1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
|
/*
This file is part of jellything (https://codeberg.org/metamuffin/jellything)
which is licensed under the GNU Affero General Public License (version 3); see /COPYING.
Copyright (C) 2025 metamuffin <metamuffin.org>
*/
use crate::{database::Database, ui::error::MyResult};
use anyhow::{anyhow, Context};
use jellycommon::user::UserPermission;
use jellylogic::session::AdminSession;
use rocket::{form::Form, get, post, FromForm, FromFormField, State};
#[get("/admin/users")]
pub fn r_admin_users(
_session: AdminSession,
database: &State<Database>,
) -> MyResult<DynLayoutPage<'static>> {
user_management(database, None)
}
fn user_management<'a>(
database: &Database,
flash: Option<MyResult<String>>,
) -> MyResult<DynLayoutPage<'a>> {
// TODO this doesnt scale, pagination!
let users = database.list_users()?;
let flash = flash.map(|f| f.map_err(|e| format!("{e:?}")));
Ok(LayoutPage {
title: "User management".to_string(),
content: markup::new! {
h1 { "User Management" }
@FlashDisplay { flash: flash.clone() }
h2 { "All Users" }
ul { @for u in &users {
li {
a[href=uri!(r_admin_user(&u.name))] { @format!("{:?}", u.display_name) " (" @u.name ")" }
}
}}
},
..Default::default()
})
}
#[get("/admin/user/<name>")]
pub fn r_admin_user<'a>(
_session: AdminSession,
database: &State<Database>,
name: &'a str,
) -> MyResult<DynLayoutPage<'a>> {
manage_single_user(database, None, name.to_string())
}
fn manage_single_user<'a>(
database: &Database,
flash: Option<MyResult<String>>,
name: String,
) -> MyResult<DynLayoutPage<'a>> {
let user = database
.get_user(&name)?
.ok_or(anyhow!("user does not exist"))?;
let flash = flash.map(|f| f.map_err(|e| format!("{e:?}")));
Ok(LayoutPage {
title: "User management".to_string(),
content: markup::new! {},
..Default::default()
})
}
#[derive(FromForm)]
pub struct UserPermissionForm {
permission: String,
action: GrantState,
}
#[derive(FromFormField)]
pub enum GrantState {
Grant,
Revoke,
Unset,
}
#[post("/admin/user/<name>/update_permission", data = "<form>")]
pub fn r_admin_user_permission(
session: AdminSession,
database: &State<Database>,
form: Form<UserPermissionForm>,
name: &str,
) -> MyResult<DynLayoutPage<'static>> {
drop(session);
let perm = serde_json::from_str::<UserPermission>(&form.permission)
.context("parsing provided permission")?;
database.update_user(&form.name, |user| {
match form.action {
GrantState::Grant => drop(user.permissions.0.insert(perm.clone(), true)),
GrantState::Revoke => drop(user.permissions.0.insert(perm.clone(), false)),
GrantState::Unset => drop(user.permissions.0.remove(&perm)),
}
Ok(())
})?;
manage_single_user(
database,
Some(Ok("Permissions update".into())),
form.name.clone(),
)
}
#[post("/admin/<name>/remove")]
pub fn r_admin_remove_user(
session: AdminSession,
database: &State<Database>,
name: &str,
) -> MyResult<DynLayoutPage<'static>> {
drop(session);
if !database.delete_user(&name)? {
Err(anyhow!("user did not exist"))?;
}
user_management(database, Some(Ok("User removed".into())))
}
|
