Surface the user guest flag in the admin API

Author: sandhose

crates/data-model/src/users.rs

@@ -21,6 +21,7 @@ pub struct User {
     pub locked_at: Option<DateTime<Utc>>,
     pub deactivated_at: Option<DateTime<Utc>>,
     pub can_request_admin: bool,
+    pub is_guest: bool,
 }
 
 impl User {
@@ -43,6 +44,7 @@ impl User {
             locked_at: None,
             deactivated_at: None,
             can_request_admin: false,
+            is_guest: false,
         }]
     }
 }

crates/handlers/src/admin/model.rs

@@ -52,6 +52,9 @@ pub struct User {
 
     /// Whether the user can request admin privileges.
     admin: bool,
+
+    /// Whether the user was a guest before migrating to MAS,
+    legacy_guest: bool,
 }
 
 impl User {
@@ -65,6 +68,7 @@ impl User {
                 locked_at: None,
                 deactivated_at: None,
                 admin: false,
+                legacy_guest: false,
             },
             Self {
                 id: Ulid::from_bytes([0x02; 16]),
@@ -73,6 +77,7 @@ impl User {
                 locked_at: None,
                 deactivated_at: None,
                 admin: true,
+                legacy_guest: false,
             },
             Self {
                 id: Ulid::from_bytes([0x03; 16]),
@@ -81,6 +86,7 @@ impl User {
                 locked_at: Some(DateTime::default()),
                 deactivated_at: None,
                 admin: false,
+                legacy_guest: true,
             },
         ]
     }
@@ -95,6 +101,7 @@ impl From<mas_data_model::User> for User {
             locked_at: user.locked_at,
             deactivated_at: user.deactivated_at,
             admin: user.can_request_admin,
+            legacy_guest: user.is_guest,
         }
     }
 }

crates/handlers/src/admin/v1/users/deactivate.rs

@@ -200,26 +200,27 @@ mod tests {
         let body: serde_json::Value = response.json();
 
         allow_duplicates!(assert_json_snapshot!(body, @r#"
-        {
-          "data": {
-            "type": "user",
-            "id": "01FSHN9AG0MZAA6S4AF7CTV32E",
-            "attributes": {
-              "username": "alice",
-              "created_at": "2022-01-16T14:40:00Z",
-              "locked_at": null,
-              "deactivated_at": "2022-01-16T14:40:00Z",
-              "admin": false
-            },
-            "links": {
-              "self": "/api/admin/v1/users/01FSHN9AG0MZAA6S4AF7CTV32E"
-            }
-          },
-          "links": {
-            "self": "/api/admin/v1/users/01FSHN9AG0MZAA6S4AF7CTV32E"
-          }
-        }
-        "#));
+        allow_duplicates!({
+        allow_duplicates!(  "data": {
+        allow_duplicates!(    "type": "user",
+        allow_duplicates!(    "id": "01FSHN9AG0MZAA6S4AF7CTV32E",
+        allow_duplicates!(    "attributes": {
+        allow_duplicates!(      "username": "alice",
+        allow_duplicates!(      "created_at": "2022-01-16T14:40:00Z",
+        allow_duplicates!(      "locked_at": null,
+        allow_duplicates!(      "deactivated_at": "2022-01-16T14:40:00Z",
+        allow_duplicates!(      "admin": false,
+        allow_duplicates!(      "legacy_guest": false
+        allow_duplicates!(    },
+        allow_duplicates!(    "links": {
+        allow_duplicates!(      "self": "/api/admin/v1/users/01FSHN9AG0MZAA6S4AF7CTV32E"
+        allow_duplicates!(    }
+        allow_duplicates!(  },
+        allow_duplicates!(  "links": {
+        allow_duplicates!(    "self": "/api/admin/v1/users/01FSHN9AG0MZAA6S4AF7CTV32E"
+        allow_duplicates!(  }
+        allow_duplicates!(}
+        allow_duplicates!("#));
     }
 
     #[sqlx::test(migrator = "mas_storage_pg::MIGRATOR")]
@@ -289,7 +290,8 @@ mod tests {
               "created_at": "2022-01-16T14:40:00Z",
               "locked_at": "2022-01-16T14:40:00Z",
               "deactivated_at": "2022-01-16T14:41:00Z",
-              "admin": false
+              "admin": false,
+              "legacy_guest": false
             },
             "links": {
               "self": "/api/admin/v1/users/01FSHN9AG0MZAA6S4AF7CTV32E"

crates/handlers/src/rate_limit.rs

@@ -328,6 +328,7 @@ mod tests {
             locked_at: None,
             deactivated_at: None,
             can_request_admin: false,
+            is_guest: true,
         };
 
         let bob = User {
@@ -338,6 +339,7 @@ mod tests {
             locked_at: None,
             deactivated_at: None,
             can_request_admin: false,
+            is_guest: true,
         };
 
