will stash wrong entities
This commit is contained in:
parent
dc11cc89f7
commit
62f89a127d
33
entities/src/admin.rs
Normal file
33
entities/src/admin.rs
Normal file
@ -0,0 +1,33 @@
|
||||
//! `SeaORM` Entity. Generated by sea-orm-codegen 0.10.6
|
||||
|
||||
use sea_orm::entity::prelude::*;
|
||||
use serde::{Deserialize, Serialize};
|
||||
|
||||
#[derive(Clone, Debug, PartialEq, DeriveEntityModel, Eq, Serialize, Deserialize)]
|
||||
#[sea_orm(table_name = "admin")]
|
||||
pub struct Model {
|
||||
#[sea_orm(primary_key)]
|
||||
pub id: u64,
|
||||
#[sea_orm(unique)]
|
||||
pub user_id: u64,
|
||||
}
|
||||
|
||||
#[derive(Copy, Clone, Debug, EnumIter, DeriveRelation)]
|
||||
pub enum Relation {
|
||||
#[sea_orm(
|
||||
belongs_to = "super::user::Entity",
|
||||
from = "Column::UserId",
|
||||
to = "super::user::Column::Id",
|
||||
on_update = "NoAction",
|
||||
on_delete = "NoAction"
|
||||
)]
|
||||
User,
|
||||
}
|
||||
|
||||
impl Related<super::user::Entity> for Entity {
|
||||
fn to() -> RelationDef {
|
||||
Relation::User.def()
|
||||
}
|
||||
}
|
||||
|
||||
impl ActiveModelBehavior for ActiveModel {}
|
@ -1,6 +1,5 @@
|
||||
//! `SeaORM` Entity. Generated by sea-orm-codegen 0.10.5
|
||||
//! `SeaORM` Entity. Generated by sea-orm-codegen 0.10.6
|
||||
|
||||
use crate::serialization;
|
||||
use sea_orm::entity::prelude::*;
|
||||
use serde::{Deserialize, Serialize};
|
||||
|
||||
@ -10,8 +9,7 @@ pub struct Model {
|
||||
#[sea_orm(primary_key)]
|
||||
pub id: u64,
|
||||
#[sea_orm(unique)]
|
||||
#[serde(serialize_with = "serialization::uuid_as_ulid")]
|
||||
pub bearer_token: Uuid,
|
||||
pub bearer_token: Vec<u8>,
|
||||
pub user_id: u64,
|
||||
pub expires_at: DateTimeUtc,
|
||||
}
|
||||
|
@ -1,7 +1,8 @@
|
||||
//! `SeaORM` Entity. Generated by sea-orm-codegen 0.10.5
|
||||
//! `SeaORM` Entity. Generated by sea-orm-codegen 0.10.6
|
||||
|
||||
pub mod prelude;
|
||||
|
||||
pub mod admin;
|
||||
pub mod login;
|
||||
pub mod pending_login;
|
||||
pub mod revert_log;
|
||||
@ -9,6 +10,5 @@ pub mod rpc_accounting;
|
||||
pub mod rpc_key;
|
||||
pub mod sea_orm_active_enums;
|
||||
pub mod secondary_user;
|
||||
pub mod serialization;
|
||||
pub mod user;
|
||||
pub mod user_tier;
|
||||
|
@ -12,6 +12,7 @@ mod m20221101_222349_archive_request;
|
||||
mod m20221108_200345_save_anon_stats;
|
||||
mod m20221211_124002_request_method_privacy;
|
||||
mod m20221213_134158_move_login_into_database;
|
||||
mod m20230117_191358_admin_table;
|
||||
|
||||
pub struct Migrator;
|
||||
|
||||
@ -31,6 +32,7 @@ impl MigratorTrait for Migrator {
|
||||
Box::new(m20221108_200345_save_anon_stats::Migration),
|
||||
Box::new(m20221211_124002_request_method_privacy::Migration),
|
||||
Box::new(m20221213_134158_move_login_into_database::Migration),
|
||||
Box::new(m20230117_191358_admin_table::Migration),
|
||||
]
|
||||
}
|
||||
}
|
||||
|
58
migration/src/m20230117_191358_admin_table.rs
Normal file
58
migration/src/m20230117_191358_admin_table.rs
Normal file
@ -0,0 +1,58 @@
|
||||
use sea_orm_migration::prelude::*;
|
||||
|
||||
#[derive(DeriveMigrationName)]
|
||||
pub struct Migration;
|
||||
|
||||
#[async_trait::async_trait]
|
||||
impl MigrationTrait for Migration {
|
||||
async fn up(&self, manager: &SchemaManager) -> Result<(), DbErr> {
|
||||
// Replace the sample below with your own migration scripts
|
||||
manager
|
||||
.create_table(
|
||||
Table::create()
|
||||
.table(Admin::Table)
|
||||
.col(
