Реформат путей к эндпоинтам.

Добавлен экстрактор пользователя с дополнительными полями. Добавлена связь таблиц User и FCM. Завершена реализация авторизации с помощью VK ID. Добавлен эндпоинт fcm/update-callback/{version}.
2025-12-06 09:47:50 +03:00 · 2025-04-14 22:04:41 +04:00
parent 680419ea78
commit 5b6f5c830f
27 changed files with 406 additions and 106 deletions
--- a/.github/workflows/test.yml
+++ b/.github/workflows/test.yml
@@ -28,3 +28,5 @@ jobs:
        env:
          DATABASE_URL: ${{ secrets.TEST_DATABASE_URL }}
          JWT_SECRET: "test-secret-at-least-256-bits-used"
+          VKID_CLIENT_ID: 0
+          VKID_REDIRECT_URI: "vk0://vk.com/blank.html"
--- a/Cargo.lock
+++ b/Cargo.lock
@@ -2383,6 +2383,7 @@ dependencies = [
 "utoipa",
 "utoipa-actix-web",
 "utoipa-rapidoc",
+ "uuid",
 ]

 [[package]]
@@ -2981,6 +2982,15 @@ dependencies = [
 "utoipa",
 ]

+[[package]]
+name = "uuid"
+version = "1.16.0"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "458f7a779bf54acc9f347480ac654f68407d3aab21269a6e3c9f922acd9e2da9"
+dependencies = [
+ "getrandom 0.3.2",
+]
+
 [[package]]
 name = "vcpkg"
 version = "0.2.15"
--- a/Cargo.toml
+++ b/Cargo.toml
@@ -25,7 +25,7 @@ hex = "0.4.3"
 mime = "0.3.17"
 objectid = "0.2.0"
 regex = "1.11.1"
-reqwest = "0.12.15"
+reqwest = { version = "0.12.15", features = ["json"] }
 serde = { version = "1.0.219", features = ["derive"] }
 serde_json = "1.0.140"
 serde_with = "3.12.0"
@@ -36,6 +36,7 @@ rand = "0.9.0"
 utoipa = { version = "5", features = ["actix_extras", "chrono"] }
 utoipa-rapidoc = { version = "6.0.0", features = ["actix-web"] }
 utoipa-actix-web = "0.1"
+uuid = { version = "1.16.0", features = ["v4"] }

 [dev-dependencies]
 actix-test = { path = "actix-test" }
--- a/migrations/2025-03-21-212111_create_users/up.sql
+++ b/migrations/2025-03-21-212111_create_users/up.sql
@@ -2,7 +2,7 @@ CREATE TABLE users
 (
    id           text PRIMARY KEY NOT NULL,
    username     text UNIQUE      NOT NULL,
-    "password"   text             NOT NULL,
+    password     text             NOT NULL,
    vk_id        int4             NULL,
    access_token text UNIQUE      NOT NULL,
    "group"      text             NOT NULL,
--- a/migrations/2025-03-21-212723_create_fcm/up.sql
+++ b/migrations/2025-03-21-212723_create_fcm/up.sql
@@ -1,11 +1,6 @@
 CREATE TABLE fcm
 (
-    user_id text PRIMARY KEY NOT NULL,
+    user_id text PRIMARY KEY NOT NULL REFERENCES users (id),
    token   text             NOT NULL,
-    topics  text[]           NULL
+    topics  text[]           NOT NULL
 );
-
-CREATE UNIQUE INDEX fcm_user_id_key ON fcm USING btree (user_id);
-
-ALTER TABLE fcm
-    ADD CONSTRAINT fcm_user_id_fkey FOREIGN KEY (user_id) REFERENCES users (id) ON DELETE RESTRICT ON UPDATE CASCADE;
--- a/src/app_state.rs
+++ b/src/app_state.rs
@@ -7,6 +7,7 @@ use diesel::{Connection, PgConnection};
 use sha1::{Digest, Sha1};
 use std::env;
 use std::hash::Hash;
+use std::ops::DerefMut;
 use std::sync::{Mutex, MutexGuard};

