Grcov report - server.rs

1

use std::{

2

    collections::{hash_map, HashMap},

3

    fmt::Debug,

4

    marker::PhantomData,

5

    net::SocketAddr,

6

    ops::Deref,

7

    path::PathBuf,

8

    sync::{

9

        atomic::{AtomicU32, AtomicUsize, Ordering},

10

        Arc,

11

},

12

    time::Duration,

13

};

14

15

use async_lock::{Mutex, RwLock};

16

use async_trait::async_trait;

17

use bonsaidb_core::{

18

    admin::User,

19

    arc_bytes::serde::Bytes,

20

    circulate::{Message, Relay, Subscriber},

21

    connection::{self, AccessPolicy, Connection, QueryKey, Range, Sort, StorageConnection},

22

    custom_api::{CustomApi, CustomApiResult},

23

    document::DocumentId,

24

    keyvalue::{KeyOperation, KeyValue},

25

    networking::{

26

        self, CreateDatabaseHandler, DatabaseRequest, DatabaseRequestDispatcher, DatabaseResponse,

27

        DeleteDatabaseHandler, Payload, Request, RequestDispatcher, Response, ServerRequest,

28

        ServerRequestDispatcher, ServerResponse, CURRENT_PROTOCOL_VERSION,

29

},

30

    permissions::{

31

        bonsai::{

32

            bonsaidb_resource_name, collection_resource_name, database_resource_name,

33

            document_resource_name, keyvalue_key_resource_name, kv_resource_name,

34

            pubsub_topic_resource_name, user_resource_name, view_resource_name, BonsaiAction,

35

            DatabaseAction, DocumentAction, KeyValueAction, PubSubAction, ServerAction,

36

            TransactionAction, ViewAction,

37

},

38

        Action, Dispatcher, PermissionDenied, Permissions, ResourceName,

39

},

40

    pubsub::database_topic,

41

    schema::{self, CollectionName, Nameable, NamedCollection, NamedReference, Schema, ViewName},

42

    transaction::{Command, Transaction},

43

};

44

#[cfg(feature = "password-hashing")]

45

use bonsaidb_core::{

46

    connection::{Authenticated, Authentication},

47

    permissions::bonsai::AuthenticationMethod,

48

};

49

use bonsaidb_local::{config::Builder, Database, Storage};

50

use bonsaidb_utils::{fast_async_lock, fast_async_read, fast_async_write};

51

use derive_where::derive_where;

52

use fabruic::{self, CertificateChain, Endpoint, KeyPair, PrivateKey};

53

use flume::Sender;

54

use futures::{Future, StreamExt};

55

use rustls::sign::CertifiedKey;

56

use schema::SchemaName;

57

#[cfg(not(windows))]

58

use signal_hook::consts::SIGQUIT;

59

use signal_hook::consts::{SIGINT, SIGTERM};

60

use tokio::sync::{oneshot, Notify};

61

62

#[cfg(feature = "acme")]

63

use crate::config::AcmeConfiguration;

64

use crate::{

65

    backend::{BackendError, ConnectionHandling, CustomApiDispatcher},

66

    error::Error,

67

    hosted::{Hosted, SerializablePrivateKey, TlsCertificate, TlsCertificatesByDomain},

68

    server::shutdown::{Shutdown, ShutdownState},

69

    Backend, NoBackend, ServerConfiguration,

70

};

71

72

#[cfg(feature = "acme")]

73

pub mod acme;

74

mod connected_client;

75

mod database;

76

77

mod shutdown;

78

mod tcp;

79

#[cfg(feature = "websockets")]

80

mod websockets;

81

82

use self::connected_client::OwnedClient;

83

pub use self::{

84

    connected_client::{ConnectedClient, LockedClientDataGuard, Transport},

85

    database::{ServerDatabase, ServerSubscriber},

86

    tcp::{ApplicationProtocols, HttpService, Peer, StandardTcpProtocols, TcpService},

87

};

88

89

static CONNECTED_CLIENT_ID_COUNTER: AtomicU32 = AtomicU32::new(0);

90

91

/// A BonsaiDb server.

92

#[derive(Debug)]

93

53432

#[derive_where(Clone)]

94

pub struct CustomServer<B: Backend = NoBackend> {

95

    data: Arc<Data<B>>,

96

97

98

/// A BonsaiDb server without a custom backend.

99

pub type Server = CustomServer<NoBackend>;

100

101

#[derive(Debug)]

102

struct Data<B: Backend = NoBackend> {

103

    storage: Storage,

104

    clients: RwLock<HashMap<u32, ConnectedClient<B>>>,

105

    request_processor: flume::Sender<ClientRequest<B>>,

106

    default_permissions: Permissions,

107

    authenticated_permissions: Permissions,

108

    endpoint: RwLock<Option<Endpoint>>,

109

    client_simultaneous_request_limit: usize,

110

    primary_tls_key: CachedCertifiedKey,

111

    primary_domain: String,

112

    #[cfg(feature = "acme")]

113

    acme: AcmeConfiguration,

114

    #[cfg(feature = "acme")]

115

    alpn_keys: AlpnKeys,

116

    shutdown: Shutdown,

117

    relay: Relay,

118

    subscribers: Arc<RwLock<HashMap<u64, Subscriber>>>,

119

    _backend: PhantomData<B>,

120

121

122

80

#[derive(Default)]

123

struct CachedCertifiedKey(parking_lot::Mutex<Option<Arc<CertifiedKey>>>);

124

125

impl Debug for CachedCertifiedKey {

126

    fn fmt(&self, f: &mut std::fmt::Formatter<'_>) -> std::fmt::Result {

127

        f.debug_tuple("CachedCertifiedKey").finish()

128

129

130

131

impl Deref for CachedCertifiedKey {

132

    type Target = parking_lot::Mutex<Option<Arc<CertifiedKey>>>;

133

134

868

    fn deref(&self) -> &Self::Target {

135

868

        &self.0

136

868

137

138

139

impl<B: Backend> CustomServer<B> {

140

    /// Opens a server using `directory` for storage.

141

80

    pub async fn open(configuration: ServerConfiguration) -> Result<Self, Error> {

142

80

        let (request_sender, request_receiver) = flume::unbounded::<ClientRequest<B>>();

143

1280

        for _ in 0..configuration.request_workers {

144

1280

            let request_receiver = request_receiver.clone();

145

1280

            tokio::task::spawn(async move {

146

91694

                while let Ok(mut client_request) = request_receiver.recv_async().await {

147

52528

                    let request = client_request.request.take().unwrap();

148

52528

                    let result = ServerDispatcher {

149

52528

                        server: &client_request.server,

150

52528

                        client: &client_request.client,

151

52528

                        subscribers: &client_request.subscribers,

152

52528

                        response_sender: &client_request.sender,

153

52528

154

589478

                    .dispatch(&client_request.client.permissions().await, request)

155

579691

                    .await;

156

52528

                    let result = result

157

52528

                        .unwrap_or_else(|err| Response::Error(bonsaidb_core::Error::from(err)));

158

52528

                    drop(client_request.result_sender.send(result));

159

160

1280

});

161

1280

162

163

1295

        let storage = Storage::open(configuration.storage.with_schema::<Hosted>()?).await?;

164

165

152

        storage.create_database::<Hosted>("_hosted", true).await?;

166

167

80

        let default_permissions = Permissions::from(configuration.default_permissions);

168

80

        let authenticated_permissions = Permissions::from(configuration.authenticated_permissions);

169

80

170

80

        let server = Self {

171

80

            data: Arc::new(Data {

172

80

                clients: RwLock::default(),

173

80

                storage,

174

80

                endpoint: RwLock::default(),

175

80

                request_processor: request_sender,

176

80

                default_permissions,

177

80

                authenticated_permissions,

178

80

                client_simultaneous_request_limit: configuration.client_simultaneous_request_limit,

179

80

                primary_tls_key: CachedCertifiedKey::default(),

180

80

                primary_domain: configuration.server_name,

181

80

                #[cfg(feature = "acme")]

182

80

                acme: configuration.acme,

183

80

                #[cfg(feature = "acme")]

184

80

                alpn_keys: AlpnKeys::default(),

185

80

                shutdown: Shutdown::new(),

186

80

                relay: Relay::default(),

187

80

                subscribers: Arc::default(),

188

80

                _backend: PhantomData::default(),

189

80

}),

190

80

};

191

80

        B::initialize(&server).await;

192

80

        Ok(server)

193

80

194

195

    /// Returns the path to the public pinned certificate, if this server has

196

    /// one. Note: this function will always succeed, but the file may not

197

    /// exist.

198

    #[must_use]

199

148

    pub fn pinned_certificate_path(&self) -> PathBuf {

200

148

        self.path().join("pinned-certificate.der")

201

148

202

203

    /// Returns the primary domain configured for this server.

204

    #[must_use]

205

32

    pub fn primary_domain(&self) -> &str {

206

32

        &self.data.primary_domain

207

32

208

209

    /// Returns the administration database.

210

23

    pub async fn admin(&self) -> ServerDatabase<B> {

211

23

        let db = self.data.storage.admin().await;

212

23

        ServerDatabase {

213

23

            server: self.clone(),

214

23

db,

215

23

216

23

217

218

283

    pub(crate) async fn hosted(&self) -> ServerDatabase<B> {

219

283

        let db = self

220

281

            .data

221

281

            .storage

222

281

            .database::<Hosted>("_hosted")

223

76

            .await

224

283

            .unwrap();

225

283

        ServerDatabase {

226

283

            server: self.clone(),

227

283

db,

228

283

229

283

230

231

    /// Installs an X.509 certificate used for general purpose connections.

232

75

    pub async fn install_self_signed_certificate(&self, overwrite: bool) -> Result<(), Error> {

233

74

        let keypair = KeyPair::new_self_signed(&self.data.primary_domain);

234

74

235

210

        if self.certificate_chain().await.is_ok() && !overwrite {

236

1

            return Err(Error::Core(bonsaidb_core::Error::Configuration(String::from("Certificate already installed. Enable overwrite if you wish to replace the existing certificate."))));

237

74

238

74

239

437

        self.install_certificate(keypair.certificate_chain(), keypair.private_key())

240

437

            .await?;

241

242

74

        tokio::fs::write(

243

74

            self.pinned_certificate_path(),

244

74

            keypair.end_entity_certificate().as_ref(),

245

74

246

72

        .await?;

247

248

74

        Ok(())

249

75

250

251

    /// Installs a certificate chain and private key used for TLS connections.

252

    #[cfg(feature = "pem")]

253

    pub async fn install_pem_certificate(

254

        &self,

255

        certificate_chain: &[u8],

256

        private_key: &[u8],

257

    ) -> Result<(), Error> {

258

        let private_key = match pem::parse(private_key) {

259

            Ok(pem) => PrivateKey::unchecked_from_der(pem.contents),

260

            Err(_) => PrivateKey::from_der(private_key)?,

261

};

262

        let certificates = pem::parse_many(&certificate_chain)?

