cache-vault 0.1.3

Caching secret values to SQLite with encryption
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118

mod base32;
mod connection;
mod crypt;
mod digest;
mod error;
mod key;
mod models;
mod vault_entry;

#[allow(unused_imports)]
use chrono::{DateTime, NaiveDateTime, Utc};
use std::collections::HashMap;

use crate::error::CacheVaultError;
use crate::models::*;

#[tracing::instrument]
pub async fn init() -> Result<(), CacheVaultError> {
    connection::migrate().await
}

#[tracing::instrument]
pub async fn save(
    namespace: &str,
    key_name: &str,
    value: &str,
    attributes: Option<HashMap<String, String>>,
    expired_at: Option<NaiveDateTime>,
) -> Result<(), CacheVaultError> {
    let entry_id = Entry::upsert(namespace, key_name, value, expired_at).await?;
    if let Some(new_attributes) = attributes {
        for (name, value) in new_attributes.iter() {
            let _ = Attribute::upsert(entry_id, name, value).await?;
        }
    }
    Ok(())
}

#[tracing::instrument]
pub async fn fetch(namespace: &str, key_name: &str) -> Result<(String, Option<NaiveDateTime>), CacheVaultError> {
    let entry = Entry::fetch(namespace, key_name).await?;
    Ok((entry.plaintext()?, entry.expired_at))
}

#[tracing::instrument]
pub async fn fetch_with_attributes(
    namespace: &str,
    key_name: &str,
) -> Result<(String, Option<NaiveDateTime>, Option<HashMap<String, String>>), CacheVaultError> {
    let entry = Entry::fetch(namespace, key_name).await?;
    let attributes = Attribute::fetch_all(entry.id)
        .await?
        .iter()
        .map(|a| Ok((a.name.to_string(), a.plaintext()?)))
        .collect::<Result<HashMap<String, String>, CacheVaultError>>()?;
    if attributes.is_empty() {
        Ok((entry.plaintext()?, entry.expired_at, None))
    } else {
        Ok((entry.plaintext()?, entry.expired_at, Some(attributes)))
    }
}

// fn async search_by_attributes(namespace: &str, attributes: HashMap<String, String>) -> Result<String, CacheVaultError> {
//    todo!()
// }

#[cfg(test)]
mod tests {
    use super::*;
    use crate::connection::migrate;

    #[tracing_test::traced_test]
    #[tokio::test]
    async fn test_save() -> Result<(), CacheVaultError> {
        migrate().await?;
        save("test", "test-key1", "test-value1", None, None).await?;
        save("test", "test-key2", "test-value2", None, None).await?;
        let (value1, _) = fetch("test", "test-key1").await?;
        assert_eq!(value1, "test-value1");
        let (value2, _) = fetch("test", "test-key2").await?;
        assert_eq!(value2, "test-value2");

        let (value1, _, attributes) = fetch_with_attributes("test", "test-key1").await?;
        assert_eq!(value1, "test-value1");
        assert_eq!(attributes, None);

        match fetch("test", "no-such-key").await {
            Err(e) => match e {
                CacheVaultError::SqlxError(sqlx::Error::RowNotFound) => (),
                _ => panic!("unexpected"),
            },
            Ok(_) => panic!("unexpected"),
        }

        Ok(())
    }

    #[tracing_test::traced_test]
    #[tokio::test]
    async fn test_save_with_attributes() -> Result<(), CacheVaultError> {
        migrate().await?;
        let attributes = HashMap::from([
            (String::from("attr1"), String::from("attr1-value")),
            (String::from("attr2"), String::from("attr2-value")),
            (String::from("attr3"), String::from("attr3-value")),
        ]);
        save("test", "test-key1", "test-value1", Some(attributes.clone()), None).await?;

        if let (value1, _, Some(attrs)) = fetch_with_attributes("test", "test-key1").await? {
            assert_eq!(value1, "test-value1");
            assert_eq!(attrs, attributes);
        } else {
            panic!("unexpected");
        }

        Ok(())
    }
}