 #[derive(Clone)]
@@ -18,6 +19,24 @@ pub struct Schedule {
    pub data: ParseResult,
 }

+#[derive(Clone)]
+pub struct VkId {
+    pub client_id: i32,
+    pub redirect_url: String,
+}
+
+impl VkId {
+    pub fn new() -> Self {
+        Self {
+            client_id: env::var("VKID_CLIENT_ID")
+                .expect("VKID_CLIENT_ID must be set")
+                .parse()
+                .expect("VKID_CLIENT_ID must be integer"),
+            redirect_url: env::var("VKID_REDIRECT_URI").expect("VKID_REDIRECT_URI must be set"),
+        }
+    }
+}
+
 impl Schedule {
    pub fn hash(&self) -> String {
        let mut hasher = DigestHasher::from(Sha1::new());
@@ -36,6 +55,23 @@ pub struct AppState {
    pub downloader: Mutex<BasicXlsDownloader>,
    pub schedule: Mutex<Option<Schedule>>,
    pub database: Mutex<PgConnection>,
+    pub vk_id: VkId,
+}
+
+impl AppState {
+    pub fn new() -> Self {
+        let database_url = env::var("DATABASE_URL").expect("DATABASE_URL must be set");
+
+        Self {
+            downloader: Mutex::new(BasicXlsDownloader::new()),
+            schedule: Mutex::new(None),
+            database: Mutex::new(
+                PgConnection::establish(&database_url)
+                    .unwrap_or_else(|_| panic!("Error connecting to {}", database_url)),
+            ),
+            vk_id: VkId::new(),
+        }
+    }
 }

 impl AppState {
@@ -43,18 +79,19 @@ impl AppState {
    pub fn connection(&self) -> MutexGuard<PgConnection> {
        self.database.lock().unwrap()
    }
+
+    pub fn lock_connection<T, F>(&self, f: F) -> T
+    where
+        F: FnOnce(&mut PgConnection) -> T,
+    {
+        let mut lock = self.connection();
+        let conn = lock.deref_mut();
+
+        f(conn)
+    }
 }

 /// Создание нового объекта web::Data<AppState>
 pub fn app_state() -> web::Data<AppState> {
-    let database_url = env::var("DATABASE_URL").expect("DATABASE_URL must be set");
-
-    web::Data::new(AppState {
-        downloader: Mutex::new(BasicXlsDownloader::new()),
-        schedule: Mutex::new(None),
-        database: Mutex::new(
-            PgConnection::establish(&database_url)
-                .unwrap_or_else(|_| panic!("Error connecting to {}", database_url)),
-        ),
-    })
+    web::Data::new(AppState::new())
 }
--- a/src/database/driver.rs
+++ b/src/database/driver.rs
@@ -2,7 +2,7 @@ pub mod users {
    use crate::database::models::User;
    use crate::database::schema::users::dsl::users;
    use crate::database::schema::users::dsl::*;
-    use diesel::{ExpressionMethods, QueryResult, insert_into};
+    use diesel::{insert_into, ExpressionMethods, QueryResult};
    use diesel::{PgConnection, SelectableHelper};
    use diesel::{QueryDsl, RunQueryDsl};
    use std::ops::DerefMut;
@@ -31,10 +31,7 @@ pub mod users {
            .first(con)
    }

-    pub fn get_by_vk_id(
-        connection: &Mutex<PgConnection>,
-        _vk_id: i32,
-    ) -> QueryResult<User> {
+    pub fn get_by_vk_id(connection: &Mutex<PgConnection>, _vk_id: i32) -> QueryResult<User> {
        let mut lock = connection.lock().unwrap();
        let con = lock.deref_mut();

