client_core/
authenticated_client.rs

1use crate::{ClientRegisterRequest, database::Database};
2use anyhow::Result;
3use reqwest::{Client, Method, RequestBuilder, Response};
4use serde::Serialize;
5use std::sync::Arc;
6use tokio::sync::RwLock;
7use tracing::{error, info, warn};
8
9/// 认证客户端包装器
10/// 自动处理client_id的设置和认证失败时的重新注册
11#[derive(Debug, Clone)]
12pub struct AuthenticatedClient {
13    client: Client,
14    database: Arc<Database>,
15    server_base_url: String,
16    client_id: Arc<RwLock<Option<String>>>,
17}
18
19impl AuthenticatedClient {
20    /// 创建新的认证客户端
21    pub async fn new(database: Arc<Database>, server_base_url: String) -> Result<Self> {
22        let client = Client::new();
23
24        // 从数据库获取当前的client_id
25        let client_id = database.get_client_id().await?;
26
27        Ok(Self {
28            client,
29            database,
30            server_base_url,
31            client_id: Arc::new(RwLock::new(client_id)),
32        })
33    }
34
35    /// 检查URL是否是我们的服务器
36    fn is_our_server(&self, url: &str) -> bool {
37        url.starts_with(&self.server_base_url)
38    }
39
40    /// 检查是否是注册接口（不需要认证）
41    fn is_register_endpoint(&self, url: &str) -> bool {
42        url.contains("/clients/register")
43    }
44
45    /// 获取当前的client_id
46    async fn get_client_id(&self) -> Option<String> {
47        self.client_id.read().await.clone()
48    }
49
50    /// 更新client_id
51    async fn set_client_id(&self, new_client_id: String) -> Result<()> {
52        // 更新内存中的值
53        *self.client_id.write().await = Some(new_client_id.clone());
54
55        // 保存到数据库
56        self.database.update_client_id(&new_client_id).await?;
57
58        Ok(())
59    }
60
61    /// 自动注册客户端
62    async fn auto_register(&self) -> Result<String> {
63        info!("Attempting to auto-register client...");
64
65        let request = ClientRegisterRequest {
66            os: std::env::consts::OS.to_string(),
67            arch: std::env::consts::ARCH.to_string(),
68        };
69
70        // 使用常量定义的注册端点
71        let register_url = format!(
72            "{}{}",
73            self.server_base_url,
74            crate::constants::api::endpoints::CLIENT_REGISTER
75        );
76        let response = self
77            .client
78            .post(&register_url)
79            .json(&request)
80            .send()
81            .await?;
82
83        if response.status().is_success() {
84            let register_response: serde_json::Value = response.json().await?;
85            if let Some(client_id) = register_response.get("client_id").and_then(|v| v.as_str()) {
86                let client_id = client_id.to_string();
87                info!("Auto-registration successful, client ID: {}", client_id);
88
89                // 保存新的client_id
90                self.set_client_id(client_id.clone()).await?;
91
92                Ok(client_id)
93            } else {
94                Err(anyhow::anyhow!("Invalid registration response format"))
95            }
96        } else {
97            let status = response.status();
98            let text = response.text().await.unwrap_or_default();
99            error!("Client registration failed: {} - {}", status, text);
100            Err(anyhow::anyhow!("Registration failed: {status} - {text}"))
101        }
102    }
103
104    /// 为请求添加认证头
105    async fn add_auth_header(
106        &self,
107        mut request_builder: RequestBuilder,
108        url: &str,
109    ) -> RequestBuilder {
110        // 只对我们的服务器且非注册接口添加认证头
111        if self.is_our_server(url) && !self.is_register_endpoint(url) {
112            if let Some(client_id) = self.get_client_id().await {
113                request_builder = request_builder.header("X-Client-ID", client_id);
114            }
115        }
116        request_builder
117    }
118
119    /// 执行请求，自动处理认证
120    async fn execute_request(&self, method: Method, url: &str) -> Result<RequestBuilder> {
121        let request_builder = self.client.request(method, url);
122        Ok(self.add_auth_header(request_builder, url).await)
123    }
124
125    /// 执行带JSON body的请求
126    async fn execute_request_with_json<T: Serialize>(
127        &self,
128        method: Method,
129        url: &str,
130        json: &T,
131    ) -> Result<RequestBuilder> {
132        let request_builder = self.client.request(method, url).json(json);
133        Ok(self.add_auth_header(request_builder, url).await)
134    }
135
136    /// 发送请求并处理认证失败
137    async fn send_with_retry(
138        &self,
139        request_builder: RequestBuilder,
140        original_url: &str,
141    ) -> Result<Response> {
142        let response = request_builder.send().await?;
143
144        // 检查是否是认证失败
145        if response.status() == reqwest::StatusCode::UNAUTHORIZED
146            && self.is_our_server(original_url)
147            && !self.is_register_endpoint(original_url)
148        {
149            warn!("API request authentication failed (401), attempting to auto-re-register...");
150
151            // 尝试自动注册
152            match self.auto_register().await {
153                Ok(new_client_id) => {
154                    info!("Auto re-registration successful, client ID: {}, retrying request...", new_client_id);
155
156                    // 重新从头构建请求，使用新的client_id
157                    // 我们需要重新创建请求，因为原来的RequestBuilder已经被消费
158                    let retry_request_builder = self
159                        .client
160                        .get(original_url)
161                        .header("X-Client-ID", new_client_id);
162
163                    let retry_response = retry_request_builder.send().await?;
164                    Ok(retry_response)
165                }
166                Err(e) => {
167                    error!("Auto re-registration failed: {}", e);
168                    Err(anyhow::anyhow!("Authentication failed and unable to re-register: {e}"))
169                }
170            }
171        } else {
172            Ok(response)
173        }
174    }
175
176    /// GET请求
177    pub async fn get(&self, url: &str) -> Result<RequestBuilder> {
178        self.execute_request(Method::GET, url).await
179    }
180
181    /// POST请求
182    pub async fn post(&self, url: &str) -> Result<RequestBuilder> {
183        self.execute_request(Method::POST, url).await
184    }
185
186    /// PUT请求
187    pub async fn put(&self, url: &str) -> Result<RequestBuilder> {
188        self.execute_request(Method::PUT, url).await
189    }
190
191    /// DELETE请求
192    pub async fn delete(&self, url: &str) -> Result<RequestBuilder> {
193        self.execute_request(Method::DELETE, url).await
194    }
195
196    /// POST请求（带JSON）
197    pub async fn post_json<T: Serialize>(&self, url: &str, json: &T) -> Result<Response> {
198        let request_builder = self
199            .execute_request_with_json(Method::POST, url, json)
200            .await?;
201        self.send_with_retry(request_builder, url).await
202    }
203
204    /// PUT请求（带JSON）
205    pub async fn put_json<T: Serialize>(&self, url: &str, json: &T) -> Result<Response> {
206        let request_builder = self
207            .execute_request_with_json(Method::PUT, url, json)
208            .await?;
209        self.send_with_retry(request_builder, url).await
210    }
211
212    /// 发送请求（通用方法）
213    pub async fn send(&self, request_builder: RequestBuilder, url: &str) -> Result<Response> {
214        self.send_with_retry(request_builder, url).await
215    }
216
217    /// 获取原始的reqwest客户端（用于特殊情况）
218    pub fn inner(&self) -> &Client {
219        &self.client
220    }
221
222    /// 获取当前的client_id（只读）
223    pub async fn current_client_id(&self) -> Option<String> {
224        self.get_client_id().await
225    }
226}
client_core/authenticated_client.rs

client_core/
authenticated_client.rs
