Skip to content

Commit

Permalink
Merge pull request #10 from unbekanntes-pferd/feature/provisioning
Browse files Browse the repository at this point in the history 
feature/provisioning
  • Loading branch information
@unbekanntes-pferd
unbekanntes-pferd committed Aug 27, 2023
2 parents bc85eb4 + 20d72af commit 1777078
Show file tree
Hide file tree
Showing 23 changed files with 1,833 additions and 131 deletions.
2 changes: 1 addition & 1 deletion Cargo.toml
View file
Original file line number Diff line number Diff line change
@@ -1,6 +1,6 @@
[package]
name = "dco3"
version = "0.4.1"
version = "0.5.0"
edition = "2021"
authors = ["Octavio Simone"]
repository = "https://github.com/unbekanntes-pferd/dco3"
Expand Down
30 changes: 15 additions & 15 deletions src/auth/errors.rs
View file
Original file line number Diff line number Diff line change
Expand Up @@ -20,8 +20,8 @@ pub enum DracoonClientError {
InvalidUrl(String),
#[error("Invalid DRACOON path")]
InvalidPath(String),
#[error("Connection to DRACOON failed")]
ConnectionFailed,
#[error("Connection to DRACOON failed: {0}")]
ConnectionFailed(String),
#[error("Unknown error")]
Unknown,
#[error("Internal error")]
Expand All @@ -45,33 +45,34 @@ pub enum DracoonClientError {
impl From<ReqError> for DracoonClientError {
fn from(value: ReqError) -> Self {
match value {
ReqError::Middleware(error) => DracoonClientError::ConnectionFailed,
ReqError::Middleware(error) => {
DracoonClientError::ConnectionFailed("Error in middleware".into())
},
ReqError::Reqwest(error) => {
if error.is_timeout() {
return DracoonClientError::ConnectionFailed;
return DracoonClientError::ConnectionFailed("Timeout".into());
}

if error.is_connect() {
return DracoonClientError::ConnectionFailed;
return DracoonClientError::ConnectionFailed("Connection failed".into());
}

DracoonClientError::Unknown
DracoonClientError::ConnectionFailed("Unknown".into())
}
}
}
}

impl From<ClientError> for DracoonClientError {
fn from(value: ClientError) -> Self {
if value.is_timeout() {
return DracoonClientError::ConnectionFailed;
fn from(error: ClientError) -> Self {
if error.is_timeout() {
return DracoonClientError::ConnectionFailed("Timeout".into());
}

if value.is_connect() {
return DracoonClientError::ConnectionFailed;
if error.is_connect() {
return DracoonClientError::ConnectionFailed("Connection failed".into());
}

DracoonClientError::Unknown
DracoonClientError::ConnectionFailed("Unknown".into())
}
}

Expand All @@ -82,7 +83,6 @@ impl FromResponse for DracoonClientError {
let error = value.json::<DracoonErrorResponse>().await?;
return Ok(DracoonClientError::Http(error));
}

Err(DracoonClientError::Unknown)
}
}
Expand Down
137 changes: 123 additions & 14 deletions src/auth/mod.rs
View file
Original file line number Diff line number Diff line change
Expand Up @@ -4,10 +4,7 @@ use chrono::{DateTime, Utc};
use reqwest::{Client, Url};
use reqwest_middleware::{ClientBuilder, ClientWithMiddleware};
use reqwest_retry::{policies::ExponentialBackoff, RetryTransientMiddleware};
use std::{
marker::PhantomData,
time::Duration,
};
use std::{marker::PhantomData, time::Duration};
use tracing::{debug, error};

use base64::{
Expand All @@ -25,11 +22,11 @@ use crate::{
auth::models::{
OAuth2AuthCodeFlow, OAuth2PasswordFlow, OAuth2TokenResponse, OAuth2TokenRevoke,
},
models::Container,
constants::{
DRACOON_TOKEN_REVOKE_URL, DRACOON_TOKEN_URL, EXPONENTIAL_BACKOFF_BASE, MAX_RETRIES,
MAX_RETRY_DELAY, MIN_RETRY_DELAY, TOKEN_TYPE_HINT_ACCESS_TOKEN,
},
models::Container,
};

use self::{errors::DracoonClientError, models::OAuth2RefreshTokenFlow};
Expand Down Expand Up @@ -63,6 +60,10 @@ pub struct Connected;
#[derive(Debug, Clone)]
pub struct Disconnected;

/// provisioning state of [DracoonClient]
#[derive(Debug, Clone)]
pub struct Provisioning;

/// represents a connection to DRACOON (`OAuth2` tokens)
#[derive(Debug, Clone)]
pub struct Connection {
Expand Down Expand Up @@ -114,6 +115,7 @@ pub struct DracoonClient<State = Disconnected> {
pub stream_http: Client,
connection: Container<Connection>,
connected: PhantomData<State>,
provisioning_token: Option<String>,
}

/// Builder for the [DracoonClient] struct.
Expand All @@ -127,6 +129,7 @@ pub struct DracoonClientBuilder {
max_retries: Option<u32>,
min_retry_delay: Option<u64>,
max_retry_delay: Option<u64>,
provisioning_token: Option<String>,
}

impl DracoonClientBuilder {
Expand All @@ -141,6 +144,7 @@ impl DracoonClientBuilder {
max_retries: None,
min_retry_delay: None,
max_retry_delay: None,
provisioning_token: None,
}
}

Expand Down Expand Up @@ -168,26 +172,93 @@ impl DracoonClientBuilder {
self
}

/// Sets the user agent (custom string)
pub fn with_user_agent(mut self, user_agent: impl Into<String>) -> Self {
self.user_agent = Some(user_agent.into());
self
}

