myid 0.1.7

Rust client library for MyID SDK API — user identification and verification
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247

# MyID SDK — Rust Client

> ⚠️ **Diqqat:** Ushbu kutubxona hozirda **faol ishlab chiqilish jarayonida** (Work in Progress).
> API o'zgarishi mumkin. Production muhitida hali tayor emas.
> Xatolar va takliflar uchun [GitHub Issues](https://github.com/diordev/myid/issues) orqali murojaat qiling.

O'zbekiston Respublikasi **MyID** identifikatsiya tizimi uchun rasmiy bo'lmagan Rust SDK kutubxonasi.

## Imkoniyatlar

- **OAuth 2.0** — MyID API bilan autentifikatsiya, token avtomatik cache'lanadi
- **Type-safe** — PINFL, passport, telefon raqam va boshqa qiymatlar compile-time'da tekshiriladi
- **Async/await**`tokio` runtime bilan to'liq asinxron ishlash
- **Xavfsizlik**`client_secret` debug output'da avtomatik `<redacted>` sifatida ko'rsatiladi
- **Thread-safe**`Send + Sync` compile-time kafolati, `Arc` orqali klon qilish xavfsiz

## O'rnatish

```toml
[dependencies]
myid = "0.1.7"
tokio = { version = "1", features = ["full"] }
```

### Featurelar

| Feature | Default | Tavsif |
|---------|---------|--------|
| `dotenvy` | ✅ yoqilgan | `.env` fayldan konfiguratsiya yuklash |

`.env` qo'llab-quvvatlash kerak bo'lmasa:

```toml
[dependencies]
myid = { version = "0.1.7", default-features = false }
```

## Tez boshlash

```rust
use myid::prelude::*;
use myid::types::BirthDate;

#[tokio::main]
async fn main() -> Result<(), Box<dyn std::error::Error>> {
    let config = Config::new("https://myid.uz", "client_id", "client_secret")?;
    let client = MyIdClient::new(config)?;

    // Token avtomatik olinadi va cache'lanadi
    let token = client.get_token().await?;
    println!("Token: {}... ({} belgi)", &token[..20], token.len());

    // Session yaratish — PINFL orqali
    let request = CreateSessionRequest::WithPinfl(
        SessionWithPinfl::new(
            Pinfl::parse("12345678901234")?,
            BirthDate::parse("1990-05-15")?,
        ),
    );

    let session = client.create_session(&request).await?;
    println!("Session ID: {}", session.session_id());

    Ok(())
}
```

## Konfiguratsiya

### To'g'ridan-to'g'ri kod orqali

```rust
use std::time::Duration;
use myid::config::Config;

let config = Config::new("https://myid.uz", "client_id", "client_secret")?
    .with_timeout(Duration::from_secs(30))          // HTTP so'rov timeout
    .with_connect_timeout(Duration::from_secs(5))   // TCP/TLS ulanish timeout
    .with_user_agent("my-backend/1.0")              // Custom User-Agent
    .with_proxy("http://proxy.corp.local:8080")?;   // Korporativ proxy
```

### Environment o'zgaruvchilari orqali

`.env` fayl yarating yoki environment'ni to'g'ridan-to'g'ri o'rnating:

```env
MYID_BASE_URL=https://myid.uz
MYID_CLIENT_ID=your_client_id
MYID_CLIENT_SECRET=your_client_secret

# Ixtiyoriy
MYID_TIMEOUT_MS=30000
MYID_CONNECT_TIMEOUT_MS=5000
MYID_USER_AGENT=my-backend/1.0
MYID_PROXY_URL=http://proxy.corp.local:8080
```

```rust
use myid::config::Config;

let config = Config::from_env(None)?;          // MYID_ prefiksi
let config = Config::from_env(Some("APP"))?;   // APP_ prefiksi
```

### Default qiymatlar

| Parametr | Default | O'zgartirish |
|----------|---------|-------------|
| HTTP timeout | 15 soniya | `with_timeout()` |
| Connection timeout | 2 soniya | `with_connect_timeout()` |
| User-Agent | `myid-client-rust/0.1` | `with_user_agent()` |
| Proxy | yo'q | `with_proxy()` |

