feat(rocie-server): Implement basic user handling and authentication

8 files changed, 598 insertions, 0 deletions

diff --git a/crates/rocie-server/src/api/set/auth/barcode.rs b/crates/rocie-server/src/api/set/auth/barcode.rs
new file mode 100644
index 0000000..1d97852
--- /dev/null
+++ b/crates/rocie-server/src/api/set/auth/barcode.rs
@@ -0,0 +1,125 @@
+use actix_identity::Identity;
+use actix_web::{HttpResponse, Responder, Result, post, web};
+use log::debug;
+
+use crate::{
+    app::App,
+    storage::sql::{
+        barcode::{Barcode, BarcodeId, BarcodeIdStub},
+        insert::Operations,
+        unit::UnitAmount,
+    },
+};
+
+/// Buy an barcode
+#[utoipa::path(
+    responses(
+        (
+            status = OK,
+            description = "Barcode successfully bought",
+        ),
+        (
+            status = NOT_FOUND,
+            description = "Barcode id was not found",
+        ),
+        (
+            status = UNAUTHORIZED,
+            description = "You did not login before calling this endpoint",
+        ),
+        (
+            status = INTERNAL_SERVER_ERROR,
+            description = "Server encountered error",
+            body = String,
+        )
+    ),
+    params(
+        (
+            "barcode_id" = BarcodeId,
+            description = "The numeric value of the barcode"
+        ),
+        (
+            "times" = u16,
+            description = "How often to buy the barcode"
+        ),
+    )
+)]
+#[post("/barcode/{barcode_id}/buy/{times}")]
+pub(crate) async fn buy_barcode(
+    app: web::Data<App>,
+    path: web::Path<(BarcodeIdStub, u16)>,
+    _user: Identity,
+) -> Result<impl Responder> {
+    let (barcode_id, times) = path.into_inner();
+
+    let mut ops = Operations::new("buy barcode unit");
+
+    let barcode = Barcode::from_id(&app, barcode_id.into()).await?;
+
+    match barcode {
+        Some(barcode) => {
+            for _ in 0..times {
+                barcode.buy(&mut ops);
+            }
+
+            ops.apply(&app).await?;
+
+            Ok(HttpResponse::Ok().finish())
+        }
+        None => Ok(HttpResponse::NotFound().finish()),
+    }
+}
+
+/// Consume an barcode
+#[utoipa::path(
+    responses(
+        (
+            status = OK,
+            description = "Barcode successfully consumed",
+        ),
+        (
+            status = NOT_FOUND,
+            description = "Barcode id was not found",
+        ),
+        (
+            status = UNAUTHORIZED,
+            description = "You did not login before calling this endpoint",
+        ),
+        (
+            status = INTERNAL_SERVER_ERROR,
+            description = "Server encountered error",
+            body = String,
+        )
+    ),
+    params(
+        (
+            "id" = BarcodeId,
+            description = "The numeric value of the barcode"
+        ),
+    ),
+    request_body = UnitAmount,
+)]
+#[post("/barcode/{id}/consume")]
+pub(crate) async fn consume_barcode(
+    app: web::Data<App>,
+    barcode_id: web::Path<BarcodeIdStub>,
+    unit_amount: web::Json<UnitAmount>,
+    _user: Identity,
+) -> Result<impl Responder> {
+    let mut ops = Operations::new("consume barcode unit");
+
+    let barcode = Barcode::from_id(&app, barcode_id.into_inner().into()).await?;
+    debug!("Starting consume for barcode: {barcode:?}");
+
+    match barcode {
+        Some(barcode) => {
+            barcode
+                .consume(&app, unit_amount.into_inner(), &mut ops)
+                .await?;
+
+            ops.apply(&app).await?;
+
+            Ok(HttpResponse::Ok().finish())
+        }
+        None => Ok(HttpResponse::NotFound().finish()),
+    }
+}
diff --git a/crates/rocie-server/src/api/set/auth/mod.rs b/crates/rocie-server/src/api/set/auth/mod.rs
new file mode 100644
index 0000000..4e733a9
--- /dev/null
+++ b/crates/rocie-server/src/api/set/auth/mod.rs
@@ -0,0 +1,21 @@
+use actix_web::web;
+
+pub(crate) mod barcode;
+pub(crate) mod product;
+pub(crate) mod product_parent;
+pub(crate) mod recipe;
+pub(crate) mod unit;
+pub(crate) mod unit_property;
+pub(crate) mod user;
+
+pub(crate) fn register_paths(cfg: &mut web::ServiceConfig) {
+    cfg.service(product::register_product)
+        .service(product::associate_barcode)
+        .service(product_parent::register_product_parent)
+        .service(recipe::add_recipe)
+        .service(unit::register_unit)
+        .service(unit_property::register_unit_property)
+        .service(barcode::consume_barcode)
+        .service(barcode::buy_barcode)
+        .service(user::register_user);
+}
diff --git a/crates/rocie-server/src/api/set/auth/product.rs b/crates/rocie-server/src/api/set/auth/product.rs
new file mode 100644
index 0000000..b2a751f
--- /dev/null
+++ b/crates/rocie-server/src/api/set/auth/product.rs
@@ -0,0 +1,138 @@
+use actix_identity::Identity;
+use actix_web::{HttpResponse, Responder, Result, post, web};
+use serde::Deserialize;
+use utoipa::ToSchema;
+
+use crate::{
+    app::App,
+    storage::sql::{
+        barcode::Barcode,
+        insert::Operations,
+        product::{Product, ProductId, ProductIdStub},
+        product_parent::ProductParentId,
+        unit::Unit,
+        unit_property::UnitPropertyId,
+    },
+};
+
+#[derive(Deserialize, ToSchema)]
+struct ProductStub {
+    /// The name of the product
+    name: String,
+
+    /// The Unit Property to use for this product.