263

            .into_iter()

264

            .map(|entry| fabruic::Certificate::unchecked_from_der(entry.contents))

265

            .collect::<Vec<_>>();

266

267

        self.install_certificate(

268

            &CertificateChain::unchecked_from_certificates(certificates),

269

            &private_key,

270

271

        .await

272

273

274

    /// Installs a certificate chain and private key used for TLS connections.

275

74

    pub async fn install_certificate(

276

74

        &self,

277

74

        certificate_chain: &CertificateChain,

278

74

        private_key: &PrivateKey,

279

74

    ) -> Result<(), Error> {

280

74

        let db = self.hosted().await;

281

282

74

        TlsCertificate::entry(&self.data.primary_domain, &db)

283

74

            .update_with(|cert: &mut TlsCertificate| {

284

1

                cert.certificate_chain = certificate_chain.clone();

285

1

                cert.private_key = SerializablePrivateKey(private_key.clone());

286

74

})

287

74

            .or_insert_with(|| TlsCertificate {

288

73

                domains: vec![self.data.primary_domain.clone()],

289

73

                private_key: SerializablePrivateKey(private_key.clone()),

290

73

                certificate_chain: certificate_chain.clone(),

291

288

})

292

288

            .await?;

293

294

148

        self.refresh_certified_key().await?;

295

296

74

        let pinned_certificate_path = self.pinned_certificate_path();

297

74

        if pinned_certificate_path.exists() {

298

1

            tokio::fs::remove_file(&pinned_certificate_path).await?;

299

73

300

301

74

        Ok(())

302

74

303

304

75

    async fn refresh_certified_key(&self) -> Result<(), Error> {

305

152

        let certificate = self.tls_certificate().await?;

306

307

75

        let mut cached_key = self.data.primary_tls_key.lock();

308

75

        let private_key = rustls::PrivateKey(

309

75

            fabruic::dangerous::PrivateKey::as_ref(&certificate.private_key.0).to_vec(),

310

75

);

311

75

        let private_key = rustls::sign::any_ecdsa_type(&Arc::new(private_key))?;

312

313

75

        let certificates = certificate

314

75

            .certificate_chain

315

75

            .iter()

316

75

            .map(|cert| rustls::Certificate(cert.as_ref().to_vec()))

317

75

            .collect::<Vec<_>>();

318

75

319

75

        let certified_key = Arc::new(CertifiedKey::new(certificates, private_key));

320

75

        *cached_key = Some(certified_key);

321

75

        Ok(())

322

75

323

324

97

    async fn tls_certificate(&self) -> Result<TlsCertificate, Error> {

325

97

        let db = self.hosted().await;

326

97

        let (_, certificate) = db

327

97

            .view::<TlsCertificatesByDomain>()

328

97

            .with_key(self.data.primary_domain.clone())

329

177

            .query_with_collection_docs()

330

177

            .await?

331

            .documents

332

97

            .into_iter()

333

97

            .next()

334

97

            .ok_or_else(|| {

335

                Error::Core(bonsaidb_core::Error::Configuration(format!(

336

                    "no certificate found for {}",

337

                    self.data.primary_domain

338

)))

339

97

            })?;

340

97

        Ok(certificate.contents)

341

97

342

343

    /// Returns the current certificate chain.

344

112

    pub async fn certificate_chain(&self) -> Result<CertificateChain, Error> {

345

112

        let db = self.hosted().await;

346

112

        if let Some(mapping) = db

347

112

            .view::<TlsCertificatesByDomain>()

348

112

            .with_key(self.data.primary_domain.clone())

349

165

            .query()

350

160

            .await?

351

112

            .into_iter()

352

112

            .next()

353

354

36

            Ok(mapping.value)

355

        } else {

356

76

            Err(Error::Core(bonsaidb_core::Error::Configuration(format!(

357

76

                "no certificate found for {}",

358

76

                self.data.primary_domain

359

76

            ))))

360

361

112

362

363

    /// Listens for incoming client connections. Does not return until the

364

    /// server shuts down.

365

22

    pub async fn listen_on(&self, port: u16) -> Result<(), Error> {

366

27

        let certificate = self.tls_certificate().await?;

367

22

        let keypair =

368

22

            KeyPair::from_parts(certificate.certificate_chain, certificate.private_key.0)?;

369

22

        let mut builder = Endpoint::builder();

370

22

        builder.set_protocols([CURRENT_PROTOCOL_VERSION.as_bytes().to_vec()]);

371

22

        builder.set_address(([0; 8], port).into());

372

22

        builder

373

22

            .set_max_idle_timeout(None)

374

22

            .map_err(|err| Error::Core(bonsaidb_core::Error::Transport(err.to_string())))?;

375

22

        builder.set_server_key_pair(Some(keypair));

376

22

        let mut server = builder

377

22

            .build()

378

22

            .map_err(|err| Error::Core(bonsaidb_core::Error::Transport(err.to_string())))?;

379

22

380

22

            let mut endpoint = fast_async_write!(self.data.endpoint);

381

22

            *endpoint = Some(server.clone());

382

383

384

22

        let mut shutdown_watcher = self

385

22

            .data

386

22

            .shutdown

387

22

            .watcher()

388

            .await

389

22

            .expect("server already shut down");

390

391

83

        while let Some(result) = tokio::select! {

392

4

            shutdown_state = shutdown_watcher.wait_for_shutdown() => {

393

                drop(server.close_incoming());

394

                if matches!(shutdown_state, ShutdownState::GracefulShutdown) {

395

                    server.wait_idle().await;

396

397

                drop(server.close());

398

                None

399

},

400

61

            msg = server.next() => msg

401

61

} {

402

61

            let connection = result.accept::<()>().await?;

403

61

            let task_self = self.clone();

404

61

            tokio::spawn(async move {

405

61

                let address = connection.remote_address();

406

61

                if let Err(err) = task_self.handle_bonsai_connection(connection).await {

407

                    log::error!("[server] closing connection {}: {:?}", address, err);

408

61

409

61

});

410

411

412

4

        Ok(())

413

4

414

415

    /// Returns all of the currently connected clients.

416

    pub async fn connected_clients(&self) -> Vec<ConnectedClient<B>> {

417

        let clients = fast_async_read!(self.data.clients);

418

        clients.values().cloned().collect()

419

420

421

    /// Sends a custom API response to all connected clients.

422

    pub async fn broadcast(&self, response: CustomApiResult<B::CustomApi>) {

423

        let clients = fast_async_read!(self.data.clients);

424

        for client in clients.values() {

425

            drop(client.send(response.clone()));

426

427

428

429

116

    async fn initialize_client(

430

116

        &self,

431

116

        transport: Transport,

432

116

        address: SocketAddr,

433

116

        sender: Sender<CustomApiResult<B::CustomApi>>,

434

116

    ) -> Option<OwnedClient<B>> {

435

116

        if !self.data.default_permissions.allowed_to(

436

116

            &bonsaidb_resource_name(),

437

116

            &BonsaiAction::Server(ServerAction::Connect),

438

116

) {

439

            return None;

440

116

441

442

116

        let client = loop {

443

116

            let next_id = CONNECTED_CLIENT_ID_COUNTER.fetch_add(1, Ordering::SeqCst);

444

116

            let mut clients = fast_async_write!(self.data.clients);

445

116

            if let hash_map::Entry::Vacant(e) = clients.entry(next_id) {

446

116

                let client = OwnedClient::new(next_id, address, transport, sender, self.clone());

447

116

                e.insert(client.clone());

448

116

                break client;

449

450

};

451

452

        if matches!(

453

116

            B::client_connected(&client, self).await,

454

            ConnectionHandling::Accept

455

) {

456

116

            Some(client)

457

        } else {

458

            None

459

460

116

461

462

57

    async fn disconnect_client(&self, id: u32) {

463

57

        if let Some(client) = {

464

57

            let mut clients = fast_async_write!(self.data.clients);

465

57

            clients.remove(&id)

466

} {

467

57

            B::client_disconnected(client, self).await;

468

469

57

470

471

61

    async fn handle_bonsai_connection(

472

61

        &self,

473

61

        mut connection: fabruic::Connection<()>,

474

61

    ) -> Result<(), Error> {

475

61

        if let Some(incoming) = connection.next().await {

476

61

            let incoming = match incoming {

477

61

                Ok(incoming) => incoming,

478

                Err(err) => {

479

                    log::error!("[server] Error establishing a stream: {:?}", err);

480

                    return Ok(());

481

482

};

483

484

61

            match incoming

485

61

            .accept::<networking::Payload<Response<CustomApiResult<B::CustomApi>>>, networking::Payload<Request<<B::CustomApi as CustomApi>::Request>>>()

486

            .await {

487

61

                Ok((sender, receiver)) => {

488

61

                    let (api_response_sender, api_response_receiver) = flume::unbounded();

489

61

                    if let Some(disconnector) = self

490

61

                        .initialize_client(

491

61

                            Transport::Bonsai,

492

61

                            connection.remote_address(),

493

61

                            api_response_sender,

494

61

495

                        .await

496

61

497

61

                        let task_sender = sender.clone();

498

61

                        tokio::spawn(async move {

499

61

                            while let Ok(response) = api_response_receiver.recv_async().await {

500

                                if task_sender

501

                                    .send(&Payload {

502

                                        id: None,

503

                                        wrapped: Response::Api(response),

504

})

505

                                    .is_err()

506

507

                                    break;

508

509

510

15

                            let _ = connection.close().await;

511

61

});

512

61

513

61

                        let task_self = self.clone();

514

61

                        tokio::spawn(async move {

515

61

                            if let Err(err) = task_self

516

19479

                                .handle_stream(disconnector, sender, receiver)

517

19479

                                .await

518

519

                                log::error!("[server] Error handling stream: {:?}", err);

520

15

521

61

});

522

61

                    } else {

523

                        log::error!("[server] Backend rejected connection.");

524

                        return Ok(());

525

526

527

                Err(err) => {

528

                    log::error!("[server] Error accepting incoming stream: {:?}", err);

529

                    return Ok(());

530

531

532

533

61

        Ok(())

534

61

535

536

116

    async fn handle_client_requests(

537

116

        &self,

538

116

        client: ConnectedClient<B>,

539

116

        request_receiver: flume::Receiver<Payload<Request<<B::CustomApi as CustomApi>::Request>>>,

540

116

        response_sender: flume::Sender<Payload<Response<CustomApiResult<B::CustomApi>>>>,

541

116

) {

542

116

        let notify = Arc::new(Notify::new());

543

116

        let requests_in_queue = Arc::new(AtomicUsize::new(0));

544

73109

        loop {

545

73109

            let current_requests = requests_in_queue.load(Ordering::SeqCst);

546

73109

            if current_requests == self.data.client_simultaneous_request_limit {

547

                // Wait for requests to finish.

