(warp::reject::custom(Error::InvalidRpcCall));
                }
            };
            return handlers::ban(&json.public_key, &auth_token, pool).await;
        }
        "claim_auth_token" => {
            #[derive(Debug, Deserialize)]
            struct JSON {
                public_key: String,
            }
            let json: JSON = match serde_json::from_str(&rpc_call.body) {
                Ok(message) => message,
                Err(e) => {
                    println!("Couldn't parse JSON from: {} due to error: {}.", rpc_call.body, e);
                    return Err(warp::reject::custom(Error::InvalidRpcCall));
                }
            };
            return handlers::claim_auth_token(&json.public_key, &auth_token, pool).await;
        }
        "files" => {
            #[derive(Debug, Deserialize)]
            struct JSON {
                file: String,
            }
            let json: JSON = match serde_json::from_str(&rpc_call.body) {
                Ok(message) => message,
                Err(e) => {
                    println!("Couldn't parse JSON from: {} due to error: {}.", rpc_call.body, e);
                    return Err(warp::reject::custom(Error::InvalidRpcCall));
                }
            };
            return handlers::store_file(&json.file, &auth_token, pool).await;
        }
        _ => {
            println!("Ignoring RPC call with invalid or unused endpoint: {}.", path);
            return Err(warp::reject::custom(Error::InvalidRpcCall));
        }
    }
}

async fn handle_delete_request(
    path: &str, auth_token: Option<String>, pool: &storage::DatabaseConnectionPool,
) -> Result<Response, Rejection> {
    // Check that the auth token is present
    let auth_token = auth_token.ok_or(warp::reject::custom(Error::NoAuthToken))?;
    // DELETE /messages/:server_id
    if path.starts_with("messages") {
        reject_if_file_server_mode(path)?;
        let components: Vec<&str> = path.split("/").collect(); // Split on subsequent slashes
        if components.len() != 2 {
            println!("Invalid endpoint: {}.", path);
            return Err(warp::reject::custom(Error::InvalidRpcCall));
        }
        let server_id: i64 = match components[1].parse() {
            Ok(server_id) => server_id,
            Err(_) => {
                println!("Invalid endpoint: {}.", path);
                return Err(warp::reject::custom(Error::InvalidRpcCall));
            }
        };
        return handlers::delete_message(server_id, &auth_token, pool).await;
    }
    // DELETE /block_list/:public_key
    if path.starts_with("block_list") {
        reject_if_file_server_mode(path)?;
        let components: Vec<&str> = path.split("/").collect(); // Split on subsequent slashes
        if components.len() != 2 {
            println!("Invalid endpoint: {}.", path);
            return Err(warp::reject::custom(Error::InvalidRpcCall));
        }
        let public_key = components[1].to_string();
        return handlers::unban(&public_key, &auth_token, pool).await;
    }
    // DELETE /auth_token
    if path == "auth_token" {
        return handlers::delete_auth_token(&auth_token, pool).await;
    }
    // Unrecognized endpoint
    println!("Ignoring RPC call with invalid or unused endpoint: {}.", path);
    return Err(warp::reject::custom(Error::InvalidRpcCall));
}

// Utilities

fn get_pool_for_room(rpc_call: &RpcCall) -> Result<storage::DatabaseConnectionPool, Rejection> {
    let room_id: String;
    match MODE {
        // In file server mode we don't have a concept of rooms, but for convenience (i.e. so
        // we can use the same database structure) we just always use the main room
        Mode::FileServer => room_id = "main".to_string(),
        Mode::OpenGroupServer => {
            room_id = match get_room_id(&rpc_call) {
                Some(room_id) => room_id,
                None => {
                    println!("Missing room ID.");
                    return Err(warp::reject::custom(Error::InvalidRpcCall));
                }
            };
        }
    }
    return Ok(storage::pool_by_room_id(&room_id));
}

fn get_auth_token(rpc_call: &RpcCall) -> Option<String> {
    if rpc_call.headers.is_empty() {
        return None;
    }
    return rpc_call.headers.get("Authorization").map(|s| s.to_string());
}

fn get_room_id(rpc_call: &RpcCall) -> Option<String> {
    if rpc_call.headers.is_empty() {
        return None;
    }
    return rpc_call.headers.get("Room").map(|s| s.to_string());
}

fn reject_if_file_server_mode(path: &str) -> Result<(), Rejection> {
    match MODE {
        Mode::FileServer => {
            println!("Ignoring RPC call with invalid or unused endpoint: {}.", path);
            return Err(warp::reject::custom(Error::InvalidRpcCall));
        }
        Mode::OpenGroupServer => return Ok(()),
    }
}
Add token extraction utility 2021-03-17 05:55:04 +01:00			`use std::collections::HashMap;`

