avassa-client 0.11.0

Library for integrating with the Avassa APIs
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40

//!
//! Optional module for logging in

/// Login from environment variables
/// * `SUPD` - default set to `https://api.internal:4646`
/// * `API_CA_CERT` - optional, if set, used as the CA certificate to verify the server certificate
/// * `APPROLE_SECRET_ID` - set by the application specification
///
/// If no `APPROLE_SECRET_ID` is set, fallback to testing with `SUPD_USER` and `SUPD_PASSWORD`.
///
/// **NOTE** Username/password authentication should not be used in production but only for local testing.
///
pub async fn login_from_env(role_id: Option<&str>) -> crate::Result<crate::Client> {
    let supd = std::env::var("SUPD").unwrap_or_else(|_| "https://api.internal:4646".to_string());
    tracing::debug!("Connecting to api at address {}", supd);

    let builder = crate::ClientBuilder::new();

    let ca_cert = std::env::var("API_CA_CERT").map(|s| s.bytes().collect::<Vec<u8>>());

    let builder = if let Ok(ca) = ca_cert {
        builder.add_root_certificate(&ca)?
    } else {
        builder.danger_disable_cert_verification()
    };

    if let Ok(secret_id) = std::env::var("APPROLE_SECRET_ID") {
        tracing::debug!("Trying application login");
        if let Ok(client) = builder.approle_login(&supd, &secret_id, role_id).await {
            return Ok(client);
        }
    }

    tracing::debug!("Trying username/password login");
    let username = std::env::var("SUPD_USER")
        .map_err(|_| crate::Error::LoginFailureMissingEnv("SUPD_USER".to_string()))?;
    let password = std::env::var("SUPD_PASSWORD")
        .map_err(|_| crate::Error::LoginFailureMissingEnv("SUPD_PASSWORD".to_string()))?;
    builder.login(&supd, &username, &password).await
}