cbilling 0.3.0

Multi-cloud billing SDK for Rust — query billing data from AWS, GCP, Aliyun, Tencent Cloud, Volcengine, UCloud, Cloudflare
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402

// Copyright 2025 OpenObserve Inc.

//! Tencent Cloud Billing Provider
//!
//! This module implements billing integration with Tencent Cloud using their REST API

use chrono::{DateTime, Utc};
use hmac::{Hmac, Mac};
use reqwest::Client;
use serde::{Deserialize, Serialize};
use serde_json::{json, Value};
use sha2::{Digest, Sha256};

use super::super::{BillingError, Result};

type HmacSha256 = Hmac<Sha256>;

const TENCENT_BILLING_HOST: &str = "billing.tencentcloudapi.com";
const TENCENT_BILLING_ENDPOINT: &str = "https://billing.tencentcloudapi.com";

/// Tencent Cloud Billing Client
pub struct TencentCloudBillingClient {
    secret_id: String,
    secret_key: String,
    region: String,
    http_client: Client,
}

/// Tencent Cloud bill summary grouped by product.
#[derive(Debug, Serialize, Deserialize)]
pub struct TencentBillSummary {
    #[serde(rename = "Response")]
    pub response: TencentBillSummaryResponse,
}

/// Envelope for the Tencent Cloud bill summary API response.
#[derive(Debug, Serialize, Deserialize)]
pub struct TencentBillSummaryResponse {
    #[serde(rename = "Ready")]
    pub ready: Option<u8>,
    #[serde(rename = "SummaryTotal")]
    pub summary_total: Option<TencentSummaryTotal>,
    #[serde(rename = "SummaryOverview")]
    pub summary_overview: Option<Vec<TencentBillItem>>,
    #[serde(rename = "RequestId")]
    pub request_id: String,
}

/// Aggregate totals from the Tencent Cloud bill summary.
#[derive(Debug, Serialize, Deserialize, Clone)]
pub struct TencentSummaryTotal {
    #[serde(rename = "RealTotalCost")]
    pub real_total_cost: String,
    #[serde(rename = "TotalCost")]
    pub total_cost: String,
}

/// A single product-level bill item from Tencent Cloud.
#[derive(Debug, Serialize, Deserialize, Clone)]
pub struct TencentBillItem {
    #[serde(rename = "BusinessCode")]
    pub business_code: Option<String>,
    #[serde(rename = "BusinessCodeName")]
    pub business_code_name: Option<String>,
    #[serde(rename = "RealTotalCost")]
    pub real_total_cost: String,
    #[serde(rename = "TotalCost")]
    pub total_cost: String,
    #[serde(rename = "CashPayAmount")]
    pub cash_pay_amount: Option<String>,
    #[serde(rename = "VoucherPayAmount")]
    pub voucher_pay_amount: Option<String>,
}

/// Tencent Cloud detailed bill response.
#[derive(Debug, Serialize, Deserialize)]
pub struct TencentBillDetail {
    #[serde(rename = "Response")]
    pub response: TencentBillDetailResponse,
}

/// Envelope for the Tencent Cloud bill detail API response.
#[derive(Debug, Serialize, Deserialize)]
pub struct TencentBillDetailResponse {
    #[serde(rename = "DetailSet")]
    pub detail_set: Option<Vec<TencentBillDetailItem>>,
    #[serde(rename = "Total")]
    pub total: Option<u64>,
    #[serde(rename = "RequestId")]
    pub request_id: String,
}

/// A single detail-level bill line item from Tencent Cloud.
#[derive(Debug, Serialize, Deserialize, Clone)]
pub struct TencentBillDetailItem {
    #[serde(rename = "BusinessCode")]
    pub business_code: Option<String>,
    #[serde(rename = "ProductCode")]
    pub product_code: Option<String>,
    #[serde(rename = "PayMode")]
    pub pay_mode: Option<String>,
    #[serde(rename = "ProjectName")]
    pub project_name: Option<String>,
    #[serde(rename = "RegionName")]
    pub region_name: Option<String>,
    #[serde(rename = "RealTotalCost")]
    pub real_total_cost: Option<String>,
    #[serde(rename = "CashPayAmount")]
    pub cash_pay_amount: Option<String>,
    #[serde(rename = "PayTime")]
    pub pay_time: Option<String>,
}

impl TencentCloudBillingClient {
    /// Creates a new Tencent Cloud billing client with the given credentials.
    pub fn new(secret_id: String, secret_key: String, region: String) -> Self {
        Self {
            secret_id,
            secret_key,
            region,
            http_client: Client::new(),
        }
    }