## Session yaratish usullari

MyID 3 xil identifikatsiya usulini qo'llab-quvvatlaydi:

### PINFL orqali

```rust
use myid::prelude::*;
use myid::types::BirthDate;

let request = CreateSessionRequest::WithPinfl(
    SessionWithPinfl::new(
        Pinfl::parse("12345678901234")?,
        BirthDate::parse("1990-05-15")?,
    )
    .with_phone_number(PhoneNumber::parse("+998901234567")?)
    .with_threshold(Threshold::parse(0.85)?)
    .with_is_resident(true),
);
```

### Passport orqali

```rust
use myid::prelude::*;
use myid::types::BirthDate;

let request = CreateSessionRequest::WithPassport(
    SessionWithPassport::new(
        PassportData::parse("AB1234567")?,
        BirthDate::parse("1990-05-15")?,
    )
    .with_phone_number(PhoneNumber::parse("+998901234567")?),
);
```

### REUID orqali (secondary flow)

```rust
use myid::prelude::*;

let request = CreateSessionRequest::WithReuid(
    SessionWithReuid::new(Reuid::parse("9b7e597e-893e-4e11-92cf-f4e7d4f923b1")?),
);
```

## Xatolarni boshqarish

Barcha xatolar `MyIdError` enum orqali qaytariladi:

| Variant | Sababi |
|---------|--------|
| `Config { message }` | Noto'g'ri URL, bo'sh credentials, proxy xatosi |
| `Validation { message }` | PINFL, passport, telefon raqam format xatosi |
| `Http(_)` | Tarmoq xatosi — timeout, DNS, TLS |
| `Api { status, message }` | Server 4xx/5xx javobi — 401, 403, 429, 500 |
| `Internal { message }` | SDK ichki xatosi (odatda yuz bermaydi) |

```rust
use myid::config::Config;
use myid::error::MyIdError;

match Config::new("not-a-url", "id", "secret") {
    Ok(_) => unreachable!(),
    Err(MyIdError::Config { message }) => eprintln!("Config xato: {message}"),
    Err(e) => eprintln!("Boshqa xato: {e}"),
}
```

API xatosini tekshirish:

```rust
use myid::error::{MyIdError, MyIdResult};

async fn create(client: &myid::client::MyIdClient) -> MyIdResult<()> {
    use myid::dto::CreateSessionRequest;

    match client.create_session(&CreateSessionRequest::Empty {}).await {
        Ok(resp) => println!("Session: {}", resp.session_id()),
        Err(MyIdError::Api { status: 401, .. }) => eprintln!("Credentials noto'g'ri"),
        Err(MyIdError::Api { status: 429, .. }) => eprintln!("Rate limit — qayta urining"),
        Err(MyIdError::Http(e)) => eprintln!("Tarmoq xatosi: {e}"),
        Err(e) => eprintln!("Xato: {e}"),
    }
    Ok(())
}
```

## Xavfsizlik

- `client_secret` **faqat backend muhitida** saqlang — frontend'ga bermang
- `Debug` output'da secret avtomatik `<redacted>` sifatida ko'rsatiladi
- Production'da credential'larni environment variable orqali bering, kodni hardcode qilmang

```rust
use myid::config::Config;

let config = Config::new("https://myid.uz", "my_app", "super_secret")?;
let debug = format!("{:?}", config);

assert!(debug.contains("<redacted>"));     // ✅ Secret yashirilgan
assert!(!debug.contains("super_secret")); // ✅ Hech qachon ko'rinmaydi
```

## Misollar ishga tushirish

```bash
# Config yaratish va xatolarni ko'rish
cargo run --example config

# Client va session misollari (.env fayl kerak)
cargo run --example client

```

`.env` fayl namunasi:

```env
MYID_BASE_URL=https://myid.uz
MYID_CLIENT_ID=your_id
MYID_CLIENT_SECRET=your_secret
```

## Minimal Rust versiyasi (MSRV)

Rust **1.93.0** yoki undan yuqori talab qilinadi.

## Litsenziya

Ushbu loyiha ikki litsenziya ostida tarqatiladi — o'zingizga qulayini tanlang:

- [MIT](LICENSE-MIT)
- [Apache-2.0](LICENSE-APACHE)