link-common 0.5.2-rc.2

Shared Rust implementation for KalamDB link crates
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233

use std::{
    sync::{Arc, Once, RwLock},
    time::Duration,
};

#[cfg(feature = "healthcheck")]
use tokio::sync::Mutex;

#[cfg(feature = "healthcheck")]
use super::HealthCheckCache;
use super::{KalamLinkClient, KalamLinkClientBuilder};
use crate::{
    auth::{AuthProvider, ResolvedAuth},
    error::{KalamLinkError, Result},
    models::{ConnectionOptions, HttpVersion, LoginResponse},
    query::AuthRefreshCallback,
    timeouts::KalamLinkTimeouts,
};

fn ensure_rustls_crypto_provider() {
    static INSTALL_RUSTLS_PROVIDER: Once = Once::new();

    INSTALL_RUSTLS_PROVIDER.call_once(|| {
        let _ = rustls::crypto::aws_lc_rs::default_provider().install_default();
    });
}

impl KalamLinkClientBuilder {
    pub(crate) fn new() -> Self {
        Self {
            base_url: None,
            timeout: Duration::from_secs(30),
            resolved_auth: ResolvedAuth::default(),
            max_retries: 3,
            http_pool_max_idle_per_host: 10,
            timeouts: KalamLinkTimeouts::default(),
            connection_options: ConnectionOptions::default(),
            event_handlers: crate::event_handlers::EventHandlers::default(),
            custom_auth_refresher: None,
        }
    }

    /// Set the base URL for the KalamDB server
    pub fn base_url(mut self, url: impl Into<String>) -> Self {
        self.base_url = Some(url.into());
        self
    }

    /// Set request timeout (for HTTP requests)
    pub fn timeout(mut self, timeout: Duration) -> Self {
        self.timeout = timeout;
        self
    }

    /// Set JWT token authentication
    pub fn jwt_token(mut self, token: impl Into<String>) -> Self {
        self.resolved_auth = ResolvedAuth::Static(AuthProvider::jwt_token(token.into()));
        self
    }

    /// Set authentication provider directly
    pub fn auth(mut self, auth: AuthProvider) -> Self {
        self.resolved_auth = ResolvedAuth::Static(auth);
        self
    }

    /// Set a dynamic (async) authentication provider.
    pub fn auth_provider(mut self, provider: crate::auth::ArcDynAuthProvider) -> Self {
        self.resolved_auth = ResolvedAuth::Dynamic(provider);
        self
    }

    /// Set maximum number of retries for failed requests
    pub fn max_retries(mut self, retries: u32) -> Self {
        self.max_retries = retries;
        self
    }

    /// Set the maximum number of idle HTTP keep-alive connections to retain per host.
    pub fn http_pool_max_idle_per_host(mut self, max_idle_per_host: usize) -> Self {
        self.http_pool_max_idle_per_host = max_idle_per_host;
        self
    }

    /// Set a custom auth-refresh callback for TOKEN_EXPIRED recovery.
    pub fn auth_refresher(mut self, refresher: AuthRefreshCallback) -> Self {
        self.custom_auth_refresher = Some(refresher);
        self
    }

    /// Set comprehensive timeout configuration for all operations
    pub fn timeouts(mut self, timeouts: KalamLinkTimeouts) -> Self {
        self.timeout = timeouts.receive_timeout;
        self.timeouts = timeouts;
        self
    }

    /// Set connection options for HTTP and WebSocket behavior
    pub fn connection_options(mut self, options: ConnectionOptions) -> Self {
        self.connection_options = options;
        self
    }

    /// Set the HTTP protocol version to use
    pub fn http_version(mut self, version: HttpVersion) -> Self {
        self.connection_options.http_version = version;
        self
    }

    /// Set connection lifecycle event handlers.
    pub fn event_handlers(mut self, handlers: crate::event_handlers::EventHandlers) -> Self {
        self.event_handlers = handlers;
        self
    }

