wip auth admin

48ce94c8 · Pierre Jarriges · 0a94dcf7 · 48ce94c8
Commit 48ce94c8 authored 2 years ago by Pierre Jarriges
--- a/src/middleware/authentication.rs
+++ b/src/middleware/authentication.rs
@@ -28,25 +28,50 @@ pub struct AuthenticatedMiddleware<S> {
    service: S,
 }

+#[derive(serde::Deserialize)]
+struct Credentials {
+    id: String,
+    password: String,
+}
+
+async fn auth(req: &mut ServiceRequest) -> Result<(), Box<dyn actix_web::ResponseError>> {
+    let cookie = req.cookie("auth");
+    match cookie {
+        Some(cookie) => Ok(()),
+        None => match req.extract::<actix_web::web::Form<Credentials>>().await {
+            Ok(credentials) => Ok(()),
+            Err(_) => Err(Box::new(actix_web::ResponseError::status_code(
+                actix_web::http::StatusCode::UNAUTHORIZED,
+            ))),
+        },
+    }
+}
+
 impl<S, B> Service<ServiceRequest> for AuthenticatedMiddleware<S>
 where
    S: Service<ServiceRequest, Response = ServiceResponse<B>, Error = Error>,
    S::Future: 'static,
    B: 'static,
 {
-    type Response = ServiceResponse<B>;
+    type Response = ServiceResponse<actix_web::body::EitherBody<B>>;
    type Error = Error;
    type Future = LocalBoxFuture<'static, Result<Self::Response, Self::Error>>;

    forward_ready!(service);

    fn call(&self, req: ServiceRequest) -> Self::Future {
-        println!("AUTH MW");
-        let fut = self.service.call(req);
        Box::pin(async move {
-            let res = fut.await?;
-            println!("RESP");
-            Ok(res)
+            let credentials = req.extract::<actix_web::web::Form<Credentials>>().await;
+            let authenticated = auth(&mut req).await;
+
+            if let Err(msg) = authenticated {
+                return Ok(req.error_response(Error::from(msg)).map_into_right_body());
+            }
+
+            self.service
+                .call(req)
+                .await
+                .map(|res| res.map_into_left_body())
        })
    }
 }