Fix RPC call parsing 2021-03-23 01:13:32 +01:00			`use serde::{Deserialize, Serialize};`
Add .rustfmt.toml 2021-03-25 00:56:16 +01:00			`use warp::{http::StatusCode, reply::Reply, reply::Response, Rejection};`
Implement rough RPC layer 2021-03-12 05:11:12 +01:00
Clean up error handling 2021-03-12 06:40:24 +01:00			`use super::errors::Error;`
Implement rough RPC layer 2021-03-12 05:11:12 +01:00			`use super::handlers;`
Always include status code in response 2021-03-24 00:02:53 +01:00			`use super::models;`
Implement rough RPC layer 2021-03-12 05:11:12 +01:00			`use super::storage;`

Implement modes 2021-03-29 01:06:56 +02:00			`enum Mode {`
			`FileServer,`
			`OpenGroupServer,`
			`}`

Minor refactoring 2021-03-12 08:55:37 +01:00			`#[derive(Deserialize, Serialize, Debug)]`
			`pub struct RpcCall {`
			`pub endpoint: String,`
			`pub body: String,`
Add token extraction utility 2021-03-17 05:55:04 +01:00			`pub method: String,`
Don't use nightly 2021-03-25 01:38:06 +01:00			`pub headers: HashMap<String, String>,`
Minor refactoring 2021-03-12 08:55:37 +01:00			`}`

Implement modes 2021-03-29 01:06:56 +02:00			`const MODE: Mode = Mode::OpenGroupServer;`

Prepare for rooms implementation 2021-03-18 05:04:56 +01:00			`pub async fn handle_rpc_call(rpc_call: RpcCall) -> Result<Response, Rejection> {`
Add comment 2021-03-23 23:27:21 +01:00			`// Check that the endpoint is a valid URI and deconstruct it into a path`
			`// and query parameters.`
Include sender in message model 2021-03-24 03:54:00 +01:00			`// Adding "http://placeholder.io" in front of the endpoint is a workaround`
Add comment 2021-03-23 23:27:21 +01:00			`// for the fact that the URL crate doesn't accept relative URLs. There are`
			`// other (cleaner) ways to fix this but they tend to be much more complex.`
Fix query parameter handling 2021-03-23 23:12:54 +01:00			`let raw_uri = format!("http://placeholder.io/{}", rpc_call.endpoint.trim_start_matches("/"));`
			`let path: String = match raw_uri.parse::<http::Uri>() {`
			`Ok(uri) => uri.path().trim_start_matches("/").to_string(),`
Implement rough RPC layer 2021-03-12 05:11:12 +01:00			`Err(e) => {`
Fix query parameter handling 2021-03-23 23:12:54 +01:00			`println!("Couldn't parse URI from: {} due to error: {}.", &raw_uri, e);`
			`return Err(warp::reject::custom(Error::InvalidRpcCall));`
			`}`
			`};`
			`let query_params: HashMap<String, String> = match url::Url::parse(&raw_uri) {`
			`Ok(url) => url.query_pairs().into_owned().collect(),`
			`Err(e) => {`
			`println!("Couldn't parse URL from: {} due to error: {}.", &raw_uri, e);`
Minor refactoring 2021-03-12 08:55:37 +01:00			`return Err(warp::reject::custom(Error::InvalidRpcCall));`
Implement rough RPC layer 2021-03-12 05:11:12 +01:00			`}`
			`};`
Implement auth token verification 2021-03-17 23:35:51 +01:00			`// Get the auth token if possible`
			`let auth_token = get_auth_token(&rpc_call);`
Implement modes 2021-03-29 01:06:56 +02:00			`// Get a database connection pool`
			`let pool = get_pool_for_room(&rpc_call)?;`
Implement rough RPC layer 2021-03-12 05:11:12 +01:00			`// Switch on the HTTP method`
			`match rpc_call.method.as_ref() {`
Implement modes 2021-03-29 01:06:56 +02:00			`"GET" => return handle_get_request(rpc_call, &path, auth_token, query_params, &pool).await,`
			`"POST" => return handle_post_request(rpc_call, &path, auth_token, &pool).await,`
			`"DELETE" => return handle_delete_request(&path, auth_token, &pool).await,`
Implement rough RPC layer 2021-03-12 05:11:12 +01:00			`_ => {`
Minor refactoring 2021-03-12 08:55:37 +01:00			`println!("Ignoring RPC call with invalid or unused HTTP method: {}.", rpc_call.method);`
			`return Err(warp::reject::custom(Error::InvalidRpcCall));`
Implement rough RPC layer 2021-03-12 05:11:12 +01:00			`}`
			`}`
			`}`

