13 files changed, 550 insertions, 590 deletions

diff --git a/rust/src/auth.rs b/rust/src/auth.rs
index da038b6b..255da8dd 100644
--- a/rust/src/auth.rs
+++ b/rust/src/auth.rs
@@ -5,14 +5,16 @@ use macaroon::{Format, Macaroon, Verifier};
 use std::fmt;
 use swagger::auth::{AuthData, Authorization, Scopes};
 
-use crate::api_helpers::*;
-use chrono::prelude::*;
 use crate::database_models::*;
 use crate::database_schema::*;
+use crate::errors::*;
+use crate::identifiers::*;
+use crate::server::*;
+use chrono::prelude::*;
 use diesel;
 use diesel::prelude::*;
-use crate::errors::*;
 use std::collections::HashMap;
+use std::env;
 use std::str::FromStr;
 
 // 32 bytes max (!)
@@ -468,3 +470,26 @@ pub fn print_editors(conn: &DbConn) -> Result<()> {
     }
     Ok(())
 }
+
+pub fn env_confectionary() -> Result<AuthConfectionary> {
+    let auth_location = env::var("AUTH_LOCATION").expect("AUTH_LOCATION must be set");
+    let auth_key = env::var("AUTH_SECRET_KEY").expect("AUTH_SECRET_KEY must be set");
+    let auth_key_ident = env::var("AUTH_KEY_IDENT").expect("AUTH_KEY_IDENT must be set");
+    info!("Loaded primary auth key: {}", auth_key_ident);
+    let mut confectionary = AuthConfectionary::new(auth_location, auth_key_ident, auth_key)?;
+    match env::var("AUTH_ALT_KEYS") {
+        Ok(var) => {
+            for pair in var.split(",") {
+                let pair: Vec<&str> = pair.split(":").collect();
+                if pair.len() != 2 {
+                    println!("{:#?}", pair);
+                    bail!("couldn't parse keypair from AUTH_ALT_KEYS (expected 'ident:key' pairs separated by commas)");
+                }
+                info!("Loading alt auth key: {}", pair[0]);
+                confectionary.add_keypair(pair[0].to_string(), pair[1].to_string())?;
+            }
+        }
+        Err(_) => (),
+    }
+    Ok(confectionary)
+}
diff --git a/rust/src/bin/fatcat-auth.rs b/rust/src/bin/fatcat-auth.rs
index addd2b66..7e2a7c39 100644
--- a/rust/src/bin/fatcat-auth.rs
+++ b/rust/src/bin/fatcat-auth.rs
@@ -1,32 +1,16 @@
 //! JSON Export Helper
 
-//#[macro_use]
-extern crate clap;
-extern crate diesel;
-extern crate dotenv;
-#[macro_use]
-extern crate error_chain;
-extern crate fatcat;
-//#[macro_use]
-extern crate env_logger;
-extern crate log;
-extern crate serde_json;
-extern crate uuid;
-
 use clap::{App, SubCommand};
 
-use diesel::prelude::*;
-use fatcat::api_helpers::FatCatId;
+use fatcat::auth;
+use fatcat::editing;
 use fatcat::errors::*;
+use fatcat::identifiers::FatCatId;
+use fatcat::server::*;
+use std::process;
 use std::str::FromStr;
-//use uuid::Uuid;
-
-//use error_chain::ChainedError;
-//use std::io::{Stdout,StdoutLock};
-//use std::io::prelude::*;
-//use std::io::{BufReader, BufWriter};
 
-fn run() -> Result<()> {
+fn main() -> Result<()> {
     let m = App::new("fatcat-auth")
         .version(env!("CARGO_PKG_VERSION"))
         .author("Bryan Newbold <bnewbold@archive.org>")
@@ -84,16 +68,14 @@ fn run() -> Result<()> {
     }
 
     // Then the ones that do
-    let db_conn = fatcat::database_worker_pool()?
-        .get()
-        .expect("database pool");
-    let confectionary = fatcat::env_confectionary()?;
+    let db_conn = database_worker_pool()?.get().expect("database pool");
+    let confectionary = auth::env_confectionary()?;
     match m.subcommand() {
         ("list-editors", Some(_subm)) => {
             fatcat::auth::print_editors(&db_conn)?;
         }
         ("create-editor", Some(subm)) => {
-            let editor = fatcat::api_helpers::create_editor(
+            let editor = editing::create_editor(
                 &db_conn,
                 subm.value_of("username").unwrap().to_string(),
                 subm.is_present("admin"),
@@ -104,10 +86,6 @@ fn run() -> Result<()> {
         }
         ("create-token", Some(subm)) => {
             let editor_id = FatCatId::from_str(subm.value_of("editor-id").unwrap())?;
-            // check that editor exists
-            let _ed: fatcat::database_models::EditorRow = fatcat::database_schema::editor::table
-                .find(&editor_id.to_uuid())
-                .get_result(&db_conn)?;
             println!("{}", confectionary.create_token(editor_id, None)?);
         }
         ("inspect-token", Some(subm)) => {
@@ -125,10 +103,8 @@ fn run() -> Result<()> {
         _ => {
             println!("Missing or unimplemented command!");
             println!("{}", m.usage());
-            ::std::process::exit(-1);
+            process::exit(-1);
         }
     }
     Ok(())
 }
-
-quick_main!(run);
diff --git a/rust/src/bin/fatcat-export.rs b/rust/src/bin/fatcat-export.rs
index e1b930fc..889d7dff 100644
--- a/rust/src/bin/fatcat-export.rs
+++ b/rust/src/bin/fatcat-export.rs
@@ -2,25 +2,17 @@
 
 #[macro_use]
 extern crate clap;
-extern crate diesel;
-extern crate dotenv;
 #[macro_use]
 extern crate error_chain;
-extern crate fatcat;
-extern crate fatcat_api_spec;
 #[macro_use]
 extern crate log;
-extern crate crossbeam_channel;
-extern crate env_logger;
-extern crate num_cpus;
-extern crate serde_json;
-extern crate uuid;
 
 use clap::{App, Arg};
 
-use fatcat::api_entity_crud::*;
-use fatcat::api_helpers::*;
+use fatcat::entity_crud::*;
 use fatcat::errors::*;
+use fatcat::identifiers::*;
+use fatcat::server::*;
 use fatcat_api_spec::models::*;
 use std::str::FromStr;
 use uuid::Uuid;
@@ -167,7 +159,7 @@ pub fn do_export(
     entity_type: ExportEntityType,
     redirects: bool,
 ) -> Result<()> {
-    let db_pool = fatcat::database_worker_pool()?;
+    let db_pool = database_worker_pool()?;
     let buf_input = BufReader::new(std::io::stdin());
     let (row_sender, row_receiver) = channel::bounded(CHANNEL_BUFFER_LEN);
     let (output_sender, output_receiver) = channel::bounded(CHANNEL_BUFFER_LEN);
@@ -232,7 +224,7 @@ pub fn do_export(
     Ok(())
 }
 