+    unit_property: UnitPropertyId,
+
+    /// A description.
+    #[schema(nullable = false)]
+    description: Option<String>,
+
+    /// A parent of this product, otherwise the parent will be the root of the parent tree.
+    #[schema(nullable = false)]
+    parent: Option<ProductParentId>,
+}
+
+/// Register a product
+#[utoipa::path(
+    responses(
+        (
+            status = 200,
+            description = "Product successfully registered in database",
+            body = ProductId,
+        ),
+        (
+            status = UNAUTHORIZED,
+            description = "You did not login before calling this endpoint",
+        ),
+        (
+            status = INTERNAL_SERVER_ERROR,
+            description = "Server encountered error",
+            body = String,
+        )
+    ),
+    request_body = ProductStub,
+)]
+#[post("/product/new")]
+pub(crate) async fn register_product(
+    app: web::Data<App>,
+    product_stub: web::Json<ProductStub>,
+    _user: Identity,
+) -> Result<impl Responder> {
+    let product_stub = product_stub.into_inner();
+    let mut ops = Operations::new("register product");
+
+    let product = Product::register(
+        product_stub.name,
+        product_stub.description,
+        product_stub.parent,
+        product_stub.unit_property,
+        &mut ops,
+    );
+
+    ops.apply(&app).await?;
+
+    Ok(HttpResponse::Ok().json(product.id))
+}
+
+/// Associate a barcode with a product
+#[utoipa::path(
+    responses(
+        (
+            status = OK,
+            description = "Barcode successfully associated with product",
+        ),
+        (
+            status = NOT_FOUND,
+            description = "Product id not found in database",
+        ),
+        (
+            status = UNAUTHORIZED,
+            description = "You did not login before calling this endpoint",
+        ),
+        (
+            status = BAD_REQUEST,
+            description = "Unit used in request has not been registered yet",
+            body = String,
+        ),
+        (
+            status = INTERNAL_SERVER_ERROR,
+            description = "Server encountered error",
+            body = String,
+        )
+    ),
+    params (
+        (
+            "id" = ProductId,
+            description = "The id of the product to associated the barcode with"
+        ),
+    ),
+    request_body = Barcode,
+)]
+#[post("/product/{id}/associate")]
+pub(crate) async fn associate_barcode(
+    app: web::Data<App>,
+    id: web::Path<ProductIdStub>,
+    barcode: web::Json<Barcode>,
+    _user: Identity,
+) -> Result<impl Responder> {
+    let mut ops = Operations::new("associated barcode with product");
+
+    {
+        let units = Unit::get_all(&app).await?;
+        if !units.into_iter().any(|unit| unit.id == barcode.amount.unit) {
+            return Ok(HttpResponse::BadRequest()
+                .body("The used unit has not been registered; it cannot be used.\n"));
+        }
+    }
+
+    match Product::from_id(&app, id.into_inner().into()).await? {
+        Some(product) => {
+            product.associate_barcode(barcode.into_inner(), &mut ops);
+
+            ops.apply(&app).await?;
+
+            Ok(HttpResponse::Ok().finish())
+        }
+        None => Ok(HttpResponse::NotFound().finish()),
+    }
+}
diff --git a/crates/rocie-server/src/api/set/auth/product_parent.rs b/crates/rocie-server/src/api/set/auth/product_parent.rs
new file mode 100644
index 0000000..416875b
--- /dev/null
+++ b/crates/rocie-server/src/api/set/auth/product_parent.rs
@@ -0,0 +1,67 @@
+use actix_identity::Identity;
+use actix_web::{HttpResponse, Responder, Result, post, web};
+use serde::Deserialize;
+use utoipa::ToSchema;
+
+use crate::{
+    app::App,
+    storage::sql::{
+        insert::Operations,
+        product_parent::{ProductParent, ProductParentId},
+    },
+};
+
+#[derive(Deserialize, ToSchema)]
+struct ProductParentStub {
+    /// The name of the product parent
+    name: String,
+
+    /// A description.
