Project Types, Code Cleanup, and Rename Mods -> Projects (#192)

* Initial work for modpacks and project types * Code cleanup, fix some issues * Username route getting, remove pointless tests * Base validator types + fixes * Fix strange IML generation * Multiple hash requests for version files * Fix docker build (hopefully) * Legacy routes * Finish validator architecture * Update rust version in dockerfile * Added caching and fixed typo (#203) * Added caching and fixed typo * Fixed clippy error * Removed log for cache * Add final validators, fix how loaders are handled and add icons to tags * Fix search module * Fix parts of legacy API not working Co-authored-by: Redblueflame <contact@redblueflame.com>
2021-05-30 15:02:07 -07:00
parent 712424c339
commit 16db28060c
55 changed files with 6656 additions and 3908 deletions
--- a/src/routes/versions.rs
+++ b/src/routes/versions.rs
@@ -1,15 +1,15 @@
 use super::ApiError;
 use crate::auth::get_user_from_headers;
-use crate::file_hosting::FileHost;
+use crate::database;
 use crate::models;
-use crate::models::mods::{Dependency, DependencyType};
+use crate::models::projects::{Dependency, DependencyType};
 use crate::models::teams::Permissions;
-use crate::{database, Pepper};
 use actix_web::{delete, get, patch, web, HttpRequest, HttpResponse};
+use lazy_static::lazy_static;
+use regex::Regex;
 use serde::{Deserialize, Serialize};
 use sqlx::PgPool;
-use std::borrow::Borrow;
-use std::sync::Arc;
+use validator::Validate;

 #[derive(Serialize, Deserialize, Clone)]
 pub struct VersionListFilters {
@@ -20,23 +20,18 @@ pub struct VersionListFilters {

 #[get("version")]
 pub async fn version_list(
-    info: web::Path<(models::ids::ModId,)>,
+    info: web::Path<(String,)>,
    web::Query(filters): web::Query<VersionListFilters>,
    pool: web::Data<PgPool>,
 ) -> Result<HttpResponse, ApiError> {
-    let id = info.into_inner().0.into();
+    let string = info.into_inner().0;

-    let mod_exists = sqlx::query!(
-        "SELECT EXISTS(SELECT 1 FROM mods WHERE id = $1)",
-        id as database::models::ModId,
-    )
-    .fetch_one(&**pool)
-    .await
-    .map_err(|e| ApiError::DatabaseError(e.into()))?
-    .exists;
+    let result = database::models::Project::get_from_slug_or_project_id(string, &**pool).await?;

-    if mod_exists.unwrap_or(false) {
-        let version_ids = database::models::Version::get_mod_versions(
+    if let Some(project) = result {
+        let id = project.id;
+
+        let version_ids = database::models::Version::get_project_versions(
            id,
            filters
                .game_versions
@@ -48,12 +43,9 @@ pub async fn version_list(
                .map(|x| serde_json::from_str(x).unwrap_or_default()),
            &**pool,
        )
-        .await
-        .map_err(|e| ApiError::DatabaseError(e.into()))?;
+        .await?;

-        let mut versions = database::models::Version::get_many_full(version_ids, &**pool)
-            .await
-            .map_err(|e| ApiError::DatabaseError(e.into()))?;
+        let mut versions = database::models::Version::get_many_full(version_ids, &**pool).await?;

        let mut response = versions
            .iter()
@@ -87,8 +79,8 @@ pub async fn version_list(
                versions
                    .iter()
                    .find(|version| {
-                        version.game_versions.contains(&filter.0)
-                            && version.loaders.contains(&filter.1)
+                        version.game_versions.contains(&filter.0.version)
+                            && version.loaders.contains(&filter.1.loader)
                    })
                    .map(|version| response.push(convert_version(version.clone())))
                    .unwrap_or(());
@@ -124,9 +116,7 @@ pub async fn versions_get(
        .into_iter()
        .map(|x| x.into())
        .collect();
-    let versions_data = database::models::Version::get_many_full(version_ids, &**pool)
-        .await
-        .map_err(|e| ApiError::DatabaseError(e.into()))?;
+    let versions_data = database::models::Version::get_many_full(version_ids, &**pool).await?;

    let mut versions = Vec::new();