-fn run() -> Result<()> {
+fn main() -> Result<()> {
     let m = App::new("fatcat-export")
         .version(env!("CARGO_PKG_VERSION"))
         .author("Bryan Newbold <bnewbold@archive.org>")
@@ -273,5 +265,3 @@ fn run() -> Result<()> {
         m.is_present("include_redirects"),
     )
 }
-
-quick_main!(run);
diff --git a/rust/src/bin/fatcatd.rs b/rust/src/bin/fatcatd.rs
index 682f5038..34652105 100644
--- a/rust/src/bin/fatcatd.rs
+++ b/rust/src/bin/fatcatd.rs
@@ -1,29 +1,35 @@
 #![allow(missing_docs)]
 
-extern crate chrono;
-extern crate clap;
-extern crate diesel;
-//extern crate dotenv;
-extern crate error_chain;
-extern crate fatcat;
-extern crate fatcat_api_spec;
-extern crate futures;
-extern crate iron;
-extern crate iron_slog;
 #[macro_use]
 extern crate slog;
-extern crate slog_async;
-extern crate slog_term;
+#[macro_use]
+extern crate hyper;
 
 use clap::{App, Arg};
+use fatcat::errors::*;
+use fatcat::server::*;
+use iron::middleware::AfterMiddleware;
 use iron::modifiers::RedirectRaw;
 use iron::{status, Chain, Iron, IronResult, Request, Response};
 use iron_slog::{DefaultLogFormatter, LoggerMiddleware};
 use slog::{Drain, Logger};
 
+// HTTP header middleware
+header! { (XClacksOverhead, "X-Clacks-Overhead") => [String] }
+
+pub struct XClacksOverheadMiddleware;
+
+impl AfterMiddleware for XClacksOverheadMiddleware {
+    fn after(&self, _req: &mut Request, mut res: Response) -> iron::IronResult<Response> {
+        res.headers
+            .set(XClacksOverhead("GNU aaronsw, jpb".to_owned()));
+        Ok(res)
+    }
+}
+
 /// Create custom server, wire it to the autogenerated router,
 /// and pass it to the web server.
-fn main() {
+fn main() -> Result<()> {
     let matches = App::new("server")
         .arg(
             Arg::with_name("https")
@@ -38,7 +44,7 @@ fn main() {
     let logger = Logger::root(drain, o!());
     let formatter = DefaultLogFormatter;
 
-    let server = fatcat::server().unwrap();
+    let server = create_server()?;
     info!(
         logger,
         "using primary auth key: {}", server.auth_confectionary.identifier,
@@ -59,7 +65,6 @@ fn main() {
     router.get("/v0/openapi2.yml", yaml_handler, "openapi2-spec-yaml");
 
     fn root_handler(_: &mut Request) -> IronResult<Response> {
-        //Ok(Response::with((status::Found, Redirect(Url::parse("/swagger-ui").unwrap()))))
         Ok(Response::with((
             status::Found,
             RedirectRaw("/swagger-ui".to_string()),
@@ -92,7 +97,7 @@ fn main() {
     chain.link_before(fatcat_api_spec::server::ExtractAuthData);
     chain.link_before(fatcat::auth::MacaroonAuthMiddleware::new());
 
-    chain.link_after(fatcat::XClacksOverheadMiddleware);
+    chain.link_after(XClacksOverheadMiddleware);
 
     if matches.is_present("https") {
         unimplemented!()
@@ -100,6 +105,7 @@ fn main() {
         // Using HTTP
         Iron::new(chain)
             .http(host_port)
-            .expect("Failed to start HTTP server");
+            .expect("failed to start HTTP server");
     }
+    Ok(())
 }
diff --git a/rust/src/database_models.rs b/rust/src/database_models.rs
index ad9aaf29..4575aeaf 100644
--- a/rust/src/database_models.rs
+++ b/rust/src/database_models.rs
@@ -1,9 +1,9 @@
 #![allow(proc_macro_derive_resolution_fallback)]
 
