botserver/src/auth/mod.rs

use crate::shared::state::AppState;
use axum::{
    extract::{Query, State},
    http::StatusCode,
    response::{IntoResponse, Json},
};
use log::error;
use std::collections::HashMap;
use std::sync::Arc;
use uuid::Uuid;

pub struct AuthService {}

impl AuthService {
    pub fn new() -> Self {
        Self {}
    }
}

pub async fn auth_handler(
    State(state): State<Arc<AppState>>,
    Query(params): Query<HashMap<String, String>>,
) -> impl IntoResponse {
    // Extract parameters
    let bot_name = params.get("bot_name").cloned().unwrap_or_default();
    let _token = params.get("token").cloned();

    // Retrieve or create anonymous user
    let user_id = {
        let mut sm = state.session_manager.lock().await;
        match sm.get_or_create_anonymous_user(None) {
            Ok(id) => id,
            Err(e) => {
                error!("Failed to create anonymous user: {}", e);
                return (
                    StatusCode::INTERNAL_SERVER_ERROR,
                    Json(serde_json::json!({ "error": "Failed to create user" })),
                );
            }
        }
    };

    // Resolve bot ID and name
    let (bot_id, bot_name) = match tokio::task::spawn_blocking({
        let bot_name = bot_name.clone();
        let conn = state.conn.clone();
        move || {
            let mut db_conn = conn
                .get()
                .map_err(|e| format!("Failed to get database connection: {}", e))?;
            use crate::shared::models::schema::bots::dsl::*;
            use diesel::prelude::*;
            match bots
                .filter(name.eq(&bot_name))
                .filter(is_active.eq(true))
                .select((id, name))
                .first::<(Uuid, String)>(&mut db_conn)
                .optional()
            {
                Ok(Some((id_val, name_val))) => Ok((id_val, name_val)),
                Ok(None) => match bots
                    .filter(is_active.eq(true))
                    .select((id, name))
                    .first::<(Uuid, String)>(&mut db_conn)
                    .optional()
                {
                    Ok(Some((id_val, name_val))) => Ok((id_val, name_val)),
                    Ok(None) => Err("No active bots found".to_string()),
                    Err(e) => Err(format!("DB error: {}", e)),
                },
                Err(e) => Err(format!("DB error: {}", e)),
            }
        }
    })
    .await
    {
        Ok(Ok(res)) => res,
        Ok(Err(e)) => {
            error!("{}", e);
            return (
                StatusCode::INTERNAL_SERVER_ERROR,
                Json(serde_json::json!({ "error": e })),
            );
        }
        Err(e) => {
            error!("Spawn blocking failed: {}", e);
            return (
                StatusCode::INTERNAL_SERVER_ERROR,
                Json(serde_json::json!({ "error": "DB thread error" })),
            );
        }
    };

    // Create session
    let session = {
        let mut sm = state.session_manager.lock().await;
        match sm.get_or_create_user_session(user_id, bot_id, "Auth Session") {
            Ok(Some(sess)) => sess,
            Ok(None) => {
                error!("Failed to create session");
                return (
                    StatusCode::INTERNAL_SERVER_ERROR,
                    Json(serde_json::json!({ "error": "Failed to create session" })),
                );
            }
            Err(e) => {
                error!("Failed to create session: {}", e);
                return (
                    StatusCode::INTERNAL_SERVER_ERROR,
                    Json(serde_json::json!({ "error": e.to_string() })),
                );
            }
        }
    };

    // Attempt to run auth script if present
    let auth_script_path = format!("./work/{}.gbai/{}.gbdialog/auth.ast", bot_name, bot_name);
    if tokio::fs::metadata(&auth_script_path).await.is_ok() {
        let auth_script = match tokio::fs::read_to_string(&auth_script_path).await {
            Ok(content) => content,
            Err(e) => {
                error!("Failed to read auth script: {}", e);
                return (
                    StatusCode::OK,
                    Json(serde_json::json!({
                        "user_id": session.user_id,
                        "session_id": session.id,
                        "status": "authenticated"
                    })),
                );
            }
        };

        // Run script in blocking context since Rhai is not Send
        let state_clone = Arc::clone(&state);
        let session_clone = session.clone();
        match tokio::task::spawn_blocking(move || {
            let script_service = crate::basic::ScriptService::new(state_clone, session_clone);
            match script_service.compile(&auth_script) {
                Ok(ast) => match script_service.run(&ast) {
                    Ok(_) => Ok(()),
                    Err(e) => Err(format!("Script execution error: {}", e)),
                },
                Err(e) => Err(format!("Script compilation error: {}", e)),
            }
        })
        .await
        {
            Ok(Ok(())) => {}
            Ok(Err(e)) => {
                error!("Auth script error: {}", e);
            }
            Err(e) => {
                error!("Auth script task error: {}", e);
            }
        }
    }

