affinidi-did-resolver-cache-sdk 0.8.2

Affinidi DID Resolver SDK
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168

use super::{handshake, network::ReadWrite};
use crate::errors::DIDCacheError;
use ahash::AHashMap as HashMap;
use rustls::{
    ClientConfig,
    pki_types::{DnsName, ServerName},
};
use rustls_platform_verifier::ConfigVerifierExt;
use std::{pin::Pin, sync::Arc};
use tokio::{
    io::{AsyncBufRead, AsyncBufReadExt, AsyncWriteExt, BufReader},
    net::TcpStream,
};
use tokio_rustls::TlsConnector;
use tracing::error;
use url::Url;
use web_socket::WebSocket;

#[derive(Debug)]
pub struct HttpRequest {
    pub prefix: String,
    headers: HashMap<String, String>,
}

impl std::ops::Deref for HttpRequest {
    type Target = HashMap<String, String>;

    fn deref(&self) -> &Self::Target {
        &self.headers
    }
}

impl std::ops::DerefMut for HttpRequest {
    fn deref_mut(&mut self) -> &mut Self::Target {
        &mut self.headers
    }
}

impl HttpRequest {
    pub async fn parse<IO>(reader: &mut IO) -> Result<Self, DIDCacheError>
    where
        IO: Unpin + AsyncBufRead,
    {
        let mut lines = reader.lines();

        let Some(prefix) = lines.next_line().await.map_err(|err| {
            DIDCacheError::TransportError(
                format!("Incorrect response from WebSocket Setup: {err}",),
            )
        })?
        else {
            return Err(DIDCacheError::TransportError(
                "WebSocket Prefix not returned from server".into(),
            ));
        };

        let mut headers = HashMap::new();

        while let Some(line) = lines.next_line().await.map_err(|err| {
            DIDCacheError::TransportError(
                format!("Incorrect response from WebSocket Setup: {err}",),
            )
        })? {
            if line.is_empty() {
                break;
            }
            let (key, value) = line.split_once(":").ok_or_else(|| {
                DIDCacheError::TransportError(format!("Malformed HTTP header (no colon): {line}"))
            })?;
            headers.insert(key.to_ascii_lowercase(), value.trim_start().into());
        }
        Ok(Self { prefix, headers })
    }
}

pub async fn connect(
    url: &Url,
) -> Result<WebSocket<BufReader<Pin<Box<dyn ReadWrite>>>>, DIDCacheError> {
    let (host, path) = if let Some(host) = url.host() {
        (host.to_string(), url.path().to_string())
    } else {
        error!("Websocket address {}: no valid host found", url);
        return Err(DIDCacheError::TransportError(format!(
            "Websocket address {url}: no valid host found",
        )));
    };

    let address = match url.socket_addrs(|| None) {
        Ok(mut addrs) => {
            if addrs.is_empty() {
                error!("Websocket address {}: no valid address found", url);
                return Err(DIDCacheError::TransportError(format!(
                    "Websocket address {url}: no valid address found",
                )));
            }
            addrs.remove(0)
        }
        Err(err) => {
            error!("Websocket address {}: invalid address: {}", url, err);
            return Err(DIDCacheError::TransportError(format!(
                "Websocket address {url}: invalid address: {err}",
            )));
        }
    };

    let stream = TcpStream::connect(address).await.map_err(|err| {
        DIDCacheError::TransportError(format!("TcpStream::Connect({address}) failed: {err}"))
    })?;

    let stream: Pin<Box<dyn ReadWrite>> = if url.scheme() == "wss" {
        // SSL/TLS Connection
        let dns_name = match DnsName::try_from_str(host.as_str()) {
            Ok(dns_name) => dns_name.to_owned(),
            Err(err) => {
                error!("Websocket address {host}: invalid host name: {err}",);
                return Err(DIDCacheError::TransportError(format!(
                    "Websocket address {host}: invalid host name: {err}",
                )));
            }
        };

        let connector = TlsConnector::from(Arc::new(
            ClientConfig::with_platform_verifier().map_err(|e| {
                DIDCacheError::TransportError(format!("TLS Platform Configuration failed: {e}"))
            })?,
        ));
        Box::pin(
            connector
                .connect(ServerName::DnsName(dns_name), stream)
                .await
                .map_err(|err| {
                    DIDCacheError::TransportError(format!(
                        "TlsConnector::connect({host}) failed: {err}",
                    ))
                })?,
        )
    } else {
        Box::pin(stream)
    };

    let mut stream = BufReader::new(stream);

    let (req, sec_key) = handshake::request(host, path, None::<(&str, &str)>);

    stream.write_all(req.as_bytes()).await.map_err(|err| {
        DIDCacheError::TransportError(format!("websocket handshake failed: {err}"))
    })?;

    let http = HttpRequest::parse(&mut stream).await?;

    if !http.prefix.starts_with("HTTP/1.1 101 Switching Protocols") {
        return Err(DIDCacheError::TransportError(
            "expected upgrade connection".to_string(),
        ));
    }
    let accept_value = http.get("sec-websocket-accept").ok_or_else(|| {
        DIDCacheError::TransportError(
            "Server response missing `sec-websocket-accept` header".to_string(),
        )
    })?;
    if accept_value.ne(&handshake::accept_key_from(sec_key)) {
        return Err(DIDCacheError::TransportError(
            "invalid websocket accept key".to_string(),
        ));
    }

    Ok(WebSocket::client(stream))
}