2023-04-04 15:16:21 +02:00
|
|
|
use rocket::{
|
2023-04-05 19:24:02 +02:00
|
|
|
catch, catchers,
|
2023-05-30 14:12:08 +02:00
|
|
|
fairing::AdHoc,
|
2023-04-05 19:24:02 +02:00
|
|
|
fs::FileServer,
|
|
|
|
get,
|
2023-04-04 15:16:21 +02:00
|
|
|
request::FlashMessage,
|
|
|
|
response::{Flash, Redirect},
|
|
|
|
routes, Build, Rocket, State,
|
|
|
|
};
|
2023-04-04 15:38:47 +02:00
|
|
|
use rocket_dyn_templates::{tera::Context, Template};
|
2023-05-30 14:12:08 +02:00
|
|
|
use serde::Deserialize;
|
2023-04-03 16:11:26 +02:00
|
|
|
use sqlx::SqlitePool;
|
|
|
|
|
2023-04-05 22:01:50 +02:00
|
|
|
use crate::model::{
|
2023-04-18 12:10:11 +02:00
|
|
|
log::Log,
|
2023-04-28 19:08:17 +02:00
|
|
|
tripdetails::TripDetails,
|
2023-04-28 21:19:51 +02:00
|
|
|
triptype::TripType,
|
2023-04-05 22:01:50 +02:00
|
|
|
user::User,
|
|
|
|
usertrip::{UserTrip, UserTripError},
|
|
|
|
};
|
2023-04-03 22:03:45 +02:00
|
|
|
|
2023-04-04 10:44:14 +02:00
|
|
|
mod admin;
|
2023-04-03 16:11:26 +02:00
|
|
|
mod auth;
|
2023-04-04 15:16:21 +02:00
|
|
|
mod cox;
|
2023-07-23 12:17:57 +02:00
|
|
|
mod log;
|
2023-05-24 15:36:38 +02:00
|
|
|
mod misc;
|
2023-07-24 20:56:46 +02:00
|
|
|
mod stat;
|
2023-03-26 14:40:56 +02:00
|
|
|
|
2023-04-04 15:42:26 +02:00
|
|
|
#[get("/")]
|
|
|
|
async fn index(db: &State<SqlitePool>, user: User, flash: Option<FlashMessage<'_>>) -> Template {
|
2023-04-28 21:19:51 +02:00
|
|
|
let mut context = Context::new();
|
|
|
|
|
|
|
|
if user.is_cox || user.is_admin {
|
|
|
|
let triptypes = TripType::all(db).await;
|
|
|
|
context.insert("trip_types", &triptypes);
|
|
|
|
}
|
2023-04-04 15:38:47 +02:00
|
|
|
|
2023-06-08 17:23:23 +02:00
|
|
|
let days = user.get_days(db).await;
|
2023-04-04 15:16:21 +02:00
|
|
|
|
|
|
|
if let Some(msg) = flash {
|
|
|
|
context.insert("flash", &msg.into_inner());
|
|
|
|
}
|
|
|
|
context.insert("loggedin_user", &user);
|
|
|
|
context.insert("days", &days);
|
|
|
|
Template::render("index", context.into_json())
|
|
|
|
}
|
|
|
|
|
|
|
|
#[get("/join/<trip_details_id>")]
|
|
|
|
async fn join(db: &State<SqlitePool>, trip_details_id: i64, user: User) -> Flash<Redirect> {
|
2023-07-31 21:07:01 +02:00
|
|
|
let Some(trip_details) = TripDetails::find_by_id(db, trip_details_id).await else {
|
|
|
|
return Flash::error(Redirect::to("/"), "Trip_details do not exist.");
|
|
|
|
};
|
2023-05-30 14:47:44 +02:00
|
|
|
|
2023-04-28 19:08:17 +02:00
|
|
|
match UserTrip::create(db, &user, &trip_details).await {
|
2023-04-18 12:10:11 +02:00
|
|
|
Ok(_) => {
|
|
|
|
Log::create(
|
|
|
|
db,
|
|
|
|
format!(
|
|
|
|
"User {} registered for trip_details.id={}",
|
|
|
|
user.name, trip_details_id
|
|
|
|
),
|
|
|
|
)
|
|
|
|
.await;
|
|
|
|
Flash::success(Redirect::to("/"), "Erfolgreich angemeldet!")