    // Return successful authentication response
    (
        StatusCode::OK,
        Json(serde_json::json!({
            "user_id": session.user_id,
            "session_id": session.id,
            "status": "authenticated"
        })),
    )
}

#[cfg(test)]
pub mod auth_test;
Migrate HTTP API from Actix to Axum 2025-11-20 13:28:35 -03:00			`use crate::shared::state::AppState;`
			`use axum::{`
			`extract::{Query, State},`
			`http::StatusCode,`
			`response::{IntoResponse, Json},`
			`};`
feat: refactor auth and models, update LLM fallback strategy - Simplified auth module by removing unused imports and code - Cleaned up shared models by removing unused structs (Organization, User, Bot, etc.) - Updated add-req.sh to comment out unused directories - Modified LLM fallback strategy in README with additional notes about model behaviors The changes focus on removing unused code and improving documentation while maintaining existing functionality. The auth module was significantly reduced by removing redundant code, and similar cleanup was applied to shared models. The build script was adjusted to reflect currently used directories. 2025-11-04 23:11:33 -03:00			`use log::error;`
- Refactor in bot package. 2025-10-18 12:01:39 -03:00			`use std::collections::HashMap;`
Migration to Rust and free from Azure. 2025-10-06 10:30:17 -03:00			`use std::sync::Arc;`
			`use uuid::Uuid;`
Migrate HTTP API from Actix to Axum 2025-11-20 13:28:35 -03:00
feat: refactor auth and models, update LLM fallback strategy - Simplified auth module by removing unused imports and code - Cleaned up shared models by removing unused structs (Organization, User, Bot, etc.) - Updated add-req.sh to comment out unused directories - Modified LLM fallback strategy in README with additional notes about model behaviors The changes focus on removing unused code and improving documentation while maintaining existing functionality. The auth module was significantly reduced by removing redundant code, and similar cleanup was applied to shared models. The build script was adjusted to reflect currently used directories. 2025-11-04 23:11:33 -03:00			`pub struct AuthService {}`
Migrate HTTP API from Actix to Axum 2025-11-20 13:28:35 -03:00
Migration to Rust and free from Azure. 2025-10-06 10:30:17 -03:00			`impl AuthService {`
Migrate HTTP API from Actix to Axum 2025-11-20 13:28:35 -03:00			`pub fn new() -> Self {`
			`Self {}`
			`}`
Migration to Rust and free from Azure. 2025-10-06 10:30:17 -03:00			`}`
Migrate HTTP API from Actix to Axum 2025-11-20 13:28:35 -03:00
refactor(web): consolidate routing and expose auth handler - Add `*.log` to `.gitignore` to exclude log files from version control. - Change `auth_handler` to `pub` in `src/auth/mod.rs` to make the endpoint publicly accessible. - Remove unused `bot_index` import and route; replace direct service registration with `web_server::configure_app` in `src/main.rs`. - Refactor `src/web_server/mod.rs`: - Remove the `bot_index` handler. - Introduce `serve_html` helper for loading HTML pages. - Simplify static file serving by configuring separate routes for JS and CSS assets. - Centralize all route and static file configuration in `configure_app`. - Clean up related imports and improve error handling for missing pages. 2025-11-17 10:00:12 -03:00			`pub async fn auth_handler(`
Migrate HTTP API from Actix to Axum 2025-11-20 13:28:35 -03:00			`State(state): State<Arc<AppState>>,`
			`Query(params): Query<HashMap<String, String>>,`
			`) -> impl IntoResponse {`
			`// Extract parameters`
			`let bot_name = params.get("bot_name").cloned().unwrap_or_default();`
			`let _token = params.get("token").cloned();`

			`// Retrieve or create anonymous user`
			`let user_id = {`
			`let mut sm = state.session_manager.lock().await;`
			`match sm.get_or_create_anonymous_user(None) {`
			`Ok(id) => id,`
			`Err(e) => {`
			`error!("Failed to create anonymous user: {}", e);`
			`return (`
			`StatusCode::INTERNAL_SERVER_ERROR,`
			`Json(serde_json::json!({ "error": "Failed to create user" })),`
			`);`
			`}`
			`}`
			`};`