Add .rustfmt.toml 2021-03-25 00:56:16 +01:00			`async fn handle_get_request(`
Add get all rooms endpoint 2021-03-25 04:05:46 +01:00			`rpc_call: RpcCall, path: &str, auth_token: Option<String>,`
Implement modes 2021-03-29 01:06:56 +02:00			`query_params: HashMap<String, String>, pool: &storage::DatabaseConnectionPool,`
Add .rustfmt.toml 2021-03-25 00:56:16 +01:00			`) -> Result<Response, Rejection> {`
Add get all rooms endpoint 2021-03-25 04:05:46 +01:00			`// Handle routes that don't require authorization first`
Require auth for all routes except auth_token_challenge 2021-03-25 00:17:47 +01:00			`if path == "auth_token_challenge" {`
Implement modes 2021-03-29 01:06:56 +02:00			`let challenge = handlers::get_auth_token_challenge(query_params, pool).await?;`
Require auth for all routes except auth_token_challenge 2021-03-25 00:17:47 +01:00			`#[derive(Debug, Deserialize, Serialize)]`
			`struct Response {`
			`status_code: u16,`
Don't use nightly 2021-03-25 01:38:06 +01:00			`challenge: models::Challenge,`
Require auth for all routes except auth_token_challenge 2021-03-25 00:17:47 +01:00			`}`
Add .rustfmt.toml 2021-03-25 00:56:16 +01:00			`let response = Response { status_code: StatusCode::OK.as_u16(), challenge };`
Require auth for all routes except auth_token_challenge 2021-03-25 00:17:47 +01:00			`return Ok(warp::reply::json(&response).into_response());`
Add get all rooms endpoint 2021-03-25 04:05:46 +01:00			`} else if path.starts_with("rooms") {`
Implement modes 2021-03-29 01:06:56 +02:00			`reject_if_file_server_mode(path)?;`
Add get all rooms endpoint 2021-03-25 04:05:46 +01:00			`let components: Vec<&str> = path.split("/").collect(); // Split on subsequent slashes`
			`if components.len() == 1 {`
			`return handlers::get_all_rooms().await;`
			`} else if components.len() == 2 {`
			`let room_id = components[1];`
			`return handlers::get_room(&room_id).await;`
			`} else {`
			`println!("Invalid endpoint: {}.", rpc_call.endpoint);`
			`return Err(warp::reject::custom(Error::InvalidRpcCall));`
			`}`
Require auth for all routes except auth_token_challenge 2021-03-25 00:17:47 +01:00			`}`
			`// Check that the auth token is present`
Distinguish between forbidden & unauthorized 2021-03-26 03:49:38 +01:00			`let auth_token = auth_token.ok_or(warp::reject::custom(Error::NoAuthToken))?;`
Require auth for all routes except auth_token_challenge 2021-03-25 00:17:47 +01:00			`// Switch on the path`
Fix endpoint string handling 2021-03-23 05:50:03 +01:00			`if path.starts_with("files") {`
			`let components: Vec<&str> = path.split("/").collect(); // Split on subsequent slashes`
Implement file storage & retrieval 2021-03-19 00:09:13 +01:00			`if components.len() != 2 {`
			`println!("Invalid endpoint: {}.", rpc_call.endpoint);`