|
||||
ColumnDef::new(Admin::Id)
|
||||
.big_unsigned()
|
||||
.not_null()
|
||||
.auto_increment()
|
||||
.primary_key(),
|
||||
)
|
||||
.col(
|
||||
ColumnDef::new(Admin::UserId)
|
||||
.big_unsigned()
|
||||
.unique_key()
|
||||
.not_null()
|
||||
)
|
||||
.foreign_key(
|
||||
ForeignKey::create()
|
||||
.name("fk-admin-user_id")
|
||||
.from(Admin::Table, Admin::UserId)
|
||||
.to(User::Table, User::Id),
|
||||
)
|
||||
.to_owned(),
|
||||
)
|
||||
.await
|
||||
}
|
||||
|
||||
async fn down(&self, manager: &SchemaManager) -> Result<(), DbErr> {
|
||||
// Replace the sample below with your own migration scripts
|
||||
manager
|
||||
.drop_table(Table::drop().table(Admin::Table).to_owned())
|
||||
.await
|
||||
}
|
||||
}
|
||||
|
||||
/// Learn more at https://docs.rs/sea-query#iden
|
||||
#[derive(Iden)]
|
||||
enum User {
|
||||
Table,
|
||||
Id
|
||||
}
|
||||
|
||||
#[derive(Iden)]
|
||||
enum Admin {
|
||||
Table,
|
||||
Id,
|
||||
UserId,
|
||||
}
|
124
web3_proxy/src/admin_queries.rs
Normal file
124
web3_proxy/src/admin_queries.rs
Normal file
@ -0,0 +1,124 @@
|
||||
use crate::app::Web3ProxyApp;
|
||||
use crate::frontend::errors::FrontendErrorResponse;
|
||||
use crate::user_queries::get_user_id_from_params;
|
||||
use anyhow::Context;
|
||||
use axum::{
|
||||
Json,
|
||||
headers::{authorization::Bearer, Authorization},
|
||||
TypedHeader,
|
||||
};
|
||||
use axum::response::{IntoResponse, Response};
|
||||
use entities::{admin, user, user_tier};
|
||||
use ethers::prelude::Address;
|
||||
use hashbrown::HashMap;
|
||||
use http::StatusCode;
|
||||
use migration::sea_orm::{self, IntoActiveModel};
|
||||
use log::info;
|
||||
|
||||
|
||||
pub async fn query_admin_modify_usertier<'a>(
|
||||
app: &'a Web3ProxyApp,
|
||||
bearer: Option<TypedHeader<Authorization<Bearer>>>,
|
||||
params: &'a HashMap<String, String>
|
||||
) -> Result<Response, FrontendErrorResponse> {
|
||||
|
||||
// Quickly return if any of the input tokens are bad
|
||||
let user_address: Vec<u8> = params
|
||||
.get("user_address")
|
||||
.ok_or_else(||
|
||||
FrontendErrorResponse::StatusCode(
|
||||
StatusCode::BAD_REQUEST,
|
||||
"Unable to find user_address key in request".to_string(),
|
||||
None,
|
||||
)
|
||||
)?
|
||||
.parse::<Address>()
|
||||
.map_err(|err| {
|
||||
FrontendErrorResponse::StatusCode(
|
||||
StatusCode::BAD_REQUEST,
|
||||
"Unable to parse user_address as an Address".to_string(),
|
||||
Some(err.into()),
|
||||
)
|
||||
})?
|
||||
.to_fixed_bytes().into();
|
||||
let user_tier_title = params
|
||||
.get("user_tier_title")
|
||||
.ok_or_else(|| FrontendErrorResponse::StatusCode(
|
||||
StatusCode::BAD_REQUEST,
|
||||
"Unable to get the user_tier_title key from the request".to_string(),
|
||||
None,
|
||||
))?;
|
||||
|
||||
// Prepare output body
|
||||
let mut response_body = HashMap::new();
|
||||
response_body.insert(
|
||||
"user_address",
|
||||
serde_json::Value::String(user_address.into()),
|
||||
);
|
||||
response_body.insert(
|
||||
"user_tier_title",
|
||||
serde_json::Value::String(user_tier_title.into()),
|
||||
);
|
||||
|
||||
// Establish connections
|
||||
let db_conn = app.db_conn().context("query_admin_modify_user needs a db")?;
|
||||
let db_replica = app
|
||||
.db_replica()
|
||||
.context("query_user_stats needs a db replica")?;
|
||||
let mut redis_conn = app
|
||||
.redis_conn()
|
||||
.await
|
||||
.context("query_admin_modify_user had a redis connection error")?