548

20464

                notify.notified().await;

549

52645

            } else if requests_in_queue

550

52645

                .compare_exchange(

551

52645

                    current_requests,

552

52645

                    current_requests + 1,

553

52645

                    Ordering::SeqCst,

554

52645

                    Ordering::SeqCst,

555

52645

556

52645

                .is_ok()

557

558

52644

                let payload = match request_receiver.recv_async().await {

559

52528

                    Ok(payload) => payload,

560

57

                    Err(_) => break,

561

};

562

52528

                let id = payload.id;

563

52528

                let task_sender = response_sender.clone();

564

52528

565

52528

                let notify = notify.clone();

566

52528

                let requests_in_queue = requests_in_queue.clone();

567

52528

                self.handle_request_through_worker(

568

52528

                    payload.wrapped,

569

52528

                    move |response| async move {

570

52528

                        drop(task_sender.send(Payload {

571

52528

id,

572

52528

                            wrapped: response,

573

52528

                        }));

574

52528

575

52528

                        requests_in_queue.fetch_sub(1, Ordering::SeqCst);

576

52528

577

52528

                        notify.notify_one();

578

52528

579

52528

                        Ok(())

580

52528

},

581

52528

                    client.clone(),

582

52528

                    self.data.subscribers.clone(),

583

52528

                    response_sender.clone(),

584

52528

585

                .await

586

52528

                .unwrap();

587

1

588

589

57

590

591

52528

    async fn handle_request_through_worker<

592

52528

        F: FnOnce(Response<CustomApiResult<B::CustomApi>>) -> R + Send + 'static,

593

52528

        R: Future<Output = Result<(), Error>> + Send,

594

52528

>(

595

52528

        &self,

596

52528

        request: Request<<B::CustomApi as CustomApi>::Request>,

597

52528

        callback: F,

598

52528

        client: ConnectedClient<B>,

599

52528

        subscribers: Arc<RwLock<HashMap<u64, Subscriber>>>,

600

52528

        response_sender: flume::Sender<Payload<Response<CustomApiResult<B::CustomApi>>>>,

601

52528

    ) -> Result<(), Error> {

602

52528

        let (result_sender, result_receiver) = oneshot::channel();

603

52528

        self.data

604

52528

            .request_processor

605

52528

            .send(ClientRequest::<B>::new(

606

52528

                request,

607

52528

                self.clone(),

608

52528

                client,

609

52528

                subscribers,

610

52528

                response_sender,

611

52528

                result_sender,

612

52528

))

613

52528

            .map_err(|_| Error::InternalCommunication)?;

614

52528

        tokio::spawn(async move {

615

52528

            let result = result_receiver.await?;

616

            // Map the error into a Response::Error. The jobs system supports

617

            // multiple receivers receiving output, and wraps Err to avoid

618

            // requiring the error to be cloneable. As such, we have to unwrap

619

            // it. Thankfully, we can guarantee nothing else is waiting on a

620

            // response to a request than the original requestor, so this can be

621

            // safely unwrapped.

622

52528

            callback(result).await?;

623

52528

            Result::<(), Error>::Ok(())

624

52528

});

625

52528

        Ok(())

626

52528

627

628

61

    async fn handle_stream(

629

61

        &self,

630

61

        client: OwnedClient<B>,

631

61

        sender: fabruic::Sender<Payload<Response<CustomApiResult<B::CustomApi>>>>,

632

61

        mut receiver: fabruic::Receiver<Payload<Request<<B::CustomApi as CustomApi>::Request>>>,

633

61

    ) -> Result<(), Error> {

634

61

        let (payload_sender, payload_receiver) = flume::unbounded();

635

61

        tokio::spawn(async move {

636

30596

            while let Ok(payload) = payload_receiver.recv_async().await {

637

30535

                if sender.send(&payload).is_err() {

638

                    break;

639

30535

640

641

61

});

642

61

643

61

        let (request_sender, request_receiver) =

644

61

            flume::bounded::<Payload<Request<<B::CustomApi as CustomApi>::Request>>>(

645

61

                self.data.client_simultaneous_request_limit,

646

61

);

647

61

        let task_self = self.clone();

648

61

        tokio::spawn(async move {

649

61

            task_self

650

24458

                .handle_client_requests(client.clone(), request_receiver, payload_sender)

651

24458

                .await;

652

61

});

653

654

30582

        while let Some(payload) = receiver.next().await {

655

30521

            drop(request_sender.send_async(payload?).await);

656

657

658

15

        Ok(())

659

15

660

661

14

    async fn forward_notifications_for(

662

14

        &self,

663

14

        subscriber_id: u64,

664

14

        receiver: flume::Receiver<Arc<Message>>,

665

14

        sender: flume::Sender<Payload<Response<CustomApiResult<B::CustomApi>>>>,

666

14

) {

667

42

        while let Ok(message) = receiver.recv_async().await {

668

28

            if sender

669

28

                .send(Payload {

670

28

                    id: None,

671

28

                    wrapped: Response::Database(DatabaseResponse::MessageReceived {

672

28

                        subscriber_id,

673

28

                        topic: message.topic.clone(),

674

28

                        payload: Bytes::from(&message.payload[..]),

675

28

}),

676

28

})

677

28

                .is_err()

678

679

                break;

680

28

681

682

683

684

    /// Shuts the server down. If a `timeout` is provided, the server will stop

685

    /// accepting new connections and attempt to respond to any outstanding

686

    /// requests already being processed. After the `timeout` has elapsed or if

687

    /// no `timeout` was provided, the server is forcefully shut down.

688

29

    pub async fn shutdown(&self, timeout: Option<Duration>) -> Result<(), Error> {

689

29

        if let Some(timeout) = timeout {

690

4

            self.data.shutdown.graceful_shutdown(timeout).await;

691

        } else {

692

25

            self.data.shutdown.shutdown().await;

693

694

695

29

        Ok(())

696

29

697

698

    /// Listens for signals from the operating system that the server should

699

    /// shut down and attempts to gracefully shut down.

700

1

    pub async fn listen_for_shutdown(&self) -> Result<(), Error> {

701

1

        const GRACEFUL_SHUTDOWN: usize = 1;

702

1

        const TERMINATE: usize = 2;

703

1

704

1

        enum SignalShutdownState {

705

1

            Running,

706

1

            ShuttingDown(flume::Receiver<()>),

707

1

708

1

709

1

        let shutdown_state = Arc::new(Mutex::new(SignalShutdownState::Running));

710

1

        let flag = Arc::new(AtomicUsize::default());

711

1

        let register_hook = |flag: &Arc<AtomicUsize>| {

712

1

            signal_hook::flag::register_usize(SIGINT, flag.clone(), GRACEFUL_SHUTDOWN)?;

713

1

            signal_hook::flag::register_usize(SIGTERM, flag.clone(), TERMINATE)?;

714

            #[cfg(not(windows))]

715

1

            signal_hook::flag::register_usize(SIGQUIT, flag.clone(), TERMINATE)?;

716

1

            Result::<(), std::io::Error>::Ok(())

717

1

};

718

1

        if let Err(err) = register_hook(&flag) {

719

            log::error!("Error installing signals for graceful shutdown: {:?}", err);

720

            tokio::time::sleep(Duration::MAX).await;

721

        } else {

722

            loop {

723

4

                match flag.load(Ordering::Relaxed) {

724

4

                    0 => {

725

4

                        // No signal

726

4

727

                    GRACEFUL_SHUTDOWN => {

728

                        let mut state = fast_async_lock!(shutdown_state);

729

                        match *state {

730

                            SignalShutdownState::Running => {

731

                                log::error!("Interrupt signal received. Shutting down gracefully.");

732

                                let task_server = self.clone();

733

                                let (shutdown_sender, shutdown_receiver) = flume::bounded(1);

734

                                tokio::task::spawn(async move {

735

                                    task_server.shutdown(Some(Duration::from_secs(30))).await?;

736

                                    let _ = shutdown_sender.send(());

737

                                    Result::<(), Error>::Ok(())

738

});

739

                                *state = SignalShutdownState::ShuttingDown(shutdown_receiver);

740

741

                            SignalShutdownState::ShuttingDown(_) => {

742

                                // Two interrupts, go ahead and force the shutdown

743

                                break;

744

745

746

747

                    TERMINATE => {

748

                        log::error!("Quit signal received. Shutting down.");

749

                        break;

750

751

                    _ => unreachable!(),

752

753

754

4

                let state = fast_async_lock!(shutdown_state);

755

4

                if let SignalShutdownState::ShuttingDown(receiver) = &*state {

756

                    if receiver.try_recv().is_ok() {

757

                        // Fully shut down.

758

                        return Ok(());

759

760

4

761

762

4

                tokio::time::sleep(Duration::from_millis(300)).await;

763

764

            self.shutdown(None).await?;

765

766

767

        Ok(())

768

769

770

    /// Manually authenticates `client` as `user`. `user` can be the user's id

771

    /// ([`u64`]) or the username ([`String`]/[`str`]). Returns the permissions

772

    /// that the user now has.

773

    pub async fn authenticate_client_as<'name, N: Nameable<'name, u64> + Send + Sync>(

774

        &self,

775

        user: N,

776

        client: &ConnectedClient<B>,

777

    ) -> Result<Permissions, Error> {

778

        let admin = self.data.storage.admin().await;

779

        let user = User::load(user, &admin)

780

            .await?

