cesium_oauth/apps/

mod.rs

use async_trait::async_trait;
use log::{debug, trace};
use serde::*;

#[cfg(feature = "app-file-cache")]
pub use file_cached::FileCachedAppProvider;

use crate::error::Error;

#[cfg(feature = "app-file-cache")]
mod file_cached;

/// Global information about an app, can be shared across multiple instances.
#[derive(Serialize, Deserialize, Clone, Debug)]
pub struct AppInfo {
    /// Display name of the app
    pub name: String,
    /// Where the user should be redirected after authorization
    pub redirect_uri: String,
}

/// A specific registered app, registered at one instance.
#[derive(Serialize, Deserialize, Clone, Debug)]
pub struct RegisteredApp {
    /// Display name of the app
    pub name: String,
    /// Client ID key, to be used for obtaining OAuth tokens
    pub client_id: String,
    /// Client secret key, to be used for obtaining OAuth tokens
    pub client_secret: String,
}

/// Trait for application providers. An application provider is expected to be
/// able to register an app at an instance, and then store and re-use it. Once
/// an application has been registered at an instance, any further requests for
/// that instance should result in the same [RegisteredApp].
///
/// For an example implementation, look at [FileCachedAppProvider].
#[async_trait]
pub trait AppProvider {
    /// If we don't yet have an app registered at that instance, register it and return
    /// the [RegisteredApp]. Otherwise, return the already existing [RegisteredApp].
    async fn get_app_for(&mut self, instance_domain: &str) -> Result<RegisteredApp, Error>;
}

impl AppInfo {
    /// Simple constructor for creating application info.
    pub fn new(name: &str, redirect_uri: &str) -> Self {
        Self {
            name: name.to_owned(),
            redirect_uri: redirect_uri.to_owned(),
        }
    }
}

/// Generic function for registering a new app to an instance. Uses [reqwest] so
/// should be compatible across platforms.
pub async fn register_new_app(
    instance_domain: &str,
    app: &AppInfo,
) -> Result<RegisteredApp, Error> {
    let url = format!("https://{instance_domain}/api/v1/apps");
    let params = [
        ("client_name", app.name.as_str()),
        ("redirect_uris", app.redirect_uri.as_str()),
        ("scopes", "read:accounts"),
    ];

    debug!("Registering new app '{}' at `{instance_domain}`", app.name);
    trace!("Registration url is {url}");

    let client = reqwest::Client::new();
    let response = client
        .post(&url)
        .form(&params)
        .send()
        .await
        .map_err(|_| Error::AppRegistrationError("Failed to connect to server"))?;

    trace!("Response status {}", response.status());
    if response.status() != 200 {
        return Err(Error::TokenObtainError("Authorization failure"));
    }

    let registered_app: RegisteredApp = response
        .json()
        .await
        .map_err(|_| Error::AppRegistrationError("Unable to parse response from server"))?;

    debug!(
        "App registration done, client_id={}",
        registered_app.client_id
    );

    Ok(registered_app)
}