@@ -143,9 +133,7 @@ pub async fn version_get(
    pool: web::Data<PgPool>,
 ) -> Result<HttpResponse, ApiError> {
    let id = info.into_inner().0;
-    let version_data = database::models::Version::get_full(id.into(), &**pool)
-        .await
-        .map_err(|e| ApiError::DatabaseError(e.into()))?;
+    let version_data = database::models::Version::get_full(id.into(), &**pool).await?;

    if let Some(data) = version_data {
        Ok(HttpResponse::Ok().json(convert_version(data)))
@@ -154,12 +142,14 @@ pub async fn version_get(
    }
 }

-fn convert_version(data: database::models::version_item::QueryVersion) -> models::mods::Version {
-    use models::mods::VersionType;
+pub fn convert_version(
+    data: database::models::version_item::QueryVersion,
+) -> models::projects::Version {
+    use models::projects::VersionType;

-    models::mods::Version {
+    models::projects::Version {
        id: data.id.into(),
-        mod_id: data.mod_id.into(),
+        project_id: data.project_id.into(),
        author_id: data.author_id.into(),

        featured: data.featured,
@@ -180,7 +170,7 @@ fn convert_version(data: database::models::version_item::QueryVersion) -> models
            .files
            .into_iter()
            .map(|f| {
-                models::mods::VersionFile {
+                models::projects::VersionFile {
                    url: f.url,
                    filename: f.filename,
                    // FIXME: Hashes are currently stored as an ascii byte slice instead
@@ -206,25 +196,33 @@ fn convert_version(data: database::models::version_item::QueryVersion) -> models
        game_versions: data
            .game_versions
            .into_iter()
-            .map(models::mods::GameVersion)
+            .map(models::projects::GameVersion)
            .collect(),
        loaders: data
            .loaders
            .into_iter()
-            .map(models::mods::ModLoader)
+            .map(models::projects::Loader)
            .collect(),
    }
 }

-#[derive(Serialize, Deserialize)]
+lazy_static! {
+    static ref RE_URL_SAFE: Regex = Regex::new(r"^[a-zA-Z0-9_-]*$").unwrap();
+}
+
+#[derive(Serialize, Deserialize, Validate)]
 pub struct EditVersion {
+    #[validate(length(min = 3, max = 256))]
    pub name: Option<String>,
+    #[validate(length(min = 1, max = 64), regex = "RE_URL_SAFE")]
    pub version_number: Option<String>,
+    #[validate(length(max = 65536))]
    pub changelog: Option<String>,
-    pub version_type: Option<models::mods::VersionType>,
+    pub version_type: Option<models::projects::VersionType>,
+    #[validate(length(min = 1, max = 256))]
    pub dependencies: Option<Vec<Dependency>>,
-    pub game_versions: Option<Vec<models::mods::GameVersion>>,
-    pub loaders: Option<Vec<models::mods::ModLoader>>,
+    pub game_versions: Option<Vec<models::projects::GameVersion>>,
+    pub loaders: Option<Vec<models::projects::Loader>>,
    pub featured: Option<bool>,
    pub primary_file: Option<(String, String)>,
 }
@@ -238,12 +236,12 @@ pub async fn version_edit(
 ) -> Result<HttpResponse, ApiError> {
    let user = get_user_from_headers(req.headers(), &**pool).await?;

+    new_version.validate()?;
+
    let version_id = info.into_inner().0;
    let id = version_id.into();

-    let result = database::models::Version::get_full(id, &**pool)
-        .await
-        .map_err(|e| ApiError::DatabaseError(e.into()))?;
+    let result = database::models::Version::get_full(id, &**pool).await?;

    if let Some(version_item) = result {
        let team_member = database::models::TeamMember::get_from_user_id_version(
@@ -269,18 +267,9 @@ pub async fn version_edit(
                ));
            }

-            let mut transaction = pool
-                .begin()
-                .await
-                .map_err(|e| ApiError::DatabaseError(e.into()))?;
+            let mut transaction = pool.begin().await?;

            if let Some(name) = &new_version.name {
-                if name.len() > 256 || name.len() < 3 {
-                    return Err(ApiError::InvalidInputError(
-                        "The version name must be within 3-256 characters!".to_string(),
-                    ));
-                }
-
                sqlx::query!(
                    "
                    UPDATE versions
@@ -291,17 +280,10 @@ pub async fn version_edit(
                    id as database::models::ids::VersionId,
                )
                .execute(&mut *transaction)
-                .await
-                .map_err(|e| ApiError::DatabaseError(e.into()))?;
+                .await?;
            }

