mycelium-http-tools 8.3.1-rc.2

Provide HTTP related elements to the mycelium project.
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75

use secrecy::SecretString;

// Re-export domain types from core so callers import from one place
pub use myc_core::domain::dtos::telegram::{
    TelegramUpdateId, TelegramUser, TelegramUserId,
};

// ? ---------------------------------------------------------------------------
// ? Raw initData wrapper
// ? ---------------------------------------------------------------------------

/// Raw URL-encoded initData string as received from the Telegram Mini App.
#[derive(Debug, Clone)]
pub struct InitData(pub String);

// ? ---------------------------------------------------------------------------
// ? Secret newtypes — zeroized on drop via SecretString
// ? ---------------------------------------------------------------------------

/// Telegram bot token. Wraps the raw string resolved from Vault.
/// Never logged, never serialized into responses.
pub struct BotToken(pub SecretString);

/// Webhook secret set via setWebhook. Wraps the raw string from Vault.
/// Used for constant-time comparison against X-Telegram-Bot-Api-Secret-Token.
pub struct WebhookSecret(pub SecretString);

// ? ---------------------------------------------------------------------------
// ? Error type
// ? ---------------------------------------------------------------------------

#[derive(Debug, PartialEq, Eq)]
pub enum TelegramVerifyError {
    MissingHash,
    InvalidHmac,
    Expired,
    MissingUserField,
    MalformedUserField,
}

// ? ---------------------------------------------------------------------------
// ? Tests
// ? ---------------------------------------------------------------------------

#[cfg(test)]
mod tests {
    use super::*;
    use secrecy::ExposeSecret;

    #[test]
    fn bot_token_debug_redacted() {
        let token = BotToken(SecretString::new("secret123".into()));
        let debug = format!("{:?}", token.0);
        assert!(!debug.contains("secret123"));
    }

    #[test]
    fn webhook_secret_debug_redacted() {
        let secret = WebhookSecret(SecretString::new("mysecret".into()));
        let debug = format!("{:?}", secret.0);
        assert!(!debug.contains("mysecret"));
    }

    #[test]
    fn bot_token_expose_works() {
        let token = BotToken(SecretString::new("secret123".into()));
        assert_eq!(token.0.expose_secret(), "secret123");
    }

    #[test]
    fn telegram_user_id_equality() {
        assert_eq!(TelegramUserId(42), TelegramUserId(42));
        assert_ne!(TelegramUserId(42), TelegramUserId(99));
    }
}