Added auth

src/routes/tracks.rs

@@ -1,8 +1,10 @@
+use actix_session::Session;
 use actix_web::{HttpResponse, web};
 use serde::Deserialize;
 
 use shanty_db::queries;
 
+use crate::auth;
 use crate::error::ApiError;
 use crate::state::AppState;
 
@@ -26,8 +28,10 @@ pub fn configure(cfg: &mut web::ServiceConfig) {
 
 async fn list_tracks(
     state: web::Data<AppState>,
+    session: Session,
     query: web::Query<SearchParams>,
 ) -> Result<HttpResponse, ApiError> {
+    auth::require_auth(&session)?;
     let tracks = if let Some(ref q) = query.q {
         queries::tracks::search(state.db.conn(), q).await?
     } else {
@@ -38,8 +42,10 @@ async fn list_tracks(
 
 async fn get_track(
     state: web::Data<AppState>,
+    session: Session,
     path: web::Path<i32>,
 ) -> Result<HttpResponse, ApiError> {
+    auth::require_auth(&session)?;
     let id = path.into_inner();
     let track = queries::tracks::get_by_id(state.db.conn(), id).await?;
     Ok(HttpResponse::Ok().json(track))