-use crate::api_helpers::uuid2fcid;
-use chrono;
 use crate::database_schema::*;
 use crate::errors::*;
+use crate::identifiers::uuid2fcid;
+use chrono;
 use fatcat_api_spec::models::{ChangelogEntry, Editgroup, Editor, EntityEdit};
 use serde_json;
 use uuid::Uuid;
diff --git a/rust/src/editing.rs b/rust/src/editing.rs
new file mode 100644
index 00000000..e3777e24
--- /dev/null
+++ b/rust/src/editing.rs
@@ -0,0 +1,140 @@
+use crate::database_models::*;
+use crate::database_schema::*;
+use crate::entity_crud::EntityCrud;
+use crate::errors::*;
+use crate::identifiers::*;
+use crate::server::*;
+use diesel;
+use diesel::prelude::*;
+use fatcat_api_spec::models::*;
+use uuid::Uuid;
+
+pub struct EditContext {
+    pub editor_id: FatCatId,
+    pub editgroup_id: FatCatId,
+    pub extra_json: Option<serde_json::Value>,
+    pub autoaccept: bool,
+}
+
+impl EditContext {
+    /// This function should always be run within a transaction
+    pub fn check(&self, conn: &DbConn) -> Result<()> {
+        let count: i64 = changelog::table
+            .filter(changelog::editgroup_id.eq(&self.editgroup_id.to_uuid()))
+            .count()
+            .get_result(conn)?;
+        if count > 0 {
+            return Err(ErrorKind::EditgroupAlreadyAccepted(self.editgroup_id.to_string()).into());
+        }
+        return Ok(());
+    }
+}
+
+pub fn make_edit_context(
+    conn: &DbConn,
+    editor_id: FatCatId,
+    editgroup_id: Option<FatCatId>,
+    autoaccept: bool,
+) -> Result<EditContext> {
+    let editgroup_id: FatCatId = match (editgroup_id, autoaccept) {
+        (Some(eg), _) => eg,
+        // If autoaccept and no editgroup_id passed, always create a new one for this transaction
+        (None, true) => {
+            let eg_row: EditgroupRow = diesel::insert_into(editgroup::table)
+                .values((editgroup::editor_id.eq(editor_id.to_uuid()),))
+                .get_result(conn)?;
+            FatCatId::from_uuid(&eg_row.id)
+        }
+        (None, false) => FatCatId::from_uuid(&get_or_create_editgroup(editor_id.to_uuid(), conn)?),
+    };
+    Ok(EditContext {
+        editor_id: editor_id,
+        editgroup_id: editgroup_id,
+        extra_json: None,
+        autoaccept: autoaccept,
+    })
+}
+
+pub fn create_editor(
+    conn: &DbConn,
+    username: String,
+    is_admin: bool,
+    is_bot: bool,
+) -> Result<EditorRow> {
+    check_username(&username)?;
+    let ed: EditorRow = diesel::insert_into(editor::table)
+        .values((
+            editor::username.eq(username),
+            editor::is_admin.eq(is_admin),
+            editor::is_bot.eq(is_bot),
+        ))
+        .get_result(conn)?;
+    Ok(ed)
+}
+
+pub fn update_editor_username(
+    conn: &DbConn,
+    editor_id: FatCatId,
+    username: String,
+) -> Result<EditorRow> {
+    check_username(&username)?;
+    diesel::update(editor::table.find(editor_id.to_uuid()))
+        .set(editor::username.eq(username))
+        .execute(conn)?;
+    let editor: EditorRow = editor::table.find(editor_id.to_uuid()).get_result(conn)?;
+    Ok(editor)
+}
+
+/// This function should always be run within a transaction
+pub fn get_or_create_editgroup(editor_id: Uuid, conn: &DbConn) -> Result<Uuid> {
+    // check for current active
+    let ed_row: EditorRow = editor::table.find(editor_id).first(conn)?;
+    if let Some(current) = ed_row.active_editgroup_id {
+        return Ok(current);
+    }
+
+    // need to insert and update
+    let eg_row: EditgroupRow = diesel::insert_into(editgroup::table)
+        .values((editgroup::editor_id.eq(ed_row.id),))
+        .get_result(conn)?;
+    diesel::update(editor::table.find(ed_row.id))
+        .set(editor::active_editgroup_id.eq(eg_row.id))
+        .execute(conn)?;
+    Ok(eg_row.id)
+}
+
+/// This function should always be run within a transaction
+pub fn accept_editgroup(editgroup_id: FatCatId, conn: &DbConn) -> Result<ChangelogRow> {
+    // check that we haven't accepted already (in changelog)
+    // NB: could leave this to a UNIQUE constraint
+    // TODO: redundant with check_edit_context
+    let count: i64 = changelog::table
+        .filter(changelog::editgroup_id.eq(editgroup_id.to_uuid()))
+        .count()
+        .get_result(conn)?;
+    if count > 0 {
+        return Err(ErrorKind::EditgroupAlreadyAccepted(editgroup_id.to_string()).into());
+    }
+
+    // copy edit columns to ident table
+    ContainerEntity::db_accept_edits(conn, editgroup_id)?;
+    CreatorEntity::db_accept_edits(conn, editgroup_id)?;
+    FileEntity::db_accept_edits(conn, editgroup_id)?;
+    FilesetEntity::db_accept_edits(conn, editgroup_id)?;
+    WebcaptureEntity::db_accept_edits(conn, editgroup_id)?;
+    ReleaseEntity::db_accept_edits(conn, editgroup_id)?;
+    WorkEntity::db_accept_edits(conn, editgroup_id)?;
+
+    // append log/changelog row
+    let entry: ChangelogRow = diesel::insert_into(changelog::table)
+        .values((changelog::editgroup_id.eq(editgroup_id.to_uuid()),))
+        .get_result(conn)?;
+
+    // update any editor's active editgroup
+    let no_active: Option<Uuid> = None;
+    diesel::update(editor::table)
+        .filter(editor::active_editgroup_id.eq(editgroup_id.to_uuid()))
+        .set(editor::active_editgroup_id.eq(no_active))
+        .execute(conn)?;
+    Ok(entry)
+}
diff --git a/rust/src/api_server.rs b/rust/src/endpoint_handlers.rs
index 0377f970..d2576d53 100644
--- a/rust/src/api_server.rs
+++ b/rust/src/endpoint_handlers.rs
@@ -1,18 +1,20 @@
 //! API endpoint handlers
+//!
+//! This module contains actual implementations of endpoints with rust-style type signatures.
 
-use crate::api_entity_crud::EntityCrud;
-use crate::api_helpers::*;
-use crate::auth::*;
-use chrono;
 use crate::database_models::*;
 use crate::database_schema::*;
+use crate::editing::*;
+use crate::entity_crud::{EntityCrud, ExpandFlags, HideFlags};
+use crate::errors::*;
+use crate::identifiers::*;
+use crate::server::*;
+use chrono;
 use diesel::prelude::*;
 use diesel::{self, insert_into};
-use crate::errors::*;
 use fatcat_api_spec::models;
 use fatcat_api_spec::models::*;
 use std::str::FromStr;
-use crate::ConnectionPool;
 
 macro_rules! entity_batch_handler {
     ($post_batch_handler:ident, $model:ident) => {
@@ -40,12 +42,6 @@ macro_rules! entity_batch_handler {
     }
 }
 
-#[derive(Clone)]
-pub struct Server {
-    pub db_pool: ConnectionPool,
-    pub auth_confectionary: AuthConfectionary,
-}
-
 pub fn get_release_files(
     ident: FatCatId,
     hide_flags: HideFlags,
diff --git a/rust/src/api_wrappers.rs b/rust/src/endpoints.rs
index 69bdd88e..91db1027 100644
--- a/rust/src/api_wrappers.rs
+++ b/rust/src/endpoints.rs
@@ -1,12 +1,17 @@
-//! API endpoint handlers
+//! API server endpoint request/response wrappers
+//!
+//! These mostly deal with type conversion between internal function signatures and API-defined
+//! response types (mapping to HTTP statuses. Some contain actual endpoint implementations, but
+//! most implementation lives in the server module.
 
