modo-rs 0.8.0

Rust web framework for small monolithic apps
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151

use std::fmt;
use std::str::FromStr;

use base64::Engine;
use base64::engine::general_purpose::STANDARD as BASE64;
use serde::{Deserialize, Serialize};

use crate::error::{Error, Result};

const PREFIX: &str = "whsec_";

/// A webhook signing secret stored as raw bytes.
///
/// Serialized as `whsec_<base64>` strings for config files and APIs.
/// `Debug` output is always redacted — key bytes are never printed.
pub struct WebhookSecret {
    key: Vec<u8>,
}

impl WebhookSecret {
    /// Construct from raw bytes.
    pub fn new(raw: impl Into<Vec<u8>>) -> Self {
        Self { key: raw.into() }
    }

    /// Generate a new secret with 24 random bytes.
    pub fn generate() -> Self {
        let mut key = vec![0u8; 24];
        rand::fill(&mut key[..]);
        Self { key }
    }

    /// Access raw key bytes for HMAC operations.
    pub fn as_bytes(&self) -> &[u8] {
        &self.key
    }
}

impl FromStr for WebhookSecret {
    type Err = Error;

    fn from_str(s: &str) -> Result<Self> {
        let encoded = s
            .strip_prefix(PREFIX)
            .ok_or_else(|| Error::bad_request("webhook secret must start with 'whsec_'"))?;
        let key = BASE64
            .decode(encoded)
            .map_err(|e| Error::bad_request(format!("invalid base64 in webhook secret: {e}")))?;
        Ok(Self { key })
    }
}

impl fmt::Display for WebhookSecret {
    fn fmt(&self, f: &mut fmt::Formatter<'_>) -> fmt::Result {
        write!(f, "{}{}", PREFIX, BASE64.encode(&self.key))
    }
}

impl fmt::Debug for WebhookSecret {
    fn fmt(&self, f: &mut fmt::Formatter<'_>) -> fmt::Result {
        f.write_str("WebhookSecret(***)")
    }
}

impl Serialize for WebhookSecret {
    fn serialize<S: serde::Serializer>(
        &self,
        serializer: S,
    ) -> std::result::Result<S::Ok, S::Error> {
        serializer.serialize_str(&self.to_string())
    }
}

impl<'de> Deserialize<'de> for WebhookSecret {
    fn deserialize<D: serde::Deserializer<'de>>(
        deserializer: D,
    ) -> std::result::Result<Self, D::Error> {
        let s = String::deserialize(deserializer)?;
        s.parse().map_err(serde::de::Error::custom)
    }
}

#[cfg(test)]
mod tests {
    use super::*;

    #[test]
    fn parse_valid_whsec_string() {
        let raw = vec![1u8, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12];
        let encoded = format!("whsec_{}", BASE64.encode(&raw));
        let secret: WebhookSecret = encoded.parse().unwrap();
        assert_eq!(secret.as_bytes(), &raw);
    }

    #[test]
    fn reject_missing_prefix() {
        let result = "notwhsec_AQIDBA==".parse::<WebhookSecret>();
        assert!(result.is_err());
        assert!(result.err().unwrap().message().contains("whsec_"));
    }

    #[test]
    fn reject_invalid_base64() {
        let result = "whsec_!!!invalid!!!".parse::<WebhookSecret>();
        assert!(result.is_err());
        assert!(result.err().unwrap().message().contains("base64"));
    }

    #[test]
    fn display_roundtrip() {
        let secret = WebhookSecret::new(vec![10, 20, 30, 40]);
        let displayed = secret.to_string();
        assert!(displayed.starts_with("whsec_"));
        let parsed: WebhookSecret = displayed.parse().unwrap();
        assert_eq!(parsed.as_bytes(), secret.as_bytes());
    }

    #[test]
    fn debug_is_redacted() {
        let secret = WebhookSecret::new(vec![1, 2, 3]);
        let debug = format!("{secret:?}");
        assert_eq!(debug, "WebhookSecret(***)");
        assert!(!debug.contains("1"));
    }

    #[test]
    fn generate_produces_valid_secret() {
        let secret = WebhookSecret::generate();
        assert_eq!(secret.as_bytes().len(), 24);
        // Round-trip through Display/FromStr
        let displayed = secret.to_string();
        let parsed: WebhookSecret = displayed.parse().unwrap();
        assert_eq!(parsed.as_bytes(), secret.as_bytes());
    }

    #[test]
    fn serialize_roundtrip() {
        let secret = WebhookSecret::new(vec![5, 10, 15, 20]);
        let json = serde_json::to_string(&secret).unwrap();
        let parsed: WebhookSecret = serde_json::from_str(&json).unwrap();
        assert_eq!(parsed.as_bytes(), secret.as_bytes());
    }

    #[test]
    fn deserialize_from_string() {
        let raw = vec![99u8; 16];
        let whsec = format!("\"whsec_{}\"", BASE64.encode(&raw));
        let secret: WebhookSecret = serde_json::from_str(&whsec).unwrap();
        assert_eq!(secret.as_bytes(), &raw);
    }
}