switch to macro for special user

2024-08-19 10:34:37 +02:00
parent c41dc0853a
commit 799e94a50f
13 changed files with 92 additions and 287 deletions
--- a/seeds.sql
+++ b/seeds.sql
@@ -9,6 +9,7 @@ INSERT INTO "role" (name) VALUES ('paid');
 INSERT INTO "role" (name) VALUES ('Vorstand');
 INSERT INTO "role" (name) VALUES ('Bootsführer');
 INSERT INTO "role" (name) VALUES ('schnupperant');
 INSERT INTO "role" (name) VALUES ('kassier');
 INSERT INTO "user" (name, pw) VALUES('admin', '$argon2id$v=19$m=19456,t=2,p=1$dS/X5/sPEKTj4Rzs/CuvzQ$4P4NCw4Ukhv80/eQYTsarHhnw61JuL1KMx/L9dm82YM');
 INSERT INTO "user_role" (user_id, role_id) VALUES(1,1);
 INSERT INTO "user_role" (user_id, role_id) VALUES(1,2);
--- a/src/model/user.rs
+++ b/src/model/user.rs
@@ -918,31 +918,38 @@ impl<'r> FromRequest<'r> for User {
    }
 }
-pub struct TechUser {
+/// Creates a struct named $name. Allows to be created from a user, if one of the specified $roles are active for the user.
 macro_rules! special_user {
    ($name:ident, $($role:tt)*) => {
        #[derive(Debug)]
        pub struct $name {
            pub(crate) user: User,
        }
-impl Deref for TechUser {
+        impl Deref for $name {
            type Target = User;
            fn deref(&self) -> &Self::Target {
                &self.user
            }
        }
-#[async_trait]
+        impl $name {
-impl<'r> FromRequest<'r> for TechUser {
+            pub fn into_inner(self) -> User {
-    type Error = LoginError;
+                self.user
            }
        }
        #[async_trait]
        impl<'r> FromRequest<'r> for $name {
            type Error = LoginError;
            async fn from_request(req: &'r Request<'_>) -> request::Outcome<Self, Self::Error> {
                let db = req.rocket().state::<SqlitePool>().unwrap();
                match User::from_request(req).await {
                    Outcome::Success(user) => {
-                if user.has_role(db, "tech").await {
+                        if special_user!(@check_roles user, db, $($role)*) {
-                    Outcome::Success(TechUser { user })
+                            Outcome::Success($name { user })
                        } else {
-                    Outcome::Error((Status::Forbidden, LoginError::NotACox))
+                            Outcome::Forward(Status::Forbidden)
                        }
                    }
                    Outcome::Error(f) => Outcome::Error(f),
@@ -951,233 +958,45 @@ impl<'r> FromRequest<'r> for TechUser {
            }
        }
-pub struct CoxUser {
+        impl $name {
    pub(crate) user: User,
 }
 impl Deref for CoxUser {
    type Target = User;
    fn deref(&self) -> &Self::Target {
        &self.user
    }
 }
 impl CoxUser {
            pub async fn new(db: &SqlitePool, user: User) -> Option<Self> {
-        if user.has_role(db, "cox").await {
+                if special_user!(@check_roles user, db, $($role)*) {
-            Some(CoxUser { user })
+                    Some($name { user })
                } else {
                    None
                }
            }
        }
    };
-#[async_trait]
+    (@check_roles $user:ident, $db:ident, $(+$role:expr),* $(,-$neg_role:expr)*) => {
 impl<'r> FromRequest<'r> for CoxUser {
    type Error = LoginError;
    async fn from_request(req: &'r Request<'_>) -> request::Outcome<Self, Self::Error> {
        let db = req.rocket().state::<SqlitePool>().unwrap();
        match User::from_request(req).await {
            Outcome::Success(user) => {
                if user.has_role(db, "cox").await {
                    Outcome::Success(CoxUser { user })
                } else {
                    Outcome::Error((Status::Forbidden, LoginError::NotACox))
                }
            }
            Outcome::Error(f) => Outcome::Error(f),
            Outcome::Forward(f) => Outcome::Forward(f),
        }
    }