@@ -101,3 +98,21 @@ pub mod users {
            .execute(con)
    }
 }
+
+pub mod fcm {
+    use crate::database::models::{User, FCM};
+    use diesel::QueryDsl;
+    use diesel::RunQueryDsl;
+    use diesel::{BelongingToDsl, PgConnection, QueryResult, SelectableHelper};
+    use std::ops::DerefMut;
+    use std::sync::Mutex;
+
+    pub fn from_user(connection: &Mutex<PgConnection>, user: &User) -> QueryResult<FCM> {
+        let mut lock = connection.lock().unwrap();
+        let con = lock.deref_mut();
+
+        FCM::belonging_to(&user)
+            .select(FCM::as_select())
+            .get_result(con)
+    }
+}
--- a/src/database/models.rs
+++ b/src/database/models.rs
@@ -1,16 +1,11 @@
 use actix_macros::ResponderJson;
+use diesel::QueryId;
 use diesel::prelude::*;
 use serde::{Deserialize, Serialize};
+use utoipa::ToSchema;

 #[derive(
-    diesel_derive_enum::DbEnum,
-    Serialize,
-    Deserialize,
-    Debug,
-    Clone,
-    Copy,
-    PartialEq,
-    utoipa::ToSchema,
+    Copy, Clone, PartialEq, Debug, Serialize, Deserialize, diesel_derive_enum::DbEnum, ToSchema,
 )]
 #[ExistingTypePath = "crate::database::schema::sql_types::UserRole"]
 #[DbValueStyle = "UPPERCASE"]
@@ -25,11 +20,12 @@ pub enum UserRole {
    Identifiable,
    AsChangeset,
    Queryable,
+    QueryId,
    Selectable,
    Serialize,
    Insertable,
    Debug,
-    utoipa::ToSchema,
+    ToSchema,
    ResponderJson,
 )]
 #[diesel(table_name = crate::database::schema::users)]
@@ -59,3 +55,29 @@ pub struct User {
    /// Версия установленного приложения Polytechnic+
    pub version: String,
 }
+
+#[derive(
+    Debug,
+    Serialize,
+    Identifiable,
+    Queryable,
+    Selectable,
+    Insertable,
+    AsChangeset,
+    Associations,
+    ToSchema,
+    ResponderJson,
+)]
+#[diesel(belongs_to(User))]
+#[diesel(table_name = crate::database::schema::fcm)]
+#[diesel(primary_key(user_id))]
+pub struct FCM {
+    /// UUID аккаунта.
+    pub user_id: String,
+
+    /// FCM токен.
+    pub token: String,
+
+    /// Список топиков, на которые подписан пользователь.
+    pub topics: Vec<Option<String>>,
+}
--- a/src/database/schema.rs
+++ b/src/database/schema.rs
@@ -10,7 +10,7 @@ diesel::table! {
    fcm (user_id) {
        user_id -> Text,
        token -> Text,
-        topics -> Nullable<Array<Nullable<Text>>>,
+        topics -> Array<Nullable<Text>>,
    }
 }

