coreason-runtime 0.1.0

Kinetic Plane execution engine for the CoReason Tripartite Cybernetic Manifold
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96

// Copyright (c) 2026 CoReason, Inc.
// All rights reserved.

//! Auth API routes.
//!
//! Replaces `coreason_runtime/api/auth_router.py`.
//! Proxies authentication verification and status requests to the Python sidecar.

use axum::{
    extract::State,
    http::StatusCode,
    response::{IntoResponse, Response},
    routing::{get, post},
    Json, Router,
};
use std::sync::Arc;

use crate::GatewayState;

// ── Proxy helpers ───────────────────────────────────────────────────────

async fn proxy_get(state: &GatewayState, path: &str) -> Response {
    let url = format!("{}{}", state.sidecar_url, path);
    match ureq::get(&url).call() {
        Ok(res) => {
            let status = StatusCode::from_u16(res.status()).unwrap_or(StatusCode::OK);
            let body: serde_json::Value = res.into_json().unwrap_or(serde_json::Value::Null);
            (status, Json(body)).into_response()
        }
        Err(ureq::Error::Status(code, res)) => {
            let status = StatusCode::from_u16(code).unwrap_or(StatusCode::BAD_REQUEST);
            let body: serde_json::Value = res.into_json().unwrap_or(serde_json::Value::Null);
            (status, Json(body)).into_response()
        }
        Err(e) => (
            StatusCode::INTERNAL_SERVER_ERROR,
            Json(serde_json::json!({
                "status": "error",
                "message": format!("Failed to proxy GET {} to sidecar: {}", path, e),
            })),
        )
            .into_response(),
    }
}

async fn proxy_post(state: &GatewayState, path: &str, payload: &serde_json::Value) -> Response {
    let url = format!("{}{}", state.sidecar_url, path);
    match ureq::post(&url).send_json(payload) {
        Ok(res) => {
            let status = StatusCode::from_u16(res.status()).unwrap_or(StatusCode::OK);
            let body: serde_json::Value = res.into_json().unwrap_or(serde_json::Value::Null);
            (status, Json(body)).into_response()
        }
        Err(ureq::Error::Status(code, res)) => {
            let status = StatusCode::from_u16(code).unwrap_or(StatusCode::BAD_REQUEST);
            let body: serde_json::Value = res.into_json().unwrap_or(serde_json::Value::Null);
            (status, Json(body)).into_response()
        }
        Err(e) => (
            StatusCode::INTERNAL_SERVER_ERROR,
            Json(serde_json::json!({
                "status": "error",
                "message": format!("Failed to proxy POST {} to sidecar: {}", path, e),
            })),
        )
            .into_response(),
    }
}

// ── Handlers ────────────────────────────────────────────────────────────

/// POST /api/v1/auth/verify
///
/// Verify an authentication token via the sidecar.
async fn verify_auth(
    State(state): State<Arc<GatewayState>>,
    Json(payload): Json<serde_json::Value>,
) -> Response {
    proxy_post(&state, "/api/v1/auth/verify", &payload).await
}

/// GET /api/v1/auth/status
///
/// Retrieve current authentication status from the sidecar.
async fn auth_status(State(state): State<Arc<GatewayState>>) -> Response {
    proxy_get(&state, "/api/v1/auth/status").await
}

// ── Router ──────────────────────────────────────────────────────────────

/// Build the auth router.
pub fn router() -> Router<Arc<GatewayState>> {
    Router::new()
        .route("/api/v1/auth/verify", post(verify_auth))
        .route("/api/v1/auth/status", get(auth_status))
}