-use crate::api_entity_crud::EntityCrud;
-use crate::api_helpers::*;
-use crate::api_server::Server;
 use crate::auth::*;
 use crate::database_models::EntityEditRow;
-use diesel::Connection;
+use crate::editing::*;
+use crate::entity_crud::{EntityCrud, ExpandFlags, HideFlags};
 use crate::errors::*;
+use crate::identifiers::*;
+use crate::server::*;
+use diesel::Connection;
 use fatcat_api_spec::models;
 use fatcat_api_spec::models::*;
 use fatcat_api_spec::*;
diff --git a/rust/src/api_entity_crud.rs b/rust/src/entity_crud.rs
index 44b421f9..d5c8081b 100644
--- a/rust/src/api_entity_crud.rs
+++ b/rust/src/entity_crud.rs
@@ -1,11 +1,13 @@
-use crate::api_helpers::*;
-use crate::api_server::get_release_files;
-use chrono;
 use crate::database_models::*;
 use crate::database_schema::*;
+use crate::editing::*;
+use crate::endpoint_handlers::get_release_files;
+use crate::errors::*;
+use crate::identifiers::*;
+use crate::server::*;
+use chrono;
 use diesel::prelude::*;
 use diesel::{self, insert_into};
-use crate::errors::*;
 use fatcat_api_spec::models::*;
 use sha1::Sha1;
 use std::marker::Sized;
@@ -88,6 +90,174 @@ where
     fn db_insert_revs(conn: &DbConn, models: &[&Self]) -> Result<Vec<Uuid>>;
 }
 
+#[derive(Clone, Copy, PartialEq)]
+pub struct ExpandFlags {
+    pub files: bool,
+    pub filesets: bool,
+    pub webcaptures: bool,
+    pub container: bool,
+    pub releases: bool,
+    pub creators: bool,
+}
+
+impl FromStr for ExpandFlags {
+    type Err = Error;
+    fn from_str(param: &str) -> Result<ExpandFlags> {
+        let list: Vec<&str> = param.split_terminator(",").collect();
+        Ok(ExpandFlags::from_str_list(&list))
+    }
+}
+
+impl ExpandFlags {
+    pub fn from_str_list(list: &[&str]) -> ExpandFlags {
+        ExpandFlags {
+            files: list.contains(&"files"),
+            filesets: list.contains(&"filesets"),
+            webcaptures: list.contains(&"webcaptures"),
+            container: list.contains(&"container"),
+            releases: list.contains(&"releases"),
+            creators: list.contains(&"creators"),
+        }
+    }
+    pub fn none() -> ExpandFlags {
+        ExpandFlags {
+            files: false,
+            filesets: false,
+            webcaptures: false,
+            container: false,
+            releases: false,
+            creators: false,
+        }
+    }
+}
+
+#[test]
+fn test_expand_flags() {
+    assert!(ExpandFlags::from_str_list(&vec![]).files == false);
+    assert!(ExpandFlags::from_str_list(&vec!["files"]).files == true);
+    assert!(ExpandFlags::from_str_list(&vec!["file"]).files == false);
+    let all = ExpandFlags::from_str_list(&vec![
+        "files",
+        "filesets",
+        "webcaptures",
+        "container",
+        "other_thing",
+        "releases",
+        "creators",
+    ]);
+    assert!(
+        all == ExpandFlags {
+            files: true,
+            filesets: true,
+            webcaptures: true,
+            container: true,
+            releases: true,
+            creators: true
+        }
+    );
+    assert!(ExpandFlags::from_str("").unwrap().files == false);
+    assert!(ExpandFlags::from_str("files").unwrap().files == true);
+    assert!(ExpandFlags::from_str("something,,files").unwrap().files == true);
+    assert!(ExpandFlags::from_str("file").unwrap().files == false);
+    let all =
+        ExpandFlags::from_str("files,container,other_thing,releases,creators,filesets,webcaptures")
+            .unwrap();
+    assert!(
+        all == ExpandFlags {
+            files: true,
+            filesets: true,
+            webcaptures: true,
+            container: true,
+            releases: true,
+            creators: true
+        }
+    );
+}
+
+#[derive(Clone, Copy, PartialEq)]
+pub struct HideFlags {
+    // release
+    pub abstracts: bool,
+    pub refs: bool,
+    pub contribs: bool,
+    // fileset
+    pub manifest: bool,
+    // webcapture
+    pub cdx: bool,
+}
+
+impl FromStr for HideFlags {
+    type Err = Error;
+    fn from_str(param: &str) -> Result<HideFlags> {
+        let list: Vec<&str> = param.split_terminator(",").collect();
+        Ok(HideFlags::from_str_list(&list))
+    }
+}
+
+impl HideFlags {
+    pub fn from_str_list(list: &[&str]) -> HideFlags {
+        HideFlags {
+            abstracts: list.contains(&"abstracts"),
+            refs: list.contains(&"refs"),
+            contribs: list.contains(&"contribs"),
+            manifest: list.contains(&"contribs"),
+            cdx: list.contains(&"contribs"),
+        }
+    }
+    pub fn none() -> HideFlags {
+        HideFlags {
+            abstracts: false,
+            refs: false,
+            contribs: false,
+            manifest: false,
+            cdx: false,
+        }
+    }
+}
+
+#[test]
+fn test_hide_flags() {
+    assert!(HideFlags::from_str_list(&vec![]).abstracts == false);
+    assert!(HideFlags::from_str_list(&vec!["abstracts"]).abstracts == true);
+    assert!(HideFlags::from_str_list(&vec!["abstract"]).abstracts == false);
+    let all = HideFlags::from_str_list(&vec![
+        "abstracts",
+        "refs",
+        "other_thing",
+        "contribs",
+        "manifest",
+        "cdx",
+    ]);
+    assert!(
+        all == HideFlags {
+            abstracts: true,
+            refs: true,
+            contribs: true,
+            manifest: true,
+            cdx: true,
+        }
+    );
+    assert!(HideFlags::from_str("").unwrap().abstracts == false);
+    assert!(HideFlags::from_str("abstracts").unwrap().abstracts == true);
+    assert!(
+        HideFlags::from_str("something,,abstracts")
+            .unwrap()
+            .abstracts
+            == true
+    );
+    assert!(HideFlags::from_str("file").unwrap().abstracts == false);
+    let all = HideFlags::from_str("abstracts,cdx,refs,manifest,other_thing,contribs").unwrap();
+    assert!(
+        all == HideFlags {
+            abstracts: true,
+            refs: true,
+            contribs: true,
+            manifest: true,
+            cdx: true,
+        }
+    );
+}
+
 macro_rules! generic_db_get {
     ($ident_table:ident, $rev_table:ident) => {
         fn db_get(conn: &DbConn, ident: FatCatId, hide: HideFlags) -> Result<Self> {
diff --git a/rust/src/errors.rs b/rust/src/errors.rs
new file mode 100644
index 00000000..0b966e93
--- /dev/null
+++ b/rust/src/errors.rs
@@ -0,0 +1,55 @@
+//! Crate-specific Result, Error, and ErrorKind types (using `error_chain`)
+
+error_chain! {
+    foreign_links { Fmt(::std::fmt::Error);
+                    Diesel(::diesel::result::Error);
+                    R2d2(::diesel::r2d2::Error);
+                    Uuid(::uuid::ParseError);
+                    Io(::std::io::Error) #[cfg(unix)];
+                    Serde(::serde_json::Error);
+                    Utf8Decode(::std::string::FromUtf8Error);
+                    StringDecode(::data_encoding::DecodeError);
+    }
+    errors {
+        InvalidFatcatId(id: String) {
+            description("invalid fatcat identifier syntax")
+            display("invalid fatcat identifier (expect 26-char base32 encoded): {}", id)
+        }
+        MalformedExternalId(id: String) {
+            description("external identifier doesn't match required pattern")
+            display("external identifier doesn't match required pattern: {}", id)
+        }
+        MalformedChecksum(hash: String) {
+            description("checksum doesn't match required pattern (hex encoding)")
+            display("checksum doesn't match required pattern (hex encoding): {}", hash)
+        }
+        NotInControlledVocabulary(word: String) {
+            description("word or type not correct for controlled vocabulary")
+            display("word or type not correct for controlled vocabulary")
+        }
+        EditgroupAlreadyAccepted(id: String) {
+            description("editgroup was already accepted")
+            display("attempted to accept or mutate an editgroup which was already accepted: {}", id)
+        }
+        MissingOrMultipleExternalId(message: String) {
+            description("external identifiers missing or multiple specified")
+            display("external identifiers missing or multiple specified; please supply exactly one")
+        }
+        InvalidEntityStateTransform(message: String) {
+            description("Invalid Entity State Transform")
+            display("tried to mutate an entity which was not in an appropriate state: {}", message)
+        }
+        InvalidCredentials(message: String) {
+            description("auth token was missing, expired, revoked, or corrupt")
+            display("auth token was missing, expired, revoked, or corrupt: {}", message)
+        }
+        InsufficientPrivileges(message: String) {
+            description("editor account doesn't have authorization")
+            display("editor account doesn't have authorization: {}", message)
+        }
+        OtherBadRequest(message: String) {
+            description("catch-all error for bad or unallowed requests")
+            display("broke a constraint or made an otherwise invalid request: {}", message)
+        }
+    }
+}
diff --git a/rust/src/api_helpers.rs b/rust/src/identifiers.rs
index 55085403..adb9f413 100644
--- a/rust/src/api_helpers.rs
+++ b/rust/src/identifiers.rs
@@ -1,317 +1,10 @@
-use crate::api_entity_crud::EntityCrud;
-use data_encoding::BASE32_NOPAD;
-use crate::database_models::*;
-use crate::database_schema::*;
-use diesel;
-use diesel::prelude::*;
 use crate::errors::*;
-use fatcat_api_spec::models::*;
+use data_encoding::BASE32_NOPAD;
 use regex::Regex;
 use serde_json;
 use std::str::FromStr;
 use uuid::Uuid;
 
