fix: multiple emails cause roles to not be assigned

Author: JayDwee

api/src/guilds/mod.rs

@@ -1,4 +1,3 @@
-use std::collections::{HashSet};
 use crate::AppState;
 use crate::guilds::models::Guild;
 use axum::extract::State;
@@ -15,20 +14,17 @@ use twilight_model::id::Id;
 use twilight_model::id::marker::GuildMarker;
 use twilight_model::user::{CurrentUser, CurrentUserGuild};
 use crate::discord::{get_guild, get_guild_member};
-use crate::guilds::tasks::{add_role_to_guild, remove_role_from_guild};
-use crate::guilds::verify::models::VerifyRole;
 use crate::utils::{admin_guilds, is_client_admin_guild};
 
 pub mod models;
 pub mod verify;
 pub(crate) mod utils;
-pub mod tasks;
 pub(crate) mod votes;
 
 pub fn router() -> Router<AppState> {
     Router::new()
         .route("/", get(get_guilds).post(post_guilds))
-        .route("/{guild_id}", get(get_guilds_id).put(put_guilds_id).post(post_guilds_id))
+        .route("/{guild_id}", get(get_guilds_id).post(post_guilds_id))
         .nest("/{guild_id}/verify", verify::controllers::router())
         .nest("/{guild_id}/votes", votes::controllers::router())
         .layer(CorsLayer::permissive())
@@ -134,36 +130,3 @@ async fn get_guilds_id(
         }
     })))
 }
-
-async fn put_guilds_id(
-    Path(guild_id): Path<Id<GuildMarker>>,
-    Extension(current_user): Extension<CurrentUser>,
-    State(app_state): State<AppState>,
-    Json(guild_req): Json<Guild>,
-) -> Result<Json<Value>, StatusCode> {
-    if !is_client_admin_guild(guild_id, &current_user, &app_state.discord_bot).await? {
-        return Err(StatusCode::UNAUTHORIZED);
-    }
-
-    let mut old_guild = match Guild::from_db(guild_id, &app_state.dynamo).await {
-        Some(g) => g,
-        None => return Err(StatusCode::NOT_FOUND),
-    };
-
-    let old_set: HashSet<VerifyRole> = HashSet::from_iter(old_guild.verify.roles.clone());
-    let new_set: HashSet<VerifyRole> = HashSet::from_iter(guild_req.verify.roles);
-
-    let add_roles: HashSet<VerifyRole> = new_set.difference(&old_set).cloned().collect();
-    let remove_roles: HashSet<VerifyRole> = old_set.difference(&new_set).cloned().collect();
-
-    for role in add_roles {
-        add_role_to_guild(&mut old_guild, role, &app_state.discord_bot).await?;
-    }
-
-    for role in remove_roles {
-        remove_role_from_guild(&mut old_guild, role.role_id, &app_state.discord_bot).await?;
-    }
-
-    old_guild.save(&app_state.dynamo).await;
-    Ok(Json(json!(old_guild)))
-}

api/src/guilds/tasks.rs

@@ -1,14 +1,134 @@
+use std::sync::Arc;
+use axum::extract::{Path, State};
 use crate::AppState;
-use axum::Json;
-use axum::routing::get;
+use axum::{Extension, Json};
+use axum::routing::{post, put};
+use http::StatusCode;
+use lambda_http::tracing::info;
+use serde::{Deserialize, Serialize};
 use serde_json::{Value, json};
 use tower_http::cors::CorsLayer;
+use twilight_model::id::Id;
+use twilight_model::id::marker::{GuildMarker, RoleMarker};
+use twilight_model::user::CurrentUser;
+use crate::discord::{add_guild_member_role, remove_guild_member_role};
+use crate::guilds::models::Guild;
+use crate::guilds::verify::models::{Verify, VerifyRole};
+use crate::users::utils::link_arr_match;
+use crate::utils::is_client_admin_guild;
 
 pub fn router() -> axum::Router<AppState> {
-    axum::Router::new().route("/", get(get_verify))
+    axum::Router::new()
+        .route("/recon", post(post_recon))
+        .route("/roles/{role_id}", put(put_roles_id).delete(delete_roles_id))
         .layer(CorsLayer::permissive())
 }
 
