GeneIT/geneit_backend/src/controllers/families_controller.rs

use crate::constants::{StaticConstraints, FAMILY_INVITATION_CODE_LEN};
use crate::controllers::HttpResult;
use crate::extractors::family_extractor::{FamilyInPath, FamilyInPathWithAdminMembership};
use crate::models::UserID;
use crate::services::login_token_service::LoginToken;
use crate::services::rate_limiter_service::RatedAction;
use crate::services::{families_service, rate_limiter_service};
use crate::utils::string_utils::rand_str;
use actix_remote_ip::RemoteIP;
use actix_web::{web, HttpResponse};

#[derive(Debug, serde::Deserialize)]
pub struct CreateFamilyReq {
    name: String,
}

/// Create a new family
pub async fn create(req: web::Json<CreateFamilyReq>, token: LoginToken) -> HttpResult {
    if !StaticConstraints::default()
        .family_name_len
        .validate(&req.name)
    {
        return Ok(HttpResponse::BadRequest().body("Invalid family name!"));
    }

    let family = families_service::create(&req.name, token.user_id).await?;

    Ok(HttpResponse::Created().json(family))
}

#[derive(Debug, serde::Deserialize)]
pub struct JoinFamilyReq {
    code: String,
}

/// Join a family
pub async fn join(
    remote_ip: RemoteIP,
    req: web::Json<JoinFamilyReq>,
    token: LoginToken,
) -> HttpResult {
    // Rate limiting
    if rate_limiter_service::should_block_action(remote_ip.0, RatedAction::JoinFamily).await? {
        return Ok(HttpResponse::TooManyRequests().finish());
    }
    rate_limiter_service::record_action(remote_ip.0, RatedAction::JoinFamily).await?;

    let family = match families_service::get_by_invitation_code(&req.code).await {
        Ok(f) => f,
        Err(e) => {
            log::error!("Could not find family by invitation code! {e}");
            return Ok(HttpResponse::NotFound().finish());
        }
    };

    if families_service::is_member(family.id(), token.user_id).await? {
        log::error!(
            "Could not add {:?} to family {:?} because it is already a member of the family!",
            token.user_id,
            family.id()
        );
        return Ok(HttpResponse::Conflict().finish());
    }

    families_service::add_member(family.id(), token.user_id, false).await?;

    Ok(HttpResponse::Accepted().finish())
}

/// Get the list of families of the user
pub async fn list(token: LoginToken) -> HttpResult {
    Ok(
        HttpResponse::Ok()
            .json(families_service::get_user_family_memberships(token.user_id).await?),
    )
}

/// Get the information of a single family
pub async fn single_info(f: FamilyInPath) -> HttpResult {
    Ok(HttpResponse::Ok()
        .json(families_service::get_family_membership(f.family_id(), f.user_id()).await?))
}

/// Attempt to leave a family
pub async fn leave(f: FamilyInPath) -> HttpResult {
    families_service::remove_membership(f.family_id(), f.user_id()).await?;

    Ok(HttpResponse::Accepted().finish())
}

#[derive(serde::Deserialize)]
pub struct UpdateFamilyBody {
    name: String,
}

/// Update a family
pub async fn update(
    f: FamilyInPathWithAdminMembership,
    req: web::Json<UpdateFamilyBody>,
) -> HttpResult {
    let mut family = families_service::get_by_id(f.family_id()).await?;
    family.name = req.0.name;
    families_service::update_family(&family).await?;

    log::info!("User {:?} updated family {:?}", f.user_id(), f.family_id());

    Ok(HttpResponse::Accepted().finish())
}

/// Delete a family
pub async fn delete(f: FamilyInPathWithAdminMembership) -> HttpResult {
    families_service::delete_family(f.family_id()).await?;
    log::info!("User {:?} deleted family {:?}", f.user_id(), f.family_id());

    Ok(HttpResponse::Accepted().finish())
}

/// Renew (change) invitation code
pub async fn renew_invitation_code(f: FamilyInPathWithAdminMembership) -> HttpResult {
    let mut family = families_service::get_by_id(f.family_id()).await?;
    family.invitation_code = rand_str(FAMILY_INVITATION_CODE_LEN);
    families_service::update_family(&family).await?;

    log::info!(
        "User {:?} changed family {:?} invitation code",
        f.user_id(),
        f.family_id()
    );

    Ok(HttpResponse::Accepted().finish())
}

/// Get the list of users who belongs to a family
pub async fn users(f: FamilyInPath) -> HttpResult {
    Ok(HttpResponse::Ok().json(families_service::get_memberships_of_family(f.family_id()).await?))
}

#[derive(serde::Deserialize)]
pub struct UserIdInPath {
    user_id: UserID,
}

#[derive(serde::Deserialize)]
pub struct UpdateMembershipBody {
    is_admin: bool,
}

