arclutevests/

lib.rs

// Copyright (c) 2022 arclutevests developers
//
// Licensed under the Apache License, Version 2.0
// <LICENSE-APACHE or http://www.apache.org/licenses/LICENSE-2.0> or the MIT
// license <LICENSE-MIT or http://opensource.org/licenses/MIT>, at your
// option. All files in the project carrying such notice may not be copied,
// modified, or distributed except according to those terms.

//! Arc Lute Vests - Load secrets from vault
//!
//! # Example
#![cfg_attr(
    not(feature = "wrapped"),
    doc = r##" 
```no_run
# use anyhow::Result;
# use arclutevests::{secrets, Config};
# use serde::Deserialize;
# use uuid::uuid;
#
#[derive(Clone, Debug, Deserialize)]
struct TestData {
    test_data: String,
}
#
#[tokio::main]
async fn main() -> Result<()> {
#    let uuid = uuid!("3628c169-fbe8-b5b8-b529-434f8d64fe38");
#    let config = Config::builder()
#        .vault_base_url("https://vault.allthetyme.info:8200/v1/")
#        .app_role("test")
#        .secrets_path("test/data/config")
#        .role_id(uuid)
#        .wrapping_token("")
#        .build();
    let test_data: TestData = secrets(&config).await?;
    assert_eq!(test_data.test_data, "this isn't really secret");
#    let uuid_bad = uuid!("3628c169-fbe8-b5b8-b529-434f8d64fe37");
#    let config_bad = Config::builder()
#        .vault_base_url("https://vault.allthetyme.info:8200/v1/")
#        .app_role("test")
#        .secrets_path("test/data/config")
#        .role_id(uuid)
#        .wrapping_token("")
#        .build();
#
    match secrets::<TestData>(&config_bad).await {
        Ok(_) => assert!(false, "This shouldn't happen"),
        Err(e) => assert!(format!("{e}").starts_with("uri: /v1/s/error/authfailed, title: Authentication Failed, status: 500, detail: Vault was unable to authenticate the client")),
    }
    Ok(())
}
```
"##
)]
#![cfg_attr(
    feature = "wrapped",
    doc = r##"
```
# use anyhow::Result;
# use arclutevests::{secrets, Config};
# use serde::Deserialize;
# use uuid::uuid;
#
#[derive(Clone, Debug, Deserialize)]
struct TestData {
    test_data: String,
}
#
#[tokio::main]
async fn main() -> Result<()> {
#    let uuid = uuid!("3628c169-fbe8-b5b8-b529-434f8d64fe38");
#    let config = Config::builder()
#        .vault_base_url("https://vault.allthetyme.info:8200/v1/")
#        .app_role("test")
#        .secrets_path("test/data/config")
#        .role_id(uuid)
#        .toad_base_url("https://toad.allthetyme.info:8443/")
#        .build();
    let test_data: TestData = secrets(&config).await?;
    assert_eq!(test_data.test_data, "this isn't really secret");
#    let uuid_bad = uuid!("3628c169-fbe8-b5b8-b529-434f8d64fe37");
#    let config_bad = Config::builder()
#        .vault_base_url("https://vault.allthetyme.info:8200/v1/")
#        .app_role("test")
#        .secrets_path("test/data/config")
#        .role_id(uuid_bad)
#        .toad_base_url("https://toad.allthetyme.info:8443/")
#        .build();
#
    match secrets::<TestData>(&config_bad).await {
        Ok(_) => assert!(false, "This shouldn't happen"),
        Err(e) => assert!(format!("{e}").starts_with("uri: /v1/s/error/authfailed, title: Authentication Failed, status: 500, detail: Vault was unable to authenticate the client")),
    }
    Ok(())
}
```
"##
)]
// rustc lints
#![deny(
    absolute_paths_not_starting_with_crate,
    anonymous_parameters,
    array_into_iter,
    asm_sub_register,
    bad_asm_style,
    bare_trait_objects,
    bindings_with_variant_name,
    box_pointers,
    break_with_label_and_loop,
    clashing_extern_declarations,
    coherence_leak_check,
    confusable_idents,
    const_evaluatable_unchecked,
    const_item_mutation,
    dead_code,
    deprecated,
    deprecated_in_future,
    deprecated_where_clause_location,
    deref_into_dyn_supertrait,
    deref_nullptr,
    drop_bounds,
    duplicate_macro_attributes,
    dyn_drop,
    elided_lifetimes_in_paths,
