| @@ -1,6 +1,7 @@ | ||||
| use clap::Parser; | ||||
| use serde::Deserialize; | ||||
| use std::{ | ||||
|     error::Error, | ||||
|     fs, | ||||
|     net::{IpAddr, Ipv4Addr}, | ||||
|     path::PathBuf, | ||||
| @@ -56,8 +57,10 @@ pub struct Config { | ||||
|     pub redis: RedisConfig, | ||||
| } | ||||
|  | ||||
| impl Config { | ||||
|     pub fn from_yaml(path: &PathBuf) -> Result<Self, Box<dyn std::error::Error>> { | ||||
| impl TryFrom<&PathBuf> for Config { | ||||
|     type Error = Box<dyn Error + Send + Sync>; | ||||
|  | ||||
|     fn try_from(path: &PathBuf) -> Result<Self, Self::Error> { | ||||
|         let contents = fs::read_to_string(path)?; | ||||
|         let config = serde_yaml::from_str(&contents)?; | ||||
|         Ok(config) | ||||
|   | ||||
| @@ -22,8 +22,8 @@ async fn main() { | ||||
|     let args = Args::parse(); | ||||
|     log4rs::init_file(args.log_config, Deserializers::default()).unwrap(); | ||||
|  | ||||
|     let config = Config::from_yaml(&args.config).unwrap(); | ||||
|     let state = State::from_config(config.clone()).await.unwrap(); | ||||
|     let config = Config::try_from(&args.config).unwrap(); | ||||
|     let state = State::from_config(config.clone()).await; | ||||
|  | ||||
|     let routes = routes::routes(state); | ||||
|     let app = axum::Router::new().nest(&format!("{}/api", config.server.subpath), routes); | ||||
|   | ||||
							
								
								
									
										15
									
								
								src/models/invites.rs
									
									
									
									
									
										Normal file
									
								
							
							
						
						
									
										15
									
								
								src/models/invites.rs
									
									
									
									
									
										Normal file
									
								
							| @@ -0,0 +1,15 @@ | ||||
| use redis_macros::{FromRedisValue, ToRedisArgs}; | ||||
| use serde::{Deserialize, Serialize}; | ||||
| use time::UtcDateTime; | ||||
| use uuid::Uuid; | ||||
|  | ||||
| #[derive(Serialize, Deserialize, FromRedisValue, ToRedisArgs)] | ||||
| struct Invite { | ||||
|     id: Uuid, | ||||
|     groups: Vec<String>, | ||||
|     emails: Vec<String>, | ||||
|     uses: i64, | ||||
|     max_uses: Option<i64>, | ||||
|     created_at: UtcDateTime, | ||||
|     expires_at: Option<UtcDateTime>, | ||||
| } | ||||
| @@ -1,3 +1,4 @@ | ||||
| pub mod authelia; | ||||
| pub mod groups; | ||||
| pub mod invites; | ||||
| pub mod users; | ||||
|   | ||||
							
								
								
									
										96
									
								
								src/state.rs
									
									
									
									
									
								
							
							
						
						
									
										96
									
								
								src/state.rs
									
									
									
									
									
