use axum::{extract::State, Json}; use serde::{Deserialize, Serialize}; use sqlx::Row; use utoipa::ToSchema; use uuid::Uuid; use crate::{error::ApiError, state::AppState}; // ─── Types ────────────────────────────────────────────────────────────────── #[derive(Deserialize, ToSchema)] pub struct QBittorrentAddRequest { pub url: String, /// When provided together with `series_name` and `expected_volumes`, tracks the download /// in `torrent_downloads` and triggers automatic import on completion. #[schema(value_type = Option)] pub library_id: Option, pub series_name: Option, pub expected_volumes: Option>, } #[derive(Serialize, ToSchema)] pub struct QBittorrentAddResponse { pub success: bool, pub message: String, /// Set when `library_id` + `series_name` + `expected_volumes` were provided. #[schema(value_type = Option)] pub torrent_download_id: Option, } #[derive(Serialize, ToSchema)] pub struct QBittorrentTestResponse { pub success: bool, pub message: String, pub version: Option, } // ─── Config helper ────────────────────────────────────────────────────────── #[derive(Deserialize)] struct QBittorrentConfig { url: String, username: String, password: String, } pub(crate) async fn load_qbittorrent_config( pool: &sqlx::PgPool, ) -> Result<(String, String, String), ApiError> { let row = sqlx::query("SELECT value FROM app_settings WHERE key = 'qbittorrent'") .fetch_optional(pool) .await?; let row = row.ok_or_else(|| ApiError::bad_request("qBittorrent is not configured"))?; let value: serde_json::Value = row.get("value"); let config: QBittorrentConfig = serde_json::from_value(value) .map_err(|e| ApiError::internal(format!("invalid qbittorrent config: {e}")))?; if config.url.is_empty() || config.username.is_empty() { return Err(ApiError::bad_request( "qBittorrent URL and username must be configured in settings", )); } let url = config.url.trim_end_matches('/').to_string(); Ok((url, config.username, config.password)) } // ─── Login helper ─────────────────────────────────────────────────────────── pub(crate) async fn qbittorrent_login( client: &reqwest::Client, base_url: &str, username: &str, password: &str, ) -> Result { let resp = client .post(format!("{base_url}/api/v2/auth/login")) .form(&[("username", username), ("password", password)]) .send() .await .map_err(|e| ApiError::internal(format!("qBittorrent login request failed: {e}")))?; if !resp.status().is_success() { let status = resp.status(); let text = resp.text().await.unwrap_or_default(); return Err(ApiError::internal(format!( "qBittorrent login failed ({status}): {text}" ))); } // Extract SID from Set-Cookie header let cookie_header = resp .headers() .get("set-cookie") .and_then(|v| v.to_str().ok()) .unwrap_or(""); let sid = cookie_header .split(';') .next() .and_then(|s| s.strip_prefix("SID=")) .ok_or_else(|| ApiError::internal("Failed to get SID cookie from qBittorrent"))? .to_string(); Ok(sid) } // ─── Handlers ─────────────────────────────────────────────────────────────── /// Add a torrent to qBittorrent #[utoipa::path( post, path = "/qbittorrent/add", tag = "qbittorrent", request_body = QBittorrentAddRequest, responses( (status = 200, body = QBittorrentAddResponse), (status = 400, description = "Bad request or qBittorrent not configured"), (status = 401, description = "Unauthorized"), (status = 500, description = "qBittorrent connection error"), ), security(("Bearer" = [])) )] pub async fn add_torrent( State(state): State, Json(body): Json, ) -> Result, ApiError> { if body.url.is_empty() { return Err(ApiError::bad_request("url is required")); } let is_managed = body.library_id.is_some() && body.series_name.is_some() && body.expected_volumes.is_some(); let (base_url, username, password) = load_qbittorrent_config(&state.pool).await?; let client = reqwest::Client::builder() .timeout(std::time::Duration::from_secs(10)) .build() .map_err(|e| ApiError::internal(format!