Use RequestApp

Author: LawnGnome

src/auth.rs

@@ -2,6 +2,7 @@ use std::collections::HashSet;
 
 use crate::controllers;
 use crate::controllers::util::RequestPartsExt;
+use crate::middleware::app::RequestApp;
 use crate::middleware::log_request::RequestLogExt;
 use crate::middleware::session::RequestSession;
 use crate::models::token::{CrateScope, EndpointScope};
@@ -75,10 +76,12 @@ impl AuthCheck {
     pub fn check<T: RequestPartsExt>(
         &self,
         request: &T,
-        gh_admin_user_ids: &HashSet<i32>,
         conn: &mut PgConnection,
     ) -> AppResult<Authentication> {
-        self.check_authentication(authenticate(request, conn)?, gh_admin_user_ids)
+        self.check_authentication(
+            authenticate(request, conn)?,
+            &request.app().config.gh_admin_user_ids,
+        )
     }
 
     fn check_authentication(

src/controllers/crate_owner_invitation.rs

@@ -19,7 +19,7 @@ use std::collections::{HashMap, HashSet};
 pub async fn list(app: AppState, req: Parts) -> AppResult<Json<Value>> {
     conduit_compat(move || {
         let conn = &mut app.db_read()?;
-        let auth = AuthCheck::only_cookie().check(&req, &app.config.gh_admin_user_ids, conn)?;
+        let auth = AuthCheck::only_cookie().check(&req, conn)?;
         let user_id = auth.user_id();
 
         let PrivateListResponse {
@@ -59,7 +59,7 @@ pub async fn list(app: AppState, req: Parts) -> AppResult<Json<Value>> {
 pub async fn private_list(app: AppState, req: Parts) -> AppResult<Json<PrivateListResponse>> {
     conduit_compat(move || {
         let conn = &mut app.db_read()?;
-        let auth = AuthCheck::only_cookie().check(&req, &app.config.gh_admin_user_ids, conn)?;
+        let auth = AuthCheck::only_cookie().check(&req, conn)?;
 
         let filter = if let Some(crate_name) = req.query().get("crate_name") {
             ListFilter::CrateName(crate_name.clone())
@@ -267,7 +267,7 @@ pub async fn handle_invite(state: AppState, req: BytesRequest) -> AppResult<Json
 
         let conn = &mut state.db_write()?;
 
-        let auth = AuthCheck::default().check(&req, &state.config.gh_admin_user_ids, conn)?;
+        let auth = AuthCheck::default().check(&req, conn)?;
         let user_id = auth.user_id();
 
         let config = &state.config;

src/controllers/krate/follow.rs

@@ -20,9 +20,7 @@ pub async fn follow(
 ) -> AppResult<Response> {
     conduit_compat(move || {
         let conn = &mut *app.db_write()?;
-        let user_id = AuthCheck::default()
-            .check(&req, &app.config.gh_admin_user_ids, conn)?
-            .user_id();
+        let user_id = AuthCheck::default().check(&req, conn)?.user_id();
         let follow = follow_target(&crate_name, conn, user_id)?;
         diesel::insert_into(follows::table)
             .values(&follow)
@@ -42,9 +40,7 @@ pub async fn unfollow(
 ) -> AppResult<Response> {
     conduit_compat(move || {
         let conn = &mut *app.db_write()?;
-        let user_id = AuthCheck::default()
-            .check(&req, &app.config.gh_admin_user_ids, conn)?
-            .user_id();
+        let user_id = AuthCheck::default().check(&req, conn)?.user_id();
         let follow = follow_target(&crate_name, conn, user_id)?;
         diesel::delete(&follow).execute(conn)?;
 
@@ -63,9 +59,7 @@ pub async fn following(
         use diesel::dsl::exists;
 
         let conn = &mut *app.db_read_prefer_primary()?;
-        let user_id = AuthCheck::only_cookie()
-            .check(&req, &app.config.gh_admin_user_ids, conn)?
-            .user_id();
+        let user_id = AuthCheck::only_cookie().check(&req, conn)?.user_id();
         let follow = follow_target(&crate_name, conn, user_id)?;
         let following =
             diesel::select(exists(follows::table.find(follow.id()))).get_result::<bool>(conn)?;

src/controllers/krate/owners.rs

@@ -106,7 +106,7 @@ fn modify_owners(
     let auth = AuthCheck::default()
         .with_endpoint_scope(EndpointScope::ChangeOwners)
         .for_crate(crate_name)
-        .check(req, &app.config.gh_admin_user_ids, conn)?;
+        .check(req, conn)?;
 
     let user = auth.user();
 

src/controllers/krate/publish.rs

@@ -94,7 +94,7 @@ pub async fn publish(app: AppState, req: BytesRequest) -> AppResult<Json<GoodCra
         let auth = AuthCheck::default()
             .with_endpoint_scope(endpoint_scope)
             .for_crate(&new_crate.name)
-            .check(&req, &app.config.gh_admin_user_ids, conn)?;
+            .check(&req, conn)?;
 
         let api_token_id = auth.api_token_id();
         let user = auth.user();

src/controllers/krate/search.rs

@@ -190,9 +190,7 @@ pub async fn search(app: AppState, req: Parts) -> AppResult<Json<Value>> {
             // Calculating the total number of results with filters is not supported yet.
             supports_seek = false;
 