 }
 #[derive(Debug, Serialize, Deserialize)]
 pub struct AdminUser {
    pub(crate) user: User,
 }
 #[async_trait]
 impl<'r> FromRequest<'r> for AdminUser {
    type Error = LoginError;
    async fn from_request(req: &'r Request<'_>) -> request::Outcome<Self, Self::Error> {
        let db = req.rocket().state::<SqlitePool>().unwrap();
        match User::from_request(req).await {
            Outcome::Success(user) => {
                if user.has_role(db, "admin").await {
                    Outcome::Success(AdminUser { user })
                } else {
                    Outcome::Forward(Status::Forbidden)
                }
            }
            Outcome::Error(f) => Outcome::Error(f),
            Outcome::Forward(f) => Outcome::Forward(f),
        }
    }
 }
 #[derive(Debug, Serialize, Deserialize)]
 pub struct AllowedForPlannedTripsUser(pub(crate) User);
 #[async_trait]
 impl<'r> FromRequest<'r> for AllowedForPlannedTripsUser {
    type Error = LoginError;
    async fn from_request(req: &'r Request<'_>) -> request::Outcome<Self, Self::Error> {
        let db = req.rocket().state::<SqlitePool>().unwrap();
        match User::from_request(req).await {
            Outcome::Success(user) => {
                if user.has_role(db, "Donau Linz").await | user.has_role(db, "scheckbuch").await {
                    Outcome::Success(AllowedForPlannedTripsUser(user))
                } else {
                    Outcome::Error((Status::Forbidden, LoginError::NotACox))
                }
            }
            Outcome::Error(f) => Outcome::Error(f),
            Outcome::Forward(f) => Outcome::Forward(f),
        }
    }
 }
 impl From<AllowedForPlannedTripsUser> for User {
    fn from(val: AllowedForPlannedTripsUser) -> Self {
        val.0
    }
 }
 #[derive(Debug, Serialize, Deserialize)]
 pub struct DonauLinzUser(pub(crate) User);
 impl From<DonauLinzUser> for User {
    fn from(val: DonauLinzUser) -> Self {
        val.0
    }
 }
 impl Deref for DonauLinzUser {
    type Target = User;
    fn deref(&self) -> &Self::Target {
        &self.0
    }
 }
 #[async_trait]
 impl<'r> FromRequest<'r> for DonauLinzUser {
    type Error = LoginError;
    async fn from_request(req: &'r Request<'_>) -> request::Outcome<Self, Self::Error> {
        let db = req.rocket().state::<SqlitePool>().unwrap();
        match User::from_request(req).await {
            Outcome::Success(user) => {
                if user.has_role(db, "Donau Linz").await
                    && !user.has_role(db, "Unterstützend").await
                    && !user.has_role(db, "Förderndes Mitglied").await
        {
-                    Outcome::Success(DonauLinzUser(user))
+            $(
-                } else {
+                if !$user.has_role($db, $role).await {
-                    Outcome::Error((Status::Forbidden, LoginError::NotACox))
+                    false
-                }
+                } else
-            }
+            )*
-            Outcome::Error(f) => Outcome::Error(f),
+            $(
-            Outcome::Forward(f) => Outcome::Forward(f),
+                if $user.has_role($db, $neg_role).await {
                    false
                } else
            )*
            {
                true
            }
        }
    };
 }
-#[derive(Debug, Serialize, Deserialize)]
+special_user!(TechUser, +"tech");
-pub struct SchnupperBetreuerUser(pub(crate) User);
+special_user!(CoxUser, +"cox");
 special_user!(AdminUser, +"admin");
 special_user!(AllowedForPlannedTripsUser, +"Donau Linz", +"scheckbuch");
 special_user!(DonauLinzUser, +"Donau Linz", -"Unterstützend", -"Förderndes Mitglied");
 special_user!(SchnupperBetreuerUser, +"schnupper-betreuer");
 special_user!(VorstandUser, +"Vorstand");
 special_user!(EventUser, +"manage_events");
 impl From<SchnupperBetreuerUser> for User {
    fn from(val: SchnupperBetreuerUser) -> Self {
