use crate::db::get_client; use crate::errors::AppError; use serde::{Deserialize, Serialize}; use validator::Validate; use sqlx::Row; /// User model #[derive(Deserialize, Serialize, Validate)] pub struct User { id: i32, #[validate(length(min = 1, message = "Can not be empty"))] email: String, #[validate(length(min = 8, message = "Must be min 8 chars length"))] password: String, is_staff: Option, } /// Response used to print a user (or a users list) #[derive(Deserialize, Serialize)] pub struct UserList { // It is public because it used by `Claims` creation pub id: i32, email: String, is_staff: Option, } /// Payload used for user creation #[derive(Deserialize)] pub struct UserCreate { pub email: String, pub password: String, } impl User { /// By default an user has id = 0. It is not created yet pub fn new(email: String, password: String) -> Self { Self { id: 0, email, password, is_staff: Some(false), } } /// Create a new user from the model using a SHA256 crypted password pub async fn create(user: User) -> Result { let pool = unsafe { get_client() }; user.validate() .map_err(|error| AppError::BadRequest(error.to_string()))?; let crypted_password = sha256::digest(user.password); let rec = sqlx::query_as!( UserList, r#" INSERT INTO users (email, password) VALUES ( $1, $2 ) RETURNING id, email, is_staff "#, user.email, crypted_password ) .fetch_one(pool) .await?; Ok(rec) } /// Find a user using the model. It used for login pub async fn find(user: User) -> Result { let pool = unsafe { get_client() }; let crypted_password = sha256::digest(user.password); let rec = sqlx::query_as!( UserList, r#" SELECT id, email, is_staff FROM "users" WHERE email = $1 AND password = $2 "#, user.email, crypted_password ) .fetch_one(pool) .await?; Ok(rec) } /// Returns the user with id = `user_id` pub async fn find_by_id(user_id: i32) -> Result { let pool = unsafe { get_client() }; let rec = sqlx::query_as!( UserList, r#" SELECT id, email, is_staff FROM "users" WHERE id = $1 "#, user_id ) .fetch_one(pool) .await?; Ok(rec) } /// List all users pub async fn list() -> Result, AppError> { let pool = unsafe { get_client() }; let rows = sqlx::query_as!(UserList, r#"SELECT id, email, is_staff FROM users"#) .fetch_all(pool) .await?; Ok(rows) } /// Prevent the "uniquess" Postgres fields check. Check if email has been taken pub async fn email_has_taken(email: &String) -> Result { let pool = unsafe { get_client() }; let cursor = sqlx::query( r#" SELECT COUNT(id) as count FROM users WHERE email = $1 "#, ) .bind(email) .fetch_one(pool) .await?; let count: i64 = cursor.try_get(0).unwrap(); Ok(count > 0) } }