--- a/src/extractors/authorized_user.rs
+++ b/src/extractors/authorized_user.rs
@@ -1,13 +1,13 @@
 use crate::app_state::AppState;
 use crate::database::driver;
-use crate::database::models::User;
-use crate::extractors::base::FromRequestSync;
+use crate::database::models::{FCM, User};
+use crate::extractors::base::{FromRequestSync, SyncExtractor};
 use crate::utility::jwt;
 use actix_macros::ResponseErrorMessage;
 use actix_web::body::BoxBody;
 use actix_web::dev::Payload;
 use actix_web::http::header;
-use actix_web::{HttpRequest, web};
+use actix_web::{FromRequest, HttpRequest, web};
 use derive_more::Display;
 use serde::{Deserialize, Serialize};
 use std::fmt::Debug;
@@ -66,3 +66,45 @@ impl FromRequestSync for User {
        driver::users::get(&app_state.database, &user_id).map_err(|_| Error::NoUser.into())
    }
 }
+
+pub struct UserExtractor<const FCM: bool> {
+    user: User,
+
+    fcm: Option<FCM>,
+}
+
+impl<const FCM: bool> UserExtractor<{ FCM }> {
+    pub fn user(&self) -> &User {
+        &self.user
+    }
+
+    pub fn fcm(&self) -> &Option<FCM> {
+        if !FCM {
+            panic!("FCM marked as not required, but it has been requested")
+        }
+
+        &self.fcm
+    }
+}
+
+/// Экстрактор пользователя и дополнительных параметров из запроса с токеном
+impl<const FCM: bool> FromRequestSync for UserExtractor<{ FCM }> {
+    type Error = actix_web::Error;
+
+    fn from_request_sync(req: &HttpRequest, payload: &mut Payload) -> Result<Self, Self::Error> {
+        let user = SyncExtractor::<User>::from_request(req, payload)
+            .into_inner()?
+            .into_inner();
+
+        let app_state = req.app_data::<web::Data<AppState>>().unwrap();
+
+        Ok(Self {
+            fcm: if FCM {
+                driver::fcm::from_user(&app_state.database, &user).ok()
+            } else {
+                None
+            },
+            user,
+        })
+    }
+}
--- a/src/main.rs
+++ b/src/main.rs
@@ -1,18 +1,10 @@
 use crate::app_state::{AppState, app_state};
 use crate::middlewares::authorization::JWTAuthorization;
-use crate::routes::auth::sign_in::{sign_in_default, sign_in_vk};
-use crate::routes::auth::sign_up::{sign_up_default, sign_up_vk};
-use crate::routes::schedule::get_cache_status::get_cache_status;
-use crate::routes::schedule::get_group::get_group;
-use crate::routes::schedule::get_group_names::get_group_names;
-use crate::routes::schedule::get_schedule::get_schedule;
-use crate::routes::schedule::get_teacher::get_teacher;
-use crate::routes::schedule::get_teacher_names::get_teacher_names;
-use crate::routes::schedule::update_download_url::update_download_url;
-use crate::routes::users::me::me;
-use actix_web::{App, HttpServer};
+use actix_web::dev::{ServiceFactory, ServiceRequest};
+use actix_web::{App, Error, HttpServer};
 use dotenvy::dotenv;
 use utoipa_actix_web::AppExt;
+use utoipa_actix_web::scope::Scope;
 use utoipa_rapidoc::RapiDoc;

 mod app_state;
@@ -30,6 +22,47 @@ mod utility;

 mod test_env;

+pub fn get_api_scope<
+    I: Into<Scope<T>>,
+    T: ServiceFactory<ServiceRequest, Config = (), Error = Error, InitError = ()>,
+>(
+    scope: I,
+) -> Scope<T> {
+    let auth_scope = utoipa_actix_web::scope("/auth")
+        .service(routes::auth::sign_in)
+        .service(routes::auth::sign_in_vk)
+        .service(routes::auth::sign_up)
+        .service(routes::auth::sign_up_vk);
+
+    let users_scope = utoipa_actix_web::scope("/users")
+        .wrap(JWTAuthorization)
+        .service(routes::users::me);
+
+    let schedule_scope = utoipa_actix_web::scope("/schedule")
+        .wrap(JWTAuthorization)
+        .service(routes::schedule::schedule)
+        .service(routes::schedule::update_download_url)
+        .service(routes::schedule::cache_status)
+        .service(routes::schedule::group)
+        .service(routes::schedule::group_names)
+        .service(routes::schedule::teacher)
+        .service(routes::schedule::teacher_names);
+
+    let fcm_scope = utoipa_actix_web::scope("/fcm")
+        .wrap(JWTAuthorization)
+        .service(routes::fcm::update_callback);
+
+    let vk_id_scope = utoipa_actix_web::scope("/vkid") //
+        .service(routes::vk_id::oauth);
+
+    utoipa_actix_web::scope(scope)
+        .service(auth_scope)
+        .service(users_scope)
+        .service(schedule_scope)
+        .service(fcm_scope)
+        .service(vk_id_scope)
+}
+
 #[actix_web::main]
 async fn main() {
    dotenv().ok();
@@ -40,35 +73,10 @@ async fn main() {
    let app_state = app_state();