781

            .ok_or(bonsaidb_core::Error::UserNotFound)?;

782

783

        let permissions = user.contents.effective_permissions(&admin).await?;

784

        let permissions = Permissions::merged(

785

786

                &permissions,

787

                &self.data.authenticated_permissions,

788

                &self.data.default_permissions,

789

790

            .into_iter(),

791

);

792

        client

793

            .logged_in_as(user.header.id, permissions.clone())

794

            .await;

795

        Ok(permissions)

796

797

798

24

    async fn publish_message(&self, database: &str, topic: &str, payload: Vec<u8>) {

799

24

        self.data

800

24

            .relay

801

24

            .publish_message(Message {

802

24

                topic: database_topic(database, topic),

803

24

                payload,

804

24

})

805

            .await;

806

24

807

808

3

    async fn publish_serialized_to_all(&self, database: &str, topics: &[String], payload: Vec<u8>) {

809

3

        self.data

810

3

            .relay

811

3

            .publish_serialized_to_all(

812

3

                topics

813

3

                    .iter()

814

9

                    .map(|topic| database_topic(database, topic))

815

3

                    .collect(),

816

3

                payload,

817

3

818

            .await;

819

3

820

821

21

    async fn create_subscriber(&self, database: String) -> ServerSubscriber<B> {

822

21

        let subscriber = self.data.relay.create_subscriber().await;

823

824

21

        let mut subscribers = fast_async_write!(self.data.subscribers);

825

21

        let subscriber_id = subscriber.id();

826

21

        let receiver = subscriber.receiver().clone();

827

21

        subscribers.insert(subscriber_id, subscriber);

828

21

829

21

        ServerSubscriber {

830

21

            server: self.clone(),

831

21

            database,

832

21

            receiver,

833

21

            id: subscriber_id,

834

21

835

21

836

837

36

    async fn subscribe_to<S: Into<String> + Send>(

838

36

        &self,

839

36

        subscriber_id: u64,

840

36

        database: &str,

841

36

        topic: S,

842

36

    ) -> Result<(), bonsaidb_core::Error> {

843

36

        let subscribers = fast_async_read!(self.data.subscribers);

844

36

        if let Some(subscriber) = subscribers.get(&subscriber_id) {

845

36

            subscriber

846

36

                .subscribe_to(database_topic(database, &topic.into()))

847

                .await;

848

36

            Ok(())

849

        } else {

850

            Err(bonsaidb_core::Error::Server(String::from(

851

                "invalid subscriber id",

852

)))

853

854

36

855

856

3

    async fn unsubscribe_from(

857

3

        &self,

858

3

        subscriber_id: u64,

859

3

        database: &str,

860

3

        topic: &str,

861

3

    ) -> Result<(), bonsaidb_core::Error> {

862

3

        let subscribers = fast_async_read!(self.data.subscribers);

863

3

        if let Some(subscriber) = subscribers.get(&subscriber_id) {

864

3

            subscriber

865

3

                .unsubscribe_from(&database_topic(database, topic))

866

                .await;

867

3

            Ok(())

868

        } else {

869

            Err(bonsaidb_core::Error::Server(String::from(

870

                "invalid subscriber id",

871

)))

872

873

3

874

875

876

impl<B: Backend> Deref for CustomServer<B> {

877

    type Target = Storage;

878

879

51559

    fn deref(&self) -> &Self::Target {

880

51559

        &self.data.storage

881

51559

882

883

884

#[derive(Debug)]

885

struct ClientRequest<B: Backend> {

886

    request: Option<Request<<B::CustomApi as CustomApi>::Request>>,

887

    client: ConnectedClient<B>,

888

    server: CustomServer<B>,

889

    subscribers: Arc<RwLock<HashMap<u64, Subscriber>>>,

890

    sender: flume::Sender<Payload<Response<CustomApiResult<B::CustomApi>>>>,

891

    result_sender: oneshot::Sender<Response<CustomApiResult<B::CustomApi>>>,

892

893

894

impl<B: Backend> ClientRequest<B> {

895

52528

    pub fn new(

896

52528

        request: Request<<B::CustomApi as CustomApi>::Request>,

897

52528

        server: CustomServer<B>,

898

52528

        client: ConnectedClient<B>,

899

52528

        subscribers: Arc<RwLock<HashMap<u64, Subscriber>>>,

900

52528

        sender: flume::Sender<Payload<Response<CustomApiResult<B::CustomApi>>>>,

901

52528

        result_sender: oneshot::Sender<Response<CustomApiResult<B::CustomApi>>>,

902

52528

    ) -> Self {

903

52528

        Self {

904

52528

            request: Some(request),

905

52528

            server,

906

52528

            client,

907

52528

            subscribers,

908

52528

            sender,

909

52528

            result_sender,

910

52528

911

52528

912

913

914

#[async_trait]

915

impl<B: Backend> StorageConnection for CustomServer<B> {

916

    type Database = ServerDatabase<B>;

917

918

651

    async fn create_database_with_schema(

919

651

        &self,

920

651

        name: &str,

921

651

        schema: SchemaName,

922

651

        only_if_needed: bool,

923

651

    ) -> Result<(), bonsaidb_core::Error> {

924

651

        self.data

925

651

            .storage

926

1705

            .create_database_with_schema(name, schema, only_if_needed)

927

1703

            .await

928

1302

929

930

68

    async fn database<DB: Schema>(

931

68

        &self,

932

68

        name: &str,

933

68

    ) -> Result<Self::Database, bonsaidb_core::Error> {

934

68

        let db = self.data.storage.database::<DB>(name).await?;

935

68

        Ok(ServerDatabase {

936

68

            server: self.clone(),

937

68

db,

938

68

})

939

136

940

941

506

    async fn delete_database(&self, name: &str) -> Result<(), bonsaidb_core::Error> {

942

1780

        self.data.storage.delete_database(name).await

943

1012

944

945

3

    async fn list_databases(&self) -> Result<Vec<connection::Database>, bonsaidb_core::Error> {

946

3

        self.data.storage.list_databases().await

947

6

948

949

3

    async fn list_available_schemas(&self) -> Result<Vec<SchemaName>, bonsaidb_core::Error> {

950

3

        self.data.storage.list_available_schemas().await

951

6

952

953

7

    async fn create_user(&self, username: &str) -> Result<u64, bonsaidb_core::Error> {

954

15

        self.data.storage.create_user(username).await

955

14

956

957

2

    async fn delete_user<'user, U: Nameable<'user, u64> + Send + Sync>(

958

2

        &self,

959

2

        user: U,

960

2

    ) -> Result<(), bonsaidb_core::Error> {

961

4

        self.data.storage.delete_user(user).await

962

4

963

964

    #[cfg(feature = "password-hashing")]

965

3

    async fn set_user_password<'user, U: Nameable<'user, u64> + Send + Sync>(

966

3

        &self,

967

3

        user: U,

968

3

        password: bonsaidb_core::connection::SensitiveString,

969

3

    ) -> Result<(), bonsaidb_core::Error> {

970

12

        self.data.storage.set_user_password(user, password).await

971

6

972

973

    #[cfg(feature = "password-hashing")]

974

5

    async fn authenticate<'user, U: Nameable<'user, u64> + Send + Sync>(

975

5

        &self,

976

5

        user: U,

977

5

        authentication: Authentication,

978

5

    ) -> Result<Authenticated, bonsaidb_core::Error> {

979

13

        self.data.storage.authenticate(user, authentication).await

980

10

981

982

6

    async fn add_permission_group_to_user<

983

6

        'user,

984

6

        'group,

985

6

        U: Nameable<'user, u64> + Send + Sync,

986

6

        G: Nameable<'group, u64> + Send + Sync,

987

6

>(

988

6

        &self,

989

6

        user: U,

990

6

        permission_group: G,

991

6

    ) -> Result<(), bonsaidb_core::Error> {

992

6

        self.data

993

6

            .storage

994

8

            .add_permission_group_to_user(user, permission_group)

995

8

            .await

996

12

997

998

4

    async fn remove_permission_group_from_user<

999

4

        'user,

1000

4

        'group,

1001

4

        U: Nameable<'user, u64> + Send + Sync,

1002

4

        G: Nameable<'group, u64> + Send + Sync,

1003

4

>(

1004

4

        &self,

1005

4

        user: U,

1006

4

        permission_group: G,

1007

4

    ) -> Result<(), bonsaidb_core::Error> {

1008

4

        self.data

1009

4

            .storage

1010

5

            .remove_permission_group_from_user(user, permission_group)

1011

5

            .await

1012

8

1013

1014

4

    async fn add_role_to_user<

1015

4

        'user,

1016

4

        'group,

1017

4

        U: Nameable<'user, u64> + Send + Sync,

1018

4

        G: Nameable<'group, u64> + Send + Sync,

1019

4

>(

1020

4

        &self,

1021

4

        user: U,

1022

4

        role: G,

1023

4

    ) -> Result<(), bonsaidb_core::Error> {

1024

4

        self.data.storage.add_role_to_user(user, role).await

1025

8

1026

1027

4

    async fn remove_role_from_user<

1028

4

        'user,

1029

4

        'group,

1030

4

        U: Nameable<'user, u64> + Send + Sync,

1031

4

        G: Nameable<'group, u64> + Send + Sync,

1032

4

>(

1033

4

        &self,

1034

4

        user: U,

1035

4

        role: G,

1036

4

    ) -> Result<(), bonsaidb_core::Error> {

1037

5

        self.data.storage.remove_role_from_user(user, role).await

1038

8

1039

1040

1041

105056

#[derive(Dispatcher, Debug)]

1042

#[dispatcher(input = Request<<B::CustomApi as CustomApi>::Request>, input = ServerRequest, actionable = bonsaidb_core::actionable)]

1043

struct ServerDispatcher<'s, B>

1044

where

1045

    B: Backend,

1046

1047

    server: &'s CustomServer<B>,

1048

    client: &'s ConnectedClient<B>,

1049

    subscribers: &'s Arc<RwLock<HashMap<u64, Subscriber>>>,

1050

    response_sender: &'s flume::Sender<Payload<Response<CustomApiResult<B::CustomApi>>>>,

1051

1052

1053

#[async_trait]

1054

impl<'s, B: Backend> RequestDispatcher for ServerDispatcher<'s, B> {

1055

    type Subaction = <B::CustomApi as CustomApi>::Request;

1056

    type Output = Response<CustomApiResult<B::CustomApi>>;

1057

    type Error = Error;

1058

1059

14

    async fn handle_subaction(

1060

14

        &self,

1061

14

        permissions: &Permissions,

1062

14

        subaction: Self::Subaction,

1063

14

    ) -> Result<Response<CustomApiResult<B::CustomApi>>, Error> {

1064

14

        let dispatcher =

1065

14

            <B::CustomApiDispatcher as CustomApiDispatcher<B>>::new(self.server, self.client);

1066

14

        match dispatcher.dispatch(permissions, subaction).await {

1067

10

            Ok(response) => Ok(Response::Api(Ok(response))),

1068

4

            Err(err) => match err {

1069

                BackendError::Backend(backend) => Ok(Response::Api(Err(backend))),

1070

4

                BackendError::Server(server) => Err(server),

1071

},

1072

1073

28

1074

1075

1076

#[async_trait]

1077

impl<'s, B: Backend> bonsaidb_core::networking::ServerHandler for ServerDispatcher<'s, B> {

1078

1105

    async fn handle(

1079

1105

        &self,

1080

1105

        permissions: &Permissions,

1081

1105

        request: ServerRequest,

1082

1105

    ) -> Result<Response<CustomApiResult<B::CustomApi>>, Error> {

1083

3386

        ServerRequestDispatcher::dispatch_to_handlers(self, permissions, request).await

1084

2210

1085

1086

1087

#[async_trait]