+    #[schema(nullable = false)]
+    description: Option<String>,
+
+    /// A parent of this product parent, otherwise the parent will be the root of the parent tree.
+    #[schema(nullable = false)]
+    parent: Option<ProductParentId>,
+}
+
+/// Register a product parent
+#[utoipa::path(
+    responses(
+        (
+            status = OK,
+            description = "Product parent successfully registered in database",
+            body = ProductParentId,
+        ),
+        (
+            status = UNAUTHORIZED,
+            description = "You did not login before calling this endpoint",
+        ),
+        (
+            status = INTERNAL_SERVER_ERROR,
+            description = "Server encountered error",
+            body = String,
+        )
+    ),
+    request_body = ProductParentStub,
+)]
+#[post("/product_parent/new")]
+pub(crate) async fn register_product_parent(
+    app: web::Data<App>,
+    product_stub: web::Json<ProductParentStub>,
+    _user: Identity,
+) -> Result<impl Responder> {
+    let product_stub = product_stub.into_inner();
+    let mut ops = Operations::new("register product parent");
+
+    let product = ProductParent::register(
+        product_stub.name,
+        product_stub.description,
+        product_stub.parent,
+        &mut ops,
+    );
+
+    ops.apply(&app).await?;
+
+    Ok(HttpResponse::Ok().json(product.id))
+}
diff --git a/crates/rocie-server/src/api/set/auth/recipe.rs b/crates/rocie-server/src/api/set/auth/recipe.rs
new file mode 100644
index 0000000..43a034e
--- /dev/null
+++ b/crates/rocie-server/src/api/set/auth/recipe.rs
@@ -0,0 +1,60 @@
+use std::path::PathBuf;
+
+use actix_identity::Identity;
+use actix_web::{HttpResponse, Responder, error::Result, post, web};
+use serde::Deserialize;
+use utoipa::ToSchema;
+
+use crate::{
+    app::App,
+    storage::sql::{
+        insert::Operations,
+        recipe::{Recipe, RecipeId},
+    },
+};
+
+#[derive(Deserialize, ToSchema)]
+struct RecipeStub {
+    /// The path the recipe should have
+    #[schema(value_type = String)]
+    path: PathBuf,
+
+    /// The content of this recipe, in cooklang format
+    content: String,
+}
+
+/// Register a product parent
+#[utoipa::path(
+    responses(
+        (
+            status = OK,
+            description = "Product parent successfully registered in database",
+            body = RecipeId,
+        ),
+        (
+            status = UNAUTHORIZED,
+            description = "You did not login before calling this endpoint",
+        ),
+        (
+            status = INTERNAL_SERVER_ERROR,
+            description = "Server encountered error",
+            body = String,
+        )
+    ),
+    request_body = RecipeStub,
+)]
+#[post("/recipe/new")]
+pub(crate) async fn add_recipe(
+    app: web::Data<App>,
+    stub: web::Json<RecipeStub>,
+    _user: Identity,
+) -> Result<impl Responder> {
+    let stub = stub.into_inner();
+    let mut ops = Operations::new("add recipe parent");
+
+    let recipe = Recipe::new(stub.path, stub.content, &mut ops);
+
+    ops.apply(&app).await?;
+
+    Ok(HttpResponse::Ok().json(recipe.id))
+}
diff --git a/crates/rocie-server/src/api/set/auth/unit.rs b/crates/rocie-server/src/api/set/auth/unit.rs
new file mode 100644
index 0000000..21d1e11
--- /dev/null
+++ b/crates/rocie-server/src/api/set/auth/unit.rs
@@ -0,0 +1,67 @@
+use actix_identity::Identity;
+use actix_web::{HttpResponse, Responder, Result, post, web};
+use serde::Deserialize;
+use utoipa::ToSchema;
+
+use crate::{
+    app::App,
+    storage::sql::{
+        insert::Operations,
+        unit::{Unit, UnitId},
+        unit_property::UnitPropertyId,
+    },
+};
+
+#[derive(Deserialize, ToSchema)]
+struct UnitStub {
+    full_name_plural: String,
+    full_name_singular: String,
+    short_name: String,
+    unit_property: UnitPropertyId,
+
+    #[schema(nullable = false)]
+    description: Option<String>,
+}
+
+/// Register an Unit
+#[utoipa::path(
+    responses(
+        (
+            status = OK,
+            description = "Unit successfully registered in database",
+            body = UnitId,
+        ),
+        (
+            status = UNAUTHORIZED,
+            description = "You did not login before calling this endpoint",
+        ),
+        (
+            status = INTERNAL_SERVER_ERROR,