			`return Err(warp::reject::custom(Error::InvalidRpcCall));`
			`}`
Use integer IDs for files 2021-03-26 05:24:02 +01:00			`let file_id: i64 = match components[1].parse() {`
			`Ok(file_id) => file_id,`
			`Err(_) => {`
			`println!("Invalid endpoint: {}.", rpc_call.endpoint);`
			`return Err(warp::reject::custom(Error::InvalidRpcCall));`
			`}`
			`};`
Implement modes 2021-03-29 01:06:56 +02:00			`return handlers::get_file(file_id, &auth_token, pool)`
Add .rustfmt.toml 2021-03-25 00:56:16 +01:00			`.await`
			`.map(\|json\| warp::reply::json(&json).into_response());`
Implement file storage & retrieval 2021-03-19 00:09:13 +01:00			`}`
Fix endpoint string handling 2021-03-23 05:50:03 +01:00			`match path {`
Implement modes 2021-03-29 01:06:56 +02:00			`"messages" => {`
			`reject_if_file_server_mode(path)?;`
			`return handlers::get_messages(query_params, &auth_token, pool).await;`
			`}`
Add .rustfmt.toml 2021-03-25 00:56:16 +01:00			`"deleted_messages" => {`
Implement modes 2021-03-29 01:06:56 +02:00			`reject_if_file_server_mode(path)?;`
			`return handlers::get_deleted_messages(query_params, &auth_token, pool).await;`
			`}`
			`"moderators" => {`
			`reject_if_file_server_mode(path)?;`
			`return handlers::get_moderators(&auth_token, pool).await;`
			`}`
			`"block_list" => {`
			`reject_if_file_server_mode(path)?;`
			`return handlers::get_banned_public_keys(&auth_token, pool).await;`
			`}`
			`"member_count" => {`
			`reject_if_file_server_mode(path)?;`
			`return handlers::get_member_count(&auth_token, pool).await;`
Add .rustfmt.toml 2021-03-25 00:56:16 +01:00			`}`
Fix endpoint string handling 2021-03-23 05:50:03 +01:00			`"auth_token_challenge" => {`
Implement modes 2021-03-29 01:06:56 +02:00			`let challenge = handlers::get_auth_token_challenge(query_params, pool).await?;`
Always include status code in response 2021-03-24 00:02:53 +01:00			`#[derive(Debug, Deserialize, Serialize)]`
			`struct Response {`
			`status_code: u16,`
Don't use nightly 2021-03-25 01:38:06 +01:00			`challenge: models::Challenge,`
Always include status code in response 2021-03-24 00:02:53 +01:00			`}`
Add .rustfmt.toml 2021-03-25 00:56:16 +01:00			`let response = Response { status_code: StatusCode::OK.as_u16(), challenge };`
Always include status code in response 2021-03-24 00:02:53 +01:00			`return Ok(warp::reply::json(&response).into_response());`
Add .rustfmt.toml 2021-03-25 00:56:16 +01:00			`}`
Implement rough RPC layer 2021-03-12 05:11:12 +01:00			`_ => {`
Minor refactoring 2021-03-12 08:55:37 +01:00			`println!("Ignoring RPC call with invalid or unused endpoint: {}.", rpc_call.endpoint);`
Add .rustfmt.toml 2021-03-25 00:56:16 +01:00			`return Err(warp::reject::custom(Error::InvalidRpcCall));`
Implement rough RPC layer 2021-03-12 05:11:12 +01:00			`}`
			`}`
			`}`