            if let Some(number) = &new_version.version_number {
-                if number.len() > 64 || number.is_empty() {
-                    return Err(ApiError::InvalidInputError(
-                        "The version number must be within 1-64 characters!".to_string(),
-                    ));
-                }
-
                sqlx::query!(
                    "
                    UPDATE versions
@@ -312,8 +294,7 @@ pub async fn version_edit(
                    id as database::models::ids::VersionId,
                )
                .execute(&mut *transaction)
-                .await
-                .map_err(|e| ApiError::DatabaseError(e.into()))?;
+                .await?;
            }

            if let Some(version_type) = &new_version.version_type {
@@ -338,8 +319,7 @@ pub async fn version_edit(
                    id as database::models::ids::VersionId,
                )
                .execute(&mut *transaction)
-                .await
-                .map_err(|e| ApiError::DatabaseError(e.into()))?;
+                .await?;
            }

            if let Some(dependencies) = &new_version.dependencies {
@@ -350,8 +330,7 @@ pub async fn version_edit(
                    id as database::models::ids::VersionId,
                )
                .execute(&mut *transaction)
-                .await
-                .map_err(|e| ApiError::DatabaseError(e.into()))?;
+                .await?;

                for dependency in dependencies {
                    let dependency_id: database::models::ids::VersionId =
@@ -367,8 +346,7 @@ pub async fn version_edit(
                        dependency.dependency_type.as_str()
                    )
                    .execute(&mut *transaction)
-                    .await
-                    .map_err(|e| ApiError::DatabaseError(e.into()))?;
+                    .await?;
                }
            }

@@ -380,8 +358,7 @@ pub async fn version_edit(
                    id as database::models::ids::VersionId,
                )
                .execute(&mut *transaction)
-                .await
-                .map_err(|e| ApiError::DatabaseError(e.into()))?;
+                .await?;

                for game_version in game_versions {
                    let game_version_id = database::models::categories::GameVersion::get_id(
@@ -404,8 +381,7 @@ pub async fn version_edit(
                        id as database::models::ids::VersionId,
                    )
                    .execute(&mut *transaction)
-                    .await
-                    .map_err(|e| ApiError::DatabaseError(e.into()))?;
+                    .await?;
                }
            }

@@ -417,8 +393,7 @@ pub async fn version_edit(
                    id as database::models::ids::VersionId,
                )
                .execute(&mut *transaction)
-                .await
-                .map_err(|e| ApiError::DatabaseError(e.into()))?;
+                .await?;

                for loader in loaders {
                    let loader_id =
@@ -439,8 +414,7 @@ pub async fn version_edit(
                        id as database::models::ids::VersionId,
                    )
                    .execute(&mut *transaction)
-                    .await
-                    .map_err(|e| ApiError::DatabaseError(e.into()))?;
+                    .await?;
                }
            }

@@ -455,8 +429,7 @@ pub async fn version_edit(
                    id as database::models::ids::VersionId,
                )
                .execute(&mut *transaction)
-                .await
-                .map_err(|e| ApiError::DatabaseError(e.into()))?;
+                .await?;
            }

            if let Some(primary_file) = &new_version.primary_file {
@@ -470,8 +443,7 @@ pub async fn version_edit(
                    primary_file.0
                )
                .fetch_optional(&**pool)
-                .await
-                .map_err(|e| ApiError::DatabaseError(e.into()))?
+                .await?
                .ok_or_else(|| {
                    ApiError::InvalidInputError(format!(
                        "Specified file with hash {} does not exist.",
@@ -488,8 +460,7 @@ pub async fn version_edit(
                    id as database::models::ids::VersionId,
                )
                .execute(&mut *transaction)
-                .await
-                .map_err(|e| ApiError::DatabaseError(e.into()))?;
+                .await?;

                sqlx::query!(
                    "
@@ -500,18 +471,10 @@ pub async fn version_edit(
                    result.id,
                )
                .execute(&mut *transaction)
-                .await
-                .map_err(|e| ApiError::DatabaseError(e.into()))?;
+                .await?;
            }

            if let Some(body) = &new_version.changelog {
-                if body.len() > 65536 {
-                    return Err(ApiError::InvalidInputError(
-                        "The version changelog must be less than 65536 characters long!"
-                            .to_string(),
-                    ));
-                }
-
                sqlx::query!(
                    "
                    UPDATE versions
@@ -522,15 +485,11 @@ pub async fn version_edit(
                    id as database::models::ids::VersionId,
                )
                .execute(&mut *transaction)
-                .await
-                .map_err(|e| ApiError::DatabaseError(e.into()))?;
+                .await?;
            }

