raisfast 0.2.23

The last backend you'll ever need. Rust-powered headless CMS with built-in blog, ecommerce, wallet, payment and 4 plugin engines.
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128

//! S3-compatible object storage backend.
//!
//! Supports RustFS, MinIO, AWS S3, Cloudflare R2, and other S3-compatible storage.

use async_trait::async_trait;
use std::time::Duration;

use aws_sdk_s3::Client as S3Client;
use aws_sdk_s3::primitives::ByteStream;

use crate::errors::app_error::{AppError, AppResult};
use crate::storage::Storage;

/// S3-compatible object storage.
#[derive(Debug)]
pub struct S3Storage {
    client: S3Client,
    bucket: String,
    public_url: Option<String>,
}

impl S3Storage {
    /// Create an S3 client from AppConfig.
    pub fn from_config(config: &crate::config::app::AppConfig) -> AppResult<Self> {
        let endpoint = config
            .s3_endpoint
            .as_deref()
            .ok_or_else(|| AppError::BadRequest("S3_ENDPOINT not set".into()))?;
        let access_key = config
            .s3_access_key
            .as_deref()
            .ok_or_else(|| AppError::BadRequest("S3_ACCESS_KEY not set".into()))?;
        let secret_key = config
            .s3_secret_key
            .as_deref()
            .ok_or_else(|| AppError::BadRequest("S3_SECRET_KEY not set".into()))?;
        let bucket = config.s3_bucket.clone();
        let region = config.s3_region.clone();
        let public_url = config.s3_public_url.clone();

        let config = aws_config::from_env()
            .region(aws_config::Region::new(region))
            .endpoint_url(endpoint)
            .credentials_provider(aws_sdk_s3::config::Credentials::new(
                access_key, secret_key, None, None, "env",
            ))
            .load_blocking();

        let client = S3Client::new(&config);

        tracing::info!(bucket = %bucket, "S3Storage initialized");

        Ok(Self {
            client,
            bucket,
            public_url,
        })
    }
}

#[async_trait]
impl Storage for S3Storage {
    async fn put(&self, key: &str, data: &[u8], content_type: &str) -> AppResult<()> {
        self.client
            .put_object()
            .bucket(&self.bucket)
            .key(key)
            .content_type(content_type)
            .body(ByteStream::from(data.to_vec()))
            .send()
            .await
            .map_err(|e| AppError::Internal(anyhow::anyhow!("S3 put_object failed: {e}")))?;
        Ok(())
    }

    async fn get(&self, key: &str) -> AppResult<Vec<u8>> {
        let resp = self
            .client
            .get_object()
            .bucket(&self.bucket)
            .key(key)
            .send()
            .await
            .map_err(|e| AppError::Internal(anyhow::anyhow!("S3 get_object failed: {e}")))?;
        let body = resp
            .body
            .collect()
            .await
            .map_err(|e| AppError::Internal(anyhow::anyhow!("S3 read body failed: {e}")))?;
        Ok(body.into_bytes().to_vec())
    }

    async fn delete(&self, key: &str) -> AppResult<()> {
        self.client
            .delete_object()
            .bucket(&self.bucket)
            .key(key)
            .send()
            .await
            .map_err(|e| AppError::Internal(anyhow::anyhow!("S3 delete_object failed: {e}")))?;
        Ok(())
    }

    async fn url(&self, key: &str) -> AppResult<String> {
        if let Some(ref public_url) = self.public_url {
            return Ok(format!("{}/{key}", public_url.trim_end_matches('/')));
        }
        Ok(format!("https://{}.s3.amazonaws.com/{key}", self.bucket))
    }

    async fn presigned_upload(&self, key: &str, ttl: Duration) -> AppResult<String> {
        use aws_sdk_s3::presigning::PresigningConfig;

        let config = PresigningConfig::expires_at(std::time::SystemTime::now() + ttl)
            .map_err(|e| AppError::Internal(anyhow::anyhow!("presign config failed: {e}")))?;

        let presigned = self
            .client
            .put_object()
            .bucket(&self.bucket)
            .key(key)
            .presigned(config)
            .await
            .map_err(|e| AppError::Internal(anyhow::anyhow!("presign failed: {e}")))?;

        Ok(presigned.uri().to_string())
    }
}