    HttpServer::new(move || {
-        let auth_scope = utoipa_actix_web::scope("/auth")
-            .service(sign_in_default)
-            .service(sign_in_vk)
-            .service(sign_up_default)
-            .service(sign_up_vk);
-
-        let users_scope = utoipa_actix_web::scope("/users")
-            .wrap(JWTAuthorization)
-            .service(me);
-
-        let schedule_scope = utoipa_actix_web::scope("/schedule")
-            .wrap(JWTAuthorization)
-            .service(get_schedule)
-            .service(update_download_url)
-            .service(get_cache_status)
-            .service(get_group)
-            .service(get_group_names)
-            .service(get_teacher)
-            .service(get_teacher_names);
-
-        let api_scope = utoipa_actix_web::scope("/api/v1")
-            .service(auth_scope)
-            .service(users_scope)
-            .service(schedule_scope);
-
        let (app, api) = App::new()
            .into_utoipa_app()
            .app_data(app_state.clone())
-            .service(api_scope)
+            .service(get_api_scope("/api/v1"))
            .split_for_parts();

        let rapidoc_service = RapiDoc::with_openapi("/api-docs-json", api).path("/api-docs");
--- a/src/routes/auth/mod.rs
+++ b/src/routes/auth/mod.rs
@@ -1,3 +1,8 @@
-pub mod sign_in;
-pub mod sign_up;
+mod sign_in;
+mod sign_up;
 mod shared;
+
+pub use sign_in::*;
+pub use sign_up::*;
+
+// TODO: change-password
--- a/src/routes/auth/sign_in.rs
+++ b/src/routes/auth/sign_in.rs
@@ -11,7 +11,7 @@ use diesel::SaveChangesDsl;
 use std::ops::DerefMut;
 use web::Json;

-async fn sign_in(
+async fn sign_in_combined(
    data: SignInData,
    app_state: &web::Data<AppState>,
 ) -> Result<UserResponse, ErrorCode> {
@@ -55,8 +55,8 @@ async fn sign_in(
    (status = NOT_ACCEPTABLE, body = ResponseError<ErrorCode>)
 ))]
 #[post("/sign-in")]
-pub async fn sign_in_default(data: Json<Request>, app_state: web::Data<AppState>) -> ServiceResponse {
-    sign_in(Default(data.into_inner()), &app_state).await.into()
+pub async fn sign_in(data: Json<Request>, app_state: web::Data<AppState>) -> ServiceResponse {
+    sign_in_combined(Default(data.into_inner()), &app_state).await.into()
 }

 #[utoipa::path(responses(
@@ -68,7 +68,7 @@ pub async fn sign_in_vk(data_json: Json<vk::Request>, app_state: web::Data<AppSt
    let data = data_json.into_inner();

    match parse_vk_id(&data.access_token) {
-        Ok(id) => sign_in(Vk(id), &app_state).await.into(),
+        Ok(id) => sign_in_combined(Vk(id), &app_state).await.into(),
        Err(_) => ErrorCode::InvalidVkAccessToken.into_response(),
    }
 }
@@ -134,7 +134,7 @@ mod tests {
    use super::schema::*;
    use crate::database::driver;
    use crate::database::models::{User, UserRole};
-    use crate::routes::auth::sign_in::sign_in_default;
+    use crate::routes::auth::sign_in::sign_in;
    use crate::test_env::tests::{static_app_state, test_app_state, test_env};
    use crate::utility;
    use actix_test::test_app;
@@ -146,7 +146,7 @@ mod tests {
    use std::fmt::Write;

    async fn sign_in_client(data: Request) -> ServiceResponse {
-        let app = test_app(test_app_state(), sign_in_default).await;
+        let app = test_app(test_app_state(), sign_in).await;

        let req = test::TestRequest::with_uri("/sign-in")
            .method(Method::POST)
--- a/src/routes/auth/sign_up.rs
+++ b/src/routes/auth/sign_up.rs
@@ -9,7 +9,7 @@ use actix_web::{post, web};
 use rand::{Rng, rng};
 use web::Json;