-pub type DbConn =
-    diesel::r2d2::PooledConnection<diesel::r2d2::ConnectionManager<diesel::PgConnection>>;
-
-pub struct EditContext {
-    pub editor_id: FatCatId,
-    pub editgroup_id: FatCatId,
-    pub extra_json: Option<serde_json::Value>,
-    pub autoaccept: bool,
-}
-
-impl EditContext {
-    /// This function should always be run within a transaction
-    pub fn check(&self, conn: &DbConn) -> Result<()> {
-        let count: i64 = changelog::table
-            .filter(changelog::editgroup_id.eq(&self.editgroup_id.to_uuid()))
-            .count()
-            .get_result(conn)?;
-        if count > 0 {
-            return Err(ErrorKind::EditgroupAlreadyAccepted(self.editgroup_id.to_string()).into());
-        }
-        return Ok(());
-    }
-}
-
-#[derive(Clone, Copy, PartialEq)]
-pub struct ExpandFlags {
-    pub files: bool,
-    pub filesets: bool,
-    pub webcaptures: bool,
-    pub container: bool,
-    pub releases: bool,
-    pub creators: bool,
-}
-
-impl FromStr for ExpandFlags {
-    type Err = Error;
-    fn from_str(param: &str) -> Result<ExpandFlags> {
-        let list: Vec<&str> = param.split_terminator(",").collect();
-        Ok(ExpandFlags::from_str_list(&list))
-    }
-}
-
-impl ExpandFlags {
-    pub fn from_str_list(list: &[&str]) -> ExpandFlags {
-        ExpandFlags {
-            files: list.contains(&"files"),
-            filesets: list.contains(&"filesets"),
-            webcaptures: list.contains(&"webcaptures"),
-            container: list.contains(&"container"),
-            releases: list.contains(&"releases"),
-            creators: list.contains(&"creators"),
-        }
-    }
-    pub fn none() -> ExpandFlags {
-        ExpandFlags {
-            files: false,
-            filesets: false,
-            webcaptures: false,
-            container: false,
-            releases: false,
-            creators: false,
-        }
-    }
-}
-
-#[test]
-fn test_expand_flags() {
-    assert!(ExpandFlags::from_str_list(&vec![]).files == false);
-    assert!(ExpandFlags::from_str_list(&vec!["files"]).files == true);
-    assert!(ExpandFlags::from_str_list(&vec!["file"]).files == false);
-    let all = ExpandFlags::from_str_list(&vec![
-        "files",
-        "filesets",
-        "webcaptures",
-        "container",
-        "other_thing",
-        "releases",
-        "creators",
-    ]);
-    assert!(
-        all == ExpandFlags {
-            files: true,
-            filesets: true,
-            webcaptures: true,
-            container: true,
-            releases: true,
-            creators: true
-        }
-    );
-    assert!(ExpandFlags::from_str("").unwrap().files == false);
-    assert!(ExpandFlags::from_str("files").unwrap().files == true);
-    assert!(ExpandFlags::from_str("something,,files").unwrap().files == true);
-    assert!(ExpandFlags::from_str("file").unwrap().files == false);
-    let all =
-        ExpandFlags::from_str("files,container,other_thing,releases,creators,filesets,webcaptures")
-            .unwrap();
-    assert!(
-        all == ExpandFlags {
-            files: true,
-            filesets: true,
-            webcaptures: true,
-            container: true,
-            releases: true,
-            creators: true
-        }
-    );
-}
-
-#[derive(Clone, Copy, PartialEq)]
-pub struct HideFlags {
-    // release
-    pub abstracts: bool,
-    pub refs: bool,
-    pub contribs: bool,
-    // fileset
-    pub manifest: bool,
-    // webcapture
-    pub cdx: bool,
-}
-
-impl FromStr for HideFlags {
-    type Err = Error;
-    fn from_str(param: &str) -> Result<HideFlags> {
-        let list: Vec<&str> = param.split_terminator(",").collect();
-        Ok(HideFlags::from_str_list(&list))
-    }
-}
-
-impl HideFlags {
-    pub fn from_str_list(list: &[&str]) -> HideFlags {
-        HideFlags {
-            abstracts: list.contains(&"abstracts"),
-            refs: list.contains(&"refs"),
-            contribs: list.contains(&"contribs"),
-            manifest: list.contains(&"contribs"),
-            cdx: list.contains(&"contribs"),
-        }
-    }
-    pub fn none() -> HideFlags {
-        HideFlags {
-            abstracts: false,
-            refs: false,
-            contribs: false,
-            manifest: false,
-            cdx: false,
-        }
-    }
-}
-
-#[test]
-fn test_hide_flags() {
-    assert!(HideFlags::from_str_list(&vec![]).abstracts == false);
-    assert!(HideFlags::from_str_list(&vec!["abstracts"]).abstracts == true);
-    assert!(HideFlags::from_str_list(&vec!["abstract"]).abstracts == false);
-    let all = HideFlags::from_str_list(&vec![
-        "abstracts",
-        "refs",
-        "other_thing",
-        "contribs",
-        "manifest",
-        "cdx",
-    ]);
-    assert!(
-        all == HideFlags {
-            abstracts: true,
