2024-02-10 11:44:31 +01:00
|
|
|
use axum::{
|
|
|
|
extract::Query,
|
2024-02-10 13:23:20 +01:00
|
|
|
http::StatusCode,
|
|
|
|
response::IntoResponse,
|
2024-02-10 11:44:31 +01:00
|
|
|
routing::{get, post},
|
|
|
|
Form, Json, Router,
|
|
|
|
};
|
2024-02-10 12:39:34 +01:00
|
|
|
use secrecy::ExposeSecret;
|
2024-02-10 11:44:31 +01:00
|
|
|
use serde::{Deserialize, Serialize};
|
|
|
|
use tracing::{event, instrument, Level};
|
|
|
|
|
2024-02-10 13:23:20 +01:00
|
|
|
use crate::auth::AuthenticationError;
|
2024-02-10 12:39:34 +01:00
|
|
|
use crate::secrets::{Password, UserToken};
|
2024-02-10 11:13:11 +01:00
|
|
|
|
|
|
|
#[instrument]
|
2024-02-10 11:44:31 +01:00
|
|
|
pub async fn run() -> color_eyre::Result<()> {
|
|
|
|
let app = Router::new()
|
|
|
|
.route("/tls-check/success", get(|| async { "OK" }))
|
|
|
|
.route("/api-login", post(api_login));
|
2024-02-10 11:13:11 +01:00
|
|
|
let listener = tokio::net::TcpListener::bind("[::]:8080").await?;
|
|
|
|
axum::serve(listener, app).await?;
|
|
|
|
|
|
|
|
Ok(())
|
|
|
|
}
|
2024-02-10 11:44:31 +01:00
|
|
|
|
2024-02-10 11:49:36 +01:00
|
|
|
#[derive(Debug, Clone, PartialEq, Eq, Serialize)]
|
|
|
|
struct ApiError {
|
2024-02-10 13:23:20 +01:00
|
|
|
#[serde(skip_serializing)]
|
|
|
|
status: StatusCode,
|
2024-02-10 11:49:36 +01:00
|
|
|
error: String,
|
|
|
|
message: String,
|
|
|
|
}
|
|
|
|
|
2024-02-10 13:23:20 +01:00
|
|
|
impl From<AuthenticationError> for ApiError {
|
|
|
|
fn from(err: AuthenticationError) -> Self {
|
|
|
|
Self {
|
|
|
|
status: StatusCode::UNAUTHORIZED,
|
|
|
|
error: "authentication-failed".to_owned(),
|
|
|
|
message: err.to_string(),
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
impl IntoResponse for ApiError {
|
|
|
|
fn into_response(self) -> axum::response::Response {
|
|
|
|
(self.status, Json(self)).into_response()
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
type ApiResult<T> = Result<T, ApiError>;
|
2024-02-10 11:49:36 +01:00
|
|
|
|
2024-02-10 11:44:31 +01:00
|
|
|
#[derive(Debug, Clone, PartialEq, Eq, Deserialize)]
|
|
|
|
struct ApiVersion {
|
|
|
|
api_version: String,
|
|
|
|
}
|
|
|
|
|
|
|
|
#[derive(Debug, Clone, Deserialize)]
|
|
|
|
struct LoginRequest {
|
|
|
|
username: String,
|
|
|
|
password: Password,
|
|
|
|
}
|
|
|
|
|
|
|
|
#[derive(Debug, Clone, Serialize)]
|
|
|
|
struct LoginResponse {
|
|
|
|
username: String,
|
|
|
|
token: String,
|
|
|
|
}
|
|
|
|
|
|
|
|
#[instrument]
|
|
|
|
async fn api_login(
|
|
|
|
Query(ApiVersion { api_version }): Query<ApiVersion>,
|
|
|
|
Form(LoginRequest { username, password }): Form<LoginRequest>,
|
2024-02-10 11:49:36 +01:00
|
|
|
) -> ApiResult<Json<LoginResponse>> {
|
2024-02-10 11:44:31 +01:00
|
|
|
event!(Level::WARN, "Creating dummy token");
|
2024-02-10 12:39:34 +01:00
|
|
|
let user_token = UserToken("invalid".to_owned().into());
|
2024-02-10 11:44:31 +01:00
|
|
|
|
|
|
|
Ok(Json(LoginResponse {
|
|
|
|
username,
|
2024-02-10 12:39:34 +01:00
|
|
|
token: user_token.0.expose_secret().to_owned(),
|
2024-02-10 11:44:31 +01:00
|
|
|
}))
|
|
|
|
}
|