-async fn sign_up(
+async fn sign_up_combined(
    data: SignUpData,
    app_state: &web::Data<AppState>,
 ) -> Result<UserResponse, ErrorCode> {
@@ -50,13 +50,13 @@ async fn sign_up(
    (status = NOT_ACCEPTABLE, body = ResponseError<ErrorCode>)
 ))]
 #[post("/sign-up")]
-pub async fn sign_up_default(
+pub async fn sign_up(
    data_json: Json<Request>,
    app_state: web::Data<AppState>,
 ) -> ServiceResponse {
    let data = data_json.into_inner();

-    sign_up(
+    sign_up_combined(
        SignUpData {
            username: data.username,
            password: data.password,
@@ -83,7 +83,7 @@ pub async fn sign_up_vk(
    let data = data_json.into_inner();

    match parse_vk_id(&data.access_token) {
-        Ok(id) => sign_up(
+        Ok(id) => sign_up_combined(
            SignUpData {
                username: data.username,
                password: rng()
@@ -243,7 +243,7 @@ mod tests {
    use crate::database::driver;
    use crate::database::models::UserRole;
    use crate::routes::auth::sign_up::schema::Request;
-    use crate::routes::auth::sign_up::sign_up_default;
+    use crate::routes::auth::sign_up::sign_up;
    use crate::test_env::tests::{static_app_state, test_app_state, test_env};
    use actix_test::test_app;
    use actix_web::dev::ServiceResponse;
@@ -258,7 +258,7 @@ mod tests {
    }

    async fn sign_up_client(data: SignUpPartial) -> ServiceResponse {
-        let app = test_app(test_app_state(), sign_up_default).await;
+        let app = test_app(test_app_state(), sign_up).await;

        let req = test::TestRequest::with_uri("/sign-up")
            .method(Method::POST)
--- a/src/routes/fcm/mod.rs
+++ b/src/routes/fcm/mod.rs
@@ -0,0 +1,3 @@
+mod update_callback;
+
+pub use update_callback::*;
--- a/src/routes/fcm/update_callback.rs
+++ b/src/routes/fcm/update_callback.rs
@@ -0,0 +1,28 @@
+use crate::app_state::AppState;
+use crate::database::models::User;
+use crate::extractors::base::SyncExtractor;
+use actix_web::{HttpResponse, Responder, post, web};
+use diesel::SaveChangesDsl;
+
+#[utoipa::path(responses(
+    (status = OK),
+    (status = INTERNAL_SERVER_ERROR)
+))]
+#[post("/update-callback/{version}")]
+async fn update_callback(
+    app_state: web::Data<AppState>,
+    version: web::Path<String>,
+    user: SyncExtractor<User>,
+) -> impl Responder {
+    let mut user = user.into_inner();
+
+    user.version = version.into_inner();
+
+    match app_state.lock_connection(|con| user.save_changes::<User>(con)) {
+        Ok(_) => HttpResponse::Ok(),
+        Err(e) => {
+            eprintln!("Failed to update user: {}", e);
+            HttpResponse::InternalServerError()
+        }
+    }
+}
--- a/src/routes/mod.rs
+++ b/src/routes/mod.rs
@@ -1,4 +1,6 @@
 pub mod auth;
-pub mod users;
+pub mod fcm;
 pub mod schedule;
 mod schema;
+pub mod users;
+pub mod vk_id;
--- a/src/routes/schedule/get_cache_status.rs
+++ b/src/routes/schedule/get_cache_status.rs
@@ -6,7 +6,7 @@ use actix_web::{get, web};
    (status = OK, body = CacheStatus),
 ))]
 #[get("/cache-status")]
-pub async fn get_cache_status(app_state: web::Data<AppState>) -> CacheStatus {
+pub async fn cache_status(app_state: web::Data<AppState>) -> CacheStatus {
    // Prevent thread lock
    let has_schedule = app_state
        .schedule
--- a/src/routes/schedule/get_group.rs
+++ b/src/routes/schedule/get_group.rs
@@ -25,7 +25,7 @@ use actix_web::{get, web};
    ),
 ))]
 #[get("/group")]
-pub async fn get_group(
+pub async fn group(
    user: SyncExtractor<User>,
    app_state: web::Data<AppState>,
 ) -> ServiceResponse {
--- a/src/routes/schedule/get_group_names.rs
+++ b/src/routes/schedule/get_group_names.rs
@@ -9,7 +9,7 @@ use actix_web::{get, web};
    (status = SERVICE_UNAVAILABLE, body = ResponseError<ErrorCode>),
 ))]
 #[get("/group-names")]
-pub async fn get_group_names(app_state: web::Data<AppState>) -> ServiceResponse {
+pub async fn group_names(app_state: web::Data<AppState>) -> ServiceResponse {
    // Prevent thread lock
    let schedule_lock = app_state.schedule.lock().unwrap();