        val.0
    }
 }
 impl Deref for SchnupperBetreuerUser {
    type Target = User;
    fn deref(&self) -> &Self::Target {
        &self.0
    }
 }
 #[async_trait]
 impl<'r> FromRequest<'r> for SchnupperBetreuerUser {
    type Error = LoginError;
    async fn from_request(req: &'r Request<'_>) -> request::Outcome<Self, Self::Error> {
        let db = req.rocket().state::<SqlitePool>().unwrap();
        match User::from_request(req).await {
            Outcome::Success(user) => {
                if user.has_role(db, "schnupper-betreuer").await {
                    Outcome::Success(SchnupperBetreuerUser(user))
                } else {
                    Outcome::Forward(Status::Forbidden)
                }
            }
            Outcome::Error(f) => Outcome::Error(f),
            Outcome::Forward(f) => Outcome::Forward(f),
        }
    }
 }
 #[derive(Debug, Serialize, Deserialize)]
 pub struct VorstandUser(pub(crate) User);
 impl From<VorstandUser> for User {
    fn from(val: VorstandUser) -> Self {
        val.0
    }
 }
 impl Deref for VorstandUser {
    type Target = User;
    fn deref(&self) -> &Self::Target {
        &self.0
    }
 }
 #[async_trait]
 impl<'r> FromRequest<'r> for VorstandUser {
    type Error = LoginError;
    async fn from_request(req: &'r Request<'_>) -> request::Outcome<Self, Self::Error> {
        let db = req.rocket().state::<SqlitePool>().unwrap();
        match User::from_request(req).await {
            Outcome::Success(user) => {
                if user.has_role(db, "Vorstand").await {
                    Outcome::Success(VorstandUser(user))
                } else {
                    Outcome::Forward(Status::Forbidden)
                }
            }
            Outcome::Error(f) => Outcome::Error(f),
            Outcome::Forward(f) => Outcome::Forward(f),
        }
    }
 }
 #[derive(Debug, Serialize, Deserialize)]
 pub struct EventUser(pub(crate) User);
 impl From<EventUser> for User {
    fn from(val: EventUser) -> Self {
        val.0
    }
 }
 impl Deref for EventUser {
    type Target = User;
    fn deref(&self) -> &Self::Target {
        &self.0
    }
 }
 #[derive(FromRow, Serialize, Deserialize, Clone, Debug)]
 pub struct UserWithRolesAndMembershipPdf {
    #[serde(flatten)]
@@ -1221,25 +1040,6 @@ impl UserWithMembershipPdf {
    }
 }
 #[async_trait]
 impl<'r> FromRequest<'r> for EventUser {
    type Error = LoginError;
    async fn from_request(req: &'r Request<'_>) -> request::Outcome<Self, Self::Error> {
        let db = req.rocket().state::<SqlitePool>().unwrap();
        match User::from_request(req).await {
            Outcome::Success(user) => {
                if user.has_role(db, "manage_events").await {
                    Outcome::Success(EventUser(user))
                } else {
                    Outcome::Error((Status::Forbidden, LoginError::NotACox))
                }
            }
            Outcome::Error(f) => Outcome::Error(f),
            Outcome::Forward(f) => Outcome::Forward(f),
        }
    }
 }
 #[cfg(test)]
 mod test {
    use std::collections::HashMap;
--- a/src/tera/admin/mail.rs
+++ b/src/tera/admin/mail.rs
@@ -27,7 +27,7 @@ async fn index(
    context.insert(
        "loggedin_user",
-        &UserWithDetails::from_user(admin.0, db).await,
+        &UserWithDetails::from_user(admin.user, db).await,
    );
    context.insert("roles", &roles);
--- a/src/tera/admin/notification.rs
+++ b/src/tera/admin/notification.rs
@@ -27,7 +27,7 @@ async fn index(
    }
    context.insert(
        "loggedin_user",
-        &UserWithDetails::from_user(user.0, db).await,
+        &UserWithDetails::from_user(user.user, db).await,
    );
    let users: Vec<User> = User::all(db)
--- a/src/tera/admin/schnupper.rs
+++ b/src/tera/admin/schnupper.rs
@@ -29,7 +29,7 @@ async fn index(
    context.insert("schnupperanten", &users);
    context.insert(