								
							| @@ -1,5 +1,3 @@ | ||||
| use std::error::Error; | ||||
|  | ||||
| use async_redis_session::RedisSessionStore; | ||||
| use axum::extract::FromRef; | ||||
| use openidconnect::{ | ||||
| @@ -12,7 +10,8 @@ use openidconnect::{ | ||||
|     }, | ||||
|     reqwest, | ||||
| }; | ||||
| use redis::aio::MultiplexedConnection; | ||||
| use redis::{self, AsyncCommands}; | ||||
| use tokio::spawn; | ||||
|  | ||||
| use crate::config::Config; | ||||
|  | ||||
| @@ -48,23 +47,23 @@ pub struct State { | ||||
|     pub config: Config, | ||||
|     pub oauth_http_client: reqwest::Client, | ||||
|     pub oauth_client: OAuthClient, | ||||
|     pub redis_client: MultiplexedConnection, | ||||
|     pub redis_client: redis::aio::MultiplexedConnection, | ||||
|     pub session_store: RedisSessionStore, | ||||
| } | ||||
|  | ||||
| impl State { | ||||
|     pub async fn from_config(config: Config) -> Result<Self, Box<dyn Error + Send + Sync>> { | ||||
|         let (oauth_http_client, oauth_client) = oauth_client(&config).await?; | ||||
|         let redis_client = redis_client(&config).await?; | ||||
|         let session_store = session_store(&config)?; | ||||
|     pub async fn from_config(config: Config) -> Self { | ||||
|         let (oauth_http_client, oauth_client) = oauth_client(&config).await; | ||||
|         let redis_client = redis_client(&config).await; | ||||
|         let session_store = session_store(&config); | ||||
|  | ||||
|         Ok(Self { | ||||
|         Self { | ||||
|             config, | ||||
|             oauth_http_client, | ||||
|             oauth_client, | ||||
|             redis_client, | ||||
|             session_store, | ||||
|         }) | ||||
|         } | ||||
|     } | ||||
| } | ||||
|  | ||||
| @@ -86,7 +85,7 @@ impl FromRef<State> for OAuthClient { | ||||
|     } | ||||
| } | ||||
|  | ||||
| impl FromRef<State> for MultiplexedConnection { | ||||
| impl FromRef<State> for redis::aio::MultiplexedConnection { | ||||
|     fn from_ref(state: &State) -> Self { | ||||
|         state.redis_client.clone() | ||||
|     } | ||||
| @@ -98,53 +97,88 @@ impl FromRef<State> for RedisSessionStore { | ||||
|     } | ||||
| } | ||||
|  | ||||
| async fn oauth_client( | ||||
|     config: &Config, | ||||
| ) -> Result<(reqwest::Client, OAuthClient), Box<dyn Error + Send + Sync>> { | ||||
| async fn oauth_client(config: &Config) -> (reqwest::Client, OAuthClient) { | ||||
|     let oauth_http_client = reqwest::ClientBuilder::new() | ||||
|         .redirect(reqwest::redirect::Policy::none()) | ||||
|         .danger_accept_invalid_certs(config.oauth.insecure) | ||||
|         .build()?; | ||||
|         .build() | ||||
|         .unwrap(); | ||||
|  | ||||
|     let provider_metadata = CoreProviderMetadata::discover_async( | ||||
|         IssuerUrl::new(config.oauth.issuer_url.clone())?, | ||||
|         IssuerUrl::new(config.oauth.issuer_url.clone()).unwrap(), | ||||
|         &oauth_http_client, | ||||
|     ) | ||||
|     .await?; | ||||
|     .await | ||||
|     .unwrap(); | ||||
|  | ||||
|     let oauth_client = OAuthClient::from_provider_metadata( | ||||
|         provider_metadata, | ||||
|         ClientId::new(config.oauth.client_id.clone()), | ||||
|         Some(ClientSecret::new(config.oauth.client_secret.clone())), | ||||
|     ) | ||||
|     .set_redirect_uri(RedirectUrl::new(format!( | ||||
|         "{}{}/api/auth/callback", | ||||
|         config.server.host, config.server.subpath | ||||
|     ))?); | ||||
|     .set_redirect_uri( | ||||
|         RedirectUrl::new(format!( | ||||
|             "{}{}/api/auth/callback", | ||||
|             config.server.host, config.server.subpath | ||||
|         )) | ||||
|         .unwrap(), | ||||
|     ); | ||||
|  | ||||
|     Ok((oauth_http_client, oauth_client)) | ||||
|     (oauth_http_client, oauth_client) | ||||
| } | ||||
|  | ||||
| async fn redis_client( | ||||
|     config: &Config, | ||||
| ) -> Result<MultiplexedConnection, Box<dyn Error + Send + Sync>> { | ||||
| async fn redis_client(config: &Config) -> redis::aio::MultiplexedConnection { | ||||
|     let url = format!( | ||||
|         "redis://{}:{}/{}", | ||||
|         config.redis.host, config.redis.port, config.redis.database | ||||
|     ); | ||||
|  | ||||
|     let client = redis::Client::open(url)?; | ||||
|     let connection = client.get_multiplexed_async_connection().await?; | ||||
|     let client = redis::Client::open(url).unwrap(); | ||||
|     let mut connection = client.get_multiplexed_async_connection().await.unwrap(); | ||||
|  | ||||
|     Ok(connection) | ||||
|     let _: () = redis::cmd("CONFIG") | ||||
|         .arg("SET") | ||||
|         .arg("notify-keyspace-events") | ||||
|         .arg("Ex") | ||||
|         .query_async(&mut connection) | ||||
|         .await | ||||
|         .unwrap(); | ||||
|  | ||||
|     let database = config.redis.database.to_string(); | ||||
|     spawn(async move { | ||||
|         let (tx, mut rx) = tokio::sync::mpsc::unbounded_channel(); | ||||
|         let rconfig = redis::AsyncConnectionConfig::new().set_push_sender(tx); | ||||
|         let mut connection = client | ||||
|             .get_multiplexed_async_connection_with_config(&rconfig) | ||||
|             .await | ||||
|             .unwrap(); | ||||
|  | ||||
|         let channel = format!("__keyevent@{}__:expired", database); | ||||
|         connection.subscribe(&[channel]).await.unwrap(); | ||||
|  | ||||
|         while let Some(msg) = rx.recv().await { | ||||
|             if let Some(msg) = redis::Msg::from_push_info(msg) { | ||||
|                 if let Ok(key) = msg.get_payload::<String>() { | ||||
|                     if !key.starts_with("invite:") { | ||||
|                         continue; | ||||
|                     } | ||||
|  | ||||
|                     let id = key.trim_start_matches("invite:").to_string(); | ||||
|                     let _: i64 = connection.srem("invite:all", id).await.unwrap(); | ||||
|                 } | ||||
|             } | ||||
|         } | ||||
|     }); | ||||
|  | ||||
|     connection | ||||
| } | ||||
|  | ||||
| fn session_store(config: &Config) -> Result<RedisSessionStore, Box<dyn Error + Send + Sync>> { | ||||
| fn session_store(config: &Config) -> RedisSessionStore { | ||||
|     let url = format!( | ||||
|         "redis://{}:{}/{}", | ||||
|         config.redis.host, config.redis.port, config.redis.database | ||||
|     ); | ||||
|     let session_store = RedisSessionStore::new(url)?.with_prefix("session:"); | ||||
|     let session_store = RedisSessionStore::new(url).unwrap().with_prefix("session:"); | ||||
|  | ||||
|     Ok(session_store) | ||||
|     session_store | ||||
| } | ||||
|   | ||||
		Reference in New Issue
	
	Block a user