--- a/src/routes/schedule/mod.rs
+++ b/src/routes/schedule/mod.rs
@@ -1,8 +1,16 @@
-pub mod get_cache_status;
-pub mod get_schedule;
-pub mod get_group;
-pub mod get_group_names;
-pub mod get_teacher;
-pub mod get_teacher_names;
+mod cache_status;
+mod group;
+mod group_names;
+mod schedule;
+mod teacher;
+mod teacher_names;
 mod schema;
-pub mod update_download_url;
+mod update_download_url;
+
+pub use cache_status::*;
+pub use group::*;
+pub use group_names::*;
+pub use schedule::*;
+pub use teacher::*;
+pub use teacher_names::*;
+pub use update_download_url::*;
--- a/src/routes/schedule/get_schedule.rs
+++ b/src/routes/schedule/get_schedule.rs
@@ -9,7 +9,7 @@ use actix_web::{get, web};
    (status = SERVICE_UNAVAILABLE, body = ResponseError<ErrorCode>)
 ))]
 #[get("/")]
-pub async fn get_schedule(app_state: web::Data<AppState>) -> ServiceResponse {
+pub async fn schedule(app_state: web::Data<AppState>) -> ServiceResponse {
    match ScheduleView::try_from(&app_state) {
        Ok(res) => Ok(res).into(),
        Err(e) => match e {
--- a/src/routes/schedule/get_teacher.rs
+++ b/src/routes/schedule/get_teacher.rs
@@ -23,7 +23,7 @@ use actix_web::{get, web};
    ),
 ))]
 #[get("/teacher/{name}")]
-pub async fn get_teacher(
+pub async fn teacher(
    name: web::Path<String>,
    app_state: web::Data<AppState>,
 ) -> ServiceResponse {
--- a/src/routes/schedule/get_teacher_names.rs
+++ b/src/routes/schedule/get_teacher_names.rs
@@ -9,7 +9,7 @@ use actix_web::{get, web};
    (status = SERVICE_UNAVAILABLE, body = ResponseError<ErrorCode>),
 ))]
 #[get("/teacher-names")]
-pub async fn get_teacher_names(app_state: web::Data<AppState>) -> ServiceResponse {
+pub async fn teacher_names(app_state: web::Data<AppState>) -> ServiceResponse {
    // Prevent thread lock
    let schedule_lock = app_state.schedule.lock().unwrap();

