feat: add /players/me endpoint (stadust#197)

Signed-off-by: Emanuel Pilz <[email protected]>

Author: emonadeo

pointercrate-demonlist-api/src/endpoints/player.rs

@@ -45,6 +45,24 @@ pub async fn ranking(pool: &State<PointercratePool>, query: Query<RankingPaginat
     Ok(pagination_response("/api/v1/players/ranking/", query.0, &mut *pool.connection().await?).await?)
 }
 
+#[rocket::get("/me")]
+pub async fn get_me(auth: Option<Auth<ApiToken>>, pool: &State<PointercratePool>) -> Result<Tagged<FullPlayer>> {
+    let Some(auth) = auth else {
+        return Err(CoreError::Unauthorized.into());
+    };
+
+    let mut connection = pool.connection().await?;
+
+    let user = auth.user.into_user();
+    let Some(player_claim) = PlayerClaim::by_user(user.id, &mut *connection).await? else {
+        return Err(CoreError::NotFound.into());
+    };
+    let player = Player::by_id(player_claim.player.id, &mut *connection).await?;
+    let full_player = player.upgrade(&mut *connection).await?;
+
+    Ok(Tagged(full_player))
+}
+
 #[rocket::get("/<player_id>")]
 pub async fn get(player_id: i32, pool: &State<PointercratePool>) -> Result<Tagged<FullPlayer>> {
     let mut connection = pool.connection().await?;

pointercrate-demonlist-api/src/lib.rs

@@ -44,6 +44,7 @@ pub fn setup(rocket: Rocket<Build>) -> Rocket<Build> {
             "/api/v1/players/",
             rocket::routes![
                 endpoints::player::get,
+                endpoints::player::get_me,
                 endpoints::player::paginate,
                 endpoints::player::patch,
                 endpoints::player::ranking,

pointercrate-test/tests/demonlist/player/mod.rs

@@ -168,3 +168,49 @@ async fn test_patch_player_nationality(pool: Pool<Postgres>) {
     assert_eq!(result["data"]["nation_code"], "BE");
     assert_eq!(result["data"]["subdivision_code"], "ENG");
 }
+
+#[sqlx::test(migrations = "../migrations")]
+async fn test_me(pool: Pool<Postgres>) {
+    let (client, mut connection) = pointercrate_test::demonlist::setup_rocket(pool).await;
+
+    // Assert 401 without authentication
+    client.get("/api/v1/players/me").expect_status(Status::Unauthorized).execute().await;
+
+    let authenticated_user = pointercrate_test::user::add_normal_user(&mut *connection).await;
+    let user = authenticated_user.user();
+
+    // Assert 404 when authorized, but claim doesn't exist
+    client
+        .get("/api/v1/players/me")
+        .authorize_as(&authenticated_user)
+        .expect_status(Status::NotFound)
+        .execute()
+        .await;
+
+    // Create claim
+    let player = DatabasePlayer::by_name_or_create("stardust1971", &mut *connection).await.unwrap();
+    player
+        .initiate_claim(user.id, &mut *connection)
+        .await
+        .unwrap()
+        .set_verified(true, &mut *connection)
+        .await
+        .unwrap();
+    let player = Player::by_id(player.id, &mut *connection)
+        .await
+        .unwrap()
+        .upgrade(&mut *connection)
+        .await
+        .unwrap();
+
+    // Authorized and claim exists
+    assert_eq!(
+        client
+            .get("/api/v1/players/me")
+            .authorize_as(&authenticated_user)
+            .expect_status(Status::Ok)
+            .get_success_result::<FullPlayer>()
+            .await,
+        player
+    );
+}