two factor authentication

Author: hry-gh

src/main.rs

@@ -27,6 +27,7 @@ mod new_players;
 mod player;
 mod stickyban;
 mod ticket;
+mod twofactor;
 mod whitelist;
 
 #[rocket::async_trait]
@@ -139,7 +140,11 @@ fn rocket() -> _ {
             routes![whitelist::get_all_whitelistees],
         )
         .mount(
-            format!{"{}/NewPlayers", base_url},
+            format! {"{}/NewPlayers", base_url},
             routes![new_players::get_new_players],
         )
+        .mount(
+            format!("{}/TwoFactor", base_url),
+            routes![twofactor::twofactor_validate],
+        )
 }

src/twofactor.rs

@@ -0,0 +1,29 @@
+use rocket_db_pools::Connection;
+use sqlx::query;
+
+use crate::{admin::Admin, Cmdb};
+
+#[get("/?<cid>&<ip>")]
+pub async fn twofactor_validate(
+    mut db: Connection<Cmdb>,
+    admin: Admin,
+    cid: &str,
+    ip: &str,
+) -> String {
+    match query("UPDATE twofactor SET approved = 1 WHERE cid = ? AND ckey = ? AND ip = ?")
+        .bind(&cid)
+        .bind(&admin.username)
+        .bind(&ip)
+        .execute(&mut **db)
+        .await
+    {
+        Ok(res) => {
+            if res.rows_affected() > 0 {
+                "Two factor request updated.".to_string()
+            } else {
+                format!("An error occured: could not find match for ckey: {}, cid: {}, ip: {}.", &cid, &admin.username, &ip)
+            }
+        }
+        Err(err) => format!("An error occured: {:?}", err).to_string(),
+    }
+}