dat 2.3.0

DAT - Distributed Access Token
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61

use dat::certificate::DatCertificate;
use dat::crypto_algorithm::DatCryptoAlgorithm;
use dat::crypto_algorithm::DatCryptoAlgorithm::{AES128GCMN, AES256GCMN};
use dat::error::DatError;
use dat::manager::DatManager;
use dat::signature_algorithm::DatSignatureAlgorithm;
use dat::signature_algorithm::DatSignatureAlgorithm::{P256, P384, P521};
use dat::signature_key::DatSignatureKeyOutOption;
use dat::util::now_unix_timestamp;
use rand::RngExt;

fn rand_string() -> String {
    let mut rng = rand::rng();
    (0..100).map(|_| { rng.sample(rand::distr::Alphanumeric) as char }).collect()
}


fn unit(fail_certificate: &DatCertificate, cid: u64, signature_algorithm: DatSignatureAlgorithm, crypto_algorithm: DatCryptoAlgorithm, plain: String, secure: String) -> Result<(), DatError> {
    let tag = format!("dat.{}.{}.{:x}", signature_algorithm, crypto_algorithm, cid);

    let new_certificate = DatCertificate::generate(cid, signature_algorithm, crypto_algorithm, now_unix_timestamp() - 10, now_unix_timestamp() + 600, 60)?;
    let new_certificate_str = new_certificate.export(DatSignatureKeyOutOption::SIGNING)?;

    let read_certificate: DatCertificate = new_certificate_str.parse()?;

    let dat = DatManager::_issue(&new_certificate, &plain, &secure)?;
    println!("{tag}: {}", dat);

    let payload = DatManager::_parse(&read_certificate, dat.clone().try_into()?)?.to_string_payload()?;
    println!("{tag}:{}", payload);
    assert_eq!(plain, payload.plain);
    assert_eq!(secure, payload.secure);
    assert!(DatManager::_parse(&fail_certificate, dat.try_into()?).is_err());
    Ok(())
}


#[test]
fn test() {
    let sign_alg_arr = [P256, P384, P521];
    let crypto_alg_arr = [AES128GCMN, AES256GCMN];

    let fail_certificate = &DatCertificate::generate(192874, P256, AES256GCMN, now_unix_timestamp() - 10, now_unix_timestamp() + 600, 60).unwrap();

    sign_alg_arr.iter().for_each(|sign_alg| {
        crypto_alg_arr.iter().for_each(|crypto_alg| {
            // random
            (1..20).for_each(|i| {
                let plain = rand_string();
                let secure = rand_string();
                assert!(unit(fail_certificate, i, *sign_alg, *crypto_alg, plain, secure)
                    .map_err(|e| {
                        println!("@{:?}", e);
                        e
                    }).is_ok())
            });
            // empty
            assert!(unit(fail_certificate, 0, *sign_alg, *crypto_alg, "".to_string(), "".to_string()).is_ok())
        });
    });
}