    ellipsis_inclusive_range_patterns,
    explicit_outlives_requirements,
    exported_private_dependencies,
    // Unstable
    // ffi_unwind_calls,
    forbidden_lint_groups,
    function_item_references,
    // Unstable
    // fuzzy_provenance_casts,
    illegal_floating_point_literal_pattern,
    improper_ctypes,
    improper_ctypes_definitions,
    incomplete_features,
    indirect_structural_match,
    inline_no_sanitize,
    invalid_doc_attributes,
    invalid_value,
    irrefutable_let_patterns,
    keyword_idents,
    large_assignments,
    late_bound_lifetime_arguments,
    legacy_derive_helpers,
    let_underscore_drop,
    // Unstable
    // lossy_provenance_casts,
    macro_use_extern_crate,
    meta_variable_misuse,
    missing_abi,
    missing_copy_implementations,
    missing_debug_implementations,
    missing_docs,
    mixed_script_confusables,
    // Unstable
    // must_not_suspend,
    named_arguments_used_positionally,
    no_mangle_generic_items,
    non_ascii_idents,
    non_camel_case_types,
    // Unstable
    // non_exhaustive_omitted_patterns,
    non_fmt_panics,
    non_shorthand_field_patterns,
    non_snake_case,
    non_upper_case_globals,
    nontrivial_structural_match,
    noop_method_call,
    overlapping_range_endpoints,
    path_statements,
    pointer_structural_match,
    private_in_public,
    redundant_semicolons,
    renamed_and_removed_lints,
    repr_transparent_external_private_fields,
    rust_2021_incompatible_closure_captures,
    rust_2021_incompatible_or_patterns,
    rust_2021_prefixes_incompatible_syntax,
    rust_2021_prelude_collisions,
    semicolon_in_expressions_from_macros,
    single_use_lifetimes,
    special_module_name,
    stable_features,
    suspicious_auto_trait_impls,
    temporary_cstring_as_ptr,
    trivial_bounds,
    trivial_casts,
    trivial_numeric_casts,
    type_alias_bounds,
    tyvar_behind_raw_pointer,
    uncommon_codepoints,
    unconditional_recursion,
    unexpected_cfgs,
    // Unstable
    // unfulfilled_lint_expectations,
    uninhabited_static,
    unknown_lints,
    unnameable_test_items,
    unreachable_code,
    unreachable_patterns,
    unreachable_pub,
    unsafe_code,
    unsafe_op_in_unsafe_fn,
    unstable_features,
    unstable_name_collisions,
    unstable_syntax_pre_expansion,
    unsupported_calling_conventions,
    unused_allocation,
    unused_assignments,
    unused_attributes,
    unused_braces,
    unused_comparisons,
    unused_crate_dependencies,
    unused_doc_comments,
    unused_extern_crates,
    unused_features,
    unused_import_braces,
    unused_imports,
    unused_labels,
    unused_lifetimes,
    unused_macro_rules,
    unused_macros,
    unused_must_use,
    unused_mut,
    unused_parens,
    unused_qualifications,
    unused_results,
    unused_tuple_struct_fields,
    unused_unsafe,
    unused_variables,
    variant_size_differences,
    where_clauses_object_safety,
    while_true
)]
// nightly only lints
// #![cfg_attr(nightly_lints, deny())]
// nightly or beta only lints
#![cfg_attr(
    any(beta_lints, nightly_lints),
    deny(for_loops_over_fallibles, opaque_hidden_inferred_bound,)
)]
// beta only lints
// #![cfg_attr(beta_lints, deny())]
// beta or stable only lints
// #![cfg_attr( any(beta_lints, stable_lints), deny())]
// stable only lints
// #![cfg_attr(stable_lints, deny())]
// clippy lints
#![deny(clippy::all, clippy::pedantic)]
// rustdoc lints
#![deny(
    rustdoc::bare_urls,
    rustdoc::broken_intra_doc_links,
    rustdoc::invalid_codeblock_attributes,
    rustdoc::invalid_html_tags,
    rustdoc::missing_crate_level_docs,
    // Unstable
    // rustdoc::missing_doc_code_examples,
    rustdoc::private_doc_tests,
    rustdoc::private_intra_doc_links
)]

mod constants;
mod error;
mod model;
mod secrets;
mod util;

// used in doctests
use tokio as _;

pub use error::Error;
pub use model::config::Config;
pub use secrets::secrets;