Add .rustfmt.toml 2021-03-25 00:56:16 +01:00			`async fn handle_post_request(`
			`rpc_call: RpcCall, path: &str, auth_token: Option<String>,`
Don't use nightly 2021-03-25 01:38:06 +01:00			`pool: &storage::DatabaseConnectionPool,`
Add .rustfmt.toml 2021-03-25 00:56:16 +01:00			`) -> Result<Response, Rejection> {`
Require auth for all routes except auth_token_challenge 2021-03-25 00:17:47 +01:00			`// Check that the auth token is present`
Distinguish between forbidden & unauthorized 2021-03-26 03:49:38 +01:00			`let auth_token = auth_token.ok_or(warp::reject::custom(Error::NoAuthToken))?;`
Require auth for all routes except auth_token_challenge 2021-03-25 00:17:47 +01:00			`// Switch on the path`
Fix endpoint string handling 2021-03-23 05:50:03 +01:00			`match path {`
			`"messages" => {`
Implement modes 2021-03-29 01:06:56 +02:00			`reject_if_file_server_mode(path)?;`
Implement rough RPC layer 2021-03-12 05:11:12 +01:00			`let message = match serde_json::from_str(&rpc_call.body) {`
Hook up get challenge endpoint 2021-03-17 01:51:11 +01:00			`Ok(message) => message,`
Implement rough RPC layer 2021-03-12 05:11:12 +01:00			`Err(e) => {`
Minor refactoring 2021-03-12 08:55:37 +01:00			`println!("Couldn't parse message from: {} due to error: {}.", rpc_call.body, e);`
			`return Err(warp::reject::custom(Error::InvalidRpcCall));`
Implement rough RPC layer 2021-03-12 05:11:12 +01:00			`}`
			`};`
Add .rustfmt.toml 2021-03-25 00:56:16 +01:00			`return handlers::insert_message(message, &auth_token, pool).await;`
			`}`
Fix endpoint string handling 2021-03-23 05:50:03 +01:00			`"block_list" => {`
Implement modes 2021-03-29 01:06:56 +02:00			`reject_if_file_server_mode(path)?;`
Always respond with JSON 2021-03-19 06:44:07 +01:00			`#[derive(Debug, Deserialize)]`
Add .rustfmt.toml 2021-03-25 00:56:16 +01:00			`struct JSON {`
Don't use nightly 2021-03-25 01:38:06 +01:00			`public_key: String,`
Add .rustfmt.toml 2021-03-25 00:56:16 +01:00			`}`
Always respond with JSON 2021-03-19 06:44:07 +01:00			`let json: JSON = match serde_json::from_str(&rpc_call.body) {`
			`Ok(message) => message,`
			`Err(e) => {`
			`println!("Couldn't parse JSON from: {} due to error: {}.", rpc_call.body, e);`
			`return Err(warp::reject::custom(Error::InvalidRpcCall));`
			`}`
			`};`
Require auth for all routes except auth_token_challenge 2021-03-25 00:17:47 +01:00			`return handlers::ban(&json.public_key, &auth_token, pool).await;`
Add .rustfmt.toml 2021-03-25 00:56:16 +01:00			`}`
Fix endpoint string handling 2021-03-23 05:50:03 +01:00			`"claim_auth_token" => {`
Always respond with JSON 2021-03-19 06:44:07 +01:00			`#[derive(Debug, Deserialize)]`
Add .rustfmt.toml 2021-03-25 00:56:16 +01:00			`struct JSON {`
Don't use nightly 2021-03-25 01:38:06 +01:00			`public_key: String,`
Add .rustfmt.toml 2021-03-25 00:56:16 +01:00			`}`
Always respond with JSON 2021-03-19 06:44:07 +01:00			`let json: JSON = match serde_json::from_str(&rpc_call.body) {`
			`Ok(message) => message,`
			`Err(e) => {`
			`println!("Couldn't parse JSON from: {} due to error: {}.", rpc_call.body, e);`
			`return Err(warp::reject::custom(Error::InvalidRpcCall));`
			`}`
			`};`
Require auth for all routes except auth_token_challenge 2021-03-25 00:17:47 +01:00			`return handlers::claim_auth_token(&json.public_key, &auth_token, pool).await;`
Add .rustfmt.toml 2021-03-25 00:56:16 +01:00			`}`
Fix endpoint string handling 2021-03-23 05:50:03 +01:00			`"files" => {`
Always respond with JSON 2021-03-19 06:44:07 +01:00			`#[derive(Debug, Deserialize)]`
Add .rustfmt.toml 2021-03-25 00:56:16 +01:00			`struct JSON {`
Don't use nightly 2021-03-25 01:38:06 +01:00			`file: String,`
Add .rustfmt.toml 2021-03-25 00:56:16 +01:00			`}`
Always respond with JSON 2021-03-19 06:44:07 +01:00			`let json: JSON = match serde_json::from_str(&rpc_call.body) {`
			`Ok(message) => message,`
			`Err(e) => {`
			`println!("Couldn't parse JSON from: {} due to error: {}.", rpc_call.body, e);`
			`return Err(warp::reject::custom(Error::InvalidRpcCall));`
			`}`
			`};`
Require auth for all routes except auth_token_challenge 2021-03-25 00:17:47 +01:00			`return handlers::store_file(&json.file, &auth_token, pool).await;`
Add .rustfmt.toml 2021-03-25 00:56:16 +01:00			`}`
Implement rough RPC layer 2021-03-12 05:11:12 +01:00			`_ => {`
Implement modes 2021-03-29 01:06:56 +02:00			`println!("Ignoring RPC call with invalid or unused endpoint: {}.", path);`
Add .rustfmt.toml 2021-03-25 00:56:16 +01:00			`return Err(warp::reject::custom(Error::InvalidRpcCall));`
Implement rough RPC layer 2021-03-12 05:11:12 +01:00			`}`
			`}`
			`}`

