Improved persistent session API.

adsnaider · adsnaider · commit f219a9360de0 · 2022-04-16T17:30:04.000-07:00
diff --git a/src/controllers/user/session.rs b/src/controllers/user/session.rs
@@ -13,7 +13,6 @@ use crate::models::persistent_session::SessionCookie;
 use crate::models::{NewUser, PersistentSession, User};
 use crate::schema::users;
 use crate::util::errors::ReadOnlyMode;
-use crate::util::token::SecureToken;
 use crate::Env;
 
 /// Handles the `GET /api/private/session/begin` route.
@@ -104,10 +103,7 @@ pub fn authorize(req: &mut dyn RequestExt) -> EndpointResult {
     let user = save_user_to_database(&ghuser, token.secret(), &req.app().emails, &*req.db_conn()?)?;
 
     // Setup a persistent session for the newly logged in user.
-    let token = SecureToken::generate(crate::util::token::SecureTokenKind::Session);
-    let session = PersistentSession::create(user.id, &token).insert(&*req.db_conn()?)?;
-
-    let cookie = SessionCookie::new(session.id, token.plaintext().to_string());
+    let (_session, cookie) = PersistentSession::create(user.id).insert(&*req.db_conn()?)?;
 
     // Setup persistent session cookie.
     let secure = req.app().config.env() == Env::Production;
diff --git a/src/models/persistent_session.rs b/src/models/persistent_session.rs
@@ -6,6 +6,7 @@ use std::str::FromStr;
 use thiserror::Error;
 
 use crate::schema::persistent_sessions;
+use crate::util::token::NewSecureToken;
 use crate::util::token::SecureToken;
 use crate::util::token::SecureTokenKind;
 
@@ -31,12 +32,10 @@ pub struct PersistentSession {
 }
 
 impl PersistentSession {
-    /// Creates a `NewPersistentSession` that can be inserted into the database.
-    pub fn create<'a>(user_id: i32, token: &'a SecureToken) -> NewPersistentSession<'a> {
-        NewPersistentSession {
-            user_id,
-            hashed_token: token,
-        }
+    /// Creates a `NewPersistentSession` for the `user_id` and the token associated with it.
+    pub fn create<'a>(user_id: i32) -> NewPersistentSession {
+        let token = SecureToken::generate(SecureTokenKind::Session);
+        NewPersistentSession { user_id, token }
     }
 
     /// Finds the session with the ID.
@@ -81,19 +80,32 @@ impl PersistentSession {
 }
 
 /// A new, insertable persistent session.
-#[derive(Clone, Debug, PartialEq, Eq, Insertable)]
-#[table_name = "persistent_sessions"]
-pub struct NewPersistentSession<'a> {
+pub struct NewPersistentSession {
     user_id: i32,
-    hashed_token: &'a SecureToken,
+    token: NewSecureToken,
 }
 
-impl NewPersistentSession<'_> {
+impl NewPersistentSession {
     /// Inserts the session into the database.
-    pub fn insert(self, conn: &PgConnection) -> Result<PersistentSession, diesel::result::Error> {
-        diesel::insert_into(persistent_sessions::table)
-            .values(self)
-            .get_result(conn)
+    ///
+    /// # Returns
+    ///
+    /// The
+    pub fn insert(
+        self,
+        conn: &PgConnection,
+    ) -> Result<(PersistentSession, SessionCookie), diesel::result::Error> {
+        let session: PersistentSession = diesel::insert_into(persistent_sessions::table)
+            .values((
+                persistent_sessions::user_id.eq(&self.user_id),
+                persistent_sessions::hashed_token.eq(&*self.token),
+            ))
+            .get_result(conn)?;
+        let id = session.id;
+        Ok((
+            session,
+            SessionCookie::new(id, self.token.plaintext().to_string()),
+        ))
     }
 }
 
diff --git a/src/tests/authentication.rs b/src/tests/authentication.rs
@@ -3,8 +3,6 @@ use crate::TestApp;
 
 use crate::util::encode_session_header;
 use cargo_registry::models::persistent_session::SessionCookie;
-use cargo_registry::util::token::SecureToken;
-use cargo_registry::util::token::SecureTokenKind;
 use conduit::{header, Body, Method, StatusCode};
 
 static URL: &str = "/api/v1/me/updates";
@@ -44,11 +42,9 @@ fn persistent_session_revoked_after_logout() {
 fn incorrect_session_is_forbidden() {
     let (_, anon) = TestApp::init().empty();
 
-    let token = SecureToken::generate(SecureTokenKind::Session);
+    let token = "scio:1234:abcdfdfdsafdsfd".to_string();
     // Create a cookie that isn't in the database.
-    let cookie = SessionCookie::new(123, token.plaintext().to_string())
-        .build(false)
-        .to_string();
+    let cookie = SessionCookie::new(123, token).build(false).to_string();
     let mut request = anon.request_builder(Method::GET, URL);
     request.header(header::COOKIE, &cookie);
     let response: Response<Body> = anon.run(request);
diff --git a/src/tests/util.rs b/src/tests/util.rs
@@ -26,8 +26,6 @@ use crate::{
 use cargo_registry::models::persistent_session::SessionCookie;
 use cargo_registry::models::PersistentSession;
 use cargo_registry::models::{ApiToken, CreatedApiToken, User};
-use cargo_registry::util::token::SecureToken;
-use cargo_registry::util::token::SecureTokenKind;
 
 use conduit::{BoxError, Handler, Method};
 use conduit_cookie::SessionMiddleware;
@@ -276,17 +274,15 @@ impl MockCookieUser {
     }
 
     pub fn with_session(&self) -> MockSessionUser {
-        let token = SecureToken::generate(SecureTokenKind::Session);
-
-        let session = self.app.db(|conn| {
-            PersistentSession::create(self.user.id, &token)
+        let (_session, session_cookie) = self.app.db(|conn| {
+            PersistentSession::create(self.user.id)
                 .insert(conn)
                 .unwrap()
         });
 
