feat: user avatar as public asset

2024-12-04 18:25:56 +01:00 · 2024-12-04 18:25:56 +01:00 · 4763915812
commit 4763915812
parent f98a102854
17 changed files with 172 additions and 21 deletions
--- a/lib/http_server/src/controllers/api/mod.rs
+++ b/lib/http_server/src/controllers/api/mod.rs
@ -2,3 +2,4 @@ pub mod index;
 pub mod oauth2;
 pub mod read_user;
 pub mod openid;
+pub mod public_assets;
--- a/lib/http_server/src/controllers/api/public_assets.rs
+++ b/lib/http_server/src/controllers/api/public_assets.rs
@ -0,0 +1,27 @@
+use axum::{extract::{Path, State}, http::{header, HeaderMap, HeaderValue, StatusCode}, response::{Html, IntoResponse}};
+use kernel::repositories::users::get_user_asset_by_id;
+
+use crate::AppState;
+
+pub async fn get_user_asset(
+    State(app_state): State<AppState>,
+    Path(asset_id): Path<String>
+) -> impl IntoResponse {
+    let user_asset = match get_user_asset_by_id(&app_state.db, &asset_id).await {
+        Err(_) => {
+            return (
+                StatusCode::NOT_FOUND,
+                Html("Could not find user asset")
+            ).into_response();
+        },
+        Ok(ua) => ua
+    };
+
+    let mut hm = HeaderMap::new();
+    hm.insert(
+        header::CONTENT_TYPE,
+        HeaderValue::from_str(&user_asset.mime_type).expect("Constructing header value.")
+    );
+    
+    (hm, user_asset.content).into_response()
+}
--- a/lib/http_server/src/controllers/ui/me.rs
+++ b/lib/http_server/src/controllers/ui/me.rs
@ -1,7 +1,8 @@
+use anyhow::Context;
 use axum::{body::Bytes, extract::State, response::IntoResponse, Extension};
 use axum_typed_multipart::{FieldData, TryFromMultipart, TypedMultipart};
 use fully_pub::fully_pub;
-use log::error;
+use log::{error, info};
 use minijinja::context;

 use crate::{
@ -9,7 +10,7 @@ use crate::{
    renderer::TemplateRenderer,
    AppState
 };
-use kernel::models::user::User;
+use kernel::{models::{user::User, user_asset::UserAsset}, repositories::users::create_user_asset};

 pub async fn me_page(
    State(app_state): State<AppState>,
@ -61,7 +62,7 @@ struct UserDetailsUpdateForm {
    website: String,

    #[form_data(limit = "5MiB")]
-    picture: FieldData<Bytes>
+    avatar: FieldData<Bytes>
 }


@ -73,17 +74,41 @@ pub async fn me_perform_update_details(
 ) -> impl IntoResponse {
    let template_path = "pages/me/details-form";

-    let update_res = sqlx::query("UPDATE users SET handle = $2, email = $3, full_name = $4, website = $5, picture = $6 WHERE id = $1")
+    let user = sqlx::query_as::<_, User>("SELECT * FROM users WHERE id = $1")
+        .bind(&token_claims.sub)
+        .fetch_one(&app_state.db.0)
+        .await
+        .expect("To get user from claim");
+
+    let update_res = sqlx::query("UPDATE users SET handle = $2, email = $3, full_name = $4, website = $5 WHERE id = $1")
        .bind(&token_claims.sub)
        .bind(details_update.handle)
        .bind(details_update.email)
        .bind(details_update.full_name)
        .bind(details_update.website)
-        .bind(details_update.picture.contents.to_vec())
        .execute(&app_state.db.0)
        .await;

-    let user_res = sqlx::query_as::<_, User>("SELECT * FROM users WHERE id = $1")
+    if !details_update.avatar.contents.is_empty() {
+        let user_asset = UserAsset::new(
+            &user,
+            details_update.avatar.contents.to_vec(),
+            details_update.avatar.metadata.content_type.expect("Expected mimetype on avatar content"),
+            details_update.avatar.metadata.name
+        );
+        let _update_res = sqlx::query("UPDATE users SET avatar_asset_id = $2 WHERE id = $1")
+            .bind(&token_claims.sub)
+            .bind(user_asset.id.clone())
+            .execute(&app_state.db.0)
+            .await;
+        // TODO: handle possible error
+        let _ = create_user_asset(&app_state.db, user_asset)
+            .await
+            .context("Creating user avatar asset.");
+        info!("Uploaded new avatar as user asset");
+    }
+
+    let user = sqlx::query_as::<_, User>("SELECT * FROM users WHERE id = $1")
        .bind(&token_claims.sub)
        .fetch_one(&app_state.db.0)
        .await
@ -95,7 +120,7 @@ pub async fn me_perform_update_details(
                template_path,
                context!(
                    success => true,
-                    user => user_res
+                    user => user
                )
            )
        },
@ -105,7 +130,7 @@ pub async fn me_perform_update_details(
                template_path,
                context!(
                    error => Some("Cannot update user details.".to_string()),
-                    user => user_res
+                    user => user
                )
            )
        }
--- a/lib/http_server/src/controllers/ui/register.rs
+++ b/lib/http_server/src/controllers/ui/register.rs
@ -46,7 +46,7 @@ pub async fn perform_register(
        email: Some(register.email),
        handle: register.handle,
        full_name: None,
-        picture: None,
+        avatar_asset_id: None,

        password_hash,
        status: UserStatus::Active,
--- a/lib/http_server/src/router.rs
+++ b/lib/http_server/src/router.rs
@ -47,7 +47,8 @@ pub fn build_router(server_config: &ServerConfig, app_state: AppState) -> Router
    let api_user_routes = Router::new()
        .route("/api/user", get(api::read_user::read_user_basic))
        .layer(middleware::from_fn_with_state(app_state.clone(), app_auth::enforce_jwt_auth_middleware))
-        .route("/api", get(api::index::get_index));
+        .route("/api", get(api::index::get_index))
+        .route("/api/user-assets/:asset_id", get(api::public_assets::get_user_asset));

    let well_known_routes = Router::new()
        .route("/.well-known/openid-configuration", get(api::openid::well_known::get_well_known_openid_configuration));
--- a/lib/http_server/src/templates/pages/me/details-form.html
+++ b/lib/http_server/src/templates/pages/me/details-form.html
@ -55,10 +55,9 @@
        />
    </div>
    <div class="mb-3">
-        <label for="picture">Profile picture</label>
-        <!-- for now, no JPEG -->
+        <label for="avatar">Profile picture</label>
        <input
-            id="picture" name="picture"
+            id="avatar" name="avatar"
            type="file"
            accept="image/gif, image/png, image/jpeg"
            class="form-control"
--- a/lib/http_server/src/templates/pages/me/index.html
+++ b/lib/http_server/src/templates/pages/me/index.html
@ -5,9 +5,12 @@
 <a href="/me/details-form">Update details.</a>
 <a href="/me/authorizations">Manage authorizations.</a>

-<p>
-{% if user.picture %}
-    <img src="data:image/*;base64,{{ encode_b64str(user.picture) }}" style="width: 150px; height: 150px; object-fit: contain">
+{% if user.avatar_asset_id %}
+<div class="my-3">
+    <img
+        src="http://localhost:8085/api/user-assets/{{ user.avatar_asset_id }}"
+        style="width: 150px; height: 150px; object-fit: contain">
+</div>
 {% endif %}
 <ul>
    <li>