GeneIT/geneit_backend/src/controllers/auth_controller.rs

use crate::constants::StaticConstraints;
use crate::controllers::HttpResult;
use crate::services::rate_limiter_service::RatedAction;
use crate::services::{rate_limiter_service, users_service};
use actix_remote_ip::RemoteIP;
use actix_web::{web, HttpResponse};

#[derive(serde::Deserialize)]
pub struct CreateAccountBody {
    name: String,
    email: String,
}

/// Create a new account
pub async fn create_account(remote_ip: RemoteIP, req: web::Json<CreateAccountBody>) -> HttpResult {
    // Rate limiting
    if rate_limiter_service::should_block_action(remote_ip.0, RatedAction::CreateAccount).await? {
        return Ok(HttpResponse::TooManyRequests().finish());
    }
    rate_limiter_service::record_action(remote_ip.0, RatedAction::CreateAccount).await?;

    // Check if email is valid
    if !mailchecker::is_valid(&req.email) {
        return Ok(HttpResponse::BadRequest().json("Email address is invalid!"));
    }

    // Check parameters
    let constraints = StaticConstraints::default();
    if !constraints.user_name_len.validate(&req.name) || !constraints.mail_len.validate(&req.email)
    {
        return Ok(HttpResponse::BadRequest().json("Size constraints were not respected!"));
    }

    // Check if email is already attached to an account
    if users_service::exists_email(&req.email).await? {
        return Ok(
            HttpResponse::Conflict().json("An account with the same email address already exists!")
        );
    }

    // Create the account
    let user_id = users_service::create_account(&req.name, &req.email).await?;

    // TODO : trigger reset password (send mail)

    // Account successfully created
    Ok(HttpResponse::Created().finish())
}
Basic create user account 2023-05-24 14:19:46 +00:00			`use crate::constants::StaticConstraints;`
Add rate limiting 2023-05-26 15:55:19 +00:00			`use crate::controllers::HttpResult;`
			`use crate::services::rate_limiter_service::RatedAction;`
			`use crate::services::{rate_limiter_service, users_service};`
Basic create user account 2023-05-24 14:19:46 +00:00			`use actix_remote_ip::RemoteIP;`
			`use actix_web::{web, HttpResponse};`

			`#[derive(serde::Deserialize)]`
			`pub struct CreateAccountBody {`
			`name: String,`
			`email: String,`
			`}`

			`/// Create a new account`
Add rate limiting 2023-05-26 15:55:19 +00:00			`pub async fn create_account(remote_ip: RemoteIP, req: web::Json<CreateAccountBody>) -> HttpResult {`
			`// Rate limiting`
			`if rate_limiter_service::should_block_action(remote_ip.0, RatedAction::CreateAccount).await? {`
			`return Ok(HttpResponse::TooManyRequests().finish());`
			`}`
			`rate_limiter_service::record_action(remote_ip.0, RatedAction::CreateAccount).await?;`
Basic create user account 2023-05-24 14:19:46 +00:00
Check email 2023-05-25 07:22:49 +00:00			`// Check if email is valid`
			`if !mailchecker::is_valid(&req.email) {`
			`return Ok(HttpResponse::BadRequest().json("Email address is invalid!"));`
			`}`
Basic create user account 2023-05-24 14:19:46 +00:00
			`// Check parameters`
			`let constraints = StaticConstraints::default();`
			`if !constraints.user_name_len.validate(&req.name) \|\| !constraints.mail_len.validate(&req.email)`
			`{`
			`return Ok(HttpResponse::BadRequest().json("Size constraints were not respected!"));`
			`}`

Check for duplicate email 2023-05-25 07:42:43 +00:00			`// Check if email is already attached to an account`
Add rate limiting 2023-05-26 15:55:19 +00:00			`if users_service::exists_email(&req.email).await? {`
			`return Ok(`
			`HttpResponse::Conflict().json("An account with the same email address already exists!")`
			`);`
Check for duplicate email 2023-05-25 07:42:43 +00:00			`}`
Basic create user account 2023-05-24 14:19:46 +00:00
Check for duplicate email 2023-05-25 07:42:43 +00:00			`// Create the account`
Add rate limiting 2023-05-26 15:55:19 +00:00			`let user_id = users_service::create_account(&req.name, &req.email).await?;`
Basic create user account 2023-05-24 14:19:46 +00:00
			`// TODO : trigger reset password (send mail)`

			`// Account successfully created`
			`Ok(HttpResponse::Created().finish())`
			`}`