-async fn get_verify() -> Json<Value> {
-    Json(json!({ "msg": "I am GET /verify" }))
+#[derive(Serialize, Deserialize)]
+struct PutRoleRequest {
+    pub pattern: String,
 }
+
+async fn put_roles_id(
+    Path((guild_id,role_id)): Path<(Id<GuildMarker>,Id<RoleMarker>)>,
+    Extension(current_user): Extension<CurrentUser>,
+    State(app_state): State<AppState>,
+    Json(put_role_request): Json<PutRoleRequest>
+) -> Result<Json<Value>, StatusCode> {
+    if !is_client_admin_guild(guild_id, &current_user, &app_state.discord_bot).await? {
+        return Err(StatusCode::FORBIDDEN);
+    }
+    
+    let mut guild = Guild::from_db(guild_id, &app_state.dynamo).await.unwrap();
+    
+    if guild.verify.roles.iter().any(|r| r.role_id == role_id) {
+        remove_existing_role(&mut guild, role_id, &app_state).await?;
+    }
+    
+    let mut new_role = VerifyRole {
+        role_id,
+        pattern: put_role_request.pattern,
+        ..Default::default()
+    };
+
+    for (user_id, user_links) in &guild.verify.user_links {
+        if link_arr_match(user_links, &new_role.pattern) {
+            add_guild_member_role(guild.guild_id, *user_id, role_id, &app_state.discord_bot).await?;
+            new_role.members += 1;
+        }
+    }
+    guild.verify.roles.push(new_role);
+    guild.save(&app_state.dynamo).await;
+    
+    Ok(Json(json!(guild.verify.roles.iter().find(|r| r.role_id == role_id).unwrap())))
+}
+
+
+async fn delete_roles_id(
+    Path((guild_id,role_id)): Path<(Id<GuildMarker>,Id<RoleMarker>)>,
+    Extension(current_user): Extension<CurrentUser>,
+    State(app_state): State<AppState>,
+) -> Result<StatusCode, StatusCode> {
+    if !is_client_admin_guild(guild_id, &current_user, &app_state.discord_bot).await? {
+        return Err(StatusCode::FORBIDDEN);
+    }
+
+    let mut guild = Guild::from_db(guild_id, &app_state.dynamo).await.unwrap();
+
+    remove_existing_role(&mut guild, role_id, &app_state).await?;
+
+    guild.save(&app_state.dynamo).await;
+
+    Ok(StatusCode::NO_CONTENT)
+}
+
+async fn remove_existing_role(
+    guild: &mut Guild,
+    role_id: Id<RoleMarker>,
+    app_state: &AppState
+) -> Result<(), StatusCode> {
+    let existing_role_opt = guild.verify.roles.iter().find(|r| r.role_id == role_id);
+
+    if existing_role_opt.is_none() {
+        // No role found
+        return Ok(())
+    }
+    let existing_role = existing_role_opt.unwrap();
+
+    for (user_id, user_links) in &guild.verify.user_links {
+        if link_arr_match(user_links, &existing_role.pattern) {
+            remove_guild_member_role(guild.guild_id, *user_id, role_id, &app_state.discord_bot).await?
+        }
+    }
+
+    guild.verify.roles.retain(|r| r.role_id != role_id);
+    Ok(())
+}
+
+async fn post_recon(
+    Path(guild_id): Path<Id<GuildMarker>>,
+    Extension(discord_user): Extension<Arc<twilight_http::Client>>,
+    State(app_state): State<AppState>,
+) -> Result<StatusCode, StatusCode> {
+    if discord_user.token() != app_state.discord_bot.token() {
+        return Err(StatusCode::FORBIDDEN);
+    }
+    
+    let mut guild = Guild::from_db(guild_id, &app_state.dynamo).await.unwrap();
+    let Verify{roles, user_links} = &mut guild.verify;
+
+    for role in roles {
+        role.members = 0;
+        for (user_id, links) in &*user_links {
+            if link_arr_match(links, &role.pattern) {
+                add_guild_member_role(guild.guild_id, *user_id, role.role_id, &app_state.discord_bot).await?;
+                role.members += 1;
+            } else {
+                remove_guild_member_role(guild.guild_id, *user_id, role.role_id, &app_state.discord_bot).await?;
+            }
+        }
+    }
+    guild.save(&app_state.dynamo).await;
+    
+    Ok(StatusCode::NO_CONTENT)
+}

