1 files changed, 118 insertions, 0 deletions

diff --git a/src/models/user.rs b/src/models/user.rs
new file mode 100644
index 0000000..06cde0a
--- /dev/null
+++ b/src/models/user.rs
@@ -0,0 +1,118 @@
+use crate::db::get_client;
+use crate::errors::AppError;
+
+use serde::{Deserialize, Serialize};
+use validator::Validate;
+
+/// User model
+#[derive(Deserialize, Serialize, Validate)]
+pub struct User {
+    id: i32,
+    #[validate(length(min = 1, message = "Can not be empty"))]
+    email: String,
+    #[validate(length(min = 8, message = "Must be min 8 chars length"))]
+    password: String,
+    is_staff: Option<bool>,
+}
+
+/// Response used to print a user (or a users list)
+#[derive(Deserialize, Serialize)]
+pub struct UserList {
+    // It is public because it used by `Claims` creation
+    pub id: i32,
+    email: String,
+    is_staff: Option<bool>,
+}
+
+/// Payload used for user creation
+#[derive(Deserialize)]
+pub struct UserCreate {
+    pub email: String,
+    pub password: String,
+}
+
+impl User {
+    /// By default an user has id = 0. It is not created yet
+    pub fn new(email: String, password: String) -> Self {
+        Self {
+            id: 0,
+            email,
+            password,
+            is_staff: Some(false),
+        }
+    }
+
+    /// Create a new user from the model using a SHA256 crypted password
+    pub async fn create(user: User) -> Result<UserList, AppError> {
+        let pool = unsafe { get_client() };
+
+        user.validate()
+            .map_err(|error| AppError::BadRequest(error.to_string()))?;
+
+        let crypted_password = sha256::digest(user.password);
+
+        let rec = sqlx::query_as!(
+            UserList,
+            r#"
+                INSERT INTO users (email, password)
+                VALUES ( $1, $2 )
+                RETURNING id, email, is_staff
+            "#,
+            user.email,
+            crypted_password
+        )
+        .fetch_one(pool)
+        .await?;
+
+        Ok(rec)
+    }
+
+    /// Find a user using the model. It used for login
+    pub async fn find(user: User) -> Result<UserList, AppError> {
+        let pool = unsafe { get_client() };
+
+        let crypted_password = sha256::digest(user.password);
+
+        let rec = sqlx::query_as!(
+            UserList,
+            r#"
+                SELECT id, email, is_staff FROM "users"
+                WHERE email = $1 AND password = $2
+            "#,
+            user.email,
+            crypted_password
+        )
+        .fetch_one(pool)
+        .await?;
+
+        Ok(rec)
+    }
+
+    /// Returns the user with id = `user_id`
+    pub async fn find_by_id(user_id: i32) -> Result<UserList, AppError> {
+        let pool = unsafe { get_client() };
+
+        let rec = sqlx::query_as!(
+            UserList,
+            r#"
+                SELECT id, email, is_staff FROM "users"
+                WHERE id = $1
+            "#,
+            user_id
+        )
+        .fetch_one(pool)
+        .await?;
+
+        Ok(rec)
+    }
+
+    /// List all users
+    pub async fn list() -> Result<Vec<UserList>, AppError> {
+        let pool = unsafe { get_client() };
+        let rows = sqlx::query_as!(UserList, r#"SELECT id, email, is_staff FROM users"#)
+            .fetch_all(pool)
+            .await?;
+
+        Ok(rows)
+    }
+}