acp-runtime 0.1.6

Rust SDK for the Agent Communication Protocol (ACP)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140

// Copyright 2026 ACP Project
// Licensed under the Apache License, Version 2.0
// See LICENSE file for details.

use std::collections::HashMap;

use serde::{Deserialize, Serialize};
use serde_json::{Map, Value};

use crate::errors::{AcpError, AcpResult};

#[derive(Debug, Clone, PartialEq, Eq, Serialize, Deserialize)]
pub struct AuthConfig {
    #[serde(rename = "type")]
    pub auth_type: String,
    #[serde(default)]
    pub parameters: HashMap<String, String>,
}

#[derive(Debug, Clone, PartialEq, Eq, Serialize, Deserialize)]
pub struct TransportConfig {
    pub protocol: String,
    pub endpoint: String,
    #[serde(default)]
    pub auth: Option<AuthConfig>,
}

pub fn normalize_auth_type(value: &str) -> AcpResult<String> {
    let normalized = value.trim().to_lowercase();
    let normalized = if normalized.is_empty() {
        "none".to_string()
    } else {
        normalized
    };
    match normalized.as_str() {
        "none" | "bearer" | "basic" | "mtls" | "username_password" | "custom" => Ok(normalized),
        _ => Err(AcpError::Validation(format!(
            "Unsupported auth type: {value}"
        ))),
    }
}

pub fn normalize_auth_config(auth: Option<AuthConfig>) -> AcpResult<Option<AuthConfig>> {
    let Some(mut auth) = auth else {
        return Ok(None);
    };
    auth.auth_type = normalize_auth_type(&auth.auth_type)?;
    auth.parameters = auth
        .parameters
        .into_iter()
        .filter_map(|(key, value)| {
            let key = key.trim().to_string();
            if key.is_empty() {
                return None;
            }
            Some((key, value.trim().to_string()))
        })
        .collect();
    Ok(Some(auth))
}

pub fn auth_config_from_value(value: Option<&Value>) -> AcpResult<Option<AuthConfig>> {
    let Some(value) = value else {
        return Ok(None);
    };
    let Value::Object(map) = value else {
        return Err(AcpError::Validation(
            "transport auth must be an object with fields: type, parameters".to_string(),
        ));
    };
    let auth_type = map
        .get("type")
        .and_then(Value::as_str)
        .unwrap_or("none")
        .to_string();
    let mut parameters = HashMap::new();
    match map.get("parameters") {
        None | Some(Value::Null) => {}
        Some(Value::Object(raw)) => {
            for (key, item) in raw {
                if item.is_null() {
                    continue;
                }
                let value = item
                    .as_str()
                    .map(str::to_string)
                    .unwrap_or_else(|| item.to_string());
                parameters.insert(key.to_string(), value);
            }
        }
        Some(_) => {
            return Err(AcpError::Validation(
                "transport auth.parameters must be an object".to_string(),
            ));
        }
    }
    normalize_auth_config(Some(AuthConfig {
        auth_type,
        parameters,
    }))
}

pub fn serialize_auth_config(auth: Option<&AuthConfig>) -> Option<Value> {
    let auth = auth?;
    let mut params = Map::new();
    for (key, value) in &auth.parameters {
        params.insert(key.clone(), Value::String(value.clone()));
    }
    let mut out = Map::new();
    out.insert("type".to_string(), Value::String(auth.auth_type.clone()));
    out.insert("parameters".to_string(), Value::Object(params));
    Some(Value::Object(out))
}

pub fn auth_parameter(auth: &AuthConfig, key: &str, context: &str) -> AcpResult<String> {
    let value = auth
        .parameters
        .get(key)
        .map(|v| v.trim().to_string())
        .filter(|v| !v.is_empty())
        .ok_or_else(|| AcpError::Validation(format!("{context} requires auth.parameters.{key}")))?;
    Ok(value)
}

pub fn ensure_allowed_auth_types(
    auth: Option<&AuthConfig>,
    allowed: &[&str],
    context: &str,
) -> AcpResult<()> {
    let Some(auth) = auth else {
        return Ok(());
    };
    if allowed.contains(&auth.auth_type.as_str()) {
        return Ok(());
    }
    Err(AcpError::Validation(format!(
        "{context} does not support auth type: {}",
        auth.auth_type
    )))
}