1088

impl<'s, B: Backend> bonsaidb_core::networking::DatabaseHandler for ServerDispatcher<'s, B> {

1089

51409

    async fn handle(

1090

51409

        &self,

1091

51409

        permissions: &Permissions,

1092

51409

        database_name: String,

1093

51409

        request: DatabaseRequest,

1094

51409

    ) -> Result<Response<CustomApiResult<B::CustomApi>>, Error> {

1095

51409

        let database = self

1096

51409

            .server

1097

577964

            .database_without_schema_internal(&database_name)

1098

544136

            .await?;

1099

51409

        DatabaseDispatcher {

1100

51409

            name: database_name,

1101

51409

            database,

1102

51409

            server_dispatcher: self,

1103

51409

1104

51410

        .dispatch(permissions, request)

1105

32169

        .await

1106

102818

1107

1108

1109

impl<'s, B: Backend> ServerRequestDispatcher for ServerDispatcher<'s, B> {

1110

    type Output = Response<CustomApiResult<B::CustomApi>>;

1111

    type Error = Error;

1112

1113

1114

#[async_trait]

1115

impl<'s, B: Backend> CreateDatabaseHandler for ServerDispatcher<'s, B> {

1116

    type Action = BonsaiAction;

1117

1118

570

    async fn resource_name<'a>(

1119

570

        &'a self,

1120

570

        database: &'a bonsaidb_core::connection::Database,

1121

570

        _only_if_needed: &'a bool,

1122

570

    ) -> Result<ResourceName<'a>, Error> {

1123

570

        Ok(database_resource_name(&database.name))

1124

570

1125

1126

570

    fn action() -> Self::Action {

1127

570

        BonsaiAction::Server(ServerAction::CreateDatabase)

1128

570

1129

1130

570

    async fn handle_protected(

1131

570

        &self,

1132

570

        _permissions: &Permissions,

1133

570

        database: bonsaidb_core::connection::Database,

1134

570

        only_if_needed: bool,

1135

570

    ) -> Result<Response<CustomApiResult<B::CustomApi>>, Error> {

1136

570

        self.server

1137

1562

            .create_database_with_schema(&database.name, database.schema, only_if_needed)

1138

1562

            .await?;

1139

564

        Ok(Response::Server(ServerResponse::DatabaseCreated {

1140

564

            name: database.name.clone(),

1141

564

}))

1142

1140

1143

1144

1145

#[async_trait]

1146

impl<'s, B: Backend> DeleteDatabaseHandler for ServerDispatcher<'s, B> {

1147

    type Action = BonsaiAction;

1148

1149

504

    async fn resource_name<'a>(&'a self, database: &'a String) -> Result<ResourceName<'a>, Error> {

1150

504

        Ok(database_resource_name(database))

1151

504

1152

1153

504

    fn action() -> Self::Action {

1154

504

        BonsaiAction::Server(ServerAction::DeleteDatabase)

1155

504

1156

1157

504

    async fn handle_protected(

1158

504

        &self,

1159

504

        _permissions: &Permissions,

1160

504

        name: String,

1161

504

    ) -> Result<Response<CustomApiResult<B::CustomApi>>, Error> {

1162

1777

        self.server.delete_database(&name).await?;

1163

502

        Ok(Response::Server(ServerResponse::DatabaseDeleted { name }))

1164

1008

1165

1166

1167

#[async_trait]

1168

impl<'s, B: Backend> bonsaidb_core::networking::ListDatabasesHandler for ServerDispatcher<'s, B> {

1169

    type Action = BonsaiAction;

1170

1171

2

    async fn resource_name<'a>(&'a self) -> Result<ResourceName<'a>, Error> {

1172

2

        Ok(bonsaidb_resource_name())

1173

2

1174

1175

2

    fn action() -> Self::Action {

1176

2

        BonsaiAction::Server(ServerAction::ListDatabases)

1177

2

1178

1179

2

    async fn handle_protected(

1180

2

        &self,

1181

2

        _permissions: &Permissions,

1182

2

    ) -> Result<Response<CustomApiResult<B::CustomApi>>, Error> {

1183

        Ok(Response::Server(ServerResponse::Databases(

1184

2

            self.server.list_databases().await?,

1185

)))

1186

4

1187

1188

1189

#[async_trait]

1190

impl<'s, B: Backend> bonsaidb_core::networking::ListAvailableSchemasHandler

1191

    for ServerDispatcher<'s, B>

1192

1193

    type Action = BonsaiAction;

1194

1195

2

    async fn resource_name<'a>(&'a self) -> Result<ResourceName<'a>, Error> {

1196

2

        Ok(bonsaidb_resource_name())

1197

2

1198

1199

2

    fn action() -> Self::Action {

1200

2

        BonsaiAction::Server(ServerAction::ListAvailableSchemas)

1201

2

1202

1203

2

    async fn handle_protected(

1204

2

        &self,

1205

2

        _permissions: &Permissions,

1206

2

    ) -> Result<Response<CustomApiResult<B::CustomApi>>, Error> {

1207

        Ok(Response::Server(ServerResponse::AvailableSchemas(

1208

2

            self.server.list_available_schemas().await?,

1209

)))

1210

4

1211

1212

1213

#[async_trait]

1214

impl<'s, B: Backend> bonsaidb_core::networking::CreateUserHandler for ServerDispatcher<'s, B> {

1215

    type Action = BonsaiAction;

1216

1217

4

    async fn resource_name<'a>(&'a self, _username: &'a String) -> Result<ResourceName<'a>, Error> {

1218

4

        Ok(bonsaidb_resource_name())

1219

4

1220

1221

4

    fn action() -> Self::Action {

1222

4

        BonsaiAction::Server(ServerAction::CreateUser)

1223

4

1224

1225

3

    async fn handle_protected(

1226

3

        &self,

1227

3

        _permissions: &Permissions,

1228

3

        username: String,

1229

3

    ) -> Result<Response<CustomApiResult<B::CustomApi>>, Error> {

1230

        Ok(Response::Server(ServerResponse::UserCreated {

1231

5

            id: self.server.create_user(&username).await?,

1232

}))

1233

6

1234

1235

1236

#[async_trait]

1237

impl<'s, B: Backend> bonsaidb_core::networking::DeleteUserHandler for ServerDispatcher<'s, B> {

1238

    type Action = BonsaiAction;

1239

1240

2

    async fn resource_name<'a>(

1241

2

        &'a self,

1242

2

        _primary_key: &'a NamedReference<'static, u64>,

1243

2

    ) -> Result<ResourceName<'a>, Error> {

1244

2

        Ok(bonsaidb_resource_name())

1245

2

1246

1247

2

    fn action() -> Self::Action {

1248

2

        BonsaiAction::Server(ServerAction::DeleteUser)

1249

2

1250

1251

2

    async fn handle_protected(

1252

2

        &self,

1253

2

        _permissions: &Permissions,

1254

2

        user: NamedReference<'static, u64>,

1255

2

    ) -> Result<Response<CustomApiResult<B::CustomApi>>, Error> {

1256

4

        self.server.delete_user(user).await?;

1257

2

        Ok(Response::Ok)

1258

4

1259

1260

1261

#[cfg(feature = "password-hashing")]

1262

#[async_trait]

1263

impl<'s, B: Backend> bonsaidb_core::networking::SetUserPasswordHandler for ServerDispatcher<'s, B> {

1264

    type Action = BonsaiAction;

1265

1266

    async fn resource_name<'a>(

1267

        &'a self,

1268

        user: &'a NamedReference<'static, u64>,

1269

        _password: &'a bonsaidb_core::connection::SensitiveString,

1270

    ) -> Result<ResourceName<'a>, Error> {

1271

        let id = user

1272

            .id::<User, _>(&self.server.admin().await)

1273

            .await?

1274

            .ok_or(bonsaidb_core::Error::UserNotFound)?;

1275

1276

        Ok(user_resource_name(id))

1277

1278

1279

    fn action() -> Self::Action {

1280

        BonsaiAction::Server(ServerAction::SetPassword)

1281

1282

1283

    async fn handle_protected(

1284

        &self,

1285

        _permissions: &Permissions,

1286

        username: NamedReference<'static, u64>,

1287

        password: bonsaidb_core::connection::SensitiveString,

1288

    ) -> Result<Response<CustomApiResult<B::CustomApi>>, Error> {

1289

        self.server.set_user_password(username, password).await?;

1290

        Ok(Response::Ok)

1291

1292

1293

1294

#[async_trait]

1295

#[cfg(feature = "password-hashing")]

1296

impl<'s, B: Backend> bonsaidb_core::networking::AuthenticateHandler for ServerDispatcher<'s, B> {

1297

5

    async fn verify_permissions(

1298

5

        &self,

1299

5

        permissions: &Permissions,

1300

5

        user: &NamedReference<'static, u64>,

1301

5

        authentication: &Authentication,

1302

5

    ) -> Result<(), Error> {

1303

5

        let id = user

1304

5

            .id::<User, _>(&self.server.admin().await)

1305

4

            .await?

1306

5

            .ok_or(bonsaidb_core::Error::UserNotFound)?;

1307

5

        match authentication {

1308

5

            Authentication::Password(_) => {

1309

5

                permissions.check(

1310

5

                    user_resource_name(id),

1311

5

                    &BonsaiAction::Server(ServerAction::Authenticate(

1312

5

                        AuthenticationMethod::PasswordHash,

1313

5

)),

1314

5

)?;

1315

5

                Ok(())

1316

1317

1318

10

1319

1320

5

    async fn handle_protected(

1321

5

        &self,

1322

5

        _permissions: &Permissions,

1323

5

        username: NamedReference<'static, u64>,

1324

5

        authentication: Authentication,

1325

5

    ) -> Result<Response<CustomApiResult<B::CustomApi>>, Error> {

1326

5

        let mut response = self

1327

5

            .server

1328

13

            .authenticate(username.clone(), authentication)

1329

13

            .await?;

1330

1331

        // TODO this should be handled by the storage layer

1332

5

        response.permissions = Permissions::merged([

1333

5

            &response.permissions,

1334

5

            &self.server.data.authenticated_permissions,

1335

5

            &self.server.data.default_permissions,

1336

5

]);

1337

5

1338

5

        self.client

1339

5

            .logged_in_as(response.user_id, response.permissions.clone())

1340

            .await;

1341

5

        Ok(Response::Server(ServerResponse::Authenticated(response)))

1342

10

1343

1344

1345

#[async_trait]

1346

impl<'s, B: Backend> bonsaidb_core::networking::AlterUserPermissionGroupMembershipHandler

1347

    for ServerDispatcher<'s, B>

1348

1349

    type Action = BonsaiAction;

1350

1351

8

    async fn resource_name<'a>(

1352

8

        &'a self,

1353

8

        user: &'a NamedReference<'static, u64>,

1354

8

        _group: &'a NamedReference<'static, u64>,

1355

8

        _should_be_member: &'a bool,

1356

8

    ) -> Result<ResourceName<'a>, Error> {

1357

8

        let id = user

1358

8

            .id::<User, _>(&self.server.admin().await)

1359

2

            .await?