Add .rustfmt.toml 2021-03-25 00:56:16 +01:00			`async fn handle_delete_request(`
Implement modes 2021-03-29 01:06:56 +02:00			`path: &str, auth_token: Option<String>, pool: &storage::DatabaseConnectionPool,`
Add .rustfmt.toml 2021-03-25 00:56:16 +01:00			`) -> Result<Response, Rejection> {`
Require auth for all routes except auth_token_challenge 2021-03-25 00:17:47 +01:00			`// Check that the auth token is present`
Distinguish between forbidden & unauthorized 2021-03-26 03:49:38 +01:00			`let auth_token = auth_token.ok_or(warp::reject::custom(Error::NoAuthToken))?;`
Implement rough RPC layer 2021-03-12 05:11:12 +01:00			`// DELETE /messages/:server_id`
Fix endpoint string handling 2021-03-23 05:50:03 +01:00			`if path.starts_with("messages") {`
Implement modes 2021-03-29 01:06:56 +02:00			`reject_if_file_server_mode(path)?;`
Fix endpoint string handling 2021-03-23 05:50:03 +01:00			`let components: Vec<&str> = path.split("/").collect(); // Split on subsequent slashes`
Implement rough RPC layer 2021-03-12 05:11:12 +01:00			`if components.len() != 2 {`
Implement modes 2021-03-29 01:06:56 +02:00			`println!("Invalid endpoint: {}.", path);`
Minor refactoring 2021-03-12 08:55:37 +01:00			`return Err(warp::reject::custom(Error::InvalidRpcCall));`
Implement rough RPC layer 2021-03-12 05:11:12 +01:00			`}`
			`let server_id: i64 = match components[1].parse() {`
			`Ok(server_id) => server_id,`
Debug 2021-03-12 05:46:06 +01:00			`Err(_) => {`
Implement modes 2021-03-29 01:06:56 +02:00			`println!("Invalid endpoint: {}.", path);`
Minor refactoring 2021-03-12 08:55:37 +01:00			`return Err(warp::reject::custom(Error::InvalidRpcCall));`
Implement rough RPC layer 2021-03-12 05:11:12 +01:00			`}`
			`};`
Require auth for all routes except auth_token_challenge 2021-03-25 00:17:47 +01:00			`return handlers::delete_message(server_id, &auth_token, pool).await;`
Implement rough RPC layer 2021-03-12 05:11:12 +01:00			`}`
			`// DELETE /block_list/:public_key`
Fix endpoint string handling 2021-03-23 05:50:03 +01:00			`if path.starts_with("block_list") {`
Implement modes 2021-03-29 01:06:56 +02:00			`reject_if_file_server_mode(path)?;`
Fix endpoint string handling 2021-03-23 05:50:03 +01:00			`let components: Vec<&str> = path.split("/").collect(); // Split on subsequent slashes`
Implement rough RPC layer 2021-03-12 05:11:12 +01:00			`if components.len() != 2 {`
Implement modes 2021-03-29 01:06:56 +02:00			`println!("Invalid endpoint: {}.", path);`
Minor refactoring 2021-03-12 08:55:37 +01:00			`return Err(warp::reject::custom(Error::InvalidRpcCall));`
Implement rough RPC layer 2021-03-12 05:11:12 +01:00			`}`
			`let public_key = components[1].to_string();`
Require auth for all routes except auth_token_challenge 2021-03-25 00:17:47 +01:00			`return handlers::unban(&public_key, &auth_token, pool).await;`
Implement rough RPC layer 2021-03-12 05:11:12 +01:00			`}`
Hook up remaining routes 2021-03-18 00:29:59 +01:00			`// DELETE /auth_token`
Fix endpoint string handling 2021-03-23 05:50:03 +01:00			`if path == "auth_token" {`
Require auth for all routes except auth_token_challenge 2021-03-25 00:17:47 +01:00			`return handlers::delete_auth_token(&auth_token, pool).await;`
Hook up remaining routes 2021-03-18 00:29:59 +01:00			`}`
Implement rough RPC layer 2021-03-12 05:11:12 +01:00			`// Unrecognized endpoint`
Implement modes 2021-03-29 01:06:56 +02:00			`println!("Ignoring RPC call with invalid or unused endpoint: {}.", path);`
Minor refactoring 2021-03-12 08:55:37 +01:00			`return Err(warp::reject::custom(Error::InvalidRpcCall));`
Implement rough RPC layer 2021-03-12 05:11:12 +01:00			`}`
Add token extraction utility 2021-03-17 05:55:04 +01:00
			`// Utilities`
Minor refactoring 2021-03-18 03:21:10 +01:00
Fix database pool handling 2021-03-25 04:11:45 +01:00			`fn get_pool_for_room(rpc_call: &RpcCall) -> Result<storage::DatabaseConnectionPool, Rejection> {`
Implement modes 2021-03-29 01:06:56 +02:00			`let room_id: String;`
			`match MODE {`
Update comment 2021-03-29 01:09:34 +02:00			`// In file server mode we don't have a concept of rooms, but for convenience (i.e. so`
			`// we can use the same database structure) we just always use the main room`
Implement modes 2021-03-29 01:06:56 +02:00			`Mode::FileServer => room_id = "main".to_string(),`
			`Mode::OpenGroupServer => {`
			`room_id = match get_room_id(&rpc_call) {`
			`Some(room_id) => room_id,`
			`None => {`
			`println!("Missing room ID.");`
			`return Err(warp::reject::custom(Error::InvalidRpcCall));`
			`}`
			`};`
Fix database pool handling 2021-03-25 04:11:45 +01:00			`}`
Implement modes 2021-03-29 01:06:56 +02:00			`}`
Fix database pool handling 2021-03-25 04:11:45 +01:00			`return Ok(storage::pool_by_room_id(&room_id));`
			`}`

