use crate::config::CONFIG; use crate::db::get_client; use crate::errors::AppError; use serde::{Deserialize, Serialize}; use serde_with::{serde_as, NoneAsEmptyString}; use validator::Validate; /// User model #[derive(Deserialize, Serialize, Validate)] pub struct User { id: i32, #[validate(length(min = 4, message = "Can not be empty"))] email: String, #[validate(length(min = 2, message = "Can not be empty"))] username: String, #[validate(length(min = 8, message = "Must be min 8 chars length"))] password: String, is_staff: Option, avatar: Option, } /// Response used to print a user (or a users list) #[serde_as] #[derive(Deserialize, Serialize)] pub struct UserList { // It is public because it used by `Claims` creation pub id: i32, email: String, username: String, is_staff: Option, #[serde_as(as = "NoneAsEmptyString")] pub avatar: Option, } impl User { /// By default an user has id = 0. It is not created yet pub fn new(email: String, username: String, password: String) -> Self { Self { id: 0, email, username, password, is_staff: Some(false), avatar: None, } } /// Create a new user from the model using a SHA256 crypted password pub async fn create(user: User) -> Result { let pool = unsafe { get_client() }; user.validate() .map_err(|error| AppError::BadRequest(error.to_string()))?; let crypted_password = sha256::digest(user.password); let rec = sqlx::query_as!( UserList, r#" INSERT INTO users (email, username, password) VALUES ( $1, $2, $3) RETURNING id, email, username, is_staff, avatar "#, user.email, user.username, crypted_password ) .fetch_one(pool) .await?; Ok(rec) } /// Find a user using the model. It used for login pub async fn find(user: User) -> Result { let pool = unsafe { get_client() }; let crypted_password = sha256::digest(user.password); let rec = sqlx::query_as!( UserList, r#" SELECT id, email, username, is_staff, avatar FROM "users" WHERE username = $1 AND password = $2 "#, user.username, crypted_password ) .fetch_one(pool) .await?; Ok(rec) } /// Returns the user with id = `user_id` pub async fn find_by_id(user_id: i32) -> Result { let pool = unsafe { get_client() }; let rec = sqlx::query_as!( UserList, r#" SELECT id, email, username, is_staff, avatar FROM "users" WHERE id = $1 "#, user_id ) .fetch_one(pool) .await?; Ok(rec) } /// List all users pub async fn list(page: i64) -> Result, AppError> { let pool = unsafe { get_client() }; let rows = sqlx::query_as!( UserList, r#"SELECT id, email, username, is_staff, avatar FROM users LIMIT $1 OFFSET $2 "#, CONFIG.page_limit, CONFIG.page_limit * page ) .fetch_all(pool) .await?; Ok(rows) } /// Return the number of users. pub async fn count() -> Result { let pool = unsafe { get_client() }; let row = sqlx::query!(r#"SELECT COUNT(id) as count FROM users"#) .fetch_one(pool) .await?; Ok(row.count.unwrap()) } /// Prevent the "uniquess" Postgres fields check. Check if username has been taken pub async fn username_has_taken(username: &String) -> Result { let pool = unsafe { get_client() }; let row = sqlx::query!( r#" SELECT COUNT(id) as count FROM users WHERE username = $1 "#, username, ) .fetch_one(pool) .await?; Ok(row.count.unwrap() > 0) } /// Prevent the "uniquess" Postgres fields check. Check if email has been taken pub async fn email_has_taken(email: &String) -> Result { let pool = unsafe { get_client() }; let row = sqlx::query!( r#" SELECT COUNT(id) as count FROM users WHERE email = $1 "#, email, ) .fetch_one(pool) .await?; Ok(row.count.unwrap() > 0) } } impl UserList { // Edit an user pub async fn edit_avatar(&mut self, avatar: Option) -> Result<(), AppError> { let pool = unsafe { get_client() }; sqlx::query!( r#" UPDATE users SET avatar = $1 WHERE id = $2 "#, avatar, self.id, ) .execute(pool) .await?; self.avatar = avatar; Ok(()) } }