-            refs: true,
-            contribs: true,
-            manifest: true,
-            cdx: true,
-        }
-    );
-    assert!(HideFlags::from_str("").unwrap().abstracts == false);
-    assert!(HideFlags::from_str("abstracts").unwrap().abstracts == true);
-    assert!(
-        HideFlags::from_str("something,,abstracts")
-            .unwrap()
-            .abstracts
-            == true
-    );
-    assert!(HideFlags::from_str("file").unwrap().abstracts == false);
-    let all = HideFlags::from_str("abstracts,cdx,refs,manifest,other_thing,contribs").unwrap();
-    assert!(
-        all == HideFlags {
-            abstracts: true,
-            refs: true,
-            contribs: true,
-            manifest: true,
-            cdx: true,
-        }
-    );
-}
-
-pub fn make_edit_context(
-    conn: &DbConn,
-    editor_id: FatCatId,
-    editgroup_id: Option<FatCatId>,
-    autoaccept: bool,
-) -> Result<EditContext> {
-    let editgroup_id: FatCatId = match (editgroup_id, autoaccept) {
-        (Some(eg), _) => eg,
-        // If autoaccept and no editgroup_id passed, always create a new one for this transaction
-        (None, true) => {
-            let eg_row: EditgroupRow = diesel::insert_into(editgroup::table)
-                .values((editgroup::editor_id.eq(editor_id.to_uuid()),))
-                .get_result(conn)?;
-            FatCatId::from_uuid(&eg_row.id)
-        }
-        (None, false) => FatCatId::from_uuid(&get_or_create_editgroup(editor_id.to_uuid(), conn)?),
-    };
-    Ok(EditContext {
-        editor_id: editor_id,
-        editgroup_id: editgroup_id,
-        extra_json: None,
-        autoaccept: autoaccept,
-    })
-}
-
-pub fn create_editor(
-    conn: &DbConn,
-    username: String,
-    is_admin: bool,
-    is_bot: bool,
-) -> Result<EditorRow> {
-    check_username(&username)?;
-    let ed: EditorRow = diesel::insert_into(editor::table)
-        .values((
-            editor::username.eq(username),
-            editor::is_admin.eq(is_admin),
-            editor::is_bot.eq(is_bot),
-        ))
-        .get_result(conn)?;
-    Ok(ed)
-}
-
-pub fn update_editor_username(
-    conn: &DbConn,
-    editor_id: FatCatId,
-    username: String,
-) -> Result<EditorRow> {
-    check_username(&username)?;
-    diesel::update(editor::table.find(editor_id.to_uuid()))
-        .set(editor::username.eq(username))
-        .execute(conn)?;
-    let editor: EditorRow = editor::table.find(editor_id.to_uuid()).get_result(conn)?;
-    Ok(editor)
-}
-
-/// This function should always be run within a transaction
-pub fn get_or_create_editgroup(editor_id: Uuid, conn: &DbConn) -> Result<Uuid> {
-    // check for current active
-    let ed_row: EditorRow = editor::table.find(editor_id).first(conn)?;
-    if let Some(current) = ed_row.active_editgroup_id {
-        return Ok(current);
-    }
-
-    // need to insert and update
-    let eg_row: EditgroupRow = diesel::insert_into(editgroup::table)
-        .values((editgroup::editor_id.eq(ed_row.id),))
-        .get_result(conn)?;
-    diesel::update(editor::table.find(ed_row.id))
-        .set(editor::active_editgroup_id.eq(eg_row.id))
-        .execute(conn)?;
-    Ok(eg_row.id)
-}
-
-/// This function should always be run within a transaction
-pub fn accept_editgroup(editgroup_id: FatCatId, conn: &DbConn) -> Result<ChangelogRow> {
-    // check that we haven't accepted already (in changelog)
-    // NB: could leave this to a UNIQUE constraint
-    // TODO: redundant with check_edit_context
-    let count: i64 = changelog::table
-        .filter(changelog::editgroup_id.eq(editgroup_id.to_uuid()))
-        .count()
-        .get_result(conn)?;
-    if count > 0 {
-        return Err(ErrorKind::EditgroupAlreadyAccepted(editgroup_id.to_string()).into());
-    }
-
-    // copy edit columns to ident table
-    ContainerEntity::db_accept_edits(conn, editgroup_id)?;
-    CreatorEntity::db_accept_edits(conn, editgroup_id)?;
-    FileEntity::db_accept_edits(conn, editgroup_id)?;
-    FilesetEntity::db_accept_edits(conn, editgroup_id)?;
-    WebcaptureEntity::db_accept_edits(conn, editgroup_id)?;
-    ReleaseEntity::db_accept_edits(conn, editgroup_id)?;
-    WorkEntity::db_accept_edits(conn, editgroup_id)?;
-
-    // append log/changelog row
-    let entry: ChangelogRow = diesel::insert_into(changelog::table)
-        .values((changelog::editgroup_id.eq(editgroup_id.to_uuid()),))
-        .get_result(conn)?;
-
-    // update any editor's active editgroup
-    let no_active: Option<Uuid> = None;
-    diesel::update(editor::table)
-        .filter(editor::active_editgroup_id.eq(editgroup_id.to_uuid()))
-        .set(editor::active_editgroup_id.eq(no_active))
-        .execute(conn)?;
-    Ok(entry)
-}
-
 #[derive(Clone, Copy, PartialEq, Debug)]
 pub struct FatCatId(Uuid);
 
