code002lover/game_list
1
0
Fork 0
Code Issues 1 Pull Requests 10 Actions Packages Projects Releases Wiki Activity

feat: Implement token-based authentication for user data endpoints.

Browse Source
This commit is contained in:
code002lover 2025-11-30 21:55:01 +01:00
parent 73791a0760
commit 0222332d3f
3 changed files with 43 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

32
backend/src/auth.rs
View File

@ -18,6 +18,38 @@ impl AuthState {
} }
} }
#[derive(Debug)]
#[allow(dead_code)]
pub struct Token(pub String);
#[rocket::async_trait]
impl<'r> rocket::request::FromRequest<'r> for Token {
type Error = ();
async fn from_request(
request: &'r rocket::Request<'_>,
) -> rocket::request::Outcome<Self, Self::Error> {
let token = request.headers().get_one("Authorization");
match token {
Some(token) => {
// Check if token starts with "Bearer "
if let Some(token) = token.strip_prefix("Bearer ") {
let state = request.guard::<&State<AuthState>>().await.unwrap();
let tokens = state.tokens.lock().unwrap();
if tokens.contains_key(token) {
return rocket::request::Outcome::Success(Token(token.to_string()));
}
}
rocket::request::Outcome::Error((rocket::http::Status::Unauthorized, ()))
}
None => rocket::request::Outcome::Error((rocket::http::Status::Unauthorized, ())),
}
}
}
#[post("/login", data = "<request>")] #[post("/login", data = "<request>")]
pub fn login( pub fn login(
state: &State<AuthState>, state: &State<AuthState>,

8
backend/src/main.rs
View File

@ -25,7 +25,11 @@ impl std::ops::Deref for User {
} }
#[get("/<name>")] #[get("/<name>")]
fn get_user(user_list: &rocket::State<Vec<User>>, name: String) -> Option<items::Person> { fn get_user(
_token: auth::Token,
user_list: &rocket::State<Vec<User>>,
name: String,
) -> Option<items::Person> {
user_list user_list
.iter() .iter()
.find(|user| user.person.name == name) .find(|user| user.person.name == name)
@ -33,7 +37,7 @@ fn get_user(user_list: &rocket::State<Vec<User>>, name: String) -> Option<items:
} }
#[get("/")] #[get("/")]
fn get_users(user_list: &rocket::State<Vec<User>>) -> items::PersonList { fn get_users(_token: auth::Token, user_list: &rocket::State<Vec<User>>) -> items::PersonList {
items::PersonList { items::PersonList {
person: user_list person: user_list
.inner() .inner()

6
frontend/src/App.tsx
View File

@ -10,7 +10,11 @@ function App() {
useEffect(() => { useEffect(() => {
if (!token) return; if (!token) return;
fetch("/api") fetch("/api", {
headers: {
Authorization: `Bearer ${token}`,
},
})
.then((res) => res.arrayBuffer()) .then((res) => res.arrayBuffer())
.then((buffer) => { .then((buffer) => {
const list = PersonList.decode(new Uint8Array(buffer)); const list = PersonList.decode(new Uint8Array(buffer));