("failed to build HTTP client: {e}")))?; let sid = qbittorrent_login(&client, &base_url, &username, &password).await?; // Pre-generate the download ID so we can tag the torrent with it let download_id = if is_managed { Some(Uuid::new_v4()) } else { None }; let tag = download_id.map(|id| format!("sl-{id}")); // Snapshot existing torrents before adding (for hash resolution) let torrents_before = if is_managed { list_qbittorrent_torrents(&client, &base_url, &sid).await.unwrap_or_default() } else { Vec::new() }; let mut form_params: Vec<(&str, &str)> = vec![("urls", &body.url)]; let savepath = "/downloads"; if is_managed { form_params.push(("savepath", savepath)); if let Some(ref t) = tag { form_params.push(("tags", t)); } } let resp = client .post(format!("{base_url}/api/v2/torrents/add")) .header("Cookie", format!("SID={sid}")) .form(&form_params) .send() .await .map_err(|e| ApiError::internal(format!("qBittorrent add request failed: {e}")))?; if !resp.status().is_success() { let status = resp.status(); let text = resp.text().await.unwrap_or_default(); return Ok(Json(QBittorrentAddResponse { success: false, message: format!("qBittorrent returned {status}: {text}"), torrent_download_id: None, })); } // If managed download: record in torrent_downloads let torrent_download_id = if is_managed { let library_id = body.library_id.unwrap(); let series_name = body.series_name.as_deref().unwrap(); let expected_volumes = body.expected_volumes.as_deref().unwrap(); // Try to resolve hash: first from magnet, then by querying qBittorrent let mut qb_hash = extract_magnet_hash(&body.url); if qb_hash.is_none() { // For .torrent URLs: wait briefly then query qBittorrent to find the torrent tokio::time::sleep(std::time::Duration::from_secs(2)).await; qb_hash = resolve_hash_from_qbittorrent(&client, &base_url, &sid, &torrents_before, series_name).await; } let id = download_id.unwrap(); sqlx::query( "INSERT INTO torrent_downloads (id, library_id, series_name, expected_volumes, qb_hash) \ VALUES ($1, $2, $3, $4, $5)", ) .bind(id) .bind(library_id) .bind(series_name) .bind(expected_volumes) .bind(qb_hash.as_deref()) .execute(&state.pool) .await?; tracing::info!("Created torrent download {id} for {series_name}, qb_hash={qb_hash:?}"); Some(id) } else { None }; Ok(Json(QBittorrentAddResponse { success: true, message: "Torrent added to qBittorrent".to_string(), torrent_download_id, })) } /// Extract the info-hash from a magnet link (lowercased hex). /// magnet:?xt=urn:btih:HASH... /// Handles both hex (40 chars) and base32 (32 chars) encoded hashes. fn extract_magnet_hash(url: &str) -> Option { let lower = url.to_lowercase(); let marker = "urn:btih:"; let start = lower.find(marker)? + marker.len(); let hash_part = &lower[start..]; let end = hash_part .find(|c: char| !c.is_alphanumeric()) .unwrap_or(hash_part.len()); let hash = &hash_part[..end]; if hash.is_empty() { return None; } // 40-char hex hash: use as-is if hash.len() == 40 && hash.chars().all(|c| c.is_ascii_hexdigit()) { return Some(hash.to_string()); } // 32-char base32 hash: decode to hex if hash.len() == 32 { if let Some(hex) = base32_to_hex(hash) { return Some(hex); } } // Fallback: return as-is (may not match qBittorrent) Some(hash.to_string()) } /// Decode a base32-encoded string to a lowercase hex string. fn base32_to_hex(input: &str) -> Option { let input = input.to_uppercase(); let alphabet = b"ABCDEFGHIJKLMNOPQRSTUVWXYZ234567"; let mut bits: u64 = 0; let mut bit_count = 0u32; let mut bytes = Vec::with_capacity(20); for ch in input.bytes() { let val = alphabet.iter().position(|&c| c == ch)? as u64; bits = (bits << 5) | val; bit_count += 5; if bit_count >= 8 { bit_count -= 8; bytes.push((bits >> bit_count) as u8); bits &= (1u64 << bit_count) - 1; } } if bytes.len() != 20 { return None; } Some(bytes.iter().map(|b| format!