1360

8

            .ok_or(bonsaidb_core::Error::UserNotFound)?;

1361

1362

8

        Ok(user_resource_name(id))

1363

16

1364

1365

8

    fn action() -> Self::Action {

1366

8

        BonsaiAction::Server(ServerAction::ModifyUserPermissionGroups)

1367

8

1368

1369

8

    async fn handle_protected(

1370

8

        &self,

1371

8

        _permissions: &Permissions,

1372

8

        user: NamedReference<'static, u64>,

1373

8

        group: NamedReference<'static, u64>,

1374

8

        should_be_member: bool,

1375

8

    ) -> Result<Response<CustomApiResult<B::CustomApi>>, Error> {

1376

8

        if should_be_member {

1377

4

            self.server

1378

5

                .add_permission_group_to_user(user, group)

1379

5

                .await?;

1380

        } else {

1381

4

            self.server

1382

5

                .remove_permission_group_from_user(user, group)

1383

5

                .await?;

1384

1385

1386

8

        Ok(Response::Ok)

1387

16

1388

1389

1390

#[async_trait]

1391

impl<'s, B: Backend> bonsaidb_core::networking::AlterUserRoleMembershipHandler

1392

    for ServerDispatcher<'s, B>

1393

1394

    type Action = BonsaiAction;

1395

1396

8

    async fn resource_name<'a>(

1397

8

        &'a self,

1398

8

        user: &'a NamedReference<'static, u64>,

1399

8

        _role: &'a NamedReference<'static, u64>,

1400

8

        _should_be_member: &'a bool,

1401

8

    ) -> Result<ResourceName<'a>, Error> {

1402

8

        let id = user

1403

8

            .id::<User, _>(&self.server.admin().await)

1404

            .await?

1405

8

            .ok_or(bonsaidb_core::Error::UserNotFound)?;

1406

1407

8

        Ok(user_resource_name(id))

1408

16

1409

1410

8

    fn action() -> Self::Action {

1411

8

        BonsaiAction::Server(ServerAction::ModifyUserRoles)

1412

8

1413

1414

8

    async fn handle_protected(

1415

8

        &self,

1416

8

        _permissions: &Permissions,

1417

8

        user: NamedReference<'static, u64>,

1418

8

        role: NamedReference<'static, u64>,

1419

8

        should_be_member: bool,

1420

8

    ) -> Result<Response<CustomApiResult<B::CustomApi>>, Error> {

1421

8

        if should_be_member {

1422

4

            self.server.add_role_to_user(user, role).await?;

1423

        } else {

1424

5

            self.server.remove_role_from_user(user, role).await?;

1425

1426

1427

8

        Ok(Response::Ok)

1428

16

1429

1430

1431

102818

#[derive(Dispatcher, Debug)]

1432

#[dispatcher(input = DatabaseRequest, actionable = bonsaidb_core::actionable)]

1433

struct DatabaseDispatcher<'s, B>

1434

where

1435

    B: Backend,

1436

1437

    name: String,

1438

    database: Database,

1439

    server_dispatcher: &'s ServerDispatcher<'s, B>,

1440

1441

1442

impl<'s, B: Backend> DatabaseRequestDispatcher for DatabaseDispatcher<'s, B> {

1443

    type Output = Response<CustomApiResult<B::CustomApi>>;

1444

    type Error = Error;

1445

1446

1447

#[async_trait]

1448

impl<'s, B: Backend> bonsaidb_core::networking::GetHandler for DatabaseDispatcher<'s, B> {

1449

    type Action = BonsaiAction;

1450

1451

8154

    async fn resource_name<'a>(

1452

8154

        &'a self,

1453

8154

        collection: &'a CollectionName,

1454

8154

        id: &'a DocumentId,

1455

8154

    ) -> Result<ResourceName<'a>, Error> {

1456

8154

        Ok(document_resource_name(&self.name, collection, id))

1457

8154

1458

1459

8154

    fn action() -> Self::Action {

1460

8154

        BonsaiAction::Database(DatabaseAction::Document(DocumentAction::Get))

1461

8154

1462

1463

8154

    async fn handle_protected(

1464

8154

        &self,

1465

8154

        _permissions: &Permissions,

1466

8154

        collection: CollectionName,

1467

8154

        id: DocumentId,

1468

8154

    ) -> Result<Response<CustomApiResult<B::CustomApi>>, Error> {

1469

8154

        let document = self

1470

8154

            .database

1471

8154

            .internal_get_from_collection_id(id, &collection)

1472

4826

            .await?

1473

8154

            .ok_or_else(|| {

1474

506

                Error::Core(bonsaidb_core::Error::DocumentNotFound(

1475

506

                    collection,

1476

506

                    Box::new(id),

1477

506

))

1478

8154

            })?;

1479

7648

        Ok(Response::Database(DatabaseResponse::Documents(vec![

1480

7648

            document,

1481

7648

        ])))

1482

16308

1483

1484

1485

#[async_trait]

1486

impl<'s, B: Backend> bonsaidb_core::networking::GetMultipleHandler for DatabaseDispatcher<'s, B> {

1487

4

    async fn verify_permissions(

1488

4

        &self,

1489

4

        permissions: &Permissions,

1490

4

        collection: &CollectionName,

1491

4

        ids: &Vec<DocumentId>,

1492

4

    ) -> Result<(), Error> {

1493

12

        for id in ids {

1494

8

            let document_name = document_resource_name(&self.name, collection, id);

1495

8

            let action = BonsaiAction::Database(DatabaseAction::Document(DocumentAction::Get));

1496

8

            permissions.check(&document_name, &action)?;

1497

1498

1499

4

        Ok(())

1500

8

1501

1502

4

    async fn handle_protected(

1503

4

        &self,

1504

4

        _permissions: &Permissions,

1505

4

        collection: CollectionName,

1506

4

        ids: Vec<DocumentId>,

1507

4

    ) -> Result<Response<CustomApiResult<B::CustomApi>>, Error> {

1508

4

        let documents = self

1509

4

            .database

1510

4

            .internal_get_multiple_from_collection_id(&ids, &collection)

1511

2

            .await?;

1512

4

        Ok(Response::Database(DatabaseResponse::Documents(documents)))

1513

8

1514

1515

1516

#[async_trait]

1517

impl<'s, B: Backend> bonsaidb_core::networking::ListHandler for DatabaseDispatcher<'s, B> {

1518

    type Action = BonsaiAction;

1519

1520

8

    async fn resource_name<'a>(

1521

8

        &'a self,

1522

8

        collection: &'a CollectionName,

1523

8

        _ids: &'a Range<DocumentId>,

1524

8

        _order: &'a Sort,

1525

8

        _limit: &'a Option<usize>,

1526

8

    ) -> Result<ResourceName<'a>, Error> {

1527

8

        Ok(collection_resource_name(&self.name, collection))

1528

8

1529

1530

8

    fn action() -> Self::Action {

1531

8

        BonsaiAction::Database(DatabaseAction::Document(DocumentAction::List))

1532

8

1533

1534

8

    async fn handle_protected(

1535

8

        &self,

1536

8

        _permissions: &Permissions,

1537

8

        collection: CollectionName,

1538

8

        ids: Range<DocumentId>,

1539

8

        order: Sort,

1540

8

        limit: Option<usize>,

1541

8

    ) -> Result<Response<CustomApiResult<B::CustomApi>>, Error> {

1542

8

        let documents = self

1543

8

            .database

1544

8

            .list_from_collection(ids, order, limit, &collection)

1545

4

            .await?;

1546

8

        Ok(Response::Database(DatabaseResponse::Documents(documents)))

1547

16

1548

1549

1550

#[async_trait]

1551

impl<'s, B: Backend> bonsaidb_core::networking::CountHandler for DatabaseDispatcher<'s, B> {

1552

    type Action = BonsaiAction;

1553

1554

4

    async fn resource_name<'a>(

1555

4

        &'a self,

1556

4

        collection: &'a CollectionName,

1557

4

        _ids: &'a Range<DocumentId>,

1558

4

    ) -> Result<ResourceName<'a>, Error> {

1559

4

        Ok(collection_resource_name(&self.name, collection))

1560

4

1561

1562

4

    fn action() -> Self::Action {

1563

4

        BonsaiAction::Database(DatabaseAction::Document(DocumentAction::Count))

1564

4

1565

1566

4

    async fn handle_protected(

1567

4

        &self,

1568

4

        _permissions: &Permissions,

1569

4

        collection: CollectionName,

1570

4

        ids: Range<DocumentId>,

1571

4

    ) -> Result<Response<CustomApiResult<B::CustomApi>>, Error> {

1572

4

        let documents = self

1573

4

            .database

1574

4

            .count_from_collection(ids, &collection)

1575

2

            .await?;

1576

4

        Ok(Response::Database(DatabaseResponse::Count(documents)))

1577

8

1578

1579

1580

#[async_trait]

1581

impl<'s, B: Backend> bonsaidb_core::networking::QueryHandler for DatabaseDispatcher<'s, B> {

1582

    type Action = BonsaiAction;

1583

1584

3929

    async fn resource_name<'a>(

1585

3929

        &'a self,

1586

3929

        view: &'a ViewName,

1587

3929

        _key: &'a Option<QueryKey<Bytes>>,

1588

3929

        _order: &'a Sort,

1589

3929

        _limit: &'a Option<usize>,

1590

3929

        _access_policy: &'a AccessPolicy,

1591

3929

        _with_docs: &'a bool,

1592

3929

    ) -> Result<ResourceName<'a>, Error> {

1593

3929

        Ok(view_resource_name(&self.name, view))

1594

3929

1595

1596

3929

    fn action() -> Self::Action {

1597

3929

        BonsaiAction::Database(DatabaseAction::View(ViewAction::Query))

1598

3929

1599

1600

3929

    async fn handle_protected(

1601

3929

        &self,

1602

3929

        _permissions: &Permissions,

1603

3929

        view: ViewName,

1604

3929

        key: Option<QueryKey<Bytes>>,

1605

3929

        order: Sort,

1606

3929

        limit: Option<usize>,

1607

3929

        access_policy: AccessPolicy,

1608

3929

        with_docs: bool,

1609

3929

    ) -> Result<Response<CustomApiResult<B::CustomApi>>, Error> {

1610

3929

        if with_docs {

1611

3878

            let mappings = self

1612

3878

                .database

1613

3985

                .query_by_name_with_docs(&view, key, order, limit, access_policy)