/// Update a membership
pub async fn update_membership(
    f: FamilyInPathWithAdminMembership,
    path: web::Path<UserIdInPath>,
    req: web::Json<UpdateMembershipBody>,
) -> HttpResult {
    // An admin can not update his own membership
    if path.user_id == f.user_id() {
        return Ok(HttpResponse::Conflict().body("You cannot update your own membership!"));
    }

    let mut membership = families_service::get_membership(f.family_id(), path.user_id).await?;
    membership.is_admin = req.is_admin;
    families_service::update_membership(&membership).await?;

    log::info!(
        "User {:?} updated the membership of user {:?} in the family {:?}",
        f.user_id(),
        path.user_id,
        f.family_id()
    );

    Ok(HttpResponse::Accepted().finish())
}

/// Delete a family membership
pub async fn delete_membership(
    f: FamilyInPathWithAdminMembership,
    path: web::Path<UserIdInPath>,
) -> HttpResult {
    // An admin can not remove his own membership
    if path.user_id == f.user_id() {
        return Ok(HttpResponse::Conflict().body("You cannot remove your own membership!"));
    }

    families_service::remove_membership(f.family_id(), path.user_id).await?;

    log::info!(
        "User {:?} removed the membership of user {:?} in the family {:?}",
        f.user_id(),
        path.user_id,
        f.family_id()
    );

    Ok(HttpResponse::Accepted().finish())
}
Add POST /family/{id}/renew_invitation_code route 2023-06-22 13:18:49 +00:00			`use crate::constants::{StaticConstraints, FAMILY_INVITATION_CODE_LEN};`
Can create a family 2023-06-16 15:51:51 +00:00			`use crate::controllers::HttpResult;`
Add DELETE /family/{id} route 2023-06-21 16:15:20 +00:00			`use crate::extractors::family_extractor::{FamilyInPath, FamilyInPathWithAdminMembership};`
Can update user membership 2023-06-22 14:03:11 +00:00			`use crate::models::UserID;`
Can create a family 2023-06-16 15:51:51 +00:00			`use crate::services::login_token_service::LoginToken;`
Can join a family 2023-06-17 16:55:07 +00:00			`use crate::services::rate_limiter_service::RatedAction;`
			`use crate::services::{families_service, rate_limiter_service};`
Add POST /family/{id}/renew_invitation_code route 2023-06-22 13:18:49 +00:00			`use crate::utils::string_utils::rand_str;`
Can join a family 2023-06-17 16:55:07 +00:00			`use actix_remote_ip::RemoteIP;`
Can create a family 2023-06-16 15:51:51 +00:00			`use actix_web::{web, HttpResponse};`

			`#[derive(Debug, serde::Deserialize)]`
			`pub struct CreateFamilyReq {`
			`name: String,`
			`}`

			`/// Create a new family`
			`pub async fn create(req: web::Json<CreateFamilyReq>, token: LoginToken) -> HttpResult {`
			`if !StaticConstraints::default()`
			`.family_name_len`
			`.validate(&req.name)`
			`{`
			`return Ok(HttpResponse::BadRequest().body("Invalid family name!"));`
			`}`

			`let family = families_service::create(&req.name, token.user_id).await?;`

			`Ok(HttpResponse::Created().json(family))`
			`}`
Can join a family 2023-06-17 16:55:07 +00:00
			`#[derive(Debug, serde::Deserialize)]`
			`pub struct JoinFamilyReq {`
			`code: String,`
			`}`

			`/// Join a family`
			`pub async fn join(`
			`remote_ip: RemoteIP,`
			`req: web::Json<JoinFamilyReq>,`
			`token: LoginToken,`
			`) -> HttpResult {`
			`// Rate limiting`
			`if rate_limiter_service::should_block_action(remote_ip.0, RatedAction::JoinFamily).await? {`
			`return Ok(HttpResponse::TooManyRequests().finish());`
			`}`
			`rate_limiter_service::record_action(remote_ip.0, RatedAction::JoinFamily).await?;`

			`let family = match families_service::get_by_invitation_code(&req.code).await {`
			`Ok(f) => f,`
			`Err(e) => {`
			`log::error!("Could not find family by invitation code! {e}");`
			`return Ok(HttpResponse::NotFound().finish());`
			`}`
			`};`

			`if families_service::is_member(family.id(), token.user_id).await? {`
			`log::error!(`
			`"Could not add {:?} to family {:?} because it is already a member of the family!",`
			`token.user_id,`
			`family.id()`
			`);`
			`return Ok(HttpResponse::Conflict().finish());`
			`}`

			`families_service::add_member(family.id(), token.user_id, false).await?;`

			`Ok(HttpResponse::Accepted().finish())`
			`}`
Add route /family/list 2023-06-20 16:55:14 +00:00
			`/// Get the list of families of the user`
			`pub async fn list(token: LoginToken) -> HttpResult {`
Add /family/{id}/info route 2023-06-21 14:36:46 +00:00			`Ok(`
			`HttpResponse::Ok()`
			`.json(families_service::get_user_family_memberships(token.user_id).await?),`
			`)`
			`}`

