aviso-server 0.6.0

Notification service for data-driven workflows with live and replay APIs.
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173

// (C) Copyright 2024- ECMWF and individual contributors.
//
// This software is licensed under the terms of the Apache Licence Version 2.0
// which can be obtained at http://www.apache.org/licenses/LICENSE-2.0.
// In applying this licence, ECMWF does not waive the privileges and immunities
// granted to it by virtue of its status as an intergovernmental organisation nor
// does it submit to any jurisdiction.

//! Shared topic wire encoding/decoding.

use anyhow::{Result, bail};

const SUBJECT_SEPARATOR: char = '.';

fn is_reserved_char(ch: char) -> bool {
    matches!(ch, '.' | '*' | '>' | '%')
}

fn from_hex(byte: u8) -> Option<u8> {
    match byte {
        b'0'..=b'9' => Some(byte - b'0'),
        b'a'..=b'f' => Some(byte - b'a' + 10),
        b'A'..=b'F' => Some(byte - b'A' + 10),
        _ => None,
    }
}

/// Encode one logical token for wire transport.
pub fn encode_token(token: &str) -> String {
    let mut out = String::with_capacity(token.len());
    for ch in token.chars() {
        if is_reserved_char(ch) {
            out.push('%');
            out.push_str(&format!("{:02X}", ch as u32));
        } else {
            out.push(ch);
        }
    }
    out
}

/// Decode one wire token back to logical form.
pub fn decode_token(token: &str) -> Result<String> {
    let bytes = token.as_bytes();
    let mut out = Vec::with_capacity(bytes.len());
    let mut i = 0;

    while i < bytes.len() {
        if bytes[i] == b'%' {
            if i + 2 >= bytes.len() {
                bail!(
                    "Invalid percent-encoding: trailing '%' in token '{}'",
                    token
                );
            }
            let hi = from_hex(bytes[i + 1]).ok_or_else(|| {
                anyhow::anyhow!(
                    "Invalid percent-encoding: non-hex '{}' in token '{}'",
                    bytes[i + 1] as char,
                    token
                )
            })?;
            let lo = from_hex(bytes[i + 2]).ok_or_else(|| {
                anyhow::anyhow!(
                    "Invalid percent-encoding: non-hex '{}' in token '{}'",
                    bytes[i + 2] as char,
                    token
                )
            })?;
            out.push((hi << 4) | lo);
            i += 3;
        } else {
            out.push(bytes[i]);
            i += 1;
        }
    }

    String::from_utf8(out)
        .map_err(|e| anyhow::anyhow!("Decoded token is not valid UTF-8 ('{}'): {}", token, e))
}

/// Encode logical topic parts to a wire subject.
pub fn encode_subject(parts: &[String]) -> String {
    let encoded_parts = parts.iter().map(|p| encode_token(p)).collect::<Vec<_>>();
    encoded_parts.join(&SUBJECT_SEPARATOR.to_string())
}

/// Decode wire subject into logical topic parts.
pub fn decode_subject(subject: &str) -> Result<Vec<String>> {
    subject.split(SUBJECT_SEPARATOR).map(decode_token).collect()
}

/// Decode a wire subject into a display-friendly topic string.
///
/// Falls back to the original input if decoding fails.
pub fn decode_subject_for_display(subject: &str) -> String {
    match decode_subject(subject) {
        Ok(parts) => parts.join("."),
        Err(_) => subject.to_string(),
    }
}

/// Decode first token of a subject.
pub fn decode_subject_base(subject: &str) -> Result<String> {
    let raw = subject
        .split(SUBJECT_SEPARATOR)
        .next()
        .ok_or_else(|| anyhow::anyhow!("Subject cannot be empty"))?;
    if raw.is_empty() {
        bail!("Subject cannot be empty");
    }
    decode_token(raw)
}

#[cfg(test)]
mod tests {
    use super::*;

    #[test]
    fn token_roundtrip_reserved_chars() {
        let raw = "1.45*foo>bar%baz";
        let encoded = encode_token(raw);
        assert_eq!(encoded, "1%2E45%2Afoo%3Ebar%25baz");
        let decoded = decode_token(&encoded).unwrap();
        assert_eq!(decoded, raw);
    }

    #[test]
    fn token_roundtrip_examples() {
        assert_eq!(encode_token("1.45"), "1%2E45");
        assert_eq!(decode_token("1%2E45").unwrap(), "1.45");

        assert_eq!(encode_token("1*34"), "1%2A34");
        assert_eq!(decode_token("1%2A34").unwrap(), "1*34");

        assert_eq!(encode_token("1%25"), "1%2525");
        assert_eq!(decode_token("1%2525").unwrap(), "1%25");

        // Raw wire token decodes once as expected.
        assert_eq!(decode_token("1%25").unwrap(), "1%");
    }

    #[test]
    fn subject_roundtrip() {
        let parts = vec![
            "diss".to_string(),
            "FOO".to_string(),
            "1.59342".to_string(),
            "a*b".to_string(),
            "p%q".to_string(),
        ];

        let wire = encode_subject(&parts);
        assert_eq!(wire, "diss.FOO.1%2E59342.a%2Ab.p%25q");

        let decoded = decode_subject(&wire).unwrap();
        assert_eq!(decoded, parts);
    }

    #[test]
    fn rejects_invalid_percent_sequences() {
        assert!(decode_token("%").is_err());
        assert!(decode_token("%2").is_err());
        assert!(decode_token("%2G").is_err());
        assert!(decode_token("abc%ZZ").is_err());
    }

    #[test]
    fn decode_subject_base_decodes_first_token() {
        let subject = "diss%2Ev2.FOO";
        assert_eq!(decode_subject_base(subject).unwrap(), "diss.v2");
    }
}