auths-cli 0.0.1-rc.8

Command-line interface for Auths decentralized identity system
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115

use std::path::Path;
use std::sync::Arc;

use anyhow::{Result, bail};
use serde::Serialize;

use auths_id::ports::registry::RegistryBackend;
use auths_id::storage::attestation::AttestationSource;
use auths_id::storage::identity::IdentityStorage;
use auths_infra_http::HttpRegistryClient;
use auths_sdk::error::RegistrationError;
pub use auths_sdk::registration::DEFAULT_REGISTRY_URL;
use auths_sdk::result::RegistrationOutcome;
use auths_storage::git::{
    GitRegistryBackend, RegistryAttestationStorage, RegistryConfig, RegistryIdentityStorage,
};

use crate::ux::format::{JsonResponse, Output, is_json_mode};

#[derive(Serialize)]
struct RegisterJsonResponse {
    did_prefix: String,
    registry: String,
    platform_claims_indexed: usize,
}

/// Publishes a local identity to a registry for public discovery.
///
/// Args:
/// * `repo_path`: Path to the local identity repository.
/// * `registry`: Base URL of the target registry.
///
/// Usage:
/// ```ignore
/// handle_register(&repo_path, "https://public.auths.dev")?;
/// ```
pub fn handle_register(repo_path: &Path, registry: &str) -> Result<()> {
    let rt = tokio::runtime::Runtime::new()?;

    let backend: Arc<dyn RegistryBackend + Send + Sync> = Arc::new(
        GitRegistryBackend::from_config_unchecked(RegistryConfig::single_tenant(repo_path)),
    );
    let identity_storage: Arc<dyn IdentityStorage + Send + Sync> =
        Arc::new(RegistryIdentityStorage::new(repo_path.to_path_buf()));
    let attestation_store = Arc::new(RegistryAttestationStorage::new(repo_path));
    let attestation_source: Arc<dyn AttestationSource + Send + Sync> = attestation_store;

    let registry_client = HttpRegistryClient::new();

    match rt.block_on(auths_sdk::registration::register_identity(
        identity_storage,
        backend,
        attestation_source,
        registry,
        None,
        &registry_client,
    )) {
        Ok(outcome) => display_registration_result(&outcome),
        Err(RegistrationError::AlreadyRegistered) => {
            bail!("Identity already registered at this registry.");
        }
        Err(RegistrationError::QuotaExceeded) => {
            bail!("Registration quota exceeded. Try again next month or use a paid tier.");
        }
        Err(RegistrationError::NetworkError(e)) => {
            bail!("Failed to connect to registry server: {e}");
        }
        Err(RegistrationError::LocalDataError(e)) => {
            bail!("{e}");
        }
        Err(e) => {
            bail!("Registration failed: {e}");
        }
    }
}

fn display_registration_result(outcome: &RegistrationOutcome) -> Result<()> {
    if is_json_mode() {
        let json_resp = JsonResponse::success(
            "id register",
            RegisterJsonResponse {
                did_prefix: outcome.did_prefix.clone(),
                registry: outcome.registry.clone(),
                platform_claims_indexed: outcome.platform_claims_indexed,
            },
        );
        json_resp.print()?;
    } else {
        let out = Output::stdout();
        println!(
            "{} Identity registered at {}",
            out.success("Success!"),
            out.bold(&outcome.registry)
        );
        println!("DID: {}", out.info(&outcome.did_prefix));
        if outcome.platform_claims_indexed > 0 {
            println!(
                "Platform claims indexed: {}",
                outcome.platform_claims_indexed
            );
        }
        println!();
        println!(
            "{}",
            out.bold("Next step: Anchor a cryptographic attestation for your code")
        );
        println!(
            "Run: {}",
            out.dim(
                "auths artifact publish --signature <path-to.auths.json> --package <ecosystem:name>"
            )
        );
    }
    Ok(())
}