-            transaction
-                .commit()
-                .await
-                .map_err(|e| ApiError::DatabaseError(e.into()))?;
-            Ok(HttpResponse::Ok().body(""))
+            transaction.commit().await?;
+            Ok(HttpResponse::NoContent().body(""))
        } else {
            Err(ApiError::CustomAuthenticationError(
                "You do not have permission to edit this version!".to_string(),
@@ -574,261 +533,10 @@ pub async fn version_delete(
        }
    }

-    let result = database::models::Version::remove_full(id.into(), &**pool)
-        .await
-        .map_err(|e| ApiError::DatabaseError(e.into()))?;
+    let result = database::models::Version::remove_full(id.into(), &**pool).await?;

    if result.is_some() {
-        Ok(HttpResponse::Ok().body(""))
-    } else {
-        Ok(HttpResponse::NotFound().body(""))
-    }
-}
-
-#[derive(Deserialize)]
-pub struct Algorithm {
-    #[serde(default = "default_algorithm")]
-    algorithm: String,
-}
-
-fn default_algorithm() -> String {
-    "sha1".into()
-}
-
-// under /api/v1/version_file/{hash}
-#[get("{version_id}")]
-pub async fn get_version_from_hash(
-    info: web::Path<(String,)>,
-    pool: web::Data<PgPool>,
-    algorithm: web::Query<Algorithm>,
-) -> Result<HttpResponse, ApiError> {
-    let hash = info.into_inner().0;
-
-    let result = sqlx::query!(
-        "
-        SELECT f.version_id version_id FROM hashes h
-        INNER JOIN files f ON h.file_id = f.id
-        WHERE h.algorithm = $2 AND h.hash = $1
-        ",
-        hash.as_bytes(),
-        algorithm.algorithm
-    )
-    .fetch_optional(&**pool)
-    .await
-    .map_err(|e| ApiError::DatabaseError(e.into()))?;
-
-    if let Some(id) = result {
-        let version_data = database::models::Version::get_full(
-            database::models::VersionId(id.version_id),
-            &**pool,
-        )
-        .await
-        .map_err(|e| ApiError::DatabaseError(e.into()))?;
-
-        if let Some(data) = version_data {
-            Ok(HttpResponse::Ok().json(convert_version(data)))
-        } else {
-            Ok(HttpResponse::NotFound().body(""))
-        }
-    } else {
-        Ok(HttpResponse::NotFound().body(""))
-    }
-}
-
-#[derive(Serialize, Deserialize)]
-pub struct DownloadRedirect {
-    pub url: String,
-}
-
-// under /api/v1/version_file/{hash}/download
-#[allow(clippy::await_holding_refcell_ref)]
-#[get("{version_id}/download")]
-pub async fn download_version(
-    req: HttpRequest,
-    info: web::Path<(String,)>,
-    pool: web::Data<PgPool>,
-    algorithm: web::Query<Algorithm>,
-    pepper: web::Data<Pepper>,
-) -> Result<HttpResponse, ApiError> {
-    let hash = info.into_inner().0;
-
-    let result = sqlx::query!(
-        "
-        SELECT f.url url, f.id id, f.version_id version_id, v.mod_id mod_id FROM hashes h
-        INNER JOIN files f ON h.file_id = f.id
-        INNER JOIN versions v ON v.id = f.version_id
-        WHERE h.algorithm = $2 AND h.hash = $1
-        ",
-        hash.as_bytes(),
-        algorithm.algorithm
-    )
-    .fetch_optional(&**pool)
-    .await
-    .map_err(|e| ApiError::DatabaseError(e.into()))?;
-
-    if let Some(id) = result {
-        let real_ip = req.connection_info();
-        let ip_option = real_ip.borrow().remote_addr();
-
-        if let Some(ip) = ip_option {
-            let hash = sha1::Sha1::from(format!("{}{}", ip, pepper.pepper)).hexdigest();
-
-            let download_exists = sqlx::query!(
-                "SELECT EXISTS(SELECT 1 FROM downloads WHERE version_id = $1 AND date > (CURRENT_DATE - INTERVAL '30 minutes ago') AND identifier = $2)",
-                id.version_id,
-                hash,
-            )
-                .fetch_one(&**pool)
-                .await
-                .map_err(|e| ApiError::DatabaseError(e.into()))?
-                .exists.unwrap_or(false);
-
-            if !download_exists {
-                sqlx::query!(
-                    "
-                    INSERT INTO downloads (
-                        version_id, identifier
-                    )
-                    VALUES (
-                        $1, $2
-                    )
-                    ",
-                    id.version_id,
-                    hash
-                )
