junobuild-storage 0.7.0

Web and storage features of Juno.
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118

use crate::certification::constants::{
    IC_CERTIFICATE_EXPRESSION, IC_CERTIFICATE_EXPRESSION_HEADER, IC_STATUS_CODE_PSEUDO_HEADER,
    LABEL_HTTP_EXPR, WILDCARD_MATCH_TERMINATOR,
};
use crate::http::types::{HeaderField, StatusCode};
use crate::types::state::FullPath;
use ic_certification::Hash;
use ic_representation_independent_hash::{representation_independent_hash, Value};
use junobuild_shared::types::core::Blob;
use sha2::{Digest, Sha256};

pub fn nested_tree_key(
    full_path: &FullPath,
    headers: &[HeaderField],
    body_hash: Hash,
    terminator: &str,
    status_code: StatusCode,
) -> Vec<Blob> {
    let mut segments = nested_tree_path(full_path, terminator);

    let expr_hash: Hash = Sha256::digest(response_headers_expression(headers)).into();
    segments.push(Vec::from(expr_hash.as_slice()));

    segments.push(vec![]);
    segments.push(Vec::from(response_hash(headers, status_code, &body_hash)));

    segments
}

pub fn nested_tree_path(full_path: &str, terminator: &str) -> Vec<Blob> {
    assert!(full_path.starts_with('/'));

    let mut segments: Vec<Blob> = full_path
        .split('/')
        .map(str::as_bytes)
        .map(Vec::from)
        .collect();
    segments.remove(0); // remove leading empty string due to absolute path
    segments.push(terminator.as_bytes().to_vec());

    segments
}

pub fn fallback_paths(paths: Vec<Blob>) -> Vec<Vec<Blob>> {
    let mut fallback_paths = Vec::new();

    for i in 0..paths.len() {
        let mut without_trailing_slash: Vec<Blob> = paths.as_slice()[0..i].to_vec();
        let mut with_trailing_slash = without_trailing_slash.clone();
        without_trailing_slash.push(WILDCARD_MATCH_TERMINATOR.as_bytes().to_vec());
        with_trailing_slash.push("".as_bytes().to_vec());
        with_trailing_slash.push(WILDCARD_MATCH_TERMINATOR.as_bytes().to_vec());

        fallback_paths.push(without_trailing_slash);
        fallback_paths.push(with_trailing_slash);
    }

    fallback_paths
}

pub fn nested_tree_expr_path(absolute_path: &str, terminator: &str) -> Vec<String> {
    assert!(absolute_path.starts_with('/'));

    // "/" => ["", ""]
    // "/index.html" => ["", "index.html"]
    // "/hello/index.html" => ["", "hello", "index.html"]
    let mut path: Vec<String> = absolute_path.split('/').map(str::to_string).collect();
    // replace the first empty split segment (due to absolute path) with "http_expr"
    *path.get_mut(0).unwrap() = LABEL_HTTP_EXPR.to_string();
    path.push(terminator.to_string());
    path
}

fn response_hash(headers: &[HeaderField], status_code: StatusCode, body_hash: &Hash) -> Hash {
    // certification v2 spec:
    // Response hash is the hash of the concatenation of
    //   - representation-independent hash of headers
    //   - hash of the response body
    //
    // The representation-independent hash of headers consist of
    //    - all certified headers (here all headers), plus
    //    - synthetic header `:ic-cert-status` with value <HTTP status code of response>

    let mut certified_headers = headers
        .iter()
        .map(|HeaderField(header, value)| {
            (header.to_ascii_lowercase(), Value::String(value.clone()))
        })
        .collect::<Vec<(String, Value)>>();

    certified_headers.push((
        IC_CERTIFICATE_EXPRESSION_HEADER.to_ascii_lowercase(),
        Value::String(response_headers_expression(headers)),
    ));

    certified_headers.push((
        IC_STATUS_CODE_PSEUDO_HEADER.to_string(),
        Value::Number(status_code.into()),
    ));

    let header_hash = representation_independent_hash(&certified_headers);
    Sha256::digest([header_hash.as_ref(), body_hash].concat()).into()
}

pub fn response_headers_expression(headers: &[HeaderField]) -> String {
    let mut header_names: Vec<String> = headers
        .iter()
        .map(|field| format!("\"{}\"", field.0))
        .collect();

    // We sort for testing purposes so we can assert the exact certification expression
    // without needing to manipulate or extract parts of it. This allows us to compare the entire block directly.
    header_names.sort();

    let headers = header_names.join(",");

    IC_CERTIFICATE_EXPRESSION.replace("{headers}", &headers)
}