    /// Generate Tencent Cloud API v3 signature
    fn generate_signature(
        &self,
        _action: &str,
        params: &Value,
        timestamp: i64,
        _nonce: u32,
    ) -> Result<String> {
        // Build canonical request
        let canonical_headers = format!(
            "content-type:application/json\nhost:{}\n",
            TENCENT_BILLING_HOST
        );
        let signed_headers = "content-type;host";
        let payload = serde_json::to_string(params).map_err(|e| {
            BillingError::ServiceError(format!("Failed to serialize params: {}", e))
        })?;

        let hashed_payload = hex::encode(Sha256::digest(payload.as_bytes()));

        let canonical_request = format!(
            "POST\n/\n\n{}\n{}\n{}",
            canonical_headers, signed_headers, hashed_payload
        );

        let hashed_canonical_request = hex::encode(Sha256::digest(canonical_request.as_bytes()));

        // Build string to sign
        let date = DateTime::from_timestamp(timestamp, 0)
            .ok_or_else(|| BillingError::ServiceError("Invalid timestamp".to_string()))?
            .format("%Y-%m-%d")
            .to_string();
        let credential_scope = format!("{}/billing/tc3_request", date);
        let string_to_sign = format!(
            "TC3-HMAC-SHA256\n{}\n{}\n{}",
            timestamp, credential_scope, hashed_canonical_request
        );

        // Calculate signature
        let secret_date = self.hmac_sha256(
            format!("TC3{}", self.secret_key).as_bytes(),
            date.as_bytes(),
        );
        let secret_service = self.hmac_sha256(&secret_date, b"billing");
        let secret_signing = self.hmac_sha256(&secret_service, b"tc3_request");
        let signature = hex::encode(self.hmac_sha256(&secret_signing, string_to_sign.as_bytes()));

        Ok(signature)
    }

    fn hmac_sha256(&self, key: &[u8], data: &[u8]) -> Vec<u8> {
        let mut mac = HmacSha256::new_from_slice(key).expect("HMAC can take key of any size");
        mac.update(data);
        mac.finalize().into_bytes().to_vec()
    }

    /// Call Tencent Cloud API
    async fn call_api(&self, action: &str, params: Value) -> Result<Value> {
        let timestamp = Utc::now().timestamp();
        // Generate nonce using timestamp to avoid rand dependency
        let nonce = (Utc::now().timestamp_nanos_opt().unwrap_or(0) % u32::MAX as i64) as u32;

        let signature = self.generate_signature(action, &params, timestamp, nonce)?;

        let date = DateTime::from_timestamp(timestamp, 0)
            .ok_or_else(|| BillingError::ServiceError("Invalid timestamp".to_string()))?
            .format("%Y-%m-%d")
            .to_string();
        let credential_scope = format!("{}/billing/tc3_request", date);
        let authorization = format!(
            "TC3-HMAC-SHA256 Credential={}/{}, SignedHeaders=content-type;host, Signature={}",
            self.secret_id, credential_scope, signature
        );

        let response = self
            .http_client
            .post(TENCENT_BILLING_ENDPOINT)
            .header("Content-Type", "application/json")
            .header("Host", TENCENT_BILLING_HOST)
            .header("X-TC-Action", action)
            .header("X-TC-Timestamp", timestamp.to_string())
            .header("X-TC-Version", "2018-07-09")
            .header("X-TC-Region", &self.region)
            .header("Authorization", authorization)
            .json(&params)
            .send()
            .await
            .map_err(|e| BillingError::ServiceError(format!("HTTP request failed: {}", e)))?;

        if !response.status().is_success() {
            let status = response.status();
            let body = response.text().await.unwrap_or_default();
            return Err(BillingError::ServiceError(format!(
                "Tencent Cloud API error: {} - {}",
                status, body
            )));
        }

        let json_response = response
            .json::<Value>()
            .await
            .map_err(|e| BillingError::ServiceError(format!("Failed to parse response: {}", e)))?;

        Ok(json_response)
    }

    /// Get bill summary by product
    pub async fn get_bill_summary(&self, month: &str) -> Result<TencentBillSummary> {
        tracing::info!("Querying Tencent Cloud billing for month: {}", month);