("{b:02x}")).collect()) } /// Torrent entry from qBittorrent API. #[derive(Deserialize, Clone)] struct QbTorrentEntry { hash: String, #[serde(default)] name: String, } /// List all torrents currently in qBittorrent. async fn list_qbittorrent_torrents( client: &reqwest::Client, base_url: &str, sid: &str, ) -> Result, ApiError> { let resp = client .get(format!("{base_url}/api/v2/torrents/info")) .header("Cookie", format!("SID={sid}")) .send() .await .map_err(|e| ApiError::internal(format!("qBittorrent list failed: {e}")))?; if !resp.status().is_success() { return Ok(Vec::new()); } Ok(resp.json().await.unwrap_or_default()) } /// Resolve the hash of a torrent after adding it to qBittorrent. /// Strategy: /// 1. Compare before/after snapshots to find the new torrent (works for new torrents) /// 2. If no new torrent found (already existed), search by series name in torrent names async fn resolve_hash_from_qbittorrent( client: &reqwest::Client, base_url: &str, sid: &str, torrents_before: &[QbTorrentEntry], series_name: &str, ) -> Option { let torrents_after = list_qbittorrent_torrents(client, base_url, sid).await.ok()?; let before_hashes: std::collections::HashSet<&str> = torrents_before.iter().map(|t| t.hash.as_str()).collect(); // Strategy 1: diff — find the one new torrent let new_torrents: Vec<&QbTorrentEntry> = torrents_after.iter() .filter(|t| !before_hashes.contains(t.hash.as_str())) .collect(); if new_torrents.len() == 1 { tracing::info!("[QBITTORRENT] Resolved hash {} via diff (new torrent: {})", new_torrents[0].hash, new_torrents[0].name); return Some(new_torrents[0].hash.clone()); } // Strategy 2: torrent already existed — search by series name in torrent names let series_lower = series_name.to_lowercase(); // Normalize: "Dandadan" matches "Dandadan.T02.FRENCH.CBZ..." let candidates: Vec<&QbTorrentEntry> = torrents_after.iter() .filter(|t| t.name.to_lowercase().contains(&series_lower)) .collect(); if candidates.len() == 1 { tracing::info!("[QBITTORRENT] Resolved hash {} via name match ({})", candidates[0].hash, candidates[0].name); return Some(candidates[0].hash.clone()); } if candidates.len() > 1 { tracing::warn!("[QBITTORRENT] Multiple torrents match series '{}': {}", series_name, candidates.iter().map(|c| c.name.as_str()).collect::>().join(", ")); } else { tracing::warn!("[QBITTORRENT] No torrent found matching series '{}'", series_name); } None } /// Test connection to qBittorrent #[utoipa::path( get, path = "/qbittorrent/test", tag = "qbittorrent", responses( (status = 200, body = QBittorrentTestResponse), (status = 400, description = "qBittorrent not configured"), (status = 401, description = "Unauthorized"), ), security(("Bearer" = [])) )] pub async fn test_qbittorrent( State(state): State, ) -> Result, ApiError> { let (base_url, username, password) = load_qbittorrent_config(&state.pool).await?; let client = reqwest::Client::builder() .timeout(std::time::Duration::from_secs(10)) .build() .map_err(|e| ApiError::internal(format!("failed to build HTTP client: {e}")))?; let sid = match qbittorrent_login(&client, &base_url, &username, &password).await { Ok(sid) => sid, Err(e) => { return Ok(Json(QBittorrentTestResponse { success: false, message: format!("Login failed: {}", e.message), version: None, })); } }; let resp = client .get(format!("{base_url}/api/v2/app/version")) .header("Cookie", format!("SID={sid}")) .send() .await; match resp { Ok(r) if r.status().is_success() => { let version = r.text().await.unwrap_or_default(); Ok(Json(QBittorrentTestResponse { success: true, message: format!("Connected successfully ({})", version.trim()), version: Some(version.trim().to_string()), })) } Ok(r) => { let status = r.status(); let text = r.text().await.unwrap_or_default(); Ok(Json(QBittorrentTestResponse { success: false, message: format!("qBittorrent returned {status}: {text}"), version: None, })) } Err(e) => Ok(Json(QBittorrentTestResponse { success: false, message: format!("Connection failed: {e}"), version: None, })), } }