|
|
|
|
}
|
2023-04-05 22:01:50 +02:00
|
|
|
Err(UserTripError::EventAlreadyFull) => {
|
|
|
|
Flash::error(Redirect::to("/"), "Event bereits ausgebucht!")
|
|
|
|
}
|
|
|
|
Err(UserTripError::AlreadyRegistered) => {
|
|
|
|
Flash::error(Redirect::to("/"), "Du nimmst bereits teil!")
|
|
|
|
}
|
|
|
|
Err(UserTripError::AlreadyRegisteredAsCox) => {
|
|
|
|
Flash::error(Redirect::to("/"), "Du hilfst bereits als Steuerperson aus!")
|
|
|
|
}
|
2023-04-28 19:08:17 +02:00
|
|
|
Err(UserTripError::CantRegisterAtOwnEvent) => Flash::error(
|
|
|
|
Redirect::to("/"),
|
|
|
|
"Du kannst bei einer selbst ausgeschriebenen Fahrt nicht mitrudern ;)",
|
|
|
|
),
|
2023-04-29 18:57:01 +02:00
|
|
|
Err(UserTripError::GuestNotAllowedForThisEvent) => Flash::error(
|
|
|
|
Redirect::to("/"),
|
|
|
|
"Bei dieser Ausfahrt können leider keine Gäste mitfahren.",
|
|
|
|
),
|
2023-04-04 15:16:21 +02:00
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
#[get("/remove/<trip_details_id>")]
|
|
|
|
async fn remove(db: &State<SqlitePool>, trip_details_id: i64, user: User) -> Flash<Redirect> {
|
2023-05-30 14:47:44 +02:00
|
|
|
let Some(trip_details) = TripDetails::find_by_id(db, trip_details_id).await else {
|
2023-07-31 21:07:01 +02:00
|
|
|
return Flash::error(Redirect::to("/"), "TripDetailsId does not exist");
|
|
|
|
};
|
2023-04-28 19:08:17 +02:00
|
|
|
|
|
|
|
UserTrip::delete(db, &user, &trip_details).await;
|
2023-04-04 15:16:21 +02:00
|
|
|
|
2023-04-18 12:10:11 +02:00
|
|
|
Log::create(
|
|
|
|
db,
|
|
|
|
format!(
|
|
|
|
"User {} unregistered for trip_details.id={}",
|
|
|
|
user.name, trip_details_id
|
|
|
|
),
|
|
|
|
)
|
|
|
|
.await;
|
|
|
|
|
2023-04-04 15:16:21 +02:00
|
|
|
Flash::success(Redirect::to("/"), "Erfolgreich abgemeldet!")