			`// Resolve bot ID and name`
			`let (bot_id, bot_name) = match tokio::task::spawn_blocking({`
			`let bot_name = bot_name.clone();`
			`let conn = state.conn.clone();`
			`move \|\| {`
			`let mut db_conn = conn`
			`.get()`
			`.map_err(\|e\| format!("Failed to get database connection: {}", e))?;`
			`use crate::shared::models::schema::bots::dsl::*;`
			`use diesel::prelude::*;`
			`match bots`
			`.filter(name.eq(&bot_name))`
			`.filter(is_active.eq(true))`
			`.select((id, name))`
			`.first::<(Uuid, String)>(&mut db_conn)`
			`.optional()`
			`{`
			`Ok(Some((id_val, name_val))) => Ok((id_val, name_val)),`
			`Ok(None) => match bots`
			`.filter(is_active.eq(true))`
			`.select((id, name))`
			`.first::<(Uuid, String)>(&mut db_conn)`
			`.optional()`
			`{`
			`Ok(Some((id_val, name_val))) => Ok((id_val, name_val)),`
			`Ok(None) => Err("No active bots found".to_string()),`
			`Err(e) => Err(format!("DB error: {}", e)),`
			`},`
			`Err(e) => Err(format!("DB error: {}", e)),`
			`}`
			`}`
			`})`
			`.await`
			`{`
			`Ok(Ok(res)) => res,`
			`Ok(Err(e)) => {`
			`error!("{}", e);`
			`return (`
			`StatusCode::INTERNAL_SERVER_ERROR,`
			`Json(serde_json::json!({ "error": e })),`
			`);`
			`}`
			`Err(e) => {`
			`error!("Spawn blocking failed: {}", e);`
			`return (`
			`StatusCode::INTERNAL_SERVER_ERROR,`
			`Json(serde_json::json!({ "error": "DB thread error" })),`
			`);`
			`}`
			`};`

			`// Create session`
			`let session = {`
			`let mut sm = state.session_manager.lock().await;`
			`match sm.get_or_create_user_session(user_id, bot_id, "Auth Session") {`
			`Ok(Some(sess)) => sess,`
			`Ok(None) => {`
			`error!("Failed to create session");`
			`return (`
			`StatusCode::INTERNAL_SERVER_ERROR,`
			`Json(serde_json::json!({ "error": "Failed to create session" })),`
			`);`
			`}`
			`Err(e) => {`
			`error!("Failed to create session: {}", e);`
			`return (`
			`StatusCode::INTERNAL_SERVER_ERROR,`
			`Json(serde_json::json!({ "error": e.to_string() })),`
			`);`
			`}`
			`}`
			`};`

			`// Attempt to run auth script if present`
			`let auth_script_path = format!("./work/{}.gbai/{}.gbdialog/auth.ast", bot_name, bot_name);`
			`if tokio::fs::metadata(&auth_script_path).await.is_ok() {`
			`let auth_script = match tokio::fs::read_to_string(&auth_script_path).await {`
			`Ok(content) => content,`
			`Err(e) => {`
			`error!("Failed to read auth script: {}", e);`
			`return (`
			`StatusCode::OK,`
			`Json(serde_json::json!({`
			`"user_id": session.user_id,`
			`"session_id": session.id,`
			`"status": "authenticated"`
			`})),`
			`);`
			`}`
			`};`

			`// Run script in blocking context since Rhai is not Send`
			`let state_clone = Arc::clone(&state);`
			`let session_clone = session.clone();`
			`match tokio::task::spawn_blocking(move \|\| {`
			`let script_service = crate::basic::ScriptService::new(state_clone, session_clone);`
			`match script_service.compile(&auth_script) {`
			`Ok(ast) => match script_service.run(&ast) {`
			`Ok(_) => Ok(()),`
			`Err(e) => Err(format!("Script execution error: {}", e)),`
			`},`
			`Err(e) => Err(format!("Script compilation error: {}", e)),`
			`}`
			`})`
			`.await`
			`{`
			`Ok(Ok(())) => {}`
			`Ok(Err(e)) => {`
			`error!("Auth script error: {}", e);`
			`}`
			`Err(e) => {`
			`error!("Auth script task error: {}", e);`
			`}`
			`}`
			`}`

			`// Return successful authentication response`
			`(`
			`StatusCode::OK,`
			`Json(serde_json::json!({`
			`"user_id": session.user_id,`
			`"session_id": session.id,`
			`"status": "authenticated"`
			`})),`
			`)`
- Refactor in bot package. 2025-10-18 12:01:39 -03:00			`}`
Migrate HTTP API from Actix to Axum 2025-11-20 13:28:35 -03:00
test: add test module declarations and cleanup unused code - Introduced `#[cfg(test)] pub mod auth_test;` in `src/auth/mod.rs` to expose authentication tests. - Added `pub mod tests;` declarations in `src/lib.rs` and `src/main.rs` for centralized test utilities. - Removed unnecessary blank lines and a placeholder comment in `src/shared/models.rs` and `src/tests/test_util.rs`. - Minor formatting adjustments to improve code readability and maintainability. 2025-11-05 08:06:18 -03:00			`#[cfg(test)]`
			`pub mod auth_test;`