redaction-derive 0.1.9

Proc-macro derive for Sensitive classification traversal
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108

//! Shared field transformation logic for struct and enum derivation.
//!
//! This module extracts the common code for generating field transformations,
//! which was previously duplicated between `derive_struct` and `derive_enum`.

use proc_macro2::{Ident, Span, TokenStream};
use quote::quote_spanned;
use syn::Result;

use crate::{
    crate_path,
    generics::collect_generics_from_type,
    strategy::Strategy,
    types::{is_boxed_dyn_type, is_scalar_type},
};

/// Accumulated state during field processing.
///
/// This struct groups the mutable vectors that collect generics and output tokens
/// during traversal of struct fields or enum variants.
pub(crate) struct DeriveContext<'a> {
    pub(crate) generics: &'a syn::Generics,
    pub(crate) container_path: &'a TokenStream,
    pub(crate) used_generics: &'a mut Vec<Ident>,
    pub(crate) classified_generics: &'a mut Vec<Ident>,
    pub(crate) debug_redacted_generics: &'a mut Vec<Ident>,
    pub(crate) debug_unredacted_generics: &'a mut Vec<Ident>,
}

/// Generates the transform token stream for a single field.
///
/// This function encapsulates the logic that was previously duplicated in
/// `derive_named_struct`, `derive_unnamed_struct`, `derive_named_variant`,
/// and `derive_unnamed_variant`.
///
/// ## Field Transformation Rules
///
/// | Annotation | Behavior |
/// |------------|----------|
/// | None | Pass through unchanged (identity) |
/// | `#[sensitive]` | Walk containers OR redact scalars to default |
/// | `#[sensitive(Class)]` | Apply classification recursively through wrappers |
pub(crate) fn generate_field_transform(
    ctx: &mut DeriveContext<'_>,
    ty: &syn::Type,
    binding: &Ident,
    span: Span,
    strategy: &Strategy,
) -> Result<TokenStream> {
    let container_path = ctx.container_path;

    match strategy {
        // No annotation: pass through unchanged
        // This allows external types (DateTime, Decimal, etc.) to work without issues
        Strategy::PassThrough => {
            // No trait bounds needed - any type can pass through
            // Still track for Debug impl
            collect_generics_from_type(ty, ctx.generics, ctx.debug_unredacted_generics);
            // No code generation needed - the binding from destructuring is used directly
            Ok(TokenStream::new())
        }
        // Bare #[sensitive]: walk containers or redact scalars
        Strategy::Walk => {
            if is_scalar_type(ty) {
                // Scalars redact to their default value
                Ok(quote_spanned! { span =>
                    let #binding = mapper.map_scalar(#binding);
                })
            } else if is_boxed_dyn_type(ty) {
                let redact_boxed_path = crate_path("redact_boxed");
                Ok(quote_spanned! { span =>
                    let #binding = #redact_boxed_path(#binding);
                })
            } else {
                // Non-scalars: walk using SensitiveType
                collect_generics_from_type(ty, ctx.generics, ctx.used_generics);
                collect_generics_from_type(ty, ctx.generics, ctx.debug_redacted_generics);
                collect_generics_from_type(ty, ctx.generics, ctx.debug_unredacted_generics);
                Ok(quote_spanned! { span =>
                    let #binding = #container_path::redact_with(#binding, mapper);
                })
            }
        }
        // #[sensitive(Classification)]: apply classification policy recursively
        // Uses Classifiable trait which handles any nesting depth:
        // String, Option<String>, Vec<String>, Option<Vec<String>>, etc.
        Strategy::Classify(classification) => {
            if is_scalar_type(ty) {
                Err(syn::Error::new(
                    span,
                    "scalar fields cannot use a classification: use bare #[sensitive]. \
                    Scalars redact to their default value (0, false, etc.), \
                    except char which redacts to 'X'.",
                ))
            } else {
                // Use Classifiable for ALL non-scalar types
                // This handles: String, Option<String>, Vec<String>, Option<Vec<String>>, etc.
                collect_generics_from_type(ty, ctx.generics, ctx.classified_generics);
                collect_generics_from_type(ty, ctx.generics, ctx.debug_unredacted_generics);
                let classification = classification.clone();
                let classifiable_path = crate_path("Classifiable");
                Ok(quote_spanned! { span =>
                    let #binding = #classifiable_path::apply_classification::<#classification, _>(#binding, mapper);
                })
            }
        }
    }
}