|
2023-03-26 14:40:56 +02:00
|
|
|
}
|
|
|
|
|
2023-04-03 22:03:45 +02:00
|
|
|
#[catch(401)] //unauthorized
|
|
|
|
fn unauthorized_error() -> Redirect {
|
|
|
|
Redirect::to("/auth")
|
|
|
|
}
|
|
|
|
|
2023-05-30 14:12:08 +02:00
|
|
|
#[derive(Deserialize)]
|
|
|
|
#[serde(crate = "rocket::serde")]
|
|
|
|
pub struct Config {
|
|
|
|
rss_key: String,
|
|
|
|
}
|
|
|
|
|
2023-07-16 18:33:17 +02:00
|
|
|
pub fn config(rocket: Rocket<Build>) -> Rocket<Build> {
|
|
|
|
rocket
|
2023-04-04 15:16:21 +02:00
|
|
|
.mount("/", routes![index, join, remove])
|
2023-04-03 16:11:26 +02:00
|
|
|
.mount("/auth", auth::routes())
|
2023-07-23 12:17:57 +02:00
|
|
|
.mount("/log", log::routes())
|
2023-07-24 20:56:46 +02:00
|
|
|
.mount("/stat", stat::routes())
|
2023-04-04 15:16:21 +02:00
|
|
|
.mount("/cox", cox::routes())
|
2023-04-04 10:44:14 +02:00
|
|
|
.mount("/admin", admin::routes())
|
2023-05-24 15:36:38 +02:00
|
|
|
.mount("/", misc::routes())
|
2023-04-10 15:15:16 +02:00
|
|
|
.mount("/public", FileServer::from("static/"))
|
2023-04-03 22:03:45 +02:00
|
|
|
.register("/", catchers![unauthorized_error])
|
2023-03-26 16:58:45 +02:00
|
|
|
.attach(Template::fairing())
|
2023-05-30 14:12:08 +02:00
|
|
|
.attach(AdHoc::config::<Config>())
|
2023-03-26 14:40:56 +02:00
|
|
|
}
|
|
|
|
|
2023-07-22 12:24:29 +02:00
|
|
|
#[cfg(test)]
|
|
|
|
mod test {
|
|
|
|
use rocket::{
|
|
|
|
http::{ContentType, Status},
|
|
|
|
local::asynchronous::Client,
|
|
|
|
};
|
|
|
|
use sqlx::SqlitePool;
|
|
|
|
|
|
|
|
use crate::testdb;
|
|
|
|
|
|
|
|
#[sqlx::test]
|
|
|
|
fn test_index() {
|
|
|
|
let db = testdb!();
|
|
|
|
|
|
|
|
let rocket = rocket::build().manage(db.clone());
|
|
|
|
let rocket = crate::tera::config(rocket);
|
|
|
|
|
|
|
|
let client = Client::tracked(rocket).await.unwrap();
|
|
|
|
let login = client
|
|
|
|
.post("/auth")
|
|
|
|
.header(ContentType::Form) // Set the content type to form
|
|
|
|
.body("name=cox&password=cox"); // Add the form data to the request body;
|
|
|
|
login.dispatch().await;
|
|
|
|
|
|
|
|
let req = client.get("/");
|
|
|
|
let response = req.dispatch().await;
|
|
|
|
|
|
|
|
assert_eq!(response.status(), Status::Ok);
|
|
|
|
|
|
|
|
assert!(response.into_string().await.unwrap().contains("Ausfahrten"));
|
|
|
|
}
|
|
|
|
|
|
|
|
#[sqlx::test]
|
|
|
|
fn test_without_login() {
|
|
|
|
let db = testdb!();
|
|
|
|
|
|
|
|
let rocket = rocket::build().manage(db.clone());
|
|
|
|
let rocket = crate::tera::config(rocket);
|
|
|
|
|
|
|
|
let client = Client::tracked(rocket).await.unwrap();
|
|
|
|
|
|
|
|
let req = client.get("/");
|
|
|
|
let response = req.dispatch().await;
|
|
|
|
|
|
|
|
assert_eq!(response.status(), Status::SeeOther);
|
|
|
|
assert_eq!(response.headers().get("Location").next(), Some("/auth"));
|
|
|
|
}
|
|
|
|
|
|
|
|
#[sqlx::test]
|
|
|
|
fn test_join_and_remove() {
|
|
|
|
let db = testdb!();
|
|
|
|
|
|
|
|
