mrls 0.1.8

Unofficial Rust client for the Moralis Web3 API - tokens, NFTs, wallets, DeFi, and market data
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166

//! Error types for the Moralis API client
//!
//! This module provides the error types for the Moralis API client,
//! built on top of the shared `ApiError` infrastructure.

use serde::Deserialize;
use thiserror::Error;
pub use yldfi_common::api::{sanitize_error_body, ApiError};

/// Moralis API error response structure
#[derive(Debug, Clone, Deserialize)]
pub struct ApiErrorResponse {
    /// Error message
    pub message: Option<String>,
    /// Error code or name
    #[serde(alias = "name")]
    pub code: Option<String>,
}

/// Required plan tier for an endpoint
#[derive(Debug, Clone, Copy, PartialEq, Eq)]
#[non_exhaustive]
pub enum PlanTier {
    /// Free tier
    Free,
    /// Starter plan required
    Starter,
    /// Pro plan required
    Pro,
    /// Business plan required
    Business,
}

impl std::fmt::Display for PlanTier {
    fn fmt(&self, f: &mut std::fmt::Formatter<'_>) -> std::fmt::Result {
        match self {
            PlanTier::Free => write!(f, "Free"),
            PlanTier::Starter => write!(f, "Starter"),
            PlanTier::Pro => write!(f, "Pro"),
            PlanTier::Business => write!(f, "Business"),
        }
    }
}

/// Domain-specific errors for Moralis API
#[derive(Error, Debug)]
pub enum DomainError {
    /// Invalid or missing API key (401)
    #[error("Unauthorized: Invalid or missing API key")]
    Unauthorized,

    /// Endpoint requires a higher plan tier (402/403)
    #[error("Plan upgrade required: This endpoint requires {required_plan} plan or higher")]
    PlanRequired {
        required_plan: PlanTier,
        message: String,
    },

    /// Resource not found (404)
    #[error("Not found: {0}")]
    NotFound(String),

    /// Invalid configuration
    #[error("Configuration error: {0}")]
    Config(String),

    /// Missing API key
    #[error("Missing API key")]
    MissingApiKey,

    /// Insecure URL scheme (MED-002 fix)
    #[error("Insecure URL scheme: use HTTPS to protect API keys (got: {0})")]
    InsecureScheme(String),
}

/// Error type for Moralis API operations
pub type Error = ApiError<DomainError>;

/// Result type for Moralis API operations
pub type Result<T> = std::result::Result<T, Error>;

// Convenience constructors for domain errors

/// Create an unauthorized error
#[must_use]
pub fn unauthorized() -> Error {
    ApiError::domain(DomainError::Unauthorized)
}

/// Create a plan required error
pub fn plan_required(required_plan: PlanTier, message: impl Into<String>) -> Error {
    ApiError::domain(DomainError::PlanRequired {
        required_plan,
        message: message.into(),
    })
}

/// Create a not found error
pub fn not_found(resource: impl Into<String>) -> Error {
    ApiError::domain(DomainError::NotFound(resource.into()))
}

/// Create a configuration error
pub fn config(message: impl Into<String>) -> Error {
    ApiError::domain(DomainError::Config(message.into()))
}

/// Create a missing API key error
#[must_use]
pub fn missing_api_key() -> Error {
    ApiError::domain(DomainError::MissingApiKey)
}

/// Create an insecure scheme error (MED-002 fix)
pub fn insecure_scheme(scheme: impl Into<String>) -> Error {
    ApiError::domain(DomainError::InsecureScheme(scheme.into()))
}

/// Create from HTTP response status and body
///
/// Handles Moralis-specific error patterns:
/// - 401 -> Unauthorized
/// - 402/403 -> `PlanRequired` (parses plan tier from message)
/// - 404 -> `NotFound`
/// - 429 -> `RateLimited`
/// - 5xx -> `ServerError`
///
/// MRLS-001 fix: All error messages are sanitized to prevent credential leaks
#[must_use]
pub fn from_response(status: u16, body: &str, retry_after: Option<u64>) -> Error {
    // MRLS-001 fix: Sanitize body before using in error messages
    // This prevents API keys/tokens from leaking if server echoes them
    let sanitized_body = sanitize_error_body(body);

    // Try to parse the error response (use original for parsing, sanitized for messages)
    let parsed: Option<ApiErrorResponse> = serde_json::from_str(body).ok();
    let message = parsed
        .as_ref()
        .and_then(|r| r.message.as_ref().map(|m| sanitize_error_body(m)))
        .unwrap_or_else(|| sanitized_body.clone());

    match status {
        401 => unauthorized(),
        402 | 403 => {
            // Determine required plan from message
            let required_plan = if message.to_lowercase().contains("business") {
                PlanTier::Business
            } else if message.to_lowercase().contains("pro") {
                PlanTier::Pro
            } else if message.to_lowercase().contains("starter") {
                PlanTier::Starter
            } else {
                PlanTier::Pro // Default assumption for premium endpoints
            };
            plan_required(required_plan, message)
        }
        404 => not_found(message),
        _ => ApiError::from_response(status, &sanitized_body, retry_after),
    }
}

/// Check if an error is due to plan restrictions
#[must_use]
pub fn is_plan_required(error: &Error) -> bool {
    matches!(error, ApiError::Domain(DomainError::PlanRequired { .. }))
}