Auth basic working - unsafe

2024-11-22 01:06:46 +00:00 · 2023-04-08 02:52:16 -05:00 · 2023-04-08 02:52:16 -05:00 · 34b2b116ba
commit 34b2b116ba
parent 7d5ff40893
5 changed files with 294 additions and 19 deletions
--- a/actix/Cargo.lock
+++ b/actix/Cargo.lock
--- a/actix/Cargo.toml
+++ b/actix/Cargo.toml
@ -11,3 +11,4 @@ actix-files = "0.6.2"
 rusqlite = "0.29.0"
 regex = "1.7.3"
 rand = "0.8.5"
+actix-session = {version = "0.7.2", features = ["cookie-session"]}
--- a/actix/resources/js/main.js
+++ b/actix/resources/js/main.js
@ -9,8 +9,22 @@ const getSiteUrl = async () => await fetch("/api/siteurl")
        }
    });

+const auth_fetch = async (link) => {
+    let reply = await fetch(link).then(res => res.text());
+    if (reply == "logged_out") {
+        pass = prompt("Please enter passkey to access this website");
+        await fetch("/api/login", {
+            method: "POST",
+            body: pass
+        });
+        return auth_fetch(link);
+    } else {
+        return reply;
+    }
+}
+
 const refreshData = async () => {
-    let data = await fetch("/api/all").then(res => res.text());
+    let data = await auth_fetch("/api/all");
    data = data
        .split("\n")
        .filter(line => line !== "")
--- a/actix/src/auth.rs
+++ b/actix/src/auth.rs
@ -0,0 +1,22 @@
+use actix_session::Session;
+
+pub fn validate(session: Session) -> bool {
+    let token = session.get::<i32>("session-token");
+    if token.is_err() {
+        false
+    } else if !check(token.unwrap()) {
+        false
+    } else {
+        true
+    }
+}
+
+fn check(token: Option<i32>) -> bool {
+    if token.is_none() {
+        false
+    } else if token.unwrap() != 123 {
+        false
+    } else {
+        true
+    }
+}
--- a/actix/src/main.rs
+++ b/actix/src/main.rs