         MockSessionUser {
             app: self.app.clone(),
-            session_cookie: SessionCookie::new(session.id, token.plaintext().to_string()),
+            session_cookie,
         }
     }
 }
diff --git a/src/util.rs b/src/util.rs
@@ -12,7 +12,7 @@ mod io_util;
 mod request_helpers;
 mod request_proxy;
 pub mod rfc3339;
-pub mod token;
+pub(crate) mod token;
 
 pub type AppResponse = Response<conduit::Body>;
 pub type EndpointResult = Result<AppResponse, Box<dyn errors::AppError>>;
diff --git a/src/util/token.rs b/src/util/token.rs
@@ -12,7 +12,7 @@ pub struct SecureToken {
 }
 
 impl SecureToken {
-    pub fn generate(kind: SecureTokenKind) -> NewSecureToken {
+    pub(crate) fn generate(kind: SecureTokenKind) -> NewSecureToken {
         let plaintext = format!(
             "{}{}",
             kind.prefix(),
@@ -26,7 +26,7 @@ impl SecureToken {
         }
     }
 
-    pub fn parse(kind: SecureTokenKind, plaintext: &str) -> Option<Self> {
+    pub(crate) fn parse(kind: SecureTokenKind, plaintext: &str) -> Option<Self> {
         // This will both reject tokens without a prefix and tokens of the wrong kind.
         if SecureTokenKind::from_token(plaintext) != Some(kind) {
             return None;
@@ -60,18 +60,18 @@ impl FromSql<Bytea, Pg> for SecureToken {
     }
 }
 
-pub struct NewSecureToken {
+pub(crate) struct NewSecureToken {
     plaintext: String,
     inner: SecureToken,
 }
 
 impl NewSecureToken {
-    pub fn plaintext(&self) -> &str {
+    pub(crate) fn plaintext(&self) -> &str {
         &self.plaintext
     }
 
     #[cfg(test)]
-    pub fn into_inner(self) -> SecureToken {
+    pub(crate) fn into_inner(self) -> SecureToken {
         self.inner
     }
 }
@@ -120,7 +120,7 @@ secure_token_kind! {
     /// NEVER CHANGE THE PREFIX OF EXISTING TOKEN TYPES!!! Doing so will implicitly revoke all the
     /// tokens of that kind, distrupting production users.
     #[derive(Debug, Copy, Clone, Eq, PartialEq, Hash)]
-    pub enum SecureTokenKind {
+    pub(crate) enum SecureTokenKind {
         Api => "cio", // Crates.IO
         Session => "scio", // Session tokens.
     }

Original file line number	Diff line number	Diff line change
`@@ -12,7 +12,7 @@ pub struct SecureToken {`
`12`	`12`	`}`
`13`	`13`
`14`	`14`	`impl SecureToken {`
`15`		`- pub fn generate(kind: SecureTokenKind) -> NewSecureToken {`
	`15`	`+ pub(crate) fn generate(kind: SecureTokenKind) -> NewSecureToken {`
`16`	`16`	`let plaintext = format!(`
`17`	`17`	`"{}{}",`
`18`	`18`	`kind.prefix(),`
`@@ -26,7 +26,7 @@ impl SecureToken {`
`26`	`26`	`}`
`27`	`27`	`}`
`28`	`28`
`29`		`- pub fn parse(kind: SecureTokenKind, plaintext: &str) -> Option<Self> {`
	`29`	`+ pub(crate) fn parse(kind: SecureTokenKind, plaintext: &str) -> Option<Self> {`
`30`	`30`	`// This will both reject tokens without a prefix and tokens of the wrong kind.`
`31`	`31`	`if SecureTokenKind::from_token(plaintext) != Some(kind) {`
`32`	`32`	`return None;`
`@@ -60,18 +60,18 @@ impl FromSql<Bytea, Pg> for SecureToken {`
`60`	`60`	`}`
`61`	`61`	`}`
`62`	`62`
`63`		`-pub struct NewSecureToken {`
	`63`	`+pub(crate) struct NewSecureToken {`
`64`	`64`	`plaintext: String,`
`65`	`65`	`inner: SecureToken,`
`66`	`66`	`}`
`67`	`67`
`68`	`68`	`impl NewSecureToken {`
`69`		`- pub fn plaintext(&self) -> &str {`
	`69`	`+ pub(crate) fn plaintext(&self) -> &str {`
`70`	`70`	`&self.plaintext`
`71`	`71`	`}`
`72`	`72`
`73`	`73`	`#[cfg(test)]`
`74`		`- pub fn into_inner(self) -> SecureToken {`
	`74`	`+ pub(crate) fn into_inner(self) -> SecureToken {`
`75`	`75`	`self.inner`
`76`	`76`	`}`
`77`	`77`	`}`
`@@ -120,7 +120,7 @@ secure_token_kind! {`
`120`	`120`	`/// NEVER CHANGE THE PREFIX OF EXISTING TOKEN TYPES!!! Doing so will implicitly revoke all the`
`121`	`121`	`/// tokens of that kind, distrupting production users.`
`122`	`122`	`#[derive(Debug, Copy, Clone, Eq, PartialEq, Hash)]`
`123`		`- pub enum SecureTokenKind {`
	`123`	`+ pub(crate) enum SecureTokenKind {`
`124`	`124`	`Api => "cio", // Crates.IO`
`125`	`125`	`Session => "scio", // Session tokens.`
`126`	`126`	`}`