gitorii 0.6.3

A human-first Git client with simplified commands, snapshots, multi-platform mirrors and built-in secret scanning
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91

//! Authenticated HTTP client for the gitorii.com backend.
//!
//! Every call carries `Authorization: Bearer gitorii_sk_<key>` from
//! `crate::auth`. Translates HTTP status into actionable `ToriiError`s the
//! CLI can surface verbatim:
//!   401  → "API key rejected. Run `torii auth login` to refresh."
//!   402  → "current plan <p> insufficient. Upgrade at <url>."
//!   403  → "organization suspended."
//!   5xx  → "server error: …".

pub mod whoami;

use reqwest::blocking::{Client, RequestBuilder, Response};
use reqwest::header::AUTHORIZATION;
use std::time::Duration;

use crate::auth::ApiKey;
use crate::error::{Result, ToriiError};

const UA: &str = concat!("torii/", env!("CARGO_PKG_VERSION"));

pub struct CloudClient {
    http: Client,
    key: ApiKey,
}

impl CloudClient {
    pub fn new(key: ApiKey) -> Self {
        let http = Client::builder()
            .user_agent(UA)
            .timeout(Duration::from_secs(15))
            .build()
            .expect("reqwest client builds");
        Self { http, key }
    }

    pub fn endpoint(&self) -> &str {
        &self.key.endpoint
    }

    fn url(&self, path: &str) -> String {
        format!("{}{}", self.key.endpoint.trim_end_matches('/'), path)
    }

    fn get(&self, path: &str) -> RequestBuilder {
        self.http
            .get(self.url(path))
            .header(AUTHORIZATION, format!("Bearer {}", self.key.key))
    }

    #[allow(dead_code)] // used by future endpoints (transpile etc.)
    fn post(&self, path: &str) -> RequestBuilder {
        self.http
            .post(self.url(path))
            .header(AUTHORIZATION, format!("Bearer {}", self.key.key))
    }
}

/// Convert HTTP status into a friendly error before the caller sees raw body.
/// On 200..=299 returns the response unchanged.
pub(crate) fn check_status(resp: Response) -> Result<Response> {
    let status = resp.status();
    if status.is_success() {
        return Ok(resp);
    }
    let body = resp.text().unwrap_or_default();
    let msg = match status.as_u16() {
        401 => "API key rejected. Run `torii auth login` to refresh.".to_string(),
        402 => format!(
            "your plan does not include this feature. Upgrade at https://gitorii.com/upgrade ({})",
            short_body(&body)
        ),
        403 => "organization suspended. Contact support@gitorii.com.".to_string(),
        404 => "endpoint not found — CLI may be outdated.".to_string(),
        s if (500..=599).contains(&s) => format!("server error {}: {}", s, short_body(&body)),
        s => format!("unexpected HTTP {}: {}", s, short_body(&body)),
    };
    Err(ToriiError::InvalidConfig(msg))
}

fn short_body(body: &str) -> String {
    let trimmed = body.trim();
    // Cap by chars (not bytes) so multi-byte UTF-8 server messages don't
    // panic on the slice. 200 chars ≈ enough to debug an API rejection.
    if trimmed.chars().count() > 200 {
        let head: String = trimmed.chars().take(200).collect();
        format!("{}", head)
    } else {
        trimmed.to_string()
    }
}