1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
|
use std::{str::FromStr, sync::Arc};
use argon2::{
password_hash::{rand_core::OsRng, SaltString},
Argon2, PasswordHasher,
};
use axum::{extract::State, http::StatusCode, response::IntoResponse, Json};
use axum_extra::routing::TypedPath;
use serde::Deserialize;
use crate::{
model::{RegisterSchema, User},
state::AppState,
Error,
};
#[derive(Debug, Deserialize, TypedPath)]
#[typed_path("/api/register")]
pub struct Register;
impl Register {
#[tracing::instrument(skip(password))]
pub async fn post(
self,
State(state): State<Arc<AppState>>,
Json(RegisterSchema {
name,
email,
password,
}): Json<RegisterSchema>,
) -> impl IntoResponse {
email_address::EmailAddress::from_str(&email)?;
let exists: Option<bool> =
sqlx::query_scalar("SELECT EXISTS(SELECT 1 FROM users WHERE email = $1)")
.bind(email.to_ascii_lowercase())
.fetch_one(&state.pool)
.await?;
if exists.is_some_and(|b| b) {
return Err(Error::EmailExists);
}
let salt = SaltString::generate(&mut OsRng);
let password_hash = Argon2::default().hash_password(password.as_bytes(), &salt)?;
let user = sqlx::query_as!(
User,
"INSERT INTO users (name,email,password_hash) VALUES ($1, $2, $3) RETURNING *",
name,
email.to_ascii_lowercase(),
password_hash.to_string()
)
.fetch_one(&state.pool)
.await?;
Ok((StatusCode::CREATED, Json(user)))
}
}
#[cfg(test)]
mod tests {
use crate::init_router;
use super::*;
use axum::{
body::Body,
http::{header, Request, StatusCode},
};
use http_body_util::BodyExt;
use sqlx::PgPool;
use tower::ServiceExt;
const JWT_SECRET: &str = "test-jwt-secret-token";
const JWT_MAX_AGE: time::Duration = time::Duration::HOUR;
#[sqlx::test]
async fn test_register_created(pool: PgPool) -> Result<(), Error> {
let state = Arc::new(AppState {
pool,
jwt_secret: JWT_SECRET.to_string(),
jwt_max_age: JWT_MAX_AGE,
});
let router = init_router(state.clone());
let user = RegisterSchema {
name: "Arthur Dent".to_string(),
email: "adent@earth.sol".to_string(),
password: "solongandthanksforallthefish".to_string(),
};
let request = Request::builder()
.uri("/api/register")
.method("POST")
.header(header::CONTENT_TYPE, mime::APPLICATION_JSON.as_ref())
.body(Body::from(serde_json::to_vec(&user).unwrap()))?;
let response = router.oneshot(request).await.unwrap();
assert_eq!(StatusCode::CREATED, response.status());
let body_bytes = response.into_body().collect().await?.to_bytes();
let User { name, email, .. } = serde_json::from_slice(&body_bytes)?;
assert_eq!(user.name, name);
assert_eq!(user.email, email);
Ok(())
}
#[sqlx::test(fixtures(path = "../../fixtures", scripts("users")))]
async fn test_register_conflict(pool: PgPool) -> Result<(), Error> {
let state = Arc::new(AppState {
pool,
jwt_secret: JWT_SECRET.to_string(),
jwt_max_age: JWT_MAX_AGE,
});
let router = init_router(state.clone());
let user = RegisterSchema {
name: "Arthur Dent".to_string(),
email: "adent@earth.sol".to_string(),
password: "solongandthanksforallthefish".to_string(),
};
let request = Request::builder()
.uri("/api/register")
.method("POST")
.header(header::CONTENT_TYPE, mime::APPLICATION_JSON.as_ref())
.body(Body::from(serde_json::to_vec(&user).unwrap()))?;
let response = router.oneshot(request).await.unwrap();
assert_eq!(StatusCode::CONFLICT, response.status());
Ok(())
}
}
|
