fts-server 0.3.0

A RESTful flow trading API server
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104

use super::AuthParams;
use crate::{AppState, Now, utils::Bidder};
use axum::{
    Json,
    extract::{Path, Query, State},
    http::StatusCode,
};
use fts_core::{
    models::{AuthData, AuthId, AuthRecord, Portfolio},
    ports::{AuthFailure, AuthRepository, MarketRepository},
};
use serde::Deserialize;
use tracing::{Level, event};
use utoipa::ToSchema;

#[derive(Deserialize, ToSchema)]
#[serde(untagged)]
pub enum PutAuthDto {
    Create {
        portfolio: Portfolio,
        data: AuthData,
    },
    Update {
        data: AuthData,
    },
    Delete,
}

#[utoipa::path(
    put,
    path = "/v0/auths/{auth_id}",
    request_body = PutAuthDto,
    responses(
        (status = OK, body = AuthRecord),
        (status = UNAUTHORIZED), // no jwt token, handled by extractor
        (status = FORBIDDEN), // not allowed to see auth
        (status = NOT_FOUND), // no auth by that id
        (status = BAD_REQUEST), // JSON failure, handled by Axum
        (status = UNSUPPORTED_MEDIA_TYPE), // JSON failure, handled by Axum
        (status = UNPROCESSABLE_ENTITY), // JSON failure, handled by Axum
        (status = CONFLICT), // When creating new auth, requested authid conflicts with existing one
        (status = INTERNAL_SERVER_ERROR)
    ),
    params(
        ("auth_id" = AuthId, Path, description = "Unique identifier of the authorization"),
        ("portfolio" = Option<String>, Query, description = "implementation-dependent portfolio mode")
    ),
    tags = ["auths"]
)]
/// Replace the authorization with a new one
pub async fn put_auth<T: MarketRepository>(
    State(state): State<AppState<T>>,
    Now(now): Now,
    Bidder(bidder_id): Bidder,
    Path(auth_id): Path<AuthId>,
    Query(params): Query<AuthParams<T::PortfolioOptions>>,
    Json(input): Json<PutAuthDto>,
) -> Result<Json<AuthRecord>, StatusCode> {
    let record = (match input {
        PutAuthDto::Create { portfolio, data } => {
            AuthRepository::create(
                &state.market,
                bidder_id,
                Some(auth_id),
                portfolio.into_iter(),
                data,
                now,
                params.portfolio,
            )
            .await
        }
        PutAuthDto::Update { data } => {
            AuthRepository::update(
                &state.market,
                bidder_id,
                auth_id,
                data,
                now,
                params.portfolio,
            )
            .await
        }
        PutAuthDto::Delete => {
            AuthRepository::delete(&state.market, bidder_id, auth_id, now, params.portfolio).await
        }
    })
    .map_err(|err| {
        event!(Level::ERROR, error = ?err);
        StatusCode::INTERNAL_SERVER_ERROR
    })?
    .map_err(|err| match err {
        // For some reason the implementation does not consider the bidder to have adequate permissions
        AuthFailure::AccessDenied => StatusCode::FORBIDDEN,
        // The provided auth_id is already in use
        AuthFailure::IdConflict => StatusCode::CONFLICT,
        // This should never be returned, since we explicitly support creating new records from PUT
        error => {
            event!(Level::ERROR, ?error, "unexpected failure");
            StatusCode::INTERNAL_SERVER_ERROR
        }
    })?;

    Ok(Json(record))
}