        // Per the official docs, DescribeBillSummaryByProduct requires BeginTime and EndTime
        // in YYYY-MM format, both set to the same month.
        let params = json!({
            "BeginTime": month,
            "EndTime": month,
        });

        tracing::debug!(
            "Tencent Cloud API params: {}",
            serde_json::to_string(&params).unwrap_or_default()
        );

        let response = self
            .call_api("DescribeBillSummaryByProduct", params)
            .await?;

        tracing::debug!(
            "Tencent Cloud API response: {}",
            serde_json::to_string_pretty(&response).unwrap_or_default()
        );

        let result: TencentBillSummary = serde_json::from_value(response.clone()).map_err(|e| {
            BillingError::ServiceError(format!("Failed to parse bill summary: {}", e))
        })?;

        tracing::info!(
            "Tencent Cloud response - Ready: {:?}, Has SummaryTotal: {}, Has SummaryOverview: {}, Overview items: {}",
            result.response.ready,
            result.response.summary_total.is_some(),
            result.response.summary_overview.is_some(),
            result
                .response
                .summary_overview
                .as_ref()
                .map(|v| v.len())
                .unwrap_or(0)
        );

        if let Some(ref total) = result.response.summary_total {
            tracing::info!("Tencent Cloud total cost: {}", total.real_total_cost);
        }

        Ok(result)
    }

    /// Get detailed bill list
    pub async fn get_bill_detail(
        &self,
        month: &str,
        offset: u64,
        limit: u64,
    ) -> Result<TencentBillDetail> {
        let params = json!({
            "Month": month,
            "Offset": offset,
            "Limit": limit,
        });

        let response = self.call_api("DescribeBillDetail", params).await?;

        serde_json::from_value(response)
            .map_err(|e| BillingError::ServiceError(format!("Failed to parse bill detail: {}", e)))
    }

    /// Get account balance
    pub async fn get_account_balance(&self) -> Result<Value> {
        self.call_api("DescribeAccountBalance", json!({})).await
    }

    /// Test credentials
    pub async fn test_credentials(&self) -> Result<bool> {
        match self.get_account_balance().await {
            Ok(_) => Ok(true),
            Err(_) => Ok(false),
        }
    }
}

// ── BillingProvider adapter ──────────────────────────────────────────────

use super::traits::{BillingProvider, RawBillItem};
use crate::service::CloudAccountConfig;

/// Adapter that implements [`BillingProvider`] for Tencent Cloud.
pub struct TencentCloudBillingAdapter {
    client: TencentCloudBillingClient,
}

impl TencentCloudBillingAdapter {
    /// Create an adapter from a [`CloudAccountConfig`].
    pub fn from_config(config: &CloudAccountConfig) -> Result<Self> {
        let secret_id = config
            .secret_id
            .clone()
            .ok_or_else(|| BillingError::ServiceError("Missing secret_id".to_string()))?;
        let secret_key = config
            .secret_key
            .clone()
            .ok_or_else(|| BillingError::ServiceError("Missing secret_key".to_string()))?;
        let region = config
            .region
            .clone()
            .unwrap_or_else(|| "ap-guangzhou".to_string());
        Ok(Self {
            client: TencentCloudBillingClient::new(secret_id, secret_key, region),
        })
    }
}

impl BillingProvider for TencentCloudBillingAdapter {
    fn provider_name(&self) -> &'static str {
        "tencentcloud"
    }

    fn currency(&self) -> &'static str {
        "CNY"
    }

    async fn query_bill_items(&self, billing_cycle: &str) -> Result<Vec<RawBillItem>> {
        let summary = self.client.get_bill_summary(billing_cycle).await?;
        let mut items = Vec::new();

        if let Some(overview) = summary.response.summary_overview {
            for item in &overview {
                let cost: f64 = item.real_total_cost.parse().unwrap_or(0.0);
                let name = item
                    .business_code_name
                    .clone()
                    .unwrap_or_else(|| "Unknown".to_string());
                let code = item
                    .business_code
                    .clone()
                    .unwrap_or_else(|| "unknown".to_string());
                items.push(RawBillItem {
                    product_name: name,
                    product_code: code,
                    cost,
                    region: String::new(),
                    instance_id: String::new(),
                    usage: None,
                    unit: None,
                });
            }
        }

        Ok(items)
    }

    async fn test_credentials(&self) -> Result<bool> {
        self.client.test_credentials().await
    }
}

#[cfg(test)]
mod tests {
    use super::*;

    #[test]
    fn test_client_creation() {
        let client = TencentCloudBillingClient::new(
            "test_id".to_string(),
            "test_key".to_string(),
            "ap-guangzhou".to_string(),
        );
        assert_eq!(client.secret_id, "test_id");
        assert_eq!(client.region, "ap-guangzhou");
    }
}