claude-agent 0.2.25

Rust SDK for building AI agents with Anthropic's Claude - Direct API, no CLI dependency
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109

//! Shared authentication caching for cloud provider adapters.

use std::time::{Duration, Instant, SystemTime};

use secrecy::{ExposeSecret, SecretString};
use tokio::sync::RwLock;

const TOKEN_REFRESH_MARGIN: Duration = Duration::from_secs(300);

pub struct CachedToken {
    token: SecretString,
    expires_at: Instant,
}

impl std::fmt::Debug for CachedToken {
    fn fmt(&self, f: &mut std::fmt::Formatter<'_>) -> std::fmt::Result {
        f.debug_struct("CachedToken")
            .field("expires_at", &self.expires_at)
            .finish()
    }
}

impl CachedToken {
    pub fn new(token: String, ttl: Duration) -> Self {
        Self {
            token: SecretString::from(token),
            expires_at: Instant::now() + ttl - TOKEN_REFRESH_MARGIN,
        }
    }

    pub fn is_expired(&self) -> bool {
        Instant::now() >= self.expires_at
    }

    pub fn token(&self) -> &str {
        self.token.expose_secret()
    }
}

#[derive(Clone)]
pub struct CachedAwsCredentials {
    pub access_key_id: String,
    pub secret_access_key: SecretString,
    pub session_token: Option<SecretString>,
    expiry: Option<SystemTime>,
}

impl std::fmt::Debug for CachedAwsCredentials {
    fn fmt(&self, f: &mut std::fmt::Formatter<'_>) -> std::fmt::Result {
        f.debug_struct("CachedAwsCredentials")
            .field("expiry", &self.expiry)
            .finish()
    }
}

impl CachedAwsCredentials {
    pub fn new(
        access_key_id: String,
        secret_access_key: String,
        session_token: Option<String>,
        expiry: Option<SystemTime>,
    ) -> Self {
        Self {
            access_key_id,
            secret_access_key: SecretString::from(secret_access_key),
            session_token: session_token.map(SecretString::from),
            expiry,
        }
    }

    pub fn is_expired(&self) -> bool {
        self.expiry
            .map(|exp| SystemTime::now() + TOKEN_REFRESH_MARGIN > exp)
            .unwrap_or(false)
    }

    pub fn expiry(&self) -> Option<SystemTime> {
        self.expiry
    }
}

pub type TokenCache = RwLock<Option<CachedToken>>;
pub type AwsCredentialsCache = RwLock<Option<CachedAwsCredentials>>;

pub fn new_token_cache() -> TokenCache {
    RwLock::new(None)
}

pub fn new_aws_credentials_cache() -> AwsCredentialsCache {
    RwLock::new(None)
}

#[cfg(test)]
mod tests {
    use super::*;

    #[test]
    fn test_cached_token_not_expired() {
        let token = CachedToken::new("test".into(), Duration::from_secs(3600));
        assert!(!token.is_expired());
        assert_eq!(token.token(), "test");
    }

    #[test]
    fn test_cached_token_expired() {
        let token = CachedToken::new("test".into(), Duration::from_secs(0));
        assert!(token.is_expired());
    }
}