dat 1.4.0

DAT - Distributed Access Token
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98

use crate::dat::Dat;
use crate::dat_key::{DatKey, Kid};
use crate::dat_payload::DatPayload;
use crate::error::DatError;
use crate::signature_key::SignatureKeyOutOption;
use itertools::Itertools;
use std::sync::RwLock;

pub struct DatBank<T: Kid> {
    issuance_key: RwLock<Option<DatKey<T>>>,
    verifying_keys: RwLock<Vec<DatKey<T>>>,
}

impl <T: Kid> DatBank<T> {
    pub fn new() -> Self {
        DatBank {
            issuance_key: RwLock::new(None),
            verifying_keys: RwLock::new(vec![]),
        }
    }

    pub fn to_dat(&self, plain: &str, secure: &str) -> Result<String, DatError> {
        if let Some(key) = self.issuance_key.read().unwrap().as_ref() {
            key.to_dat(plain, secure)
        } else {
            Err(DatError::SigningKeyNotExists)
        }
    }

    pub fn to_payload(&self, dat: String) -> Result<DatPayload, DatError> {
        let dat: Dat<T> = dat.try_into()?;
        let kid = dat.kid();
        if let Some(key) = self.verifying_keys.read().unwrap().iter().find(|e| &e.kid == kid) {
            key.to_payload(&dat)
        } else {
            Err(DatError::KidNotFound)
        }
    }

    pub fn to_payload_without_verify(&self, dat: String) -> Result<DatPayload, DatError> {
        let dat: Dat<T> = dat.try_into()?;
        let kid = dat.kid();
        if let Some(key) = self.verifying_keys.read().unwrap().iter().find(|e| &e.kid == kid) {
            key.to_payload_without_verify(&dat)
        } else {
            Err(DatError::KidNotFound)
        }
    }

    pub fn export_kids(&self) -> Vec<T> {
        self.verifying_keys.read().unwrap().iter().map(|key| key.kid.clone()).collect()
    }

    pub fn export(&self, signature_key_out_option: SignatureKeyOutOption) -> String {
        self.verifying_keys.read().unwrap().iter().map(|key| key.format(signature_key_out_option).unwrap()).join("\n")
    }

    pub fn export_keys(&self) -> Vec<DatKey<T>> {
        self.verifying_keys.read().unwrap().clone()
    }

    pub fn import(&self, format: &str, clear: bool) -> Result<(), DatError> {
        let new_keys = format.lines()
            .filter(|e| !e.is_empty())
            .map(|e| e.parse::<DatKey<T>>())
            .collect::<Result<Vec<DatKey<T>>, DatError>>()?;
        self.import_keys(new_keys, clear)
    }

    pub fn import_keys(&self, new_keys: Vec<DatKey<T>>, clear: bool) -> Result<(), DatError> {
        let mut keys = if clear {
            vec![]
        } else {
            self.verifying_keys.read().unwrap().clone()
        };

        for key in new_keys {
            if !keys.contains(&key) {
                keys.push(key);
            }
        }

        let keys = keys.into_iter()
            .filter(|key| !key.expired_verifying())
            .sorted_by(|a, b| a.issue_begin.cmp(&b.issue_begin))
            .collect::<Vec<DatKey<T>>>();

        let issuance_key_set: Option<DatKey<T>> = keys.iter()
            .rev()
            .find(|e| e.issuable())
            .cloned();

        *self.issuance_key.write().unwrap() = issuance_key_set;
        *self.verifying_keys.write().unwrap() = keys;

        Ok(())
    }
}