1614

3985

                .await?;

1615

3878

            Ok(Response::Database(DatabaseResponse::ViewMappingsWithDocs(

1616

3878

                mappings,

1617

3878

)))

1618

        } else {

1619

51

            let mappings = self

1620

51

                .database

1621

51

                .query_by_name(&view, key, order, limit, access_policy)

1622

35

                .await?;

1623

51

            Ok(Response::Database(DatabaseResponse::ViewMappings(mappings)))

1624

1625

7858

1626

1627

1628

#[async_trait]

1629

impl<'s, B: Backend> bonsaidb_core::networking::ReduceHandler for DatabaseDispatcher<'s, B> {

1630

    type Action = BonsaiAction;

1631

1632

7975

    async fn resource_name<'a>(

1633

7975

        &'a self,

1634

7975

        view: &'a ViewName,

1635

7975

        _key: &'a Option<QueryKey<Bytes>>,

1636

7975

        _access_policy: &'a AccessPolicy,

1637

7975

        _grouped: &'a bool,

1638

7975

    ) -> Result<ResourceName<'a>, Error> {

1639

7975

        Ok(view_resource_name(&self.name, view))

1640

7975

1641

1642

7975

    fn action() -> Self::Action {

1643

7975

        BonsaiAction::Database(DatabaseAction::View(ViewAction::Reduce))

1644

7975

1645

1646

7975

    async fn handle_protected(

1647

7975

        &self,

1648

7975

        _permissions: &Permissions,

1649

7975

        view: ViewName,

1650

7975

        key: Option<QueryKey<Bytes>>,

1651

7975

        access_policy: AccessPolicy,

1652

7975

        grouped: bool,

1653

7975

    ) -> Result<Response<CustomApiResult<B::CustomApi>>, Error> {

1654

7975

        if grouped {

1655

6

            let values = self

1656

6

                .database

1657

7

                .reduce_grouped_by_name(&view, key, access_policy)

1658

5

                .await?;

1659

6

            Ok(Response::Database(DatabaseResponse::ViewGroupedReduction(

1660

6

                values,

1661

6

)))

1662

        } else {

1663

7969

            let value = self

1664

7969

                .database

1665

7970

                .reduce_by_name(&view, key, access_policy)

1666

159

                .await?;

1667

7967

            Ok(Response::Database(DatabaseResponse::ViewReduction(

1668

7967

                Bytes::from(value),

1669

7967

)))

1670

1671

15950

1672

1673

1674

#[async_trait]

1675

impl<'s, B: Backend> bonsaidb_core::networking::ApplyTransactionHandler

1676

    for DatabaseDispatcher<'s, B>

1677

1678

10009

    async fn verify_permissions(

1679

10009

        &self,

1680

10009

        permissions: &Permissions,

1681

10009

        transaction: &Transaction,

1682

10009

    ) -> Result<(), Error> {

1683

24134

        for op in &transaction.operations {

1684

14127

            let (resource, action) = match &op.command {

1685

9923

                Command::Insert { .. } => (

1686

9923

                    collection_resource_name(&self.name, &op.collection),

1687

9923

                    BonsaiAction::Database(DatabaseAction::Document(DocumentAction::Insert)),

1688

9923

),

1689

3006

                Command::Update { header, .. } => (

1690

3006

                    document_resource_name(&self.name, &op.collection, &header.id),

1691

3006

                    BonsaiAction::Database(DatabaseAction::Document(DocumentAction::Update)),

1692

3006

),

1693

504

                Command::Overwrite { id, .. } => (

1694

504

                    document_resource_name(&self.name, &op.collection, id),

1695

504

                    BonsaiAction::Database(DatabaseAction::Document(DocumentAction::Overwrite)),

1696

504

),

1697

694

                Command::Delete { header } => (

1698

694

                    document_resource_name(&self.name, &op.collection, &header.id),

1699

694

                    BonsaiAction::Database(DatabaseAction::Document(DocumentAction::Delete)),

1700

694

),

1701

};

1702

14127

            permissions.check(&resource, &action)?;

1703

1704

1705

10007

        Ok(())

1706

20018

1707

1708

10007

    async fn handle_protected(

1709

10007

        &self,

1710

10007

        _permissions: &Permissions,

1711

10007

        transaction: Transaction,

1712

10007

    ) -> Result<Response<CustomApiResult<B::CustomApi>>, Error> {

1713

10012

        let results = self.database.apply_transaction(transaction).await?;

1714

9493

        Ok(Response::Database(DatabaseResponse::TransactionResults(

1715

9493

            results,

1716

9493

)))

1717

20014

1718

1719

1720

#[async_trait]

1721

impl<'s, B: Backend> bonsaidb_core::networking::DeleteDocsHandler for DatabaseDispatcher<'s, B> {

1722

    type Action = BonsaiAction;

1723

1724

2

    async fn resource_name<'a>(

1725

2

        &'a self,

1726

2

        view: &'a ViewName,

1727

2

        _key: &'a Option<QueryKey<Bytes>>,

1728

2

        _access_policy: &'a AccessPolicy,

1729

2

    ) -> Result<ResourceName<'a>, Error> {

1730

2

        Ok(view_resource_name(&self.name, view))

1731

2

1732

1733

2

    fn action() -> Self::Action {

1734

2

        BonsaiAction::Database(DatabaseAction::View(ViewAction::DeleteDocs))

1735

2

1736

1737

2

    async fn handle_protected(

1738

2

        &self,

1739

2

        _permissions: &Permissions,

1740

2

        view: ViewName,

1741

2

        key: Option<QueryKey<Bytes>>,

1742

2

        access_policy: AccessPolicy,

1743

2

    ) -> Result<Response<CustomApiResult<B::CustomApi>>, Error> {

1744

2

        let count = self

1745

2

            .database

1746

4

            .delete_docs_by_name(&view, key, access_policy)

1747

4

            .await?;

1748

2

        Ok(Response::Database(DatabaseResponse::Count(count)))

1749

4

1750

1751

1752

#[async_trait]

1753

impl<'s, B: Backend> bonsaidb_core::networking::ListExecutedTransactionsHandler

1754

    for DatabaseDispatcher<'s, B>

1755

1756

    type Action = BonsaiAction;

1757

1758

1036

    async fn resource_name<'a>(

1759

1036

        &'a self,

1760

1036

        _starting_id: &'a Option<u64>,

1761

1036

        _result_limit: &'a Option<usize>,

1762

1036

    ) -> Result<ResourceName<'a>, Error> {

1763

1036

        Ok(database_resource_name(&self.name))

1764

1036

1765

1766

1036

    fn action() -> Self::Action {

1767

1036

        BonsaiAction::Database(DatabaseAction::Transaction(TransactionAction::ListExecuted))

1768

1036

1769

1770

1036

    async fn handle_protected(

1771

1036

        &self,

1772

1036

        _permissions: &Permissions,

1773

1036

        starting_id: Option<u64>,

1774

1036

        result_limit: Option<usize>,

1775

1036

    ) -> Result<Response<CustomApiResult<B::CustomApi>>, Error> {

1776

        Ok(Response::Database(DatabaseResponse::ExecutedTransactions(

1777

1036

            self.database

1778

1036

                .list_executed_transactions(starting_id, result_limit)

1779

814

                .await?,

1780

)))

1781

2072

1782

1783

1784

#[async_trait]

1785

impl<'s, B: Backend> bonsaidb_core::networking::LastTransactionIdHandler

1786

    for DatabaseDispatcher<'s, B>

1787

1788

    type Action = BonsaiAction;

1789

1790

2

    async fn resource_name<'a>(&'a self) -> Result<ResourceName<'a>, Error> {

1791

2

        Ok(database_resource_name(&self.name))

1792

2

1793

1794

2

    fn action() -> Self::Action {

1795

2

        BonsaiAction::Database(DatabaseAction::Transaction(TransactionAction::GetLastId))

1796

2

1797

1798

2

    async fn handle_protected(

1799

2

        &self,

1800

2

        _permissions: &Permissions,

1801

2

    ) -> Result<Response<CustomApiResult<B::CustomApi>>, Error> {

1802

        Ok(Response::Database(DatabaseResponse::LastTransactionId(

1803

2

            self.database.last_transaction_id().await?,

1804

)))

1805

4

1806

1807

1808

#[async_trait]

1809

impl<'s, B: Backend> bonsaidb_core::networking::CreateSubscriberHandler

1810

    for DatabaseDispatcher<'s, B>

1811

1812

    type Action = BonsaiAction;

1813

1814

14

    async fn resource_name<'a>(&'a self) -> Result<ResourceName<'a>, Error> {

1815

14

        Ok(database_resource_name(&self.name))

1816

14

1817

1818

14

    fn action() -> Self::Action {

1819

14

        BonsaiAction::Database(DatabaseAction::PubSub(PubSubAction::CreateSuscriber))

1820

14

1821

1822

14

    async fn handle_protected(

1823

14

        &self,

1824

14

        _permissions: &Permissions,

1825

14

    ) -> Result<Response<CustomApiResult<B::CustomApi>>, Error> {

1826

14

        let server = self.server_dispatcher.server;

1827

14

        let subscriber = server.create_subscriber(self.name.clone()).await;

1828

14

        let subscriber_id = subscriber.id;

1829

14

        self.server_dispatcher

1830

14

            .client

1831

14

            .register_subscriber(subscriber_id)

1832

            .await;

1833

1834

14

        let task_self = server.clone();

1835

14

        let response_sender = self.server_dispatcher.response_sender.clone();

1836

14

        tokio::spawn(async move {

1837

14

            task_self

1838

14

                .forward_notifications_for(

1839

14

                    subscriber.id,

1840

14

                    subscriber.receiver,

1841

14

                    response_sender.clone(),

1842

22

1843

22

                .await;

1844

14

});

1845

14

        Ok(Response::Database(DatabaseResponse::SubscriberCreated {

1846

14

            subscriber_id,

1847

14

}))

1848

28

1849

1850

1851

#[async_trait]

1852

impl<'s, B: Backend> bonsaidb_core::networking::PublishHandler for DatabaseDispatcher<'s, B> {

1853

    type Action = BonsaiAction;

1854

1855

16

    async fn resource_name<'a>(

1856

16

        &'a self,

1857

16

        topic: &'a String,

1858

16

        _payload: &'a Bytes,

1859

16

    ) -> Result<ResourceName<'a>, Error> {

1860

16

        Ok(pubsub_topic_resource_name(&self.name, topic))

1861

16

1862

1863

16

    fn action() -> Self::Action {

1864

16

        BonsaiAction::Database(DatabaseAction::PubSub(PubSubAction::Publish))