			`/// Get the information of a single family`
			`pub async fn single_info(f: FamilyInPath) -> HttpResult {`
			`Ok(HttpResponse::Ok()`
			`.json(families_service::get_family_membership(f.family_id(), f.user_id()).await?))`
Add route /family/list 2023-06-20 16:55:14 +00:00			`}`
Add /family/{id}/users route 2023-06-21 15:01:52 +00:00
Can leave a family 2023-06-21 15:35:07 +00:00			`/// Attempt to leave a family`
			`pub async fn leave(f: FamilyInPath) -> HttpResult {`
			`families_service::remove_membership(f.family_id(), f.user_id()).await?;`

			`Ok(HttpResponse::Accepted().finish())`
			`}`

Add PATCH /family/{id} route 2023-06-22 12:37:48 +00:00			`#[derive(serde::Deserialize)]`
			`pub struct UpdateFamilyBody {`
			`name: String,`
			`}`

			`/// Update a family`
			`pub async fn update(`
			`f: FamilyInPathWithAdminMembership,`
			`req: web::Json<UpdateFamilyBody>,`
			`) -> HttpResult {`
			`let mut family = families_service::get_by_id(f.family_id()).await?;`
			`family.name = req.0.name;`
			`families_service::update_family(&family).await?;`

			`log::info!("User {:?} updated family {:?}", f.user_id(), f.family_id());`

			`Ok(HttpResponse::Accepted().finish())`
			`}`

Add DELETE /family/{id} route 2023-06-21 16:15:20 +00:00			`/// Delete a family`
			`pub async fn delete(f: FamilyInPathWithAdminMembership) -> HttpResult {`
			`families_service::delete_family(f.family_id()).await?;`
			`log::info!("User {:?} deleted family {:?}", f.user_id(), f.family_id());`

			`Ok(HttpResponse::Accepted().finish())`
			`}`

Add POST /family/{id}/renew_invitation_code route 2023-06-22 13:18:49 +00:00			`/// Renew (change) invitation code`
			`pub async fn renew_invitation_code(f: FamilyInPathWithAdminMembership) -> HttpResult {`
			`let mut family = families_service::get_by_id(f.family_id()).await?;`
			`family.invitation_code = rand_str(FAMILY_INVITATION_CODE_LEN);`
			`families_service::update_family(&family).await?;`

			`log::info!(`
			`"User {:?} changed family {:?} invitation code",`
			`f.user_id(),`
			`f.family_id()`
			`);`

			`Ok(HttpResponse::Accepted().finish())`
			`}`

Add /family/{id}/users route 2023-06-21 15:01:52 +00:00			`/// Get the list of users who belongs to a family`
			`pub async fn users(f: FamilyInPath) -> HttpResult {`
			`Ok(HttpResponse::Ok().json(families_service::get_memberships_of_family(f.family_id()).await?))`
			`}`
Can update user membership 2023-06-22 14:03:11 +00:00
			`#[derive(serde::Deserialize)]`
			`pub struct UserIdInPath {`
			`user_id: UserID,`
			`}`

			`#[derive(serde::Deserialize)]`
			`pub struct UpdateMembershipBody {`
			`is_admin: bool,`
			`}`

			`/// Update a membership`
			`pub async fn update_membership(`
			`f: FamilyInPathWithAdminMembership,`
			`path: web::Path<UserIdInPath>,`
			`req: web::Json<UpdateMembershipBody>,`
			`) -> HttpResult {`
			`// An admin can not update his own membership`
			`if path.user_id == f.user_id() {`
			`return Ok(HttpResponse::Conflict().body("You cannot update your own membership!"));`
			`}`

			`let mut membership = families_service::get_membership(f.family_id(), path.user_id).await?;`
			`membership.is_admin = req.is_admin;`
			`families_service::update_membership(&membership).await?;`

Fix verbosity level 2023-06-22 14:04:23 +00:00			`log::info!(`
Can update user membership 2023-06-22 14:03:11 +00:00			`"User {:?} updated the membership of user {:?} in the family {:?}",`
			`f.user_id(),`
			`path.user_id,`
			`f.family_id()`
			`);`

			`Ok(HttpResponse::Accepted().finish())`
			`}`
Add DELETE /family/{id}/user/{user_id} route 2023-06-23 13:33:16 +00:00
			`/// Delete a family membership`
			`pub async fn delete_membership(`
			`f: FamilyInPathWithAdminMembership,`
			`path: web::Path<UserIdInPath>,`
			`) -> HttpResult {`
			`// An admin can not remove his own membership`
			`if path.user_id == f.user_id() {`
			`return Ok(HttpResponse::Conflict().body("You cannot remove your own membership!"));`
			`}`

			`families_service::remove_membership(f.family_id(), path.user_id).await?;`

			`log::info!(`
			`"User {:?} removed the membership of user {:?} in the family {:?}",`
			`f.user_id(),`
			`path.user_id,`
			`f.family_id()`
			`);`

			`Ok(HttpResponse::Accepted().finish())`
			`}`