+            description = "Server encountered error",
+            body = String,
+        )
+    ),
+    request_body = UnitStub,
+)]
+#[post("/unit/new")]
+pub(crate) async fn register_unit(
+    app: web::Data<App>,
+    unit: web::Json<UnitStub>,
+    _user: Identity,
+) -> Result<impl Responder> {
+    let unit = unit.into_inner();
+    let mut ops = Operations::new("register unit");
+
+    let unit = Unit::register(
+        unit.full_name_singular,
+        unit.full_name_plural,
+        unit.short_name,
+        unit.description,
+        unit.unit_property,
+        &mut ops,
+    );
+
+    ops.apply(&app).await?;
+
+    Ok(HttpResponse::Ok().json(unit.id))
+}
diff --git a/crates/rocie-server/src/api/set/auth/unit_property.rs b/crates/rocie-server/src/api/set/auth/unit_property.rs
new file mode 100644
index 0000000..2958e1f
--- /dev/null
+++ b/crates/rocie-server/src/api/set/auth/unit_property.rs
@@ -0,0 +1,57 @@
+use actix_identity::Identity;
+use actix_web::{HttpResponse, Responder, Result, post, web};
+use serde::Deserialize;
+use utoipa::ToSchema;
+
+use crate::{
+    app::App,
+    storage::sql::{
+        insert::Operations,
+        unit_property::{UnitProperty, UnitPropertyId},
+    },
+};
+
+#[derive(Deserialize, ToSchema)]
+struct UnitPropertyStub {
+    /// The name of the unit property.
+    name: String,
+
+    /// An optional description of the unit property.
+    #[schema(nullable = false)]
+    description: Option<String>,
+}
+
+/// Register an Unit Property
+#[utoipa::path(
+    responses(
+        (
+            status = OK,
+            description = "Unit property successfully registered in database",
+            body = UnitPropertyId,
+        ),
+        (
+            status = UNAUTHORIZED,
+            description = "You did not login before calling this endpoint",
+        ),
+        (
+            status = INTERNAL_SERVER_ERROR,
+            description = "Server encountered error",
+            body = String,
+        )
+    ),
+    request_body = UnitPropertyStub,
+)]
+#[post("/unit-property/new")]
+pub(crate) async fn register_unit_property(
+    app: web::Data<App>,
+    unit: web::Json<UnitPropertyStub>,
+    _user: Identity,
+) -> Result<impl Responder> {
+    let mut ops = Operations::new("register unit property");
+
+    let unit = UnitProperty::register(unit.name.clone(), unit.description.clone(), &mut ops);
+
+    ops.apply(&app).await?;
+
+    Ok(HttpResponse::Ok().json(unit.id))
+}
diff --git a/crates/rocie-server/src/api/set/auth/user.rs b/crates/rocie-server/src/api/set/auth/user.rs
new file mode 100644
index 0000000..1f262d5
--- /dev/null
+++ b/crates/rocie-server/src/api/set/auth/user.rs
@@ -0,0 +1,63 @@
+use actix_identity::Identity;
+use actix_web::{HttpResponse, Responder, Result, post, web};
+use serde::Deserialize;
+use utoipa::ToSchema;
+
+use crate::{
+    app::App,
+    storage::sql::{
+        insert::Operations,
+        user::{PasswordHash, User, UserId},
+    },
+};
+
+#[derive(Deserialize, ToSchema)]
+pub(crate) struct UserStub {
+    /// The name of the new user.
+    pub(crate) name: String,
+
+    /// The password of the new user.
+    pub(crate) password: String,
+
+    /// An optional description of the new user.
+    #[schema(nullable = false)]
+    pub(crate) description: Option<String>,
+}
+
+/// Register an new User
+#[utoipa::path(
+    responses(
+        (
+            status = OK,
+            description = "User successfully registered in database",
+            body = UserId,
+        ),
+        (
+            status = UNAUTHORIZED,
+            description = "You did not login before calling this endpoint",
+        ),
+        (
+            status = INTERNAL_SERVER_ERROR,
+            description = "Server encountered error",
+            body = String,
+        )
+    ),
+    request_body = UserStub,
+)]
+#[post("/user/new")]
+pub(crate) async fn register_user(
+    app: web::Data<App>,
+    new_user: web::Json<UserStub>,
+    _user: Identity,
+) -> Result<impl Responder> {
+    let user = new_user.into_inner();
+
+    let mut ops = Operations::new("register user");
+
+    let password_hash = PasswordHash::from_password(&user.password);
+    let user = User::register(user.name, password_hash, user.description, &mut ops);
+
+    ops.apply(&app).await?;
+
+    Ok(HttpResponse::Ok().json(user.id))
+}