/// Sets max retries
pub fn with_max_retries(mut self, max_retries: u32) -> Self {
self.max_retries = Some(max_retries);
self
}

/// Sets min retry delay
pub fn with_min_retry_delay(mut self, min_retry_delay: u64) -> Self {
self.min_retry_delay = Some(min_retry_delay);
self
}

/// Sets max retry delay
pub fn with_max_retry_delay(mut self, max_retry_delay: u64) -> Self {
self.max_retry_delay = Some(max_retry_delay);
self
}

pub fn with_provisioning_token(mut self, token: impl Into<String>) -> Self {
self.provisioning_token = Some(token.into());
self
}

pub fn build_provisioning(self) -> Result<DracoonClient<Provisioning>, DracoonClientError> {
let Some(provisioning_token) = self.provisioning_token else {
return Err(DracoonClientError::MissingArgument)
};

let max_retries = self
.max_retries
.unwrap_or(MAX_RETRIES)
.clamp(1, MAX_RETRIES);
let min_retry_delay = self
.min_retry_delay
.unwrap_or(MIN_RETRY_DELAY)
.clamp(300, MIN_RETRY_DELAY);
let max_retry_delay = self
.max_retry_delay
.unwrap_or(MAX_RETRY_DELAY)
.clamp(min_retry_delay, MAX_RETRY_DELAY);

let retry_policy: ExponentialBackoff = ExponentialBackoff::builder()
.backoff_exponent(EXPONENTIAL_BACKOFF_BASE)
.retry_bounds(
Duration::from_millis(min_retry_delay),
Duration::from_millis(max_retry_delay),
)
.build_with_max_retries(max_retries);

let user_agent = match self.user_agent {
Some(user_agent) => format!("{}|{}", user_agent, APP_USER_AGENT),
None => APP_USER_AGENT.to_string(),
};

let http = Client::builder().user_agent(APP_USER_AGENT).build()?;
let upload_http = http.clone();

let http = ClientBuilder::new(http)
.with(RetryTransientMiddleware::new_with_policy(retry_policy))
.build();

let Some(base_url) = self.base_url.clone() else {
error!("Missing base url");
return Err(DracoonClientError::MissingBaseUrl)
};

let base_url = Url::parse(&base_url)?;

Ok(DracoonClient {
base_url,
redirect_uri: None,
client_id: String::new(),
client_secret: String::new(),
http,
stream_http: upload_http,
connected: PhantomData,
connection: Container::new(),
provisioning_token: Some(provisioning_token),
})
}

/// Builds the [DracoonClient] struct - returns an error if any of the required fields are missing
pub fn build(self) -> Result<DracoonClient<Disconnected>, DracoonClientError> {
let max_retries = self
Expand Down Expand Up @@ -256,13 +327,18 @@ impl DracoonClientBuilder {
connection: Container::<Connection>::new(),
connected: PhantomData,
http,
stream_http: upload_http
stream_http: upload_http,
provisioning_token: None,
})
}
}

/// [DracoonClient] implementation for Disconnected state
impl DracoonClient<Disconnected> {
pub fn builder() -> DracoonClientBuilder {
DracoonClientBuilder::new()
}

/// Connects to DRACOON using any of the supported OAuth2 flows
pub async fn connect(
self,
Expand Down Expand Up @@ -291,7 +367,8 @@ impl DracoonClient<Disconnected> {
redirect_uri: self.redirect_uri,
connected: PhantomData,
http: self.http,
stream_http: self.stream_http
stream_http: self.stream_http,
provisioning_token: None,
})
}

Expand Down Expand Up @@ -446,6 +523,7 @@ impl DracoonClient<Connected> {
connected: PhantomData,
http: self.http,
stream_http: self.stream_http,
provisioning_token: None,
})
}

Expand Down Expand Up @@ -568,6 +646,21 @@ impl DracoonClient<Connected> {
}
}

impl DracoonClient<Provisioning> {
/// Returns the X-SDS-Service-Token for provisioning API calls
pub fn get_service_token(&self) -> String {
self.provisioning_token
.as_ref()
.expect("Provisioning client has no token")
.to_string()
}

/// Returns the base url of the DRACOON instance
pub fn get_base_url(&self) -> &Url {
&self.base_url
}
}

#[cfg(test)]
mod tests {
use tokio_test::assert_ok;
Expand Down Expand Up @@ -659,13 +752,7 @@ mod tests {
.unwrap()
.refresh_token();

let expires_in = res
.as_ref()
.unwrap()
.connection
.get()
.unwrap()
.expires_in();
let expires_in = res.as_ref().unwrap().connection.get().unwrap().expires_in();

assert_eq!(access_token, "access_token");
assert_eq!(refresh_token, "refresh_token");
Expand Down Expand Up @@ -835,4 +922,26 @@ mod tests {

assert_eq!(header, "Bearer access_token");
}

#[tokio::test]
async fn test_get_service_token() {
let dracoon = DracoonClient::builder()
.with_base_url("https://test.dracoon.com")
.with_provisioning_token("TopSecret1234!")
.build_provisioning();

assert!(dracoon.is_ok());
let dracoon = dracoon.unwrap();

assert_eq!(dracoon.get_service_token(), "TopSecret1234!");
}

#[tokio::test]
async fn test_fail_build_with_missing_token() {
let dracoon = DracoonClient::builder()
.with_base_url("https://test.dracoon.com")
.build_provisioning();

assert!(dracoon.is_err());
}
}
Loading

0 comments on commit 1777078

Please sign in to comment.