-            let user_id = AuthCheck::default()
-                .check(&req, &app.config.gh_admin_user_ids, conn)?
-                .user_id();
+            let user_id = AuthCheck::default().check(&req, conn)?.user_id();
 
             query = query.filter(
                 crates::id.eq_any(

src/controllers/token.rs

@@ -13,7 +13,7 @@ use serde_json as json;
 pub async fn list(app: AppState, req: Parts) -> AppResult<Json<Value>> {
     conduit_compat(move || {
         let conn = &mut *app.db_read_prefer_primary()?;
-        let auth = AuthCheck::only_cookie().check(&req, &app.config.gh_admin_user_ids, conn)?;
+        let auth = AuthCheck::only_cookie().check(&req, conn)?;
         let user = auth.user();
 
         let tokens: Vec<ApiToken> = ApiToken::belonging_to(user)
@@ -53,7 +53,7 @@ pub async fn new(app: AppState, req: BytesRequest) -> AppResult<Json<Value>> {
 
         let conn = &mut *app.db_write()?;
 
-        let auth = AuthCheck::default().check(&req, &app.config.gh_admin_user_ids, conn)?;
+        let auth = AuthCheck::default().check(&req, conn)?;
         if auth.api_token_id().is_some() {
             return Err(bad_request(
                 "cannot use an API token to create a new API token",
@@ -107,7 +107,7 @@ pub async fn new(app: AppState, req: BytesRequest) -> AppResult<Json<Value>> {
 pub async fn revoke(app: AppState, Path(id): Path<i32>, req: Parts) -> AppResult<Json<Value>> {
     conduit_compat(move || {
         let conn = &mut *app.db_write()?;
-        let auth = AuthCheck::default().check(&req, &app.config.gh_admin_user_ids, conn)?;
+        let auth = AuthCheck::default().check(&req, conn)?;
         let user = auth.user();
         diesel::update(ApiToken::belonging_to(user).find(id))
             .set(api_tokens::revoked.eq(true))
@@ -122,7 +122,7 @@ pub async fn revoke(app: AppState, Path(id): Path<i32>, req: Parts) -> AppResult
 pub async fn revoke_current(app: AppState, req: Parts) -> AppResult<Response> {
     conduit_compat(move || {
         let conn = &mut *app.db_write()?;
-        let auth = AuthCheck::default().check(&req, &app.config.gh_admin_user_ids, conn)?;
+        let auth = AuthCheck::default().check(&req, conn)?;
         let api_token_id = auth
             .api_token_id()
             .ok_or_else(|| bad_request("token not provided"))?;

src/controllers/user/me.rs

@@ -16,9 +16,7 @@ use crate::views::{EncodableMe, EncodablePrivateUser, EncodableVersion, OwnedCra
 pub async fn me(app: AppState, req: Parts) -> AppResult<Json<EncodableMe>> {
     conduit_compat(move || {
         let conn = &mut *app.db_read_prefer_primary()?;
-        let user_id = AuthCheck::only_cookie()
-            .check(&req, &app.config.gh_admin_user_ids, conn)?
-            .user_id();
+        let user_id = AuthCheck::only_cookie().check(&req, conn)?.user_id();
 
         let (user, verified, email, verification_sent): (User, Option<bool>, Option<String>, bool) =
             users::table
@@ -60,7 +58,7 @@ pub async fn me(app: AppState, req: Parts) -> AppResult<Json<EncodableMe>> {
 pub async fn updates(app: AppState, req: Parts) -> AppResult<Json<Value>> {
     conduit_compat(move || {
         let conn = &mut app.db_read_prefer_primary()?;
-        let auth = AuthCheck::only_cookie().check(&req, &app.config.gh_admin_user_ids, conn)?;
+        let auth = AuthCheck::only_cookie().check(&req, conn)?;
         let user = auth.user();
 
         let followed_crates = Follow::belonging_to(user).select(follows::crate_id);
@@ -111,7 +109,7 @@ pub async fn update_user(
         let state = app.clone();
         let conn = &mut state.db_write()?;
 
-        let auth = AuthCheck::default().check(&req, &app.config.gh_admin_user_ids, conn)?;
+        let auth = AuthCheck::default().check(&req, conn)?;
         let user = auth.user();
 
         // need to check if current user matches user to be updated
@@ -204,7 +202,7 @@ pub async fn regenerate_token_and_send(
 
         let conn = &mut state.db_write()?;
 
-        let auth = AuthCheck::default().check(&req, &state.config.gh_admin_user_ids, conn)?;
+        let auth = AuthCheck::default().check(&req, conn)?;
         let user = auth.user();
 
         // need to check if current user matches user to be updated
@@ -248,9 +246,7 @@ pub async fn update_email_notifications(app: AppState, req: BytesRequest) -> App
                 .collect();
 
         let conn = &mut *app.db_write()?;
-        let user_id = AuthCheck::default()
-            .check(&req, &app.config.gh_admin_user_ids, conn)?
-            .user_id();
+        let user_id = AuthCheck::default().check(&req, conn)?.user_id();
 
         // Build inserts from existing crates belonging to the current user
         let to_insert = CrateOwner::by_owner_kind(OwnerKind::User)

src/controllers/version/yank.rs

@@ -56,7 +56,7 @@ fn modify_yank(
     let auth = AuthCheck::default()
         .with_endpoint_scope(EndpointScope::Yank)
         .for_crate(crate_name)
-        .check(req, &state.config.gh_admin_user_ids, conn)?;
+        .check(req, conn)?;
 
     let (version, krate) = version_and_crate(conn, crate_name, version)?;
     let api_token_id = auth.api_token_id();