Implement auth token verification 2021-03-17 23:35:51 +01:00			`fn get_auth_token(rpc_call: &RpcCall) -> Option<String> {`
Add .rustfmt.toml 2021-03-25 00:56:16 +01:00			`if rpc_call.headers.is_empty() {`
			`return None;`
			`}`
Fix RPC call parsing 2021-03-23 01:13:32 +01:00			`return rpc_call.headers.get("Authorization").map(\|s\| s.to_string());`
Get room from RPC call 2021-03-18 05:53:24 +01:00			`}`

Fix room ID type 2021-03-23 03:21:28 +01:00			`fn get_room_id(rpc_call: &RpcCall) -> Option<String> {`
Add .rustfmt.toml 2021-03-25 00:56:16 +01:00			`if rpc_call.headers.is_empty() {`
			`return None;`
			`}`
Fix room ID type 2021-03-23 03:21:28 +01:00			`return rpc_call.headers.get("Room").map(\|s\| s.to_string());`
Add .rustfmt.toml 2021-03-25 00:56:16 +01:00			`}`
Implement modes 2021-03-29 01:06:56 +02:00
			`fn reject_if_file_server_mode(path: &str) -> Result<(), Rejection> {`
			`match MODE {`
			`Mode::FileServer => {`
			`println!("Ignoring RPC call with invalid or unused endpoint: {}.", path);`
			`return Err(warp::reject::custom(Error::InvalidRpcCall));`
			`}`
			`Mode::OpenGroupServer => return Ok(()),`
			`}`
			`}`