--- a/src/routes/users/mod.rs
+++ b/src/routes/users/mod.rs
@@ -1 +1,6 @@
-pub mod me;
+mod me;
+
+pub use me::*;
+
+// TODO: change-username
+// TODO: change-group
--- a/src/routes/vk_id/mod.rs
+++ b/src/routes/vk_id/mod.rs
@@ -0,0 +1,3 @@
+mod oauth;
+
+pub use oauth::*;
--- a/src/routes/vk_id/oauth.rs
+++ b/src/routes/vk_id/oauth.rs
@@ -0,0 +1,114 @@
+use self::schema::*;
+use crate::app_state::AppState;
+use crate::routes::schema::{IntoResponseAsError, ResponseError};
+use actix_web::{post, web};
+use serde::Deserialize;
+use std::collections::HashMap;
+use uuid::Uuid;
+
+#[allow(dead_code)]
+#[derive(Deserialize)]
+struct VkIdAuthResponse {
+    refresh_token: String,
+    access_token: String,
+    id_token: String,
+    token_type: String,
+    expires_in: i32,
+    user_id: i32,
+    state: String,
+    scope: String,
+}
+
+#[utoipa::path(responses(
+    (status = OK, body = Response),
+    (
+        status = NOT_ACCEPTABLE,
+        body = ResponseError<ErrorCode>,
+        example = json!({
+            "code": "VK_ID_ERROR",
+            "message": "VK server returned an error"
+        })
+    ),
+))]
+#[post("/oauth")]
+async fn oauth(data: web::Json<Request>, app_state: web::Data<AppState>) -> ServiceResponse {
+    let data = data.into_inner();
+    let state = Uuid::new_v4().simple().to_string();
+
+    let vk_id = &app_state.vk_id;
+    let client_id = vk_id.client_id.clone().to_string();
+
+    let mut params = HashMap::new();
+    params.insert("grant_type", "authorization_code");
+    params.insert("client_id", client_id.as_str());
+    params.insert("state", state.as_str());
+    params.insert("code_verifier", data.code_verifier.as_str());
+    params.insert("code", data.code.as_str());
+    params.insert("device_id", data.device_id.as_str());
+    params.insert("redirect_uri", vk_id.redirect_url.as_str());
+
+    let client = reqwest::Client::new();
+    match client
+        .post("https://id.vk.com/oauth2/auth")
+        .form(&params)
+        .send()
+        .await
+    {
+        Ok(res) => {
+            if !res.status().is_success() {
+                return ErrorCode::VkIdError.into_response();
+            }
+
+            if let Ok(auth_data) = res.json::<VkIdAuthResponse>().await {
+                Ok(Response {
+                    access_token: auth_data.id_token,
+                })
+                .into()
+            } else {
+                ErrorCode::VkIdError.into_response()
+            }
+        }
+        Err(_) => ErrorCode::VkIdError.into_response(),
+    }
+}
+
+mod schema {
+    use actix_macros::{IntoResponseErrorNamed, StatusCode};
+    use derive_more::Display;
+    use serde::{Deserialize, Serialize};
+    use utoipa::ToSchema;
+
+    pub type ServiceResponse = crate::routes::schema::Response<Response, ErrorCode>;
+
+    #[derive(Deserialize, ToSchema)]
+    #[serde(rename_all = "camelCase")]
+    #[schema(as = VkIdOAuth::Request)]
+    pub struct Request {
+        /// Код подтверждения authorization_code
+        pub code: String,
+
+        /// Параметр для защиты передаваемых данных
+        pub code_verifier: String,
+
+        /// Идентификатор устройства
+        pub device_id: String,
+    }
+
+    #[derive(Serialize, ToSchema)]
+    #[serde(rename_all = "camelCase")]
+    #[schema(as = VkIdOAuth::Response)]
+    pub struct Response {
+        /// ID токен
+        pub access_token: String,
+    }
+
+    #[derive(Clone, Serialize, ToSchema, IntoResponseErrorNamed, StatusCode, Display)]
+    #[serde(rename_all = "SCREAMING_SNAKE_CASE")]
+    #[schema(as = VkIdOAuth::ErrorCode)]
+    #[status_code = "actix_web::http::StatusCode::NOT_ACCEPTABLE"]
+    pub enum ErrorCode {
+        /// Сервер VK вернул ошибку
+        #[display("VK server returned an error")]
+        VkIdError,
+    }
+}