api/src/guilds/verify/controllers.rs

@@ -4,17 +4,26 @@ use aws_sdk_dynamodb::types::AttributeValue;
 use serde::{Deserialize, Serialize};
 use twilight_model::id::Id;
 use twilight_model::id::marker::{RoleMarker, UserMarker};
-use crate::dynamo::{as_map, as_map_vec, as_string, as_string_opt, as_u32};
+use crate::dynamo::{as_map, as_map_vec, as_string, as_u32};
 use crate::users::models::Link;
 
 #[derive(Clone, Serialize, Deserialize, PartialEq, Eq)]
 pub struct VerifyRole {
     pub role_id: Id<RoleMarker>,
-    pub role_name: Option<String>,
     pub pattern: String,
     pub members: u32,
 }
 
+impl Default for VerifyRole {
+    fn default() -> Self {
+        VerifyRole {
+            role_id: Id::new(1),
+            pattern: "".to_string(),
+            members: 0,
+        }
+    }
+}
+
 impl Hash for VerifyRole {
     fn hash<H: std::hash::Hasher>(&self, state: &mut H) {
         self.role_id.hash(state);
@@ -30,7 +39,6 @@ impl From<&HashMap<String, AttributeValue>> for VerifyRole {
                     .parse::<u64>()
                     .unwrap_or(0),
             ),
-            role_name: as_string_opt(item.get("role_name")),
             pattern: as_string(item.get("pattern"), &"".to_string()),
             members: as_u32(item.get("members"), 0),
         }
@@ -41,9 +49,6 @@ impl From<VerifyRole> for HashMap<String, AttributeValue> {
     fn from(role: VerifyRole) -> Self {
         let mut role_map = HashMap::new();
         role_map.insert("role_id".to_string(), AttributeValue::S(role.role_id.to_string()));
-        if let Some(role_name) = role.role_name {
-            role_map.insert("role_name".to_string(), AttributeValue::S(role_name));
-        }
         role_map.insert("pattern".to_string(), AttributeValue::S(role.pattern));
         role_map.insert("members".to_string(), AttributeValue::N(role.members.to_string()));
         role_map

api/src/guilds/verify/models.rs

@@ -19,15 +19,30 @@ pub async fn auth_middleware(
 
     let auth_header = headers.get("Authorization").unwrap().to_str().unwrap();
     let (scheme, credentials) = auth_header.split_once(' ').unwrap();
-    if scheme == "Discord" {
-        let client = Client::new(format!("Bearer {credentials}"));
-        let current_user = get_current_user(&client).await?;
-        let ext_mut = request.extensions_mut();
-        ext_mut.insert(std::sync::Arc::new(client));
-        ext_mut.insert(current_user);
-        Ok(next.run(request).await)
-    } else {
-        Err(StatusCode::UNAUTHORIZED)
+    match scheme {
+        "Discord" => {
+            let client = Client::new(format!("Bearer {credentials}"));
+            let current_user = get_current_user(&client).await?;
+            if current_user.bot {
+                return Err(StatusCode::UNAUTHORIZED);
+            }
+            let ext_mut = request.extensions_mut();
+            ext_mut.insert(std::sync::Arc::new(client));
+            ext_mut.insert(current_user);
+            Ok(next.run(request).await)
+        }
+        "Bot" => {
+            if credentials != std::env::var("DISCORD_BOT_TOKEN").expect("DISCORD_BOT_TOKEN must be set") {
+                return Err(StatusCode::UNAUTHORIZED);
+            }
+            let client = Client::new(format!("Bot {credentials}"));
+            let ext_mut = request.extensions_mut();
+            ext_mut.insert(std::sync::Arc::new(client));
+            Ok(next.run(request).await)
+        }
+        _ => {
+            Err(StatusCode::UNAUTHORIZED)
+        }
     }
 }