arcly-http 0.1.0

Enterprise-grade NestJS-inspired web framework on axum: zero-lock DI, declarative controllers, multi-tenant data routing, transactional outbox, ABAC, and a self-documenting OpenAPI surface
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152

//! arcly-http -- NestJS ergonomics meets Rust safety & speed.
//!
//! ## Module layout
//!
//! | Module          | Responsibility                                         |
//! |-----------------|--------------------------------------------------------|
//! | `auth`          | Identity & access: JWT, cookies, sessions, OAuth2, guards |
//! | `core`          | DI engine + plugin lifecycle (HTTP-agnostic)           |
//! | `web`           | HTTP layer: boundary, context, errors, interceptors    |
//! | `realtime`      | WebSocket gateways + SSE                                |
//! | `observability` | Telemetry, metrics, health, trace propagation           |
//! | `resilience`    | Circuit breaker + rate limiting                          |

pub mod app;
pub mod auth;
pub mod compliance;
pub mod core;
pub mod data;
pub mod event;
pub mod http;
pub mod messaging;
pub mod observability;
pub mod openapi;
pub mod realtime;
pub mod resilience;
pub mod security;
pub mod validation;
pub mod web;

// ─── Path-compat shims ─────────────────────────────────────────────────────────
// The auth subsystem was consolidated from five root files into `auth/`.
// These re-exports keep every pre-existing import path compiling unchanged:
// `arcly_http::cookie::CookieService`, `arcly_http::guards::Guard`, etc.
pub use auth::cookie;
pub use auth::guards;
pub use auth::oauth;
pub use auth::session;

// Convenience re-exports.
pub use core::plugins;
pub use web::cache;
pub use web::interceptors;

// Re-exports needed by macro expansions.
#[doc(hidden)]
pub use axum as __axum;
pub use futures;
pub use inventory;
pub use schemars;
pub use serde_json;
pub use validator;

pub use app::App;
pub use web::{Error, RequestContext};

#[doc(hidden)]
#[inline]
pub fn __schema_for<T: schemars::JsonSchema>() -> serde_json::Value {
    serde_json::to_value(schemars::schema_for!(T)).unwrap_or(serde_json::Value::Null)
}

/// Single stable surface for `arcly-http-macros` codegen.
///
/// Every symbol the proc-macros emit is re-exported here, so internal files
/// can move freely without touching the macro crate — only this module's
/// `pub use` lines need to follow.
#[doc(hidden)]
pub mod __macro_support {
    pub use crate::auth::guards::Guard;
    pub use crate::auth::policy::check_policies;
    pub use crate::compliance::masking::mask_response;
    pub use crate::core::engine::*;
    pub use crate::data::tx::run_transactional;
    pub use crate::http::Json;
    pub use crate::messaging::{EventContext, EventHandlerDescriptor};
    pub use crate::observability::audit::emit_route_audit;
    pub use crate::realtime::gateway::{GatewayDescriptor, GatewayRuntime, MessageHandler};
    pub use crate::realtime::{ArclyGateway, WsClient};
    pub use crate::resilience::timeout::run_with_timeout;
    pub use crate::resilience::{BreakerOpen, CircuitBreaker};
    pub use crate::web::context::RequestContext;
    pub use crate::web::extract::*;
    pub use crate::web::idempotency::run_idempotent;
    pub use crate::web::interceptors::{Interceptor, NextHandler};
    pub use crate::web::Error;
}

/// `use arcly_http::prelude::*;` brings in everything a user needs.
pub mod prelude {
    pub use crate::app::App;
    pub use crate::auth::cookie::{CookieConfig, CookieService, SameSite};
    pub use crate::auth::guards::{
        JwtAuthGuard, RoleGuard, SessionAuthGuard, JWT_AUTH, SESSION_AUTH,
    };
    pub use crate::auth::oauth::{OAuth2Provider, OAuth2Service, OAuth2UserInfo};
    pub use crate::auth::policy::{
        check_policies, Decision, EnvAttributes, PolicyEngine, PolicyInput, PolicySet, PolicySource,
    };
    pub use crate::auth::secrets::{spawn_secret_watcher, Rotating, SecretSource, SecretVersion};
    pub use crate::auth::session::{Session, SessionConfig, SessionManager, SessionStore};
    pub use crate::auth::{JwtConfig, JwtService};
    pub use crate::cache::{stats as cache_stats, CacheInterceptor, CacheStats};
    pub use crate::compliance::{MaskRule, MaskStrategy, Masker, MaskingPolicy};
    pub use crate::core::engine::FrozenDiContainer;
    pub use crate::core::plugins::{ArclyPlugin, ArclyPluginContext, PluginError, PluginStage};
    pub use crate::data::db::{ArclyDbPool, DbDriver, OwnedDbConn};
    #[cfg(feature = "db-sqlx")]
    pub use crate::data::migrate::{Migration, MigrationReport, MigrationRunner};
    pub use crate::data::outbox::{
        with_transaction, OutboxEntry, OutboxPublisher, OutboxRelay, OutboxStore, OutboxTx,
        TransactionalDataSource,
    };
    pub use crate::data::tx::{in_transaction, with_current_tx, ArclyTransaction};
    pub use crate::data::{
        AccessIntent, DataError, DataSource, DataSourceRegistry, ReadAfterWritePin,
    };
    pub use crate::http::{IntoResponse, Json, Response};
    pub use crate::interceptors::{
        EnvelopeResponse, Interceptor, LatencyLog, NextHandler, TelemetryLog, TraceInterceptor,
    };
    pub use crate::messaging::{
        ConsumerRuntime, EventContext, EventHandlerDescriptor, InboundMessage, MessageTransport,
    };
    pub use crate::observability::audit::{AuditOutcome, AuditPipeline, AuditRecord, AuditSink};
    pub use crate::observability::health::{HealthCheck, HealthRegistry, HealthStatus};
    pub use crate::observability::plugin::ArclyObservabilityPlugin;
    pub use crate::openapi::{ApiKeyIn, OpenApiInfo, SecurityScheme};
    pub use crate::resilience::{
        Bulkhead, DLockBackend, DistributedLock, DistributedRateLimit, FailurePolicy, LockGuard,
        RateDecision, RateLimit, RateLimitBackend,
    };
    pub use crate::security::{configure as configure_security, FrameOptions, SecurityConfig};
    pub use crate::validation::Validated;
    pub use crate::web::error::{
        BadRequest, Conflict, FieldError, Forbidden, GatewayTimeout, HttpError, HttpException,
        Internal, NotFound, ProblemDetails, ServiceUnavailable, TooManyRequests, Unauthorized,
        Validation,
    };
    pub use crate::web::idempotency::{IdempotencyDecision, IdempotencyStore};
    pub use crate::web::responses::{Accepted, Created, NoContent};
    pub use crate::web::tenant::{
        TenantConfig, TenantGuard, TenantId, TenantRegistry, TenantStrategy, TENANT,
    };
    pub use crate::web::{Error, Inject, RequestContext};
    pub use arcly_http_macros::{
        circuit_breaker, AuditLog, CacheKey, CacheTTL, Controller, Delete, Deprecated,
        EventConsumer, EventPattern, Get, Idempotent, Injectable, MaskFields, Module, Patch, Post,
        Put, RequirePolicies, Timeout, Transactional, UseInterceptors, Version,
    };
    pub use schemars::JsonSchema;
    pub use validator::Validate;
}