Add ZIG server

7 files changed, 240 insertions, 0 deletions

diff --git a/backend/src/services/auth_service.zig b/backend/src/services/auth_service.zig
new file mode 100644
index 0000000..1a39584
--- /dev/null
+++ b/backend/src/services/auth_service.zig
@@ -0,0 +1,31 @@
+const httpz = @import("httpz");
+
+const common = @import("common.zig");
+const users_repo = @import("../repos/users_repo.zig");
+
+const Login = struct { email: []const u8, password: []const u8 };
+
+pub fn login(env: *common.Env, req: *httpz.Request, res: *httpz.Response) !void {
+    const payload = try common.with_body(Login, req);
+
+    const user = try users_repo.check_password(res.arena, env.conn, payload.email, payload.password) orelse return common.ServiceError.Forbidden;
+    const login_token = try users_repo.generate_login_token(res.arena, env.conn, payload.email);
+    try res.setCookie("token", login_token, .{
+        .max_age = 31 * 24 * 60 * 60, // 31 days in seconds
+        .secure = env.secure_tokens,
+        .http_only = true,
+        .same_site = .strict,
+    });
+    try res.json(user, .{});
+}
+
+pub fn logout(env: *common.Env, _: *httpz.Request, res: *httpz.Response) !void {
+    const user = env.user orelse return common.ServiceError.NotFound;
+    try users_repo.remove_login_token(env.conn, user.email);
+    try res.setCookie("token", "", .{
+        .max_age = 0, // Expires immediately
+        .secure = env.secure_tokens,
+        .http_only = true,
+        .same_site = .strict,
+    });
+}
diff --git a/backend/src/services/common.zig b/backend/src/services/common.zig
new file mode 100644
index 0000000..42d18e9
--- /dev/null
+++ b/backend/src/services/common.zig
@@ -0,0 +1,30 @@
+const std = @import("std");
+const zqlite = @import("zqlite");
+const httpz = @import("httpz");
+
+const users_repo = @import("../repos/users_repo.zig");
+
+pub const Env = struct {
+    conn: zqlite.Conn,
+    secure_tokens: bool,
+    user: ?users_repo.User,
+};
+
+pub const ServiceError = error{
+    BadRequest,
+    NotFound,
+    Forbidden,
+};
+
+pub fn with_body(comptime T: type, req: *httpz.Request) !T {
+    if (req.body()) |body| {
+        if (std.json.parseFromSlice(T, req.arena, body, .{})) |parsed| {
+            defer parsed.deinit();
+            return parsed.value;
+        } else |_| {
+            return ServiceError.BadRequest;
+        }
+    } else {
+        return ServiceError.BadRequest;
+    }
+}
diff --git a/backend/src/services/handler.zig b/backend/src/services/handler.zig
new file mode 100644
index 0000000..e8c92d4
--- /dev/null
+++ b/backend/src/services/handler.zig
@@ -0,0 +1,69 @@
+const httpz = @import("httpz");
+const std = @import("std");
+const zqlite = @import("zqlite");
+
+const common = @import("common.zig");
+const static = @import("static.zig");
+const users_repo = @import("../repos/users_repo.zig");
+
+pub const RouteData = struct {
+    is_public: bool,
+};
+
+pub const Handler = struct {
+    conn: zqlite.Conn,
+    secure_tokens: bool,
+
+    pub fn dispatch(self: *Handler, action: httpz.Action(*common.Env), req: *httpz.Request, res: *httpz.Response) !void {
+        var user: ?users_repo.User = null;
+        if (!is_route_public(req)) {
+            const cookies = req.cookies();
+
+            const login_token = cookies.get("token") orelse return common.ServiceError.Forbidden;
+            user = try users_repo.get_user(res.arena, self.conn, login_token) orelse return common.ServiceError.Forbidden;
+        }
+
+        var env = common.Env{ .conn = self.conn, .secure_tokens = self.secure_tokens, .user = user };
+
+        try action(&env, req, res);
+    }
+
+    pub fn notFound(handler: *Handler, req: *httpz.Request, res: *httpz.Response) !void {
+        const path = req.url.path;
+        if (path.len >= 5 and std.mem.eql(u8, path[0..5], "/api/")) {
+            return common.ServiceError.NotFound;
+        } else {
+            // non API route, let client router take care of that
+            var env = common.Env{ .conn = handler.conn, .secure_tokens = handler.secure_tokens, .user = null };
+            try static.index(&env, req, res);
+        }
+    }
+
+    pub fn uncaughtError(_: *Handler, req: *httpz.Request, res: *httpz.Response, err: anyerror) void {
+        switch (err) {
+            common.ServiceError.BadRequest => error_response(res, 400, "Bad Request"),
+            common.ServiceError.NotFound => error_response(res, 404, "Not Found"),
+            common.ServiceError.Forbidden => error_response(res, 403, "Forbidden"),
+            else => {
+                std.debug.print("Internal Server Error at {s}: {}\n", .{ req.url.path, err });
+                error_response(res, 500, "Internal Server Error");
+            },
+        }
+    }
+};
+
+fn is_route_public(req: *httpz.Request) bool {
+    if (req.route_data) |rd| {
+        const route_data: *const RouteData = @ptrCast(@alignCast(rd));
+        return route_data.is_public;
+    } else {
+        return false;
+    }
+}
+