|
||||
.context("query_admin_modify_user needs a redis")?;
|
||||
|
||||
// Try to get the user who is calling from redis (if existent) / else from the database
|
||||
// TODO: Make a single query, where you retrieve the user, and directly from it the secondary user (otherwise we do two jumpy, which is unnecessary)
|
||||
// get the user id first. if it is 0, we should use a cache on the app
|
||||
let caller_id = get_user_id_from_params(&mut redis_conn, &db_conn, &db_replica, bearer, ¶ms).await?;
|
||||
|
||||
// Check if the caller is an admin (i.e. if he is in an admin table)
|
||||
let admin: admin::Model = admin::Entity::find()
|
||||
.filter(admin::Entity::UserId.eq(caller_id))
|
||||
.one(&db_replica)
|
||||
.await?
|
||||
.context("This user is not registered as an admin")?;
|
||||
|
||||
// If we are here, that means an admin was found, and we can safely proceed
|
||||
|
||||
// Fetch the admin, and the user
|
||||
let user: user::Model = user::Entity::find()
|
||||
.filter(user::Column::Address.eq(user_address))
|
||||
.one(&db_replica)
|
||||
.await?
|
||||
.context("No user with this id found as the change")?;
|
||||
// Return early if the target user_tier_id is the same as the original user_tier_id
|
||||
response_body.insert(
|
||||
"user_tier_title",
|
||||
serde_json::Value::String(user.user_tier_id.into()),
|
||||
);
|
||||
|
||||
// Now we can modify the user's tier
|
||||
let new_user_tier: user_tier::Model = user_tier::Entity::find()
|
||||
.filter(user_tier::Column::Title.eq(user_tier_title.clone()))
|
||||
.one(&db_replica)
|
||||
.await?
|
||||
.context("No user tier found with that name")?;
|
||||
|
||||
if user.user_tier_id == new_user_tier.id {
|
||||
info!("user already has that tier");
|
||||
} else {
|
||||
let mut user = user.into_active_model();
|
||||
|
||||
user.user_tier_id = sea_orm::Set(new_user_tier.id);
|
||||
|
||||
user.save(&db_conn).await?;
|
||||
|
||||
info!("user's tier changed");
|
||||
}
|
||||
|
||||
// Finally, remove the user from redis
|
||||
// TODO: Also remove the user from the redis
|
||||
|
||||
Ok(Json(&response_body).into_response())
|
||||
|
||||
}
|
@ -85,7 +85,7 @@ pub async fn serve(port: u16, proxy_app: Arc<Web3ProxyApp>) -> anyhow::Result<()
|
||||
get(users::user_stats_aggregated_get),
|
||||
)
|
||||
.route("/user/stats/detailed", get(users::user_stats_detailed_get))
|
||||
.route("/user/modify_role", get(users::admin_change_user_roles))
|
||||
.route("/admin/modify_role", get(users::admin_change_user_roles))
|
||||
.route("/user/logout", post(users::user_logout_post))
|
||||
.route("/status", get(status::status))
|
||||
// layers are ordered bottom up
|
||||
|
@ -41,6 +41,7 @@ use std::str::FromStr;
|
||||
use std::sync::Arc;
|
||||
use time::{Duration, OffsetDateTime};
|
||||
use ulid::Ulid;
|
||||
use crate::admin_queries::query_admin_modify_usertier;
|
||||
use crate::frontend::errors::FrontendErrorResponse;
|
||||
|
||||
/// `GET /user/login/:user_address` or `GET /user/login/:user_address/:message_eip` -- Start the "Sign In with Ethereum" (siwe) login flow.
|
||||
@ -871,119 +872,7 @@ pub async fn admin_change_user_roles(
|
||||
bearer: Option<TypedHeader<Authorization<Bearer>>>,
|
||||
Query(params): Query<HashMap<String, String>>,
|
||||
) -> FrontendResult {
|
||||
let response = query_admin_modify_usertier(&app, bearer, ¶ms).await?;
|
||||
|
||||
// Make sure that the bearer exists, and has admin rights ...
|
||||
let user_address: Vec<u8> = params
|
||||
.get("user_address")
|
||||
.ok_or_else(||
|
||||
FrontendErrorResponse::StatusCode(
|
||||
StatusCode::BAD_REQUEST,
|
||||
"Unable to find user_address key in request".to_string(),
|
||||
None,
|
||||
)
|
||||
)?
|
||||
.parse::<Address>()
|
||||
.map_err(|err| {
|
||||
FrontendErrorResponse::StatusCode(
|
||||
StatusCode::BAD_REQUEST,
|
||||
"Unable to parse user_address as an Address".to_string(),
|
||||
Some(err.into()),
|
||||
)
|
||||
})?
