chhoto-url/actix/src/auth.rs

// SPDX-FileCopyrightText: 2023 Sayantan Santra <sayantan.santra689@gmail.com>
// SPDX-License-Identifier: MIT

use actix_session::Session;
use std::{env, time::SystemTime};

// Validate a given password
pub fn validate(session: Session) -> bool {
    // If there's no password provided, just return true
    if env::var("password")
        .ok()
        .filter(|s| !s.trim().is_empty())
        .is_none()
    {
        return true;
    }

    if let Ok(token) = session.get::<String>("chhoto-url-auth") {
        check(token)
    } else {
        false
    }
}

// Check a token cryptographically
fn check(token: Option<String>) -> bool {
    if let Some(token_body) = token {
        let token_parts: Vec<&str> = token_body.split(';').collect();
        if token_parts.len() < 2 {
            false
        } else {
            let token_text = token_parts[0];
            let token_time = token_parts[1].parse::<u64>().unwrap_or(0);
            let time_now = SystemTime::now()
                .duration_since(SystemTime::UNIX_EPOCH)
                .expect("Time went backwards!")
                .as_secs();
            token_text == "chhoto-url-auth" && time_now < token_time + 1209600 // There are 1209600 seconds in 14 days
        }
    } else {
        false
    }
}

// Generate a new cryptographic token
pub fn gen_token() -> String {
    let token_text = String::from("chhoto-url-auth");
    let time = SystemTime::now()
        .duration_since(SystemTime::UNIX_EPOCH)
        .expect("Time went backwards!")
        .as_secs();
    format!("{token_text};{time}")
}
chg: Added SPDX headers 2024-04-04 11:40:26 +10:00			`// SPDX-FileCopyrightText: 2023 Sayantan Santra <sayantan.santra689@gmail.com>`
			`// SPDX-License-Identifier: MIT`

Auth basic working - unsafe 2023-04-08 17:52:16 +10:00			`use actix_session::Session;`
Do not ask for password if none is provided 2023-04-10 08:19:54 +10:00			`use std::{env, time::SystemTime};`
Auth basic working - unsafe 2023-04-08 17:52:16 +10:00
docs: Added some comments and changed the token name 2024-04-03 08:57:49 +10:00			`// Validate a given password`
Auth basic working - unsafe 2023-04-08 17:52:16 +10:00			`pub fn validate(session: Session) -> bool {`
Do not ask for password if none is provided 2023-04-10 08:19:54 +10:00			`// If there's no password provided, just return true`
fix: Do not consider empty password 2024-10-03 14:52:23 +10:00			`if env::var("password")`
			`.ok()`
			`.filter(\|s\| !s.trim().is_empty())`
			`.is_none()`
			`{`
Do not ask for password if none is provided 2023-04-10 08:19:54 +10:00			`return true;`
			`}`

docs: Added some comments and changed the token name 2024-04-03 08:57:49 +10:00			`if let Ok(token) = session.get::<String>("chhoto-url-auth") {`
chg: Get rid of naked unwraps and improve code flow 2024-04-03 08:43:36 +10:00			`check(token)`
			`} else {`
			`false`
			`}`
Auth basic working - unsafe 2023-04-08 17:52:16 +10:00			`}`

docs: Added some comments and changed the token name 2024-04-03 08:57:49 +10:00			`// Check a token cryptographically`
Password login enabled 2023-04-09 06:36:33 +10:00			`fn check(token: Option<String>) -> bool {`
Fixes suggested by clippy 2023-04-27 05:40:54 +10:00			`if let Some(token_body) = token {`
			`let token_parts: Vec<&str> = token_body.split(';').collect();`
Password login enabled 2023-04-09 06:36:33 +10:00			`if token_parts.len() < 2 {`
			`false`
			`} else {`
			`let token_text = token_parts[0];`
			`let token_time = token_parts[1].parse::<u64>().unwrap_or(0);`
			`let time_now = SystemTime::now()`
			`.duration_since(SystemTime::UNIX_EPOCH)`
			`.expect("Time went backwards!")`
			`.as_secs();`
docs: Added some comments and changed the token name 2024-04-03 08:57:49 +10:00			`token_text == "chhoto-url-auth" && time_now < token_time + 1209600 // There are 1209600 seconds in 14 days`
Password login enabled 2023-04-09 06:36:33 +10:00			`}`
Fixes suggested by clippy 2023-04-27 05:40:54 +10:00			`} else {`
			`false`
Auth basic working - unsafe 2023-04-08 17:52:16 +10:00			`}`
			`}`
Password login enabled 2023-04-09 06:36:33 +10:00
docs: Added some comments and changed the token name 2024-04-03 08:57:49 +10:00			`// Generate a new cryptographic token`
Password login enabled 2023-04-09 06:36:33 +10:00			`pub fn gen_token() -> String {`
docs: Added some comments and changed the token name 2024-04-03 08:57:49 +10:00			`let token_text = String::from("chhoto-url-auth");`
Password login enabled 2023-04-09 06:36:33 +10:00			`let time = SystemTime::now()`
			`.duration_since(SystemTime::UNIX_EPOCH)`
			`.expect("Time went backwards!")`
			`.as_secs();`
			`format!("{token_text};{time}")`
			`}`