1865

16

1866

1867

16

    async fn handle_protected(

1868

16

        &self,

1869

16

        _permissions: &Permissions,

1870

16

        topic: String,

1871

16

        payload: Bytes,

1872

16

    ) -> Result<Response<CustomApiResult<B::CustomApi>>, Error> {

1873

16

        self.server_dispatcher

1874

16

            .server

1875

16

            .publish_message(&self.name, &topic, payload.into_vec())

1876

            .await;

1877

16

        Ok(Response::Ok)

1878

32

1879

1880

1881

#[async_trait]

1882

impl<'s, B: Backend> bonsaidb_core::networking::PublishToAllHandler for DatabaseDispatcher<'s, B> {

1883

2

    async fn verify_permissions(

1884

2

        &self,

1885

2

        permissions: &Permissions,

1886

2

        topics: &Vec<String>,

1887

2

        _payload: &Bytes,

1888

2

    ) -> Result<(), Error> {

1889

8

        for topic in topics {

1890

6

            let topic_name = pubsub_topic_resource_name(&self.name, topic);

1891

6

            let action = BonsaiAction::Database(DatabaseAction::PubSub(PubSubAction::Publish));

1892

6

            if !permissions.allowed_to(&topic_name, &action) {

1893

                return Err(Error::from(PermissionDenied {

1894

                    resource: topic_name.to_owned(),

1895

                    action: action.name(),

1896

                }));

1897

6

1898

1899

1900

2

        Ok(())

1901

4

1902

1903

2

    async fn handle_protected(

1904

2

        &self,

1905

2

        _permissions: &Permissions,

1906

2

        topics: Vec<String>,

1907

2

        payload: Bytes,

1908

2

    ) -> Result<Response<CustomApiResult<B::CustomApi>>, Error> {

1909

2

        self.server_dispatcher

1910

2

            .server

1911

2

            .publish_serialized_to_all(&self.name, &topics, payload.into_vec())

1912

            .await;

1913

2

        Ok(Response::Ok)

1914

4

1915

1916

1917

#[async_trait]

1918

impl<'s, B: Backend> bonsaidb_core::networking::SubscribeToHandler for DatabaseDispatcher<'s, B> {

1919

    type Action = BonsaiAction;

1920

1921

24

    async fn resource_name<'a>(

1922

24

        &'a self,

1923

24

        _subscriber_id: &'a u64,

1924

24

        topic: &'a String,

1925

24

    ) -> Result<ResourceName<'a>, Error> {

1926

24

        Ok(pubsub_topic_resource_name(&self.name, topic))

1927

24

1928

1929

24

    fn action() -> Self::Action {

1930

24

        BonsaiAction::Database(DatabaseAction::PubSub(PubSubAction::SubscribeTo))

1931

24

1932

1933

24

    async fn handle_protected(

1934

24

        &self,

1935

24

        _permissions: &Permissions,

1936

24

        subscriber_id: u64,

1937

24

        topic: String,

1938

24

    ) -> Result<Response<CustomApiResult<B::CustomApi>>, Error> {

1939

24

        if self

1940

24

            .server_dispatcher

1941

24

            .client

1942

24

            .owns_subscriber(subscriber_id)

1943

            .await

1944

1945

24

            self.server_dispatcher

1946

24

                .server

1947

24

                .subscribe_to(subscriber_id, &self.name, topic)

1948

                .await

1949

24

                .map(|_| Response::Ok)

1950

24

                .map_err(Error::from)

1951

        } else {

1952

            Err(Error::Transport(String::from("invalid subscriber_id")))

1953

1954

48

1955

1956

1957

#[async_trait]

1958

impl<'s, B: Backend> bonsaidb_core::networking::UnsubscribeFromHandler

1959

    for DatabaseDispatcher<'s, B>

1960

1961

    type Action = BonsaiAction;

1962

1963

2

    async fn resource_name<'a>(

1964

2

        &'a self,

1965

2

        _subscriber_id: &'a u64,

1966

2

        topic: &'a String,

1967

2

    ) -> Result<ResourceName<'a>, Error> {

1968

2

        Ok(pubsub_topic_resource_name(&self.name, topic))

1969

2

1970

1971

2

    fn action() -> Self::Action {

1972

2

        BonsaiAction::Database(DatabaseAction::PubSub(PubSubAction::UnsubscribeFrom))

1973

2

1974

1975

2

    async fn handle_protected(

1976

2

        &self,

1977

2

        _permissions: &Permissions,

1978

2

        subscriber_id: u64,

1979

2

        topic: String,

1980

2

    ) -> Result<Response<CustomApiResult<B::CustomApi>>, Error> {

1981

2

        if self

1982

2

            .server_dispatcher

1983

2

            .client

1984

2

            .owns_subscriber(subscriber_id)

1985

            .await

1986

1987

2

            self.server_dispatcher

1988

2

                .server

1989

2

                .unsubscribe_from(subscriber_id, &self.name, &topic)

1990

                .await

1991

2

                .map(|_| Response::Ok)

1992

2

                .map_err(Error::from)

1993

        } else {

1994

            Err(Error::Transport(String::from("invalid subscriber_id")))

1995

1996

4

1997

1998

1999

#[async_trait]

2000

impl<'s, B: Backend> bonsaidb_core::networking::UnregisterSubscriberHandler

2001

    for DatabaseDispatcher<'s, B>

2002

2003

    async fn handle(

2004

        &self,

2005

        _permissions: &Permissions,

2006

        subscriber_id: u64,

2007

    ) -> Result<Response<CustomApiResult<B::CustomApi>>, Error> {

2008

        if self

2009

            .server_dispatcher

2010

            .client

2011

            .remove_subscriber(subscriber_id)

2012

            .await

2013

2014

            let mut subscribers = fast_async_write!(self.server_dispatcher.subscribers);

2015

            if subscribers.remove(&subscriber_id).is_none() {

2016

                Ok(Response::Error(bonsaidb_core::Error::Server(String::from(

2017

                    "invalid subscriber id",

2018

                ))))

2019

            } else {

2020

                Ok(Response::Ok)

2021

2022

        } else {

2023

            Err(Error::Transport(String::from("invalid subscriber_id")))

2024

2025

2026

2027

2028

#[async_trait]

2029

impl<'s, B: Backend> bonsaidb_core::networking::ExecuteKeyOperationHandler

2030

    for DatabaseDispatcher<'s, B>

2031

2032

    type Action = BonsaiAction;

2033

2034

20222

    async fn resource_name<'a>(&'a self, op: &'a KeyOperation) -> Result<ResourceName<'a>, Error> {

2035

20221

        Ok(keyvalue_key_resource_name(

2036

20221

            &self.name,

2037

20221

            op.namespace.as_deref(),

2038

20221

            &op.key,

2039

20221

))

2040

20222

2041

2042

20222

    fn action() -> Self::Action {

2043

20222

        BonsaiAction::Database(DatabaseAction::KeyValue(KeyValueAction::ExecuteOperation))

2044

20222

2045

2046

20222

    async fn handle_protected(

2047

20222

        &self,

2048

20222

        _permissions: &Permissions,

2049

20222

        op: KeyOperation,

2050

20222

    ) -> Result<Response<CustomApiResult<B::CustomApi>>, Error> {

2051

20222

        let result = self.database.execute_key_operation(op).await?;

2052

20214

        Ok(Response::Database(DatabaseResponse::KvOutput(result)))

2053

40444

2054

2055

2056

#[async_trait]

2057

impl<'s, B: Backend> bonsaidb_core::networking::CompactCollectionHandler

2058

    for DatabaseDispatcher<'s, B>

2059

2060

    type Action = BonsaiAction;

2061

2062

2

    async fn resource_name<'a>(

2063

2

        &'a self,

2064

2

        collection: &'a CollectionName,

2065

2

    ) -> Result<ResourceName<'a>, Error> {

2066

2

        Ok(collection_resource_name(&self.name, collection))

2067

2

2068

2069

2

    fn action() -> Self::Action {

2070

2

        BonsaiAction::Database(DatabaseAction::Compact)

2071

2

2072

2073

2

    async fn handle_protected(

2074

2

        &self,

2075

2

        _permissions: &Permissions,

2076

2

        collection: CollectionName,

2077

2

    ) -> Result<Response<CustomApiResult<B::CustomApi>>, Error> {

2078

2

        self.database.compact_collection_by_name(collection).await?;

2079

2080

2

        Ok(Response::Ok)

2081

4

2082

2083

2084

#[async_trait]

2085

impl<'s, B: Backend> bonsaidb_core::networking::CompactKeyValueStoreHandler

2086

    for DatabaseDispatcher<'s, B>

2087

2088

    type Action = BonsaiAction;

2089

2090

2

    async fn resource_name<'a>(&'a self) -> Result<ResourceName<'a>, Error> {

2091

2

        Ok(kv_resource_name(&self.name))

2092

2

2093

2094

2

    fn action() -> Self::Action {

2095

2

        BonsaiAction::Database(DatabaseAction::Compact)

2096

2

2097

2098

2

    async fn handle_protected(

2099

2

        &self,

2100

2

        _permissions: &Permissions,

2101

2

    ) -> Result<Response<CustomApiResult<B::CustomApi>>, Error> {

2102

2

        self.database.compact_key_value_store().await?;

2103

2104

2

        Ok(Response::Ok)

2105

4

2106

2107

2108

#[async_trait]

2109

impl<'s, B: Backend> bonsaidb_core::networking::CompactHandler for DatabaseDispatcher<'s, B> {

2110

    type Action = BonsaiAction;

2111

2112

2

    async fn resource_name<'a>(&'a self) -> Result<ResourceName<'a>, Error> {

2113

2

        Ok(database_resource_name(&self.name))

2114

2

2115

2116

2

    fn action() -> Self::Action {

2117

2

        BonsaiAction::Database(DatabaseAction::Compact)

2118

2

2119

2120

2

    async fn handle_protected(

2121

2

        &self,

2122

2

        _permissions: &Permissions,

2123

2

    ) -> Result<Response<CustomApiResult<B::CustomApi>>, Error> {

2124

2

        self.database.compact().await?;

2125

2126

2

        Ok(Response::Ok)

2127

4

2128

2129

2130

80

#[derive(Default)]

2131

struct AlpnKeys(Arc<std::sync::Mutex<HashMap<String, Arc<rustls::sign::CertifiedKey>>>>);

2132

2133

impl Debug for AlpnKeys {

2134

    fn fmt(&self, f: &mut std::fmt::Formatter<'_>) -> std::fmt::Result {

2135

        f.debug_tuple("AlpnKeys").finish()

2136

2137

2138

2139

impl Deref for AlpnKeys {

2140

    type Target = Arc<std::sync::Mutex<HashMap<String, Arc<rustls::sign::CertifiedKey>>>>;

2141

2142

    fn deref(&self) -> &Self::Target {

2143

        &self.0

2144

2145