1 files changed, 44 insertions, 5 deletions

diff --git a/src/routes/admin.rs b/src/routes/admin.rs
index 98cb954..ccca2de 100644
--- a/src/routes/admin.rs
+++ b/src/routes/admin.rs
@@ -1,11 +1,50 @@
-use poem::handler;
+use poem::{
+    handler,
+    http::StatusCode,
+    session::Session,
+    web::{Data, Form, Redirect},
+    IntoResponse, Response,
+};
+use serde::Deserialize;
+
+use crate::{ructe_poem::render, templates, Critch, Result};
+
+#[derive(Deserialize)]
+struct Login {
+    password: String,
+}
+
+#[handler]
+pub async fn get_dashboard(session: &Session, critch: Data<&Critch>) -> Result<Response> {
+    if let Some(true) = session.get("is_admin") {
+        let comments = critch.db.comments().read_all().await?;
+        let artworks = critch.db.artworks().read_all().await?;
+        return Ok(render!(templates::admin_dashboard_html).into_response());
+    } else {
+        return Ok(Redirect::see_other("/admin/login").into_response());
+    }
+}
+
+#[handler]
+pub fn login(session: &Session, data: Data<&Critch>, form: Form<Login>) -> Response {
+    if form.password == data.config.admin_password() {
+        session.set("is_admin", true);
+        return Redirect::see_other("/admin").into_response();
+    } else {
+        return render!(templates::admin_login_html).into_response();
+    }
+}
 
 #[handler]
-pub async fn login() {
-    todo!()
+pub fn logout(session: &Session) -> Response {
+    session.purge();
+    Redirect::see_other("/").into_response()
 }
 
 #[handler]
-pub async fn get_login_form() {
-    todo!()
+pub fn get_login_form(session: &Session) -> Response {
+    if let Some(true) = session.get("is_admin") {
+        return Redirect::see_other("/admin").into_response();
+    };
+    render!(templates::admin_login_html).into_response()
 }