adk-rs 0.6.0

Rust port of the Google Agent Development Kit (ADK).
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38

use crate::error::{Error, Result};

/// Validate token endpoints before transmitting credentials or assertions.
/// Delegates the https-or-loopback policy to [`crate::transport_security`]
/// (one parser, one policy) and additionally returns the parsed URL.
pub(crate) fn secure_token_endpoint_url(raw_url: &str, field: &str) -> Result<reqwest::Url> {
    let url =
        reqwest::Url::parse(raw_url).map_err(|e| Error::config(format!("invalid {field}: {e}")))?;
    if crate::transport_security::is_secure_url(raw_url) {
        return Ok(url);
    }
    Err(Error::config(format!(
        "{field} must use https unless it points to localhost or a loopback IP"
    )))
}

#[cfg(test)]
mod tests {
    use super::*;

    #[test]
    fn secure_token_endpoint_allows_https() {
        secure_token_endpoint_url("https://example.com/token", "token_uri").unwrap();
    }

    #[test]
    fn secure_token_endpoint_allows_loopback_http() {
        secure_token_endpoint_url("http://127.0.0.1:1234/token", "token_uri").unwrap();
        secure_token_endpoint_url("http://[::1]:1234/token", "token_uri").unwrap();
        secure_token_endpoint_url("http://localhost:1234/token", "token_uri").unwrap();
    }

    #[test]
    fn secure_token_endpoint_rejects_non_loopback_http() {
        let err = secure_token_endpoint_url("http://example.com/token", "token_uri").unwrap_err();
        assert!(err.to_string().contains("must use https"));
    }
}