|
||||
.to_fixed_bytes().into();
|
||||
let user_tier_title = params
|
||||
.get("user_tier_title")
|
||||
.ok_or_else(|| FrontendErrorResponse::StatusCode(
|
||||
StatusCode::BAD_REQUEST,
|
||||
"Unable to get the user_tier_title key from the request".to_string(),
|
||||
None,
|
||||
))?;
|
||||
|
||||
// Create database connections and all that
|
||||
let db_conn = app.db_conn().context("admin_change_user_roles needs a db")?;
|
||||
let db_replica = app
|
||||
.db_replica()
|
||||
.context("admin_change_user_roles needs a db replica")?;
|
||||
let mut redis_conn = app
|
||||
.redis_conn()
|
||||
.await
|
||||
.context("admin_change_user_roles had a redis connection error")?
|
||||
.context("admin_change_user_roles needs a redis")?;
|
||||
|
||||
// TODO: Make a single query, where you retrieve the user, and directly from it the secondary user (otherwise we do two jumpy, which is unnecessary)
|
||||
// get the user id first. if it is 0, we should use a cache on the app
|
||||
let user_id = get_user_id_from_params(&mut redis_conn, &db_conn, &db_replica, bearer, ¶ms).await?;
|
||||
|
||||
let mut response_body = HashMap::new();
|
||||
response_body.insert(
|
||||
"user_id",
|
||||
serde_json::Value::Number(user_id.into()),
|
||||
);
|
||||
|
||||
// Get both the user and user role
|
||||
let user: user::Model = user::Entity::find_by_id(user_id)
|
||||
.one(&db_conn)
|
||||
.await?
|
||||
.context("No user with this id found!")?;
|
||||
// TODO: Let's connect the string, and find the previous string of the user id ... (this might be ok for now too thought)
|
||||
response_body.insert(
|
||||
"previous_tier",
|
||||
serde_json::Value::Number(user.user_tier_id.into()),
|
||||
);
|
||||
|
||||
// Modify the user-role ...
|
||||
// Check if this use has admin privileges ...
|
||||
let user_role: secondary_user::Model = secondary_user::Entity::find()
|
||||
.filter(secondary_user::Column::UserId.eq(user_id))
|
||||
.one(&db_conn)
|
||||
.await?
|
||||
.context("No user tier found with that name")?;
|
||||
println!("User role is: {:?}", user_role);
|
||||
|
||||
// Return error if the user is not an admin or a user
|
||||
match user_role.role {
|
||||
Role::Owner | Role::Admin => {
|
||||
// Change the user tier, we can copy a bunch of the functionality from the user-tier address
|
||||
|
||||
// Check if all the required parameters are included in the request, if not, return an error
|
||||
let user = user::Entity::find()
|
||||
.filter(user::Column::Address.eq(user_address))
|
||||
.one(&db_conn)
|
||||
.await?
|
||||
.context("No user found with that key")?;
|
||||
|
||||
// TODO: don't serialize the rpc key
|
||||
debug!("user: {:#?}", user);
|
||||
|
||||
let user_tier = user_tier::Entity::find()
|
||||
.filter(user_tier::Column::Title.eq(user_tier_title.clone()))
|
||||
.one(&db_conn)
|
||||
.await?
|
||||
.context("No user tier found with that name")?;
|
||||
debug!("user_tier: {:#?}", user_tier);
|
||||
|
||||
if user.user_tier_id == user_tier.id {
|
||||
info!("user already has that tier");
|
||||
} else {
|
||||
let mut user = user.into_active_model();
|
||||
|
||||
user.user_tier_id = sea_orm::Set(user_tier.id);
|
||||
|
||||
user.save(&db_conn).await?;
|
||||
|
||||
info!("user's tier changed");
|
||||
}
|
||||
|
||||
}
|
||||
Role::Collaborator => {
|
||||
return Err(anyhow::anyhow!("you do not have admin rights!").into());
|
||||
}
|
||||
};
|
||||
|
||||
response_body.insert(
|
||||
"user_id",
|
||||
serde_json::Value::Number(user_id.into()),
|
||||
);
|
||||
let mut response = Json(&response_body).into_response();
|
||||
Ok(response)
|
||||
response
|
||||
}
|
||||
|
@ -1,5 +1,6 @@
|
||||
pub mod app;
|
||||
pub mod app_stats;
|
||||
pub mod admin_queries;
|
||||
pub mod block_number;
|
||||
pub mod config;
|
||||
pub mod frontend;
|
||||
|
@ -9,6 +9,7 @@ use axum::{
|
||||
TypedHeader,
|
||||
};
|
||||
use chrono::{NaiveDateTime, Utc};
|
||||
use ethers::prelude::Address;
|
||||
use entities::{login, rpc_accounting, rpc_key};
|
||||
use hashbrown::HashMap;
|
||||
use http::StatusCode;
|
||||
|
Loading…
Reference in New Issue
Block a user