obscura-server 0.9.1

A server for relaying secure messages using the Signal Protocol
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60

use crate::api::AppState;
use crate::api::middleware::AuthUser;
use crate::domain::message::RawSubmission;
use crate::error::{AppError, Result};
use crate::proto::obscura::v1 as proto;
use axum::{body::Bytes, extract::State, http::HeaderMap, response::IntoResponse};
use prost::Message;
use uuid::Uuid;

/// Sends a batch of encrypted messages.
///
/// # Errors
/// Returns `AppError::Forbidden` if a device-scoped token is not provided.
/// Returns `AppError::BadRequest` if the request protobuf is malformed or missing the idempotency key.
/// Returns `AppError::PayloadTooLarge` if the batch size exceeds the limit.
pub(crate) async fn send_messages(
    auth_user: AuthUser,
    State(state): State<AppState>,
    headers: HeaderMap,
    body: Bytes,
) -> Result<impl IntoResponse> {
    let _ = auth_user.device_id.ok_or_else(|| AppError::Forbidden("Device-scoped token required".to_string()))?;

    let idempotency_key = headers
        .get("idempotency-key")
        .and_then(|v| v.to_str().ok())
        .ok_or_else(|| AppError::BadRequest("Missing idempotency-key header".to_string()))
        .and_then(|s| Uuid::parse_str(s).map_err(|e| AppError::BadRequest(format!("Invalid idempotency-key: {e}"))))?;

    // 1. Check Idempotency Cache
    if let Ok(Some(cached)) = state.submission_cache.get(&idempotency_key.to_string()).await {
        tracing::info!(key = %idempotency_key, "Returning cached idempotency response");
        return Ok(cached);
    }

    // 2. Protocol Validation & Decoding
    let request = proto::SendMessageRequest::decode(body)
        .map_err(|e| AppError::BadRequest(format!("Invalid SendMessageRequest protobuf: {e}")))?;

    if request.messages.len() > usize::try_from(state.config.messaging.send_batch_limit).unwrap_or(0) {
        return Err(AppError::PayloadTooLarge);
    }

    // 3. Simple Domain Mapping (moves only)
    let submissions: Vec<RawSubmission> = request.messages.into_iter().map(RawSubmission::from).collect();

    // 4. Domain Logic: Call Pure Service
    let outcome = state.message_service.send(auth_user.user_id, submissions).await?;

    // 5. Result Mapping
    let response = proto::SendMessageResponse::from(outcome);
    let response_bytes = response.encode_to_vec();

    // 6. Infrastructure: Update Idempotency Cache
    if let Err(e) = state.submission_cache.set(&idempotency_key.to_string(), &response_bytes).await {
        tracing::error!(error = %e, "Failed to cache idempotency response");
    }

    Ok(response_bytes)
}