+fn error_response(res: *httpz.Response, code: u16, message: []const u8) void {
+    res.status = code;
+    res.json(.{ .message = message }, .{}) catch {
+        res.body = message;
+    };
+}
diff --git a/backend/src/services/maps_service.zig b/backend/src/services/maps_service.zig
new file mode 100644
index 0000000..d634383
--- /dev/null
+++ b/backend/src/services/maps_service.zig
@@ -0,0 +1,39 @@
+const httpz = @import("httpz");
+
+const maps_repo = @import("../repos/maps_repo.zig");
+const markers_repo = @import("../repos/markers_repo.zig");
+const common = @import("common.zig");
+
+pub fn list(env: *common.Env, _: *httpz.Request, res: *httpz.Response) !void {
+    const maps = try maps_repo.get_maps(res.arena, env.conn);
+    try res.json(maps.items, .{});
+}
+
+pub fn get(env: *common.Env, req: *httpz.Request, res: *httpz.Response) !void {
+    const id = req.param("id").?;
+    const map = try maps_repo.get_map(res.arena, env.conn, id);
+    try res.json(map, .{});
+}
+
+const CreateMap = struct { name: []const u8 };
+
+pub fn create(env: *common.Env, req: *httpz.Request, res: *httpz.Response) !void {
+    const payload = try common.with_body(CreateMap, req);
+    const map = try maps_repo.create(res.arena, env.conn, payload.name);
+    try res.json(map, .{});
+}
+
+const UpdateMap = struct { name: []const u8 };
+
+pub fn update(env: *common.Env, req: *httpz.Request, res: *httpz.Response) !void {
+    const id = req.param("id").?;
+    const payload = try common.with_body(UpdateMap, req);
+    const map = try maps_repo.update(env.conn, id, payload.name);
+    try res.json(map, .{});
+}
+
+pub fn delete(env: *common.Env, req: *httpz.Request, _: *httpz.Response) !void {
+    const id = req.param("id").?;
+    try markers_repo.delete_by_map_id(env.conn, id);
+    try maps_repo.delete(env.conn, id);
+}
diff --git a/backend/src/services/markers_service.zig b/backend/src/services/markers_service.zig
new file mode 100644
index 0000000..9e69682
--- /dev/null
+++ b/backend/src/services/markers_service.zig
@@ -0,0 +1,31 @@
+const httpz = @import("httpz");
+
+const markers_repo = @import("../repos/markers_repo.zig");
+const common = @import("common.zig");
+
+pub fn list_by_map(env: *common.Env, req: *httpz.Request, res: *httpz.Response) !void {
+    const query = try req.query();
+    const map_id = query.get("map").?;
+    const maps = try markers_repo.get_markers(res.arena, env.conn, map_id);
+    try res.json(maps.items, .{});
+}
+
+pub fn create(env: *common.Env, req: *httpz.Request, res: *httpz.Response) !void {
+    const query = try req.query();
+    const map_id = query.get("map").?;
+    const payload = try common.with_body(markers_repo.Payload, req);
+    const marker = try markers_repo.create(res.arena, env.conn, map_id, payload);
+    try res.json(marker, .{});
+}
+
+pub fn update(env: *common.Env, req: *httpz.Request, res: *httpz.Response) !void {
+    const id = req.param("id").?;
+    const payload = try common.with_body(markers_repo.Payload, req);
+    const map = try markers_repo.update(env.conn, id, payload);
+    try res.json(map, .{});
+}
+
+pub fn delete(env: *common.Env, req: *httpz.Request, _: *httpz.Response) !void {
+    const id = req.param("id").?;
+    try markers_repo.delete(env.conn, id);
+}
diff --git a/backend/src/services/static.zig b/backend/src/services/static.zig
new file mode 100644
index 0000000..f236737
--- /dev/null
+++ b/backend/src/services/static.zig
@@ -0,0 +1,32 @@
+const httpz = @import("httpz");
+const std = @import("std");
+
+const common = @import("common.zig");
+
+pub fn index(_: *common.Env, _: *httpz.Request, res: *httpz.Response) !void {
+    try static_file(res, "public/index.html", httpz.ContentType.HTML);
+}
+
+pub fn main_css(_: *common.Env, _: *httpz.Request, res: *httpz.Response) !void {
+    try static_file(res, "public/main.css", httpz.ContentType.CSS);
+}
+
+pub fn main_js(_: *common.Env, _: *httpz.Request, res: *httpz.Response) !void {
+    try static_file(res, "public/main.js", httpz.ContentType.JS);
+}
+
+pub fn icon_png(_: *common.Env, _: *httpz.Request, res: *httpz.Response) !void {
+    try static_file(res, "public/icon.png", httpz.ContentType.PNG);
+}
+
+fn static_file(res: *httpz.Response, path: []const u8, content_type: httpz.ContentType) !void {
+    const file = try std.fs.cwd().openFile(path, .{});
+    defer file.close();
+
+    const stat = try file.stat();
+    const buf: []u8 = try file.readToEndAlloc(res.arena, stat.size);
+    res.body = buf;
+
+    res.content_type = content_type;
+    res.header("cache-control", "no-cache, no-store, must-revalidate");
+}
diff --git a/backend/src/services/users_service.zig b/backend/src/services/users_service.zig
new file mode 100644
index 0000000..8547437
--- /dev/null
+++ b/backend/src/services/users_service.zig
@@ -0,0 +1,8 @@
+const httpz = @import("httpz");
+
+const common = @import("common.zig");
+
+pub fn get_user(env: *common.Env, _: *httpz.Request, res: *httpz.Response) !void {
+    const user = env.user orelse return common.ServiceError.NotFound;
+    try res.json(user, .{});
+}