HomeDisk/server/src/middleware/auth.rs

use crypto_utils::jsonwebtoken::{Token, TokenData};
use homedisk_types::errors::{AuthError, ServerError};

/// Validate user token
pub fn validate_jwt(secret: &[u8], token: &str) -> Result<TokenData, ServerError> {
    match Token::decode(secret, token.to_string()) {
        // if success return claims
        Ok(claims) => Ok(claims),
        // invalid token
        Err(_) => Err(ServerError::AuthError(AuthError::InvalidToken)),
    }
}

#[cfg(test)]
mod tests {
    use homedisk_database::User;

    use super::validate_jwt;
    use crate::middleware::create_token;

    const USERNAME: &str = "username";
    const PASSWORD: &str = "password";

    const SECRET: &[u8] = b"secret";
    const INVALID_SECRET: &[u8] = b"invalid secret";

    /// Test a token validation
    #[test]
    fn validate_token() {
        let user = User::new(USERNAME, PASSWORD);

        let token = create_token(&user, SECRET, 1).unwrap();

        validate_jwt(SECRET, &token).unwrap();
    }

    /// Test a token validation (invalid secret)
    #[test]
    fn validate_token_invalid_secret() {
        let user = User::new(USERNAME, PASSWORD);

        let token = create_token(&user, SECRET, 1).unwrap();

        validate_jwt(INVALID_SECRET, &token).unwrap_err();
    }
}
update 2022-06-23 09:52:48 +00:00			`use crypto_utils::jsonwebtoken::{Token, TokenData};`
server (http): add jwt token validator and route `/auth/whoami` 2022-04-23 21:48:20 +00:00			`use homedisk_types::errors::{AuthError, ServerError};`
server (http): add error handler for several exceptions 2022-04-23 19:21:04 +00:00
comment code 2022-06-08 17:08:06 +00:00			`/// Validate user token`
update 2022-06-23 09:52:48 +00:00			`pub fn validate_jwt(secret: &[u8], token: &str) -> Result<TokenData, ServerError> {`
server (http): add jwt token validator and route `/auth/whoami` 2022-04-23 21:48:20 +00:00			`match Token::decode(secret, token.to_string()) {`
update 2022-06-11 08:19:47 +00:00			`// if success return claims`
server (http): add jwt token validator and route `/auth/whoami` 2022-04-23 21:48:20 +00:00			`Ok(claims) => Ok(claims),`
update 2022-06-11 08:19:47 +00:00			`// invalid token`
server (http): add jwt token validator and route `/auth/whoami` 2022-04-23 21:48:20 +00:00			`Err(_) => Err(ServerError::AuthError(AuthError::InvalidToken)),`
			`}`
			`}`
update 2022-06-08 22:02:20 +00:00
			`#[cfg(test)]`
			`mod tests {`
			`use homedisk_database::User;`

			`use super::validate_jwt;`
chore(rustfmt): update config 2022-08-15 19:34:23 +00:00			`use crate::middleware::create_token;`
update 2022-06-08 22:02:20 +00:00
chore: delete crate `zeroize` (I don't have a sensible idea to implement it) 2022-07-04 20:19:12 +00:00			`const USERNAME: &str = "username";`
			`const PASSWORD: &str = "password";`

update 2022-07-02 10:36:02 +00:00			`const SECRET: &[u8] = b"secret";`
			`const INVALID_SECRET: &[u8] = b"invalid secret";`

update 2022-06-11 08:19:47 +00:00			`/// Test a token validation`
update 2022-06-08 22:02:20 +00:00			`#[test]`
			`fn validate_token() {`
chore: delete crate `zeroize` (I don't have a sensible idea to implement it) 2022-07-04 20:19:12 +00:00			`let user = User::new(USERNAME, PASSWORD);`
update 2022-06-08 22:02:20 +00:00
update 2022-07-02 10:36:02 +00:00			`let token = create_token(&user, SECRET, 1).unwrap();`

			`validate_jwt(SECRET, &token).unwrap();`
			`}`

			`/// Test a token validation (invalid secret)`
			`#[test]`
			`fn validate_token_invalid_secret() {`
chore: delete crate `zeroize` (I don't have a sensible idea to implement it) 2022-07-04 20:19:12 +00:00			`let user = User::new(USERNAME, PASSWORD);`
update 2022-07-02 10:36:02 +00:00
			`let token = create_token(&user, SECRET, 1).unwrap();`
update 2022-06-08 22:02:20 +00:00
update 2022-07-02 10:36:02 +00:00			`validate_jwt(INVALID_SECRET, &token).unwrap_err();`
update 2022-06-08 22:02:20 +00:00			`}`
			`}`