use axum::{extract, Json};use chartered_db::{crates::Crate,users::{User, UserCratePermissionValue as Permission},ConnectionPool,};use serde::{Deserialize, Serialize};use std::sync::Arc;use thiserror::Error;use crate::endpoints::ErrorResponse;#[derive(Serialize)]pub struct GetResponse {allowed_permissions: &'static [&'static str],members: Vec<GetResponseMember>,}#[derive(Deserialize, Serialize)]pub struct GetResponseMember {id: i32,username: String,permissions: Permission,}pub async fn handle_get(extract::Path((_session_key, name)): extract::Path<(String, String)>,extract::Extension(db): extract::Extension<ConnectionPool>,extract::Extension(user): extract::Extension<Arc<User>>,) -> Result<Json<GetResponse>, Error> {let crate_ = Crate::find_by_name(db.clone(), name).await?.ok_or(Error::NoCrate).map(std::sync::Arc::new)?;ensure_has_crate_perm!(db, user, crate_, Permission::VISIBLE | -> Error::NoCrate, Permission::MANAGE_USERS | -> Error::NoPermission);let members = crate_.members(db).await?.into_iter().map(|(user, permissions)| GetResponseMember {id: user.id,username: user.username,permissions,}).collect();Ok(Json(GetResponse {allowed_permissions: Permission::names(),members,}))}#[derive(Deserialize)]pub struct PutOrPatchRequest {user_id: i32,permissions: Permission,}pub async fn handle_patch(extract::Path((_session_key, name)): extract::Path<(String, String)>,extract::Extension(db): extract::Extension<ConnectionPool>,extract::Extension(user): extract::Extension<Arc<User>>,extract::Json(req): extract::Json<PutOrPatchRequest>,) -> Result<Json<ErrorResponse>, Error> {let crate_ = Crate::find_by_name(db.clone(), name).await?.ok_or(Error::NoCrate).map(std::sync::Arc::new)?;ensure_has_crate_perm!(db, user, crate_, Permission::VISIBLE | -> Error::NoCrate, Permission::MANAGE_USERS | -> Error::NoPermission);let affected_rows = crate_.update_permissions(db, req.user_id, req.permissions).await?;if affected_rows == 0 {return Err(Error::UpdateConflictRemoved);}Ok(Json(ErrorResponse { error: None }))}pub async fn handle_put(extract::Path((_session_key, name)): extract::Path<(String, String)>,extract::Extension(db): extract::Extension<ConnectionPool>,extract::Extension(user): extract::Extension<Arc<User>>,extract::Json(req): extract::Json<PutOrPatchRequest>,) -> Result<Json<ErrorResponse>, Error> {let crate_ = Crate::find_by_name(db.clone(), name).await?.ok_or(Error::NoCrate).map(std::sync::Arc::new)?;ensure_has_crate_perm!(db, user, crate_, Permission::VISIBLE | -> Error::NoCrate, Permission::MANAGE_USERS | -> Error::NoPermission);crate_.insert_permissions(db, req.user_id, req.permissions).await?;Ok(Json(ErrorResponse { error: None }))}#[derive(Deserialize)]pub struct DeleteRequest {user_id: i32,}pub async fn handle_delete(extract::Path((_session_key, name)): extract::Path<(String, String)>,extract::Extension(db): extract::Extension<ConnectionPool>,extract::Extension(user): extract::Extension<Arc<User>>,extract::Json(req): extract::Json<DeleteRequest>,) -> Result<Json<ErrorResponse>, Error> {let crate_ = Crate::find_by_name(db.clone(), name).await?.ok_or(Error::NoCrate).map(std::sync::Arc::new)?;ensure_has_crate_perm!(db, user, crate_, Permission::VISIBLE | -> Error::NoCrate, Permission::MANAGE_USERS | -> Error::NoPermission);crate_.delete_member(db, req.user_id).await?;Ok(Json(ErrorResponse { error: None }))}#[derive(Error, Debug)]pub enum Error {#[error("Failed to query database")]Database(#[from] chartered_db::Error),#[error("The requested crate does not exist")]NoCrate,#[error("You don't have permission to manage users for this crate")]NoPermission,#[error("Permissions update conflict, user was removed as a member of the crate")]UpdateConflictRemoved,}impl Error {pub fn status_code(&self) -> axum::http::StatusCode {use axum::http::StatusCode;match self {Self::Database(_) => StatusCode::INTERNAL_SERVER_ERROR,Self::NoCrate => StatusCode::NOT_FOUND,Self::NoPermission => StatusCode::FORBIDDEN,Self::UpdateConflictRemoved => StatusCode::CONFLICT,}}}define_error_response!(Error);