use log::warn; use rocket::{ data::{Data, FromData, FromDataFuture, Transform, TransformFuture, Transformed}, http::Status, response::{self, Responder}, Outcome::*, Request, State, }; use ruma_api::{ error::{FromHttpRequestError, FromHttpResponseError}, Endpoint, Outgoing, }; use ruma_identifiers::UserId; use std::{ convert::{TryFrom, TryInto}, io::Cursor, ops::Deref, }; use tokio::io::AsyncReadExt; const MESSAGE_LIMIT: u64 = 65535; /// This struct converts rocket requests into ruma structs by converting them into http requests /// first. pub struct Ruma { body: T::Incoming, pub user_id: Option, pub json_body: serde_json::Value, } impl<'a, T: Endpoint> FromData<'a> for Ruma where // We need to duplicate Endpoint's where clauses because the compiler is not smart enough yet. // See https://github.com/rust-lang/rust/issues/54149 ::Incoming: TryFrom>, Error = FromHttpRequestError>, ::Incoming: TryFrom< http::Response>, Error = FromHttpResponseError<::ResponseError>, >, { type Error = (); // TODO: Better error handling type Owned = Data; type Borrowed = Self::Owned; fn transform<'r>( _req: &'r Request, data: Data, ) -> TransformFuture<'r, Self::Owned, Self::Error> { Box::pin(async move { Transform::Owned(Success(data)) }) } fn from_data( request: &'a Request, outcome: Transformed<'a, Self>, ) -> FromDataFuture<'a, Self, Self::Error> { Box::pin(async move { let data = rocket::try_outcome!(outcome.owned()); let user_id = if T::METADATA.requires_authentication { let data = request.guard::>().await.unwrap(); // Get token from header or query value let token = match request .headers() .get_one("Authorization") .map(|s| s[7..].to_owned()) // Split off "Bearer " .or_else(|| request.get_query_value("access_token").and_then(|r| r.ok())) { // TODO: M_MISSING_TOKEN None => return Failure((Status::Unauthorized, ())), Some(token) => token, }; // Check if token is valid match data.user_from_token(&token) { // TODO: M_UNKNOWN_TOKEN None => return Failure((Status::Unauthorized, ())), Some(user_id) => Some(user_id), } } else { None }; let mut http_request = http::Request::builder() .uri(request.uri().to_string()) .method(&*request.method().to_string()); for header in request.headers().iter() { http_request = http_request.header(header.name.as_str(), &*header.value); } let mut handle = data.open().take(MESSAGE_LIMIT); let mut body = Vec::new(); handle.read_to_end(&mut body).await.unwrap(); let http_request = http_request.body(body.clone()).unwrap(); log::info!("{:?}", http_request); match T::Incoming::try_from(http_request) { Ok(t) => Success(Ruma { body: t, user_id, // TODO: Can we avoid parsing it again? json_body: if !body.is_empty() { serde_json::from_slice(&body).expect("Ruma already parsed it successfully") } else { serde_json::Value::default() }, }), Err(e) => { warn!("{:?}", e); Failure((Status::InternalServerError, ())) } } }) } } impl Deref for Ruma { type Target = T::Incoming; fn deref(&self) -> &Self::Target { &self.body } } /// This struct converts ruma responses into rocket http responses. pub struct MatrixResult(pub std::result::Result); impl TryInto>> for MatrixResult where T: TryInto>>, E: Into>>, { type Error = T::Error; fn try_into(self) -> Result>, T::Error> { match self.0 { Ok(t) => t.try_into(), Err(e) => Ok(e.into()), } } } #[rocket::async_trait] impl<'r, T, E> Responder<'r> for MatrixResult where T: Send + TryInto>>, T::Error: Send, E: Into>> + Send, { async fn respond_to(self, _: &'r Request<'_>) -> response::Result<'r> { let http_response: Result, _> = self.try_into(); match http_response { Ok(http_response) => { let mut response = rocket::response::Response::build(); response .sized_body(Cursor::new(http_response.body().clone())) .await; let status = http_response.status(); response.raw_status(status.into(), ""); for header in http_response.headers() { response .raw_header(header.0.to_string(), header.1.to_str().unwrap().to_owned()); } response.raw_header("Access-Control-Allow-Origin", "*"); response.raw_header( "Access-Control-Allow-Methods", "GET, POST, PUT, DELETE, OPTIONS", ); response.raw_header( "Access-Control-Allow-Headers", "Origin, X-Requested-With, Content-Type, Accept, Authorization", ); response.ok() } Err(_) => Err(Status::InternalServerError), } } }