hyperdb-api-salesforce 0.1.1

Salesforce Data Cloud OAuth authentication for Hyper database
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102

// Copyright (c) 2026, Salesforce, Inc. All rights reserved.
// SPDX-License-Identifier: Apache-2.0 OR MIT

//! Error types for Salesforce Data Cloud authentication.

use std::fmt;

/// Result type for Salesforce authentication operations.
pub type SalesforceAuthResult<T> = Result<T, SalesforceAuthError>;

/// Errors that can occur during the Salesforce Data Cloud token flow
/// (OAuth Access Token acquisition and DC JWT exchange).
#[derive(Debug)]
pub enum SalesforceAuthError {
    /// Invalid configuration (missing required fields, invalid URLs, etc.)
    Config(String),

    /// Failed to parse or load the RSA private key for JWT Bearer Token Flow
    PrivateKey(String),

    /// JWT assertion creation or signing failed
    Jwt(String),

    /// HTTP request failed (network-level error)
    Http(String),

    /// OAuth Access Token or DC JWT request rejected by Salesforce (4xx response)
    Authorization {
        /// Error code from Salesforce (e.g., "`invalid_grant`")
        error_code: String,
        /// Human-readable error description
        error_description: String,
    },

    /// DC JWT exchange failed
    TokenExchange(String),

    /// Token response parsing failed (invalid response format)
    TokenParse(String),

    /// DC JWT has expired
    TokenExpired,

    /// Network or I/O error
    Io(String),
}

impl fmt::Display for SalesforceAuthError {
    fn fmt(&self, f: &mut fmt::Formatter<'_>) -> fmt::Result {
        match self {
            SalesforceAuthError::Config(msg) => write!(f, "configuration error: {msg}"),
            SalesforceAuthError::PrivateKey(msg) => write!(f, "private key error: {msg}"),
            SalesforceAuthError::Jwt(msg) => write!(f, "JWT assertion error: {msg}"),
            SalesforceAuthError::Http(msg) => write!(f, "HTTP error: {msg}"),
            SalesforceAuthError::Authorization {
                error_code,
                error_description,
            } => write!(
                f,
                "authorization failed: {error_code} - {error_description}"
            ),
            SalesforceAuthError::TokenExchange(msg) => {
                write!(f, "DC JWT exchange failed: {msg}")
            }
            SalesforceAuthError::TokenParse(msg) => write!(f, "token parse error: {msg}"),
            SalesforceAuthError::TokenExpired => write!(f, "DC JWT has expired"),
            SalesforceAuthError::Io(msg) => write!(f, "I/O error: {msg}"),
        }
    }
}

impl std::error::Error for SalesforceAuthError {}

impl From<reqwest::Error> for SalesforceAuthError {
    fn from(err: reqwest::Error) -> Self {
        SalesforceAuthError::Http(err.to_string())
    }
}

impl From<jsonwebtoken::errors::Error> for SalesforceAuthError {
    fn from(err: jsonwebtoken::errors::Error) -> Self {
        SalesforceAuthError::Jwt(err.to_string())
    }
}

impl From<rsa::pkcs8::Error> for SalesforceAuthError {
    fn from(err: rsa::pkcs8::Error) -> Self {
        SalesforceAuthError::PrivateKey(err.to_string())
    }
}

impl From<url::ParseError> for SalesforceAuthError {
    fn from(err: url::ParseError) -> Self {
        SalesforceAuthError::Config(format!("invalid URL: {err}"))
    }
}

impl From<serde_json::Error> for SalesforceAuthError {
    fn from(err: serde_json::Error) -> Self {
        SalesforceAuthError::TokenParse(err.to_string())
    }
}