        "loggedin_user",
-        &UserWithDetails::from_user(user.into(), db).await,
+        &UserWithDetails::from_user(user.user, db).await,
    );
    Template::render("admin/schnupper/index", context.into_json())
--- a/src/tera/admin/user.rs
+++ b/src/tera/admin/user.rs
@@ -54,7 +54,7 @@ async fn index(
        .map(|u| async move { UserWithRolesAndMembershipPdf::from_user(db, u).await })
        .collect();
-    let user: User = user.into();
+    let user: User = user.into_inner();
    let allowed_to_edit = user.has_role(db, "admin").await;
    let users: Vec<UserWithRolesAndMembershipPdf> = join_all(user_futures).await;
@@ -130,7 +130,7 @@ async fn fees(
    }
    context.insert(
        "loggedin_user",
-        &UserWithDetails::from_user(admin.into(), db).await,
+        &UserWithDetails::from_user(admin.into_inner(), db).await,
    );
    Template::render("admin/user/fees", context.into_json())
@@ -161,7 +161,7 @@ async fn scheckbuch(
    }
    context.insert(
        "loggedin_user",
-        &UserWithDetails::from_user(user.into(), db).await,
+        &UserWithDetails::from_user(user.into_inner(), db).await,
    );
    Template::render("admin/user/scheckbuch", context.into_json())
--- a/src/tera/board/boathouse.rs
+++ b/src/tera/board/boathouse.rs
@@ -39,7 +39,7 @@ async fn index(
    context.insert(
        "loggedin_user",
-        &UserWithDetails::from_user(admin.into(), db).await,
+        &UserWithDetails::from_user(admin.into_inner(), db).await,
    );
    Template::render("board/boathouse", context.into_json())
--- a/src/tera/boatdamage.rs
+++ b/src/tera/boatdamage.rs
@@ -59,7 +59,7 @@ async fn index(
    context.insert("boats", &boats);
    context.insert(
        "loggedin_user",
-        &UserWithDetails::from_user(user.into(), db).await,
+        &UserWithDetails::from_user(user.into_inner(), db).await,
    );
    Template::render("boatdamages", context.into_json())
@@ -78,7 +78,7 @@ async fn create<'r>(
    data: Form<FormBoatDamageToAdd<'r>>,
    user: DonauLinzUser,
 ) -> Flash<Redirect> {
-    let user: User = user.into();
+    let user: User = user.into_inner();
    let boatdamage_to_add = BoatDamageToAdd {
        boat_id: data.boat_id,
        desc: data.desc,
--- a/src/tera/boatreservation.rs
+++ b/src/tera/boatreservation.rs
@@ -75,7 +75,7 @@ async fn index(
    context.insert("user", &User::all(db).await);
    context.insert(
        "loggedin_user",
-        &UserWithDetails::from_user(user.into(), db).await,
+        &UserWithDetails::from_user(user.into_inner(), db).await,
    );
    Template::render("boatreservations", context.into_json())
@@ -97,7 +97,7 @@ async fn create<'r>(
    data: Form<FormBoatReservationToAdd<'r>>,
    user: DonauLinzUser,
 ) -> Flash<Redirect> {
-    let user_applicant: User = user.into();
+    let user_applicant: User = user.into_inner();
    let boat = Boat::find_by_id(db, data.boat_id as i32).await.unwrap();
    let boatreservation_to_add = BoatReservationToAdd {
        boat: &boat,
--- a/src/tera/log.rs
+++ b/src/tera/log.rs
@@ -96,7 +96,7 @@ async fn index(
    context.insert("logtypes", &logtypes);
    context.insert(
        "loggedin_user",
-        &UserWithDetails::from_user(user.into(), db).await,
+        &UserWithDetails::from_user(user.into_inner(), db).await,
    );
    context.insert("on_water", &on_water);
    context.insert("distances", &distances);
@@ -110,7 +110,7 @@ async fn show(db: &State<SqlitePool>, user: DonauLinzUser) -> Template {
    Template::render(
        "log.completed",
-        context!(logs, loggedin_user: &UserWithDetails::from_user(user.into(), db).await),
+        context!(logs, loggedin_user: &UserWithDetails::from_user(user.into_inner(), db).await),
    )
 }
@@ -287,7 +287,8 @@ async fn create_kiosk(
    )
    .await;
-    create_logbook(db, data, &DonauLinzUser(creator)).await //TODO: fixme
