summaryrefslogblamecommitdiffstats
path: root/src/routes/login.rs
blob: bd7eaf1d26b3097004def97ff1f936417144318f (plain) (tree)
1
2
3
4
5
6


                                              

                       
                               






















                                                                          
                                                                
                     
                                                      
                                                    















                                                                            
                                                                  
























                                                                                           
use actix_session::Session;
use actix_web::http::header::LOCATION;
use actix_web::{get, post, web, HttpResponse};
use serde::Deserialize;

use crate::error::PinussyError;
use crate::notification::{Kind, Notification};
use crate::templates;
use crate::Pinussy;
use crate::Result;

#[get("/login")]
async fn get() -> HttpResponse {
    HttpResponse::Ok().body(render!(templates::login_html, None).unwrap())
}

#[derive(Deserialize)]
struct LoginForm {
    username: String,
    password: String,
    rememberme: Option<String>,
}

#[post("/login")]
async fn post(
    state: web::Data<Pinussy>,
    session: Session,
    form: web::Form<LoginForm>,
) -> Result<HttpResponse> {
    match state.db.users().read_username(&form.username).await {
        Ok(user) => {
            if user.verify_password(&form.password)? {
                session.insert("user_id", user.id)?;
                return Ok(HttpResponse::SeeOther()
                    .insert_header((LOCATION, "/"))
                    .finish());
            } else {
                return Ok(HttpResponse::Unauthorized().body(
                    render!(
                        templates::login_html,
                        Some(Notification {
                            kind: Kind::Error,
                            message: "that password is incorrect".to_owned()
                        })
                    )
                    .unwrap(),
                ));
            }
        }
        Err(PinussyError::Database(sqlx::Error::RowNotFound)) => {
            return Ok(HttpResponse::NotFound().body(
                render!(
                    templates::login_html,
                    Some(Notification {
                        kind: Kind::Error,
                        message: format!("the user \"{}\" does not exist", &form.username)
                    })
                )
                .unwrap(),
            ));
        }
        Err(_) => {
            return Ok(HttpResponse::InternalServerError().body(
                render!(
                    templates::login_html,
                    Some(Notification {
                        kind: Kind::Error,
                        message: "internal server error. please try again later".to_owned()
                    })
                )
                .unwrap(),
            ));
        }
    }
}