configvault-sdk 0.1.1

Async Rust client SDK for the ConfigVault configuration management API
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145

use std::collections::HashMap;
use std::time::Duration;

use reqwest::header::{HeaderMap, HeaderValue};

use crate::errors::{handle_error_response, ConfigVaultError};
use crate::models::{ConfigListResponse, ConfigResponse, HealthResponse, SyncResponse};
use crate::watcher::ConfigWatcher;

/// Async HTTP client for the ConfigVault API.
pub struct ConfigVaultClient {
    base_url: String,
    api_key: String,
    http: reqwest::Client,
    timeout: Duration,
}

impl ConfigVaultClient {
    /// Create a new client with the default 30-second timeout.
    pub fn new(base_url: &str, api_key: &str) -> Self {
        Self::with_timeout(base_url, api_key, Duration::from_secs(30))
    }

    /// Create a new client with a custom timeout.
    pub fn with_timeout(base_url: &str, api_key: &str, timeout: Duration) -> Self {
        let mut headers = HeaderMap::new();
        headers.insert(
            "X-Api-Key",
            HeaderValue::from_str(api_key).expect("API key must be a valid header value"),
        );

        let http = reqwest::Client::builder()
            .default_headers(headers)
            .timeout(timeout)
            .use_rustls_tls()
            .build()
            .expect("Failed to build HTTP client");

        Self {
            base_url: base_url.trim_end_matches('/').to_string(),
            api_key: api_key.to_string(),
            http,
            timeout,
        }
    }

    /// Get a configuration value by key.
    ///
    /// Sends `GET /config/{key}` and returns the value string.
    pub async fn get(&self, key: &str) -> Result<String, ConfigVaultError> {
        let url = format!("{}/config/{}", self.base_url, key);
        let response = self.http.get(&url).send().await?;

        if !response.status().is_success() {
            return Err(handle_error_response(
                response.status().as_u16(),
                Some(key),
            ));
        }

        let data: ConfigResponse = response.json().await?;
        Ok(data.value)
    }

    /// Check whether a configuration key exists.
    ///
    /// Sends `HEAD /config/{key}` and returns `true` on 200, `false` on 404.
    pub async fn exists(&self, key: &str) -> Result<bool, ConfigVaultError> {
        let url = format!("{}/config/{}", self.base_url, key);
        let response = self.http.head(&url).send().await?;

        let status = response.status().as_u16();
        match status {
            200 => Ok(true),
            404 => Ok(false),
            401 | 503 => Err(handle_error_response(status, None)),
            _ => Err(handle_error_response(status, None)),
        }
    }

    /// List all configurations under a namespace prefix.
    ///
    /// Sends `GET /config?prefix={namespace}` and returns a map of key → value.
    pub async fn list(&self, namespace: &str) -> Result<HashMap<String, String>, ConfigVaultError> {
        let url = reqwest::Url::parse_with_params(
            &format!("{}/config", self.base_url),
            &[("prefix", namespace)],
        )
        .map_err(|e| ConfigVaultError::Unexpected {
            status: 0,
            message: format!("Invalid URL: {e}"),
        })?;
        let response = self.http.get(url).send().await?;

        if !response.status().is_success() {
            return Err(handle_error_response(
                response.status().as_u16(),
                None,
            ));
        }

        let data: ConfigListResponse = response.json().await?;
        Ok(data.configs)
    }

    /// Trigger an immediate sync with the upstream Vaultwarden server.
    ///
    /// Sends `POST /sync` and instructs ConfigVault to pull the latest data
    /// from Vaultwarden. After a successful sync the next read of any
    /// configuration key will return the up-to-date value.
    pub async fn sync(&self) -> Result<SyncResponse, ConfigVaultError> {
        let url = format!("{}/sync", self.base_url);
        let response = self.http.post(&url).send().await?;

        if !response.status().is_success() {
            return Err(handle_error_response(response.status().as_u16(), None));
        }

        let data: SyncResponse = response.json().await?;
        Ok(data)
    }

    /// Check the health of the ConfigVault service.
    ///
    /// Sends `GET /health` and returns the health response.
    pub async fn health(&self) -> Result<HealthResponse, ConfigVaultError> {
        let url = format!("{}/health", self.base_url);
        let response = self.http.get(&url).send().await?;

        let data: HealthResponse = response.json().await?;
        Ok(data)
    }

    /// Create a `ConfigWatcher` for SSE-based change notifications.
    ///
    /// The watcher connects to `GET /events?filter={filter}`.
    pub fn watch(&self, filter: Option<&str>) -> ConfigWatcher {
        ConfigWatcher::new(
            &self.base_url,
            &self.api_key,
            filter,
            self.timeout,
        )
    }
}