VaultAPI-Client 0.1.1

Client application for VaultAPI server.
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236

use crate::constant;
use crate::enums;
use crate::util;
use reqwest::blocking::Client;
use reqwest::Url;

/// Default transit key length. This will be the AES key length for transit encryption.
const TRANSIT_KEY_LENGTH: usize = 32;
/// Default transit time bucket. This will be the interval for which the transit epoch will remain constant.
const TRANSIT_TIME_BUCKET: u64 = 60;

/// Struct to construct environment variables.
pub struct EnvConfig {
    pub vault_server: Url,
    pub apikey: String,
    pub secret: String,
    pub transit_key_length: usize,
    pub transit_time_bucket: u64,
}

/// Struct to construct the commandline arguments.
pub struct ArgConfig {
    pub cipher: String,
    pub table_name: String,
    pub get_secret: String,
    pub get_secrets: String,
    pub get_table: String,
}

/// Function to retrieve environment variables.
///
/// # Arguments
/// * `key` - Key to retrieve the environment variables.
/// * `default` - Default value if env var is not found.
///
/// # Returns
/// * Retrieved environment variable as a ``String`` object.
fn get_env(key: &str, default: &str) -> String {
    match std::env::var(key) {
        Ok(value) => value,
        Err(_) => {
            if !default.is_empty() {
                return default.to_string();
            }
            println!("{:} environment variable not set", key);
            std::process::exit(1)
        }
    }
}

/// Load environment variables from an env file.
///
/// # Arguments
/// * `env_file` - Dot env filename/filepath.
pub fn load_env(env_file: &String) {
    let env_file_path = std::env::current_dir().unwrap_or_default().join(env_file);
    let _ = dotenv::from_path(env_file_path.as_path());
}

/// Returns the default env filename.
///
/// # Returns
/// * ``.env`` as the default filename.
pub fn default_env_file() -> String {
    std::env::var("env_file").unwrap_or(std::env::var("ENV_FILE").unwrap_or(".env".to_string()))
}

/// Function to validate the health check of the server endpoint.
///
/// # Arguments
/// * `server_url` - Server URL to perform the health check.
fn health_check(server_url: &Url) {
    let client = Client::new();
    let url = util::urljoin(&[server_url.as_ref(), enums::EndpointMapping::Health.as_str()]);
    let request = client.get(url);
    match request.send() {
        Ok(init_response) => match init_response.error_for_status() {
            Ok(_) => {}
            Err(err) => {
                println!("{}", err);
                std::process::exit(1)
            }
        },
        Err(err) => {
            println!("{}", err);
            std::process::exit(1)
        }
    }
}

/// Function to retrieve environment variables and load it as an ``EnvConfig`` object.
///
/// # Returns
/// * Retrieved environment variable as an ``EnvConfig`` object.
pub fn env_variables() -> EnvConfig {
    load_env(&default_env_file());
    // Retrieve the API key from the environment
    let apikey = get_env("APIKEY", "");
    let secret = get_env("SECRET", "");
    let vault_server_env = get_env("VAULT_SERVER", "");
    let vault_server = match Url::parse(&vault_server_env) {
        Ok(url) => url,
        Err(_) => {
            println!("Failed to parse vault address");
            std::process::exit(1)
        }
    };
    health_check(&vault_server);
    let transit_key_length = match std::env::var("TRANSMIT_KEY_LENGTH") {
        Ok(value) => value.parse::<usize>().unwrap_or(TRANSIT_KEY_LENGTH),
        Err(_) => TRANSIT_KEY_LENGTH,
    };
    let transit_time_bucket = match std::env::var("TRANSIT_TIME_BUCKET") {
        Ok(value) => value.parse::<u64>().unwrap_or(TRANSIT_TIME_BUCKET),
        Err(_) => TRANSIT_TIME_BUCKET,
    };
    EnvConfig {
        vault_server,
        apikey,
        secret,
        transit_key_length,
        transit_time_bucket,
    }
}

/// Parses and returns the command-line arguments.
///
/// # Arguments
/// * `metadata` - Metadata object loaded with cargo information.
///
/// # Returns
/// * Commandline arguments loaded as an ``ArgConfig`` object.
pub fn arguments(metadata: &constant::MetaData) -> ArgConfig {
    let args: Vec<String> = std::env::args().collect();

    let mut version = false;
    let mut env_file = String::new();
    let mut cipher = String::new();
    let mut table_name = String::new();
    let mut get_secret = String::new();
    let mut get_secrets = String::new();
    let mut get_table = String::new();

    // Loop through the command-line arguments and parse them.
    let mut i = 1; // Start from the second argument (args[0] is the program name).
    while i < args.len() {
        match args[i].as_str() {
            "-h" | "--help" => {
                let helper = "VaultAPI-Client takes the arguments, --env_file and --version/-v\n\n\
                --env_file: Custom filename to load the environment variables. Defaults to '.env'\n\
                --cipher: Cipher text to decrypt\n\
                --version: Get the package version.\n"
                    .to_string();
                println!("Usage: {} [OPTIONS]\n\n{}", args[0], helper);
                std::process::exit(0)
            }
            "-V" | "-v" | "--version" => {
                version = true;
            }
            "--env_file" => {
                i += 1; // Move to the next argument.
                if i < args.len() {
                    env_file = args[i].clone();
                } else {
                    println!("--env_file requires a value.");
                    std::process::exit(1)
                }
            }
            "--cipher" => {
                i += 1; // Move to the next argument.
                if i < args.len() {
                    cipher = args[i].clone();
                } else {
                    println!("--cipher requires a value.");
                    std::process::exit(1)
                }
            }
            "--table" => {
                i += 1; // Move to the next argument.
                if i < args.len() {
                    table_name = args[i].clone();
                } else {
                    println!("--get-secret requires a value.");
                    std::process::exit(1)
                }
            }
            "--get-secret" => {
                i += 1; // Move to the next argument.
                if i < args.len() {
                    get_secret = args[i].clone();
                } else {
                    println!("--get-secret requires a value.");
                    std::process::exit(1)
                }
            }
            "--get-secrets" => {
                i += 1; // Move to the next argument.
                if i < args.len() {
                    get_secrets = args[i].clone();
                } else {
                    println!("--get-secrets requires a value.");
                    std::process::exit(1)
                }
            }
            "--get-table" => {
                i += 1; // Move to the next argument.
                if i < args.len() {
                    get_table = args[i].clone();
                } else {
                    println!("--get-table requires a value.");
                    std::process::exit(1)
                }
            }
            _ => {
                println!("Unknown argument: {}", args[i]);
                std::process::exit(1)
            }
        }
        i += 1;
    }
    if version {
        println!("{} {}", &metadata.pkg_name, &metadata.pkg_version);
        std::process::exit(0)
    }
    if env_file.is_empty() {
        env_file = default_env_file();
    }
    load_env(&env_file);
    ArgConfig {
        cipher,
        table_name,
        get_secret,
        get_secrets,
        get_table,
    }
}