diff --git a/rust/src/lib.rs b/rust/src/lib.rs
index 18550a5d..df3d6f51 100644
--- a/rust/src/lib.rs
+++ b/rust/src/lib.rs
@@ -1,202 +1,25 @@
 #![allow(proc_macro_derive_resolution_fallback)]
 #![recursion_limit = "128"]
 
-extern crate chrono;
-extern crate fatcat_api_spec;
-#[macro_use]
-extern crate diesel;
-extern crate diesel_migrations;
-extern crate dotenv;
-extern crate futures;
-extern crate uuid;
-#[macro_use]
-extern crate hyper;
-extern crate swagger;
 #[macro_use]
 extern crate error_chain;
-extern crate iron;
-extern crate serde_json;
+#[macro_use]
+extern crate diesel;
 #[macro_use]
 extern crate log;
-extern crate data_encoding;
-extern crate regex;
 #[macro_use]
 extern crate lazy_static;
-extern crate macaroon;
-extern crate sha1;
-extern crate rand;
 
-pub mod api_entity_crud;
-pub mod api_helpers;
-pub mod api_server;
-pub mod api_wrappers;
 pub mod auth;
 pub mod database_models;
-pub mod database_schema;
-
-pub mod errors {
-    // Create the Error, ErrorKind, ResultExt, and Result types
-    error_chain! {
-        foreign_links { Fmt(::std::fmt::Error);
-                        Diesel(::diesel::result::Error);
-                        R2d2(::diesel::r2d2::Error);
-                        Uuid(::uuid::ParseError);
-                        Io(::std::io::Error) #[cfg(unix)];
-                        Serde(::serde_json::Error);
-                        Utf8Decode(::std::string::FromUtf8Error);
-                        StringDecode(::data_encoding::DecodeError);
-        }
-        errors {
-            InvalidFatcatId(id: String) {
-                description("invalid fatcat identifier syntax")
-                display("invalid fatcat identifier (expect 26-char base32 encoded): {}", id)
-            }
-            MalformedExternalId(id: String) {
-                description("external identifier doesn't match required pattern")
-                display("external identifier doesn't match required pattern: {}", id)
-            }
-            MalformedChecksum(hash: String) {
-                description("checksum doesn't match required pattern (hex encoding)")
-                display("checksum doesn't match required pattern (hex encoding): {}", hash)
-            }
-            NotInControlledVocabulary(word: String) {
-                description("word or type not correct for controlled vocabulary")
-                display("word or type not correct for controlled vocabulary")
-            }
-            EditgroupAlreadyAccepted(id: String) {
-                description("editgroup was already accepted")
-                display("attempted to accept or mutate an editgroup which was already accepted: {}", id)
-            }
-            MissingOrMultipleExternalId(message: String) {
-                description("external identifiers missing or multiple specified")
-                display("external identifiers missing or multiple specified; please supply exactly one")
-            }
-            InvalidEntityStateTransform(message: String) {
-                description("Invalid Entity State Transform")
-                display("tried to mutate an entity which was not in an appropriate state: {}", message)
-            }
-            InvalidCredentials(message: String) {
-                description("auth token was missing, expired, revoked, or corrupt")
-                display("auth token was missing, expired, revoked, or corrupt: {}", message)
-            }
-            InsufficientPrivileges(message: String) {
-                description("editor account doesn't have authorization")
-                display("editor account doesn't have authorization: {}", message)
-            }
-            OtherBadRequest(message: String) {
-                description("catch-all error for bad or unallowed requests")
-                display("broke a constraint or made an otherwise invalid request: {}", message)
-            }
-        }
-    }
-}
-
-#[doc(hidden)]
-pub use crate::errors::*;
-
-pub use self::errors::*;
-use crate::auth::AuthConfectionary;
-use diesel::pg::PgConnection;
-use diesel::r2d2::ConnectionManager;
-use dotenv::dotenv;
-use iron::middleware::AfterMiddleware;
-use iron::{Request, Response};
-use std::{env, thread, time};
-use std::process::Command;
-use rand::Rng;
-
-#[cfg(feature = "postgres")]
-embed_migrations!("../migrations/");
-
-pub type ConnectionPool = diesel::r2d2::Pool<ConnectionManager<diesel::pg::PgConnection>>;
-
-/// Instantiate a new API server with a pooled database connection
-pub fn database_worker_pool() -> Result<ConnectionPool> {
-    dotenv().ok();
-    let database_url = env::var("DATABASE_URL").expect("DATABASE_URL must be set");
-    let manager = ConnectionManager::<PgConnection>::new(database_url);
-    let pool = diesel::r2d2::Pool::builder()
-        .build(manager)
-        .expect("Failed to create database pool.");
-    Ok(pool)
-}
-
-pub fn env_confectionary() -> Result<AuthConfectionary> {
-    let auth_location = env::var("AUTH_LOCATION").expect("AUTH_LOCATION must be set");
-    let auth_key = env::var("AUTH_SECRET_KEY").expect("AUTH_SECRET_KEY must be set");
-    let auth_key_ident = env::var("AUTH_KEY_IDENT").expect("AUTH_KEY_IDENT must be set");
-    info!("Loaded primary auth key: {}", auth_key_ident);
-    let mut confectionary = AuthConfectionary::new(auth_location, auth_key_ident, auth_key)?;
-    match env::var("AUTH_ALT_KEYS") {
-        Ok(var) => {
-            for pair in var.split(",") {
-                let pair: Vec<&str> = pair.split(":").collect();
-                if pair.len() != 2 {
-                    println!("{:#?}", pair);
-                    bail!("couldn't parse keypair from AUTH_ALT_KEYS (expected 'ident:key' pairs separated by commas)");
-                }
-                info!("Loading alt auth key: {}", pair[0]);
-                confectionary.add_keypair(pair[0].to_string(), pair[1].to_string())?;
-            }
-        }
-        Err(_) => (),
-    }
-    Ok(confectionary)
-}
-
-/// Instantiate a new API server with a pooled database connection