+    create_logbook(db, data, &DonauLinzUser::new(db, creator).await.unwrap()).await
    //TODO: fixme
 }
 #[post("/update", data = "<data>")]
@@ -302,7 +303,7 @@ async fn update(
        return Flash::error(Redirect::to("/log"), &format!("Logbucheintrag kann nicht bearbeitet werden, da es einen Logbuch-Eintrag mit ID={} nicht gibt", data.id));
    };
-    match logbook.update(db, data.clone(), &user.0).await {
+    match logbook.update(db, data.clone(), &user.user).await {
        Ok(()) => {
            Log::create(
                db,
@@ -372,11 +373,14 @@ async fn home_kiosk(
        db,
        data,
        logbook_id,
-        &DonauLinzUser(
+        &DonauLinzUser::new(
            db,
            User::find_by_id(db, logbook.shipmaster as i32)
                .await
                .unwrap(),
-        ), //TODO: fixme
+        )
        .await
        .unwrap(),
    )
    .await
 }
--- a/src/tera/planned.rs
+++ b/src/tera/planned.rs
@@ -22,7 +22,7 @@ async fn index(
    user: AllowedForPlannedTripsUser,
    flash: Option<FlashMessage<'_>>,
 ) -> Template {
-    let user: User = user.into();
+    let user: User = user.into_inner();
    let mut context = Context::new();
@@ -50,7 +50,7 @@ async fn join(
    user: AllowedForPlannedTripsUser,
    user_note: Option<String>,
 ) -> Flash<Redirect> {
-    let user: User = user.into();
+    let user: User = user.into_inner();
    let Some(trip_details) = TripDetails::find_by_id(db, trip_details_id).await else {
        return Flash::error(Redirect::to("/"), "Trip_details do not exist.");
@@ -113,7 +113,7 @@ async fn remove_guest(
    user: AllowedForPlannedTripsUser,
    name: String,
 ) -> Flash<Redirect> {
-    let user: User = user.into();
+    let user: User = user.into_inner();
    let Some(trip_details) = TripDetails::find_by_id(db, trip_details_id).await else {
        return Flash::error(Redirect::to("/planned"), "TripDetailsId does not exist");
@@ -160,7 +160,7 @@ async fn remove(
    trip_details_id: i64,
    user: AllowedForPlannedTripsUser,
 ) -> Flash<Redirect> {
-    let user: User = user.into();
+    let user: User = user.into_inner();
    let Some(trip_details) = TripDetails::find_by_id(db, trip_details_id).await else {
        return Flash::error(Redirect::to("/planned"), "TripDetailsId does not exist");
--- a/src/tera/stat.rs
+++ b/src/tera/stat.rs
@@ -16,7 +16,7 @@ async fn index_boat(db: &State<SqlitePool>, user: DonauLinzUser) -> Template {
    Template::render(
        "stat.boats",
-        context!(loggedin_user: &UserWithDetails::from_user(user.into(), db).await, stat, kiosk),
+        context!(loggedin_user: &UserWithDetails::from_user(user.into_inner(), db).await, stat, kiosk),
    )
 }
@@ -38,7 +38,7 @@ async fn index(db: &State<SqlitePool>, user: DonauLinzUser, year: Option<i32>) -
    Template::render(
        "stat.people",
-        context!(loggedin_user: &UserWithDetails::from_user(user.into(), db).await, stat, personal, kiosk, guest_km, club_km),
+        context!(loggedin_user: &UserWithDetails::from_user(user.into_inner(), db).await, stat, personal, kiosk, guest_km, club_km),
    )
 }
--- a/src/tera/trailerreservation.rs
+++ b/src/tera/trailerreservation.rs
@@ -59,7 +59,7 @@ async fn index(
    context.insert("user", &User::all(db).await);
    context.insert(
        "loggedin_user",
-        &UserWithDetails::from_user(user.into(), db).await,
+        &UserWithDetails::from_user(user.into_inner(), db).await,
    );
    Template::render("trailerreservations", context.into_json())
@@ -81,7 +81,7 @@ async fn create<'r>(
    data: Form<FormTrailerReservationToAdd<'r>>,
    user: DonauLinzUser,
 ) -> Flash<Redirect> {
-    let user_applicant: User = user.into();
+    let user_applicant: User = user.into_inner();
    let trailer = Trailer::find_by_id(db, data.trailer_id as i32)
        .await
        .unwrap();