prodex 0.29.0

OpenAI profile pooling and safe auto-rotate for Codex CLI and Claude Code
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84

use crate::secret_store::{
    SecretBackend, SecretError, SecretLocation, SecretRevision, SecretRevisionBackend, SecretValue,
};

#[derive(Debug, Clone, PartialEq, Eq)]
pub struct KeyringSecretBackend {
    service: String,
}

impl KeyringSecretBackend {
    pub fn new(service: impl Into<String>) -> Result<Self, SecretError> {
        let service = service.into();
        if service.trim().is_empty() {
            return Err(SecretError::invalid_location(
                "keyring service name cannot be empty",
            ));
        }
        Ok(Self { service })
    }

    pub fn service(&self) -> &str {
        &self.service
    }
}

impl SecretBackend for KeyringSecretBackend {
    fn read(&self, location: &SecretLocation) -> Result<Option<SecretValue>, SecretError> {
        validate_keyring_location(location, &self.service)?;
        unsupported_location(location)
    }

    fn write(&self, location: &SecretLocation, _value: SecretValue) -> Result<(), SecretError> {
        validate_keyring_location(location, &self.service)?;
        unsupported_location(location)
    }

    fn delete(&self, location: &SecretLocation) -> Result<(), SecretError> {
        validate_keyring_location(location, &self.service)?;
        unsupported_location(location)
    }
}

impl SecretRevisionBackend for KeyringSecretBackend {
    fn probe_revision(
        &self,
        location: &SecretLocation,
    ) -> Result<Option<SecretRevision>, SecretError> {
        validate_keyring_location(location, &self.service)?;
        unsupported_location(location)
    }
}

fn validate_keyring_location(
    location: &SecretLocation,
    expected_service: &str,
) -> Result<(), SecretError> {
    match location {
        SecretLocation::Keyring { service, .. } => {
            if service != expected_service {
                return Err(SecretError::invalid_location(format!(
                    "expected keyring service '{}' but got '{}'",
                    expected_service, service
                )));
            }
            Ok(())
        }
        SecretLocation::File(path) => Err(SecretError::unsupported(format!(
            "file://{}",
            path.display()
        ))),
    }
}

fn unsupported_location<T>(location: &SecretLocation) -> Result<T, SecretError> {
    match location {
        SecretLocation::Keyring { service, account } => Err(SecretError::unsupported(format!(
            "keyring://{service}/{account}"
        ))),
        SecretLocation::File(path) => Err(SecretError::unsupported(format!(
            "file://{}",
            path.display()
        ))),
    }
}