    /// Build the client
    pub fn build(self) -> Result<KalamLinkClient> {
        ensure_rustls_crypto_provider();

        let base_url = self
            .base_url
            .ok_or_else(|| KalamLinkError::ConfigurationError("base_url is required".into()))?;

        let static_auth = match &self.resolved_auth {
            ResolvedAuth::Static(provider) => provider.clone(),
            ResolvedAuth::Dynamic(_) => AuthProvider::none(),
        };

        let mut client_builder = reqwest::Client::builder()
            .timeout(self.timeout)
            .connect_timeout(self.timeouts.connection_timeout)
            .pool_max_idle_per_host(self.http_pool_max_idle_per_host)
            .pool_idle_timeout(Duration::from_secs(90));

        client_builder = match self.connection_options.http_version {
            HttpVersion::Http1 => {
                log::debug!("[CLIENT] Using HTTP/1.1 only");
                client_builder.http1_only()
            },
            #[cfg(feature = "http2")]
            HttpVersion::Http2 => {
                log::debug!("[CLIENT] Using HTTP/2 with prior knowledge");
                client_builder.http2_prior_knowledge()
            },
            #[cfg(not(feature = "http2"))]
            HttpVersion::Http2 => {
                log::warn!(
                    "[CLIENT] HTTP/2 requested but 'http2' feature is not enabled; falling back \
                     to HTTP/1.1"
                );
                client_builder.http1_only()
            },
            HttpVersion::Auto => {
                log::debug!("[CLIENT] Using automatic HTTP version negotiation");
                client_builder
            },
        };

        let http_client = client_builder
            .build()
            .map_err(|error| KalamLinkError::ConfigurationError(error.to_string()))?;

        let mut query_executor = crate::query::QueryExecutor::new(
            base_url.clone(),
            http_client.clone(),
            static_auth.clone(),
            self.max_retries,
        );

        let refresher = if let Some(custom) = self.custom_auth_refresher {
            custom
        } else {
            let shared_auth = Arc::new(RwLock::new(self.resolved_auth.clone()));
            let login_url = format!("{}/v1/api/auth/login", &base_url);
            let login_client = http_client.clone();

            let default_refresher: AuthRefreshCallback = Arc::new(move || {
                let shared = Arc::clone(&shared_auth);
                let url = login_url.clone();
                let client = login_client.clone();
                Box::pin(async move {
                    let resolved = { shared.read().unwrap().clone() };
                    let auth = resolved.resolve().await?;
                    match auth {
                        AuthProvider::BasicAuth(username, password) => {
                            let body = serde_json::json!({
                                "user": username,
                                "password": password,
                            });
                            let response = client.post(&url).json(&body).send().await.map_err(
                                |error: reqwest::Error| {
                                    KalamLinkError::NetworkError(error.to_string())
                                },
                            )?;
                            if !response.status().is_success() {
                                let message = response.text().await.unwrap_or_default();
                                return Err(KalamLinkError::AuthenticationError(format!(
                                    "Login failed during token refresh: {}",
                                    message
                                )));
                            }
                            let login_response = response.json::<LoginResponse>().await.map_err(
                                |error: reqwest::Error| {
                                    KalamLinkError::NetworkError(error.to_string())
                                },
                            )?;
                            log::debug!("[LINK_HTTP] Reauthenticated via basic login");
                            Ok(AuthProvider::jwt_token(login_response.access_token))
                        },
                        other => Ok(other),
                    }
                })
            });
            default_refresher
        };
        query_executor.set_auth_refresher(refresher);

        Ok(KalamLinkClient {
            base_url,
            http_client,
            resolved_auth: self.resolved_auth.clone(),
            auth: static_auth,
            query_executor,
            #[cfg(feature = "healthcheck")]
            health_cache: Arc::new(Mutex::new(HealthCheckCache::default())),
            timeouts: self.timeouts,
            connection_options: self.connection_options,
            event_handlers: self.event_handlers,
            shared_resolved_auth: Arc::new(RwLock::new(self.resolved_auth)),
            connection: Arc::new(tokio::sync::Mutex::new(None)),
        })
    }
}