use crate::database::models::User; use crate::extractors::authorized_user; use crate::extractors::base::FromRequestSync; use actix_web::body::{BoxBody, EitherBody}; use actix_web::dev::{Payload, Service, ServiceRequest, ServiceResponse, Transform, forward_ready}; use actix_web::{Error, HttpRequest, ResponseError}; use futures_util::future::LocalBoxFuture; use std::future::{Ready, ready}; pub struct Authorization; impl Transform for Authorization where S: Service, Error = Error>, S::Future: 'static, B: 'static, { type Response = ServiceResponse>; type Error = Error; type Transform = AuthorizationMiddleware; type InitError = (); type Future = Ready>; fn new_transform(&self, service: S) -> Self::Future { ready(Ok(AuthorizationMiddleware { service })) } } pub struct AuthorizationMiddleware { service: S, } impl AuthorizationMiddleware where S: Service, Error = Error>, S::Future: 'static, B: 'static, { pub fn check_authorization( &self, req: &HttpRequest, payload: &mut Payload, ) -> Result<(), authorized_user::Error> { User::from_request_sync(req, payload) .map(|_| ()) .map_err(|e| e.as_error::().unwrap().clone()) } } impl Service for AuthorizationMiddleware where S: Service, Error = Error>, S::Future: 'static, B: 'static, { type Response = ServiceResponse>; type Error = Error; type Future = LocalBoxFuture<'static, Result>; forward_ready!(service); fn call(&self, req: ServiceRequest) -> Self::Future { let (http_req, mut payload) = req.into_parts(); if let Err(err) = self.check_authorization(&http_req, &mut payload) { return Box::pin(async move { Ok(ServiceResponse::new( http_req, err.error_response().map_into_right_body(), )) }); } let req = ServiceRequest::from_parts(http_req, payload); let fut = self.service.call(req); Box::pin(async move { Ok(fut.await?.map_into_left_body()) }) } }