change handle endpoint & why was changepassword a GET?

2026-03-01 14:53:54 +01:00
parent b2a80ffa58
commit e60172527c
5 changed files with 48 additions and 5 deletions
--- a/src/users/mod.rs
+++ b/src/users/mod.rs
@@ -2,7 +2,7 @@ use axum::{
    http::StatusCode,
    response::{IntoResponse, Response},
 };
-use rusqlite::OptionalExtension;
+use rusqlite::{ErrorCode, OptionalExtension};
 use serde::{Deserialize, Serialize};
 use uuid::Uuid;

@@ -35,6 +35,8 @@ pub enum UserError {
    NoUserWithId(Uuid),
    #[error("No user found with handle {0}")]
    NoUserWithHandle(UserHandle),
+    #[error("A user with handle {0} already exists")]
+    HandleAlreadyExists(UserHandle),
    #[error("Database error: {0}")]
    DatabaseError(String),
    #[error("Argon2 passhash error: {0}")]
@@ -72,6 +74,21 @@ impl User {
            None => Err(UserError::NoUserWithHandle(handle)),
        }
    }
+    pub fn set_handle(&mut self, new_handle: UserHandle) -> Result<(), UserError> {
+        let conn = database::conn()?;
+        conn.prepare("UPDATE users SET handle = ?1 WHERE id = ?2")?
+            .execute((&new_handle, self.id))
+            .map_err(|e| {
+                if let Some(e) = e.sqlite_error() {
+                    if e.code == ErrorCode::ConstraintViolation {
+                        return UserError::HandleAlreadyExists(new_handle.clone());
+                    }
+                }
+                UserError::from(e)
+            })?;
+        self.handle = new_handle;
+        Ok(())
+    }
 }

 // DANGEROUS: AUTH
@@ -123,7 +140,6 @@ impl User {
    /// to do everything and probably should not be used as a regular account
    /// due to the ramifications of compromise. But it could be used for that,
    /// and have its name changed.
-    #[allow(unused)]
    pub fn is_infradmin(&self) -> bool {
        self.id == Uuid::max()
    }
@@ -169,7 +185,6 @@ impl User {
    /// for actions performed by Mnemosyne internally.
    /// It shall not be available for log-in.
    /// It should not have its name changed, and should be protected from that.
-    #[allow(unused)]
    pub fn is_systemuser(&self) -> bool {
        self.id == Uuid::nil()
    }
@@ -199,6 +214,7 @@ impl IntoResponse for UserError {
            Self::UserHandleError(_) => (StatusCode::BAD_REQUEST, self.to_string()),
            Self::NoUserWithId(_) => (StatusCode::BAD_REQUEST, self.to_string()),
            Self::NoUserWithHandle(_) => (StatusCode::BAD_REQUEST, self.to_string()),
+            Self::HandleAlreadyExists(_) => (StatusCode::CONFLICT, self.to_string()),
        }
        .into_response()
    }
--- a/src/users/permissions.rs
+++ b/src/users/permissions.rs
@@ -8,10 +8,13 @@ pub enum Permission {
    RevokeOthersSessions,
    // All Users have the right to change their own password
    ChangeOthersPasswords,
+    // All Users have the right to change their own handle
+    ChangeOthersHandles,
 }

 impl User {
    pub fn has_permission(&self, permission: Permission) -> Result<bool, DatabaseError> {
+        // Infradmin and systemuser have all permissions
        if self.is_infradmin() || self.is_systemuser() {
            return Ok(true);
        }
--- a/src/users/sessions.rs
+++ b/src/users/sessions.rs
@@ -139,7 +139,6 @@ impl Session {
        Ok(())
    }

-    #[allow(unused)]
    pub fn revoke(&mut self, actor: Option<&User>) -> Result<(), SessionError> {
        let now = Utc::now();
        let id = actor.map(|u| u.id).unwrap_or(Uuid::nil());