3 schema::password_reset_request::dsl::{password_reset_request, published, token_encrypted},
4 source::password_reset_request::{PasswordResetRequest, PasswordResetRequestForm},
6 utils::{get_conn, DbPool},
9 dsl::{insert_into, now, IntervalDsl},
14 use diesel_async::RunQueryDsl;
15 use sha2::{Digest, Sha256};
18 impl Crud for PasswordResetRequest {
19 type InsertForm = PasswordResetRequestForm;
20 type UpdateForm = PasswordResetRequestForm;
22 async fn read(pool: &DbPool, password_reset_request_id: i32) -> Result<Self, Error> {
23 let conn = &mut get_conn(pool).await?;
24 password_reset_request
25 .find(password_reset_request_id)
29 async fn create(pool: &DbPool, form: &PasswordResetRequestForm) -> Result<Self, Error> {
30 let conn = &mut get_conn(pool).await?;
31 insert_into(password_reset_request)
33 .get_result::<Self>(conn)
38 password_reset_request_id: i32,
39 form: &PasswordResetRequestForm,
40 ) -> Result<Self, Error> {
41 let conn = &mut get_conn(pool).await?;
42 diesel::update(password_reset_request.find(password_reset_request_id))
44 .get_result::<Self>(conn)
49 impl PasswordResetRequest {
50 pub async fn create_token(
52 from_local_user_id: LocalUserId,
54 ) -> Result<PasswordResetRequest, Error> {
55 let mut hasher = Sha256::new();
57 let token_hash: String = bytes_to_hex(hasher.finalize().to_vec());
59 let form = PasswordResetRequestForm {
60 local_user_id: from_local_user_id,
61 token_encrypted: token_hash,
64 Self::create(pool, &form).await
66 pub async fn read_from_token(pool: &DbPool, token: &str) -> Result<PasswordResetRequest, Error> {
67 let conn = &mut get_conn(pool).await?;
68 let mut hasher = Sha256::new();
70 let token_hash: String = bytes_to_hex(hasher.finalize().to_vec());
71 password_reset_request
72 .filter(token_encrypted.eq(token_hash))
73 .filter(published.gt(now - 1.days()))
79 fn bytes_to_hex(bytes: Vec<u8>) -> String {
80 let mut str = String::new();
82 str = format!("{str}{byte:02x}");
92 local_user::{LocalUser, LocalUserInsertForm},
93 password_reset_request::PasswordResetRequest,
94 person::{Person, PersonInsertForm},
97 utils::build_db_pool_for_tests,
99 use serial_test::serial;
103 async fn test_crud() {
104 let pool = &build_db_pool_for_tests().await;
106 let inserted_instance = Instance::create(pool, "my_domain.tld").await.unwrap();
108 let new_person = PersonInsertForm::builder()
109 .name("thommy prw".into())
110 .public_key("pubkey".to_string())
111 .instance_id(inserted_instance.id)
114 let inserted_person = Person::create(pool, &new_person).await.unwrap();
116 let new_local_user = LocalUserInsertForm::builder()
117 .person_id(inserted_person.id)
118 .password_encrypted("pass".to_string())
121 let inserted_local_user = LocalUser::create(pool, &new_local_user).await.unwrap();
124 let token_encrypted_ = "ca3704aa0b06f5954c79ee837faa152d84d6b2d42838f0637a15eda8337dbdce";
126 let inserted_password_reset_request =
127 PasswordResetRequest::create_token(pool, inserted_local_user.id, token)
131 let expected_password_reset_request = PasswordResetRequest {
132 id: inserted_password_reset_request.id,
133 local_user_id: inserted_local_user.id,
134 token_encrypted: token_encrypted_.to_string(),
135 published: inserted_password_reset_request.published,
138 let read_password_reset_request = PasswordResetRequest::read_from_token(pool, token)
141 let num_deleted = Person::delete(pool, inserted_person.id).await.unwrap();
142 Instance::delete(pool, inserted_instance.id).await.unwrap();
144 assert_eq!(expected_password_reset_request, read_password_reset_request);
146 expected_password_reset_request,
147 inserted_password_reset_request
149 assert_eq!(1, num_deleted);