-pub fn server() -> Result<api_server::Server> {
-    dotenv().ok();
-    let database_url = env::var("DATABASE_URL").expect("DATABASE_URL must be set");
-    let manager = ConnectionManager::<PgConnection>::new(database_url);
-    let pool = diesel::r2d2::Pool::builder()
-        .build(manager)
-        .expect("Failed to create database pool.");
-    let confectionary = env_confectionary()?;
-    Ok(api_server::Server {
-        db_pool: pool,
-        auth_confectionary: confectionary,
-    })
-}
-
-/// Generates a server for testing. Calls an external bash script to generate a random postgres
-/// database, which will be unique to this process but common across threads and connections. The
-/// database will automagically get cleaned up (deleted) after 60 seconds.
-/// Currently, start times are staggered by up to 200ms to prevent internal postgres concurrency
-/// errors; if this fails run the tests serially (one at a time), which is slower but more robust.
-/// CI should run tests serially.
-pub fn test_server() -> Result<api_server::Server> {
-    dotenv().ok();
-    // sleep a bit so we don't have thundering herd collisions, resuliting in
-    // "pg_extension_name_index" or "pg_proc_proname_args_nsp_index" or "pg_type_typname_nsp_index"
-    // duplicate key violations.
-    thread::sleep(time::Duration::from_millis(rand::thread_rng().gen_range(0, 200)));
-    let pg_tmp = Command::new("./tests/pg_tmp.sh")
-        .output()
-        .expect("run ./tests/pg_tmp.sh to get temporary postgres DB");
-    let database_url = String::from_utf8_lossy(&pg_tmp.stdout).to_string();
-    env::set_var("DATABASE_URL", database_url);
-
-    let mut server = server()?;
-    server.auth_confectionary = AuthConfectionary::new_dummy();
-    let conn = server.db_pool.get().expect("db_pool error");
-
-    // run migrations; this is a fresh/bare database
-    diesel_migrations::run_pending_migrations(&conn).unwrap();
-    Ok(server)
-}
-
-// TODO: move this to bin/fatcatd
-
-/// HTTP header middleware
-header! { (XClacksOverhead, "X-Clacks-Overhead") => [String] }
-
-pub struct XClacksOverheadMiddleware;
-
-impl AfterMiddleware for XClacksOverheadMiddleware {
-    fn after(&self, _req: &mut Request, mut res: Response) -> iron::IronResult<Response> {
-        res.headers
-            .set(XClacksOverhead("GNU aaronsw, jpb".to_owned()));
-        Ok(res)
-    }
-}
+pub mod database_schema; // only public for tests
+pub mod editing;
+mod endpoint_handlers;
+mod endpoints;
+pub mod entity_crud;
+pub mod errors;
+pub mod identifiers;
+pub mod server;
+
+// TODO: will probably remove these as a public export?
+pub use crate::server::{create_server, create_test_server};
diff --git a/rust/src/server.rs b/rust/src/server.rs
new file mode 100644
index 00000000..70e667be
--- /dev/null
+++ b/rust/src/server.rs
@@ -0,0 +1,81 @@
+//! API endpoint handlers
+
+use crate::auth::*;
+use crate::errors::*;
+use chrono;
+use diesel;
+use diesel::pg::PgConnection;
+use diesel::r2d2::ConnectionManager;
+use dotenv::dotenv;
+use rand::Rng;
+use std::process::Command;
+use std::{env, thread, time};
+
+#[cfg(feature = "postgres")]
+embed_migrations!("../migrations/");
+
+pub type ConnectionPool = diesel::r2d2::Pool<ConnectionManager<diesel::pg::PgConnection>>;
+
+pub type DbConn =
+    diesel::r2d2::PooledConnection<diesel::r2d2::ConnectionManager<diesel::PgConnection>>;
+
+/// Instantiate a new API server with a pooled database connection
+pub fn database_worker_pool() -> Result<ConnectionPool> {
+    dotenv().ok();
+    let database_url = env::var("DATABASE_URL").expect("DATABASE_URL must be set");
+    let manager = ConnectionManager::<PgConnection>::new(database_url);
+    let pool = diesel::r2d2::Pool::builder()
+        .build(manager)
+        .expect("Failed to create database pool.");
+    Ok(pool)
+}
+
+#[derive(Clone)]
+pub struct Server {
+    pub db_pool: ConnectionPool,
+    pub auth_confectionary: AuthConfectionary,
+}
+
+/// Instantiate a new API server with a pooled database connection
+pub fn create_server() -> Result<Server> {
+    dotenv().ok();
+    let database_url = env::var("DATABASE_URL").expect("DATABASE_URL must be set");
+    let manager = ConnectionManager::<PgConnection>::new(database_url);
+    let pool = diesel::r2d2::Pool::builder()
+        .build(manager)
+        .expect("Failed to create database pool.");
+    let confectionary = env_confectionary()?;
+    Ok(Server {
+        db_pool: pool,
+        auth_confectionary: confectionary,
+    })
+}
+
+/// Generates a server for testing. Calls an external bash script to generate a random postgres
+/// database, which will be unique to this process but common across threads and connections. The
+/// database will automagically get cleaned up (deleted) after 60 seconds.
+/// Currently, start times are staggered by up to 200ms to prevent internal postgres concurrency
+/// errors; if this fails run the tests serially (one at a time), which is slower but more robust.
+/// CI should run tests serially.
+pub fn create_test_server() -> Result<Server> {
+    dotenv().ok();
+    // sleep a bit so we don't have thundering herd collisions, resuliting in
+    // "pg_extension_name_index" or "pg_proc_proname_args_nsp_index" or "pg_type_typname_nsp_index"
+    // duplicate key violations.
+    thread::sleep(time::Duration::from_millis(
+        rand::thread_rng().gen_range(0, 200),
+    ));
+    let pg_tmp = Command::new("./tests/pg_tmp.sh")
+        .output()
+        .expect("run ./tests/pg_tmp.sh to get temporary postgres DB");
+    let database_url = String::from_utf8_lossy(&pg_tmp.stdout).to_string();
+    env::set_var("DATABASE_URL", database_url);
+
+    let mut server = create_server()?;
+    server.auth_confectionary = AuthConfectionary::new_dummy();
+    let conn = server.db_pool.get().expect("db_pool error");
+
+    // run migrations; this is a fresh/bare database
+    diesel_migrations::run_pending_migrations(&conn).unwrap();
+    Ok(server)
+}