-                .execute(&**pool)
-                .await
-                .map_err(|e| ApiError::DatabaseError(e.into()))?;
-
-                sqlx::query!(
-                    "
-                    UPDATE versions
-                    SET downloads = downloads + 1
-                    WHERE id = $1
-                    ",
-                    id.version_id,
-                )
-                .execute(&**pool)
-                .await
-                .map_err(|e| ApiError::DatabaseError(e.into()))?;
-
-                sqlx::query!(
-                    "
-                    UPDATE mods
-                    SET downloads = downloads + 1
-                    WHERE id = $1
-                    ",
-                    id.mod_id,
-                )
-                .execute(&**pool)
-                .await
-                .map_err(|e| ApiError::DatabaseError(e.into()))?;
-            }
-        }
-        Ok(HttpResponse::TemporaryRedirect()
-            .header("Location", &*id.url)
-            .json(DownloadRedirect { url: id.url }))
-    } else {
-        Ok(HttpResponse::NotFound().body(""))
-    }
-}
-
-// under /api/v1/version_file/{hash}
-#[delete("{version_id}")]
-pub async fn delete_file(
-    req: HttpRequest,
-    info: web::Path<(String,)>,
-    pool: web::Data<PgPool>,
-    file_host: web::Data<Arc<dyn FileHost + Send + Sync>>,
-    algorithm: web::Query<Algorithm>,
-) -> Result<HttpResponse, ApiError> {
-    let user = get_user_from_headers(req.headers(), &**pool).await?;
-
-    let hash = info.into_inner().0;
-
-    let result = sqlx::query!(
-        "
-        SELECT f.id id, f.version_id version_id, f.filename filename, v.version_number version_number, v.mod_id mod_id FROM hashes h
-        INNER JOIN files f ON h.file_id = f.id
-        INNER JOIN versions v ON v.id = f.version_id
-        WHERE h.algorithm = $2 AND h.hash = $1
-        ",
-        hash.as_bytes(),
-        algorithm.algorithm
-    )
-    .fetch_optional(&**pool)
-    .await
-    .map_err(|e| ApiError::DatabaseError(e.into()))?;
-
-    if let Some(row) = result {
-        if !user.role.is_mod() {
-            let team_member = database::models::TeamMember::get_from_user_id_version(
-                database::models::ids::VersionId(row.version_id),
-                user.id.into(),
-                &**pool,
-            )
-            .await
-            .map_err(ApiError::DatabaseError)?
-            .ok_or_else(|| {
-                ApiError::CustomAuthenticationError(
-                    "You don't have permission to delete this file!".to_string(),
-                )
-            })?;
-
-            if !team_member
-                .permissions
-                .contains(Permissions::DELETE_VERSION)
-            {
-                return Err(ApiError::CustomAuthenticationError(
-                    "You don't have permission to delete this file!".to_string(),
-                ));
-            }
-        }
-
-        let mut transaction = pool
-            .begin()
-            .await
-            .map_err(|e| ApiError::DatabaseError(e.into()))?;
-
-        sqlx::query!(
-            "
-            DELETE FROM hashes
-            WHERE file_id = $1
-            ",
-            row.id
-        )
-        .execute(&mut *transaction)
-        .await
-        .map_err(|e| ApiError::DatabaseError(e.into()))?;
-
-        sqlx::query!(
-            "
-            DELETE FROM files
-            WHERE files.id = $1
-            ",
-            row.id,
-        )
-        .execute(&mut *transaction)
-        .await
-        .map_err(|e| ApiError::DatabaseError(e.into()))?;
-
-        let mod_id: models::mods::ModId = database::models::ids::ModId(row.mod_id).into();
-        file_host
-            .delete_file_version(
-                "",
-                &format!(
-                    "data/{}/versions/{}/{}",
-                    mod_id, row.version_number, row.filename
-                ),
-            )
-            .await?;
-
-        transaction
-            .commit()
-            .await
-            .map_err(|e| ApiError::DatabaseError(e.into()))?;
-
-        Ok(HttpResponse::Ok().body(""))
+        Ok(HttpResponse::NoContent().body(""))
    } else {
        Ok(HttpResponse::NotFound().body(""))
    }