strawberries/frangipane-backend
1
1
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
376353833c1b9fe1cc9082884412f0fa1edac733
frangipane-backend/src/routes/friends.rs

262 lines
6.8 KiB
Rust
Raw Blame History

use axum::{
Extension, Json, Router,
http::{HeaderMap, StatusCode},
routing::{get, post},
};
use sqlx::PgPool;
use uuid::Uuid;
use crate::db::{user_id_from_uuid, username_from_id, username_from_uuid};
use crate::{auth::verify_jwt, db::id_from_username};
#[derive(sqlx::FromRow, serde::Serialize)]
pub struct Friend {
pub uuid: Uuid,
pub username: String,
}
#[derive(sqlx::FromRow, serde::Serialize)]
pub struct FriendRequest {
pub sender_uuid: Uuid,
pub sender_username: String,
}
#[derive(serde::Deserialize)]
pub struct SendFriendRequestPayload {
pub receiver_username: String,
}
#[derive(serde::Deserialize)]
pub struct AcceptFriendRequestPayload {
pub sender_uuid: Uuid,
}
#[derive(serde::Deserialize)]
pub struct DeclineFriendRequestPayload {
pub sender_uuid: Uuid,
}
pub fn routes() -> Router {
Router::new()
.route("/friends", get(list_friends))
.route("/friends/requests", get(list_requests))
.route("/friends/request", post(send_request))
.route("/friends/accept", post(accept_request))
.route("/friends/decline", post(decline_request))
}
async fn list_friends(
headers: HeaderMap,
Extension(db): Extension<PgPool>,
) -> Result<Json<Vec<Friend>>, (StatusCode, String)> {
let claims = verify_jwt(headers)?;
let user_id = user_id_from_uuid(&db, claims.sub).await?;
let friends = sqlx::query_as::<_, Friend>(
r#"
SELECT u.uuid, u.username
FROM friendship_
JOIN user_ u
ON (u.id = friendship_.user_first AND friendship_.user_second = $1)
OR (u.id = friendship_.user_second AND friendship_.user_first = $1)
"#,
)
.bind(user_id)
.fetch_all(&db)
.await
.map_err(|_| {
(
StatusCode::INTERNAL_SERVER_ERROR,
"Could not list friends".into(),
)
})?;
Ok(Json(friends))
}
async fn list_requests(
headers: HeaderMap,
Extension(db): Extension<PgPool>,
) -> Result<Json<Vec<FriendRequest>>, (StatusCode, String)> {
let claims = verify_jwt(headers)?;
let user_id = user_id_from_uuid(&db, claims.sub).await?;
let requests = sqlx::query_as::<_, FriendRequest>(
r#"
SELECT u.uuid AS sender_uuid, u.username AS sender_username
FROM friend_request_
JOIN user_ u ON u.id = friend_request_.sender
WHERE friend_request_.receiver = $1
"#,
)
.bind(user_id)
.fetch_all(&db)
.await
.map_err(|_| {
(
StatusCode::INTERNAL_SERVER_ERROR,
"Could not list friend requests".into(),
)
})?;
Ok(Json(requests))
}
async fn send_request(
headers: HeaderMap,
Extension(db): Extension<PgPool>,
Json(payload): Json<SendFriendRequestPayload>,
) -> Result<(StatusCode, Json<FriendRequest>), (StatusCode, String)> {
let claims = verify_jwt(headers)?;
let sender_id = user_id_from_uuid(&db, claims.sub).await?;
let receiver_id = id_from_username(&db, payload.receiver_username).await?;
if sender_id == receiver_id {
return Err((
StatusCode::BAD_REQUEST,
"Cannot send a friend request to yourself".into(),
));
}
let is_already_friend = sqlx::query_scalar::<_, bool>(
r#"
SELECT EXISTS (
SELECT 1 FROM friendship_
WHERE (user_first = $1 AND user_second = $2)
OR (user_first = $2 AND user_second = $1)
)
"#,
)
.bind(sender_id)
.bind(receiver_id)
.fetch_one(&db)
.await
.map_err(|_| (StatusCode::INTERNAL_SERVER_ERROR, "Database error".into()))?;
if is_already_friend {
return Err((
StatusCode::CONFLICT,
"You are already friends with this user".into(),
));
}
sqlx::query("INSERT INTO friend_request_ (sender, receiver) VALUES ($1, $2)")
.bind(sender_id)
.bind(receiver_id)
.execute(&db)
.await
.map_err(|_| {
(
StatusCode::CONFLICT,
"You have already send a friend request to this user".into(),
)
})?;
Ok((
StatusCode::CREATED,
Json(FriendRequest {
sender_uuid: claims.sub,
sender_username: username_from_id(&db, receiver_id).await?,
}),
))
}
async fn accept_request(
headers: HeaderMap,
Extension(db): Extension<PgPool>,
Json(payload): Json<AcceptFriendRequestPayload>,
) -> Result<(StatusCode, Json<Friend>), (StatusCode, String)> {
let claims = verify_jwt(headers)?;
let receiver_id = user_id_from_uuid(&db, claims.sub).await?;
let sender_id = user_id_from_uuid(&db, payload.sender_uuid).await?;
let (first, second) = if sender_id < receiver_id {
(sender_id, receiver_id)
} else {
(receiver_id, sender_id)
};
let mut tx = db
.begin()
.await
.map_err(|_| (StatusCode::INTERNAL_SERVER_ERROR, "DB error".into()))?;
let rows = sqlx::query(
r#"
DELETE FROM friend_request_
WHERE sender = $1 AND receiver = $2
OR sender = $2 AND receiver = $1
"#,
)
.bind(sender_id)
.bind(receiver_id)
.execute(&mut *tx)
.await
.map_err(|_| (StatusCode::INTERNAL_SERVER_ERROR, "DB error".into()))?
.rows_affected();
if rows == 0 {
return Err((StatusCode::NOT_FOUND, "No such request".into()));
}
sqlx::query("INSERT INTO friendship_ (user_first, user_second) VALUES ($1, $2)")
.bind(first)
.bind(second)
.execute(&mut *tx)
.await
.map_err(|_| (StatusCode::CONFLICT, "Already friends".into()))?;
tx.commit().await.map_err(|_| {
(
StatusCode::INTERNAL_SERVER_ERROR,
"Could not accept friendship".into(),
)
})?;
Ok((
StatusCode::CREATED,
Json(Friend {
uuid: payload.sender_uuid,
username: username_from_uuid(&db, payload.sender_uuid).await?,
}),
))
}
async fn decline_request(
headers: HeaderMap,
Extension(db): Extension<PgPool>,
Json(payload): Json<DeclineFriendRequestPayload>,
) -> Result<StatusCode, (StatusCode, String)> {
let claims = verify_jwt(headers)?;
let receiver_id = user_id_from_uuid(&db, claims.sub).await?;
let sender_id = user_id_from_uuid(&db, payload.sender_uuid).await?;
let rows = sqlx::query(
r#"
DELETE FROM friend_request_
WHERE sender = $1 AND receiver = $2
OR sender = $2 AND receiver = $1
"#,
)
.bind(sender_id)
.bind(receiver_id)
.execute(&db)
.await
.map_err(|_| {
(
StatusCode::INTERNAL_SERVER_ERROR,
"Could not decline friend request".into(),
)
})?
.rows_affected();
if rows == 0 {
return Err((StatusCode::NOT_FOUND, "No such request".into()));
}
Ok(StatusCode::CREATED)
}
Reference in New Issue View Git Blame Copy Permalink