         // Three times the same IP address should be allowed

crates/storage-pg/.sqlx/query-d2a4f5c01603463b78198529d295f7f121769ea5730d01c20c0ddbcdc79a5716.json renamed to crates/storage-pg/.sqlx/query-23d5fcd8bf611dc7279bef0d66ce05461c3c1f43f966fee3a80ae42540783f08.json

@@ -39,6 +39,7 @@ pub enum Users {
     LockedAt,
     DeactivatedAt,
     CanRequestAdmin,
+    IsGuest,
 }
 
 #[derive(sea_query::Iden)]

crates/storage-pg/.sqlx/query-cc332eda5965715607ffa4eeeacc1b6532cbd8fe49904ccdb1afe315804d348d.json renamed to crates/storage-pg/.sqlx/query-4dad1838536c10ba723adc0fb6da0f24afb3d6a1925a80a1b6d35b9a8258a0ce.json

@@ -73,6 +73,7 @@ mod priv_ {
         pub(super) locked_at: Option<DateTime<Utc>>,
         pub(super) deactivated_at: Option<DateTime<Utc>>,
         pub(super) can_request_admin: bool,
+        pub(super) is_guest: bool,
     }
 }
 
@@ -89,6 +90,7 @@ impl From<UserLookup> for User {
             locked_at: value.locked_at,
             deactivated_at: value.deactivated_at,
             can_request_admin: value.can_request_admin,
+            is_guest: value.is_guest,
         }
     }
 }
@@ -140,6 +142,7 @@ impl UserRepository for PgUserRepository<'_> {
                      , locked_at
                      , deactivated_at
                      , can_request_admin
+                     , is_guest
                 FROM users
                 WHERE user_id = $1
             "#,
@@ -176,6 +179,7 @@ impl UserRepository for PgUserRepository<'_> {
                      , locked_at
                      , deactivated_at
                      , can_request_admin
+                     , is_guest
                 FROM users
                 WHERE LOWER(username) = LOWER($1)
             "#,
@@ -249,6 +253,7 @@ impl UserRepository for PgUserRepository<'_> {
             locked_at: None,
             deactivated_at: None,
             can_request_admin: false,
+            is_guest: false,
         })
     }
 
@@ -487,6 +492,10 @@ impl UserRepository for PgUserRepository<'_> {
                 Expr::col((Users::Table, Users::CanRequestAdmin)),
                 UserLookupIden::CanRequestAdmin,
             )
+            .expr_as(
+                Expr::col((Users::Table, Users::IsGuest)),
+                UserLookupIden::IsGuest,
+            )
             .from(Users::Table)
             .apply_filter(filter)
             .generate_pagination((Users::Table, Users::UserId), pagination)

crates/storage-pg/.sqlx/query-f924db60febad26c9fff24881b05dd1e1f7ba288d7b2f2f8e30a1ea43e98b8c8.json renamed to crates/storage-pg/.sqlx/query-572ead41d62cfbe40e6f0c8edf6928e8eebd99036255b62d688ac02b5bd74b40.json

@@ -61,6 +61,7 @@ struct SessionLookup {
     user_locked_at: Option<DateTime<Utc>>,
     user_deactivated_at: Option<DateTime<Utc>>,
     user_can_request_admin: bool,
+    user_is_guest: bool,
 }
 
 impl TryFrom<SessionLookup> for BrowserSession {
@@ -76,6 +77,7 @@ impl TryFrom<SessionLookup> for BrowserSession {
             locked_at: value.user_locked_at,
             deactivated_at: value.user_deactivated_at,
             can_request_admin: value.user_can_request_admin,
+            is_guest: value.user_is_guest,
         };
 
         Ok(BrowserSession {
@@ -201,6 +203,7 @@ impl BrowserSessionRepository for PgBrowserSessionRepository<'_> {
                      , u.locked_at             AS "user_locked_at"
                      , u.deactivated_at        AS "user_deactivated_at"
                      , u.can_request_admin     AS "user_can_request_admin"
+                     , u.is_guest              AS "user_is_guest"
                 FROM user_sessions s
                 INNER JOIN users u
                     USING (user_id)
@@ -391,6 +394,10 @@ impl BrowserSessionRepository for PgBrowserSessionRepository<'_> {
                 Expr::col((Users::Table, Users::CanRequestAdmin)),
                 SessionLookupIden::UserCanRequestAdmin,
             )
+            .expr_as(
+                Expr::col((Users::Table, Users::IsGuest)),
+                SessionLookupIden::UserIsGuest,
+            )
             .from(UserSessions::Table)
             .inner_join(
                 Users::Table,