let rocket = rocket::build().manage(db.clone());
|
|
|
|
let rocket = crate::tera::config(rocket);
|
|
|
|
|
|
|
|
let client = Client::tracked(rocket).await.unwrap();
|
|
|
|
let login = client
|
|
|
|
.post("/auth")
|
|
|
|
.header(ContentType::Form) // Set the content type to form
|
|
|
|
.body("name=rower&password=rower"); // Add the form data to the request body;
|
|
|
|
login.dispatch().await;
|
|
|
|
|
|
|
|
let req = client.get("/join/1");
|
|
|
|
let response = req.dispatch().await;
|
|
|
|
|
|
|
|
assert_eq!(response.status(), Status::SeeOther);
|
|
|
|
assert_eq!(response.headers().get("Location").next(), Some("/"));
|
|
|
|
|
|
|
|
let flash_cookie = response
|
|
|
|
.cookies()
|
|
|
|
.get("_flash")
|
|
|
|
.expect("Expected flash cookie");
|
|
|
|
|
|
|
|
assert_eq!(flash_cookie.value(), "7:successErfolgreich angemeldet!");
|
|
|
|
|
|
|
|
let req = client.get("/remove/1");
|
|
|
|
let response = req.dispatch().await;
|
|
|
|
|
|
|
|
assert_eq!(response.status(), Status::SeeOther);
|
|
|
|
assert_eq!(response.headers().get("Location").next(), Some("/"));
|
|
|
|
|
|
|
|
let flash_cookie = response
|
|
|
|
.cookies()
|
|
|
|
.get("_flash")
|
|
|
|
.expect("Expected flash cookie");
|
|
|
|
|
|
|
|
assert_eq!(flash_cookie.value(), "7:successErfolgreich abgemeldet!");
|
|
|
|
}
|
|
|
|
|
|
|
|
#[sqlx::test]
|
|
|
|
fn test_join_invalid_event() {
|
|
|
|
let db = testdb!();
|
|
|
|
|
|
|
|
let rocket = rocket::build().manage(db.clone());
|
|
|
|
let rocket = crate::tera::config(rocket);
|
|
|
|
|
|
|
|
let client = Client::tracked(rocket).await.unwrap();
|
|
|
|
let login = client
|
|
|
|
.post("/auth")
|
|
|
|
.header(ContentType::Form) // Set the content type to form
|
|
|
|
.body("name=rower&password=rower"); // Add the form data to the request body;
|
|
|
|
login.dispatch().await;
|
|
|
|
|
|
|
|
let req = client.get("/join/9999");
|
|
|
|
let response = req.dispatch().await;
|
|
|
|
|
|
|
|
assert_eq!(response.status(), Status::SeeOther);
|
|
|
|
assert_eq!(response.headers().get("Location").next(), Some("/"));
|
|
|
|
|
|
|
|
let flash_cookie = response
|
|
|
|
.cookies()
|
|
|
|
.get("_flash")
|
|
|
|
.expect("Expected flash cookie");
|
|
|
|
|
|
|
|
assert_eq!(flash_cookie.value(), "5:errorTrip_details do not exist.");
|
|
|
|
}
|
2023-07-31 21:07:01 +02:00
|
|
|
|
|
|
|
#[sqlx::test]
|
|
|
|
fn test_public() {
|
|
|
|
let db = testdb!();
|
|
|
|
|
|
|
|
let rocket = rocket::build().manage(db.clone());
|
|
|
|
let rocket = crate::tera::config(rocket);
|
|
|
|
|
|
|
|
let client = Client::tracked(rocket).await.unwrap();
|
|
|
|
|
|
|
|
let req = client.get("/public/main.css");
|
|
|
|
let response = req.dispatch().await;
|
|
|
|
assert_eq!(response.status(), Status::Ok);
|
|
|
|
|
|
|
|
let req = client.get("/public/main.js");
|
|
|
|
let response = req.dispatch().await;
|
|
|
|
assert_eq!(response.status(), Status::Ok);
|
|
|
|
}
|
2023-07-22 12:24:29 +02:00
|
|
|
}
|