robomotion 0.1.3

Official Rust SDK for building Robomotion RPA packages
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276

//! OAuth2 dialog support with browser-based authorization flow.

use crate::runtime::{Result, RobomotionError};
use std::net::TcpListener;
use std::time::Duration;
use tokio::sync::mpsc;

/// Fixed OAuth2 redirect URL - must match what's configured in OAuth app.
pub const OAUTH2_REDIRECT_URL: &str = "http://localhost:9876/oauth2/callback";

/// OAuth2 callback port.
pub const OAUTH2_CALLBACK_PORT: u16 = 9876;

/// Port retry interval (5 seconds).
pub const OAUTH2_PORT_RETRY_INTERVAL: Duration = Duration::from_secs(5);

/// Maximum time to wait for port to become available (300 seconds).
pub const OAUTH2_PORT_MAX_TIMEOUT: Duration = Duration::from_secs(300);

/// Maximum time to wait for user to complete authorization (5 minutes).
pub const OAUTH2_AUTH_TIMEOUT: Duration = Duration::from_secs(300);

/// OAuth2 configuration for a provider.
#[derive(Clone)]
pub struct OAuth2Config {
    pub client_id: String,
    pub client_secret: String,
    pub auth_url: String,
    pub token_url: String,
    pub scopes: Vec<String>,
}

/// Open an OAuth2 dialog and wait for the callback.
///
/// This function:
/// 1. Starts a local HTTP server on port 9876
/// 2. Opens the browser to the authorization URL
/// 3. Waits for the OAuth callback with the authorization code
/// 4. Returns the authorization code
///
/// # Example
/// ```ignore
/// let config = OAuth2Config {
///     client_id: "your-client-id".to_string(),
///     client_secret: "your-client-secret".to_string(),
///     auth_url: "https://accounts.google.com/o/oauth2/v2/auth".to_string(),
///     token_url: "https://oauth2.googleapis.com/token".to_string(),
///     scopes: vec!["email".to_string(), "profile".to_string()],
/// };
///
/// let code = open_oauth_dialog(&config).await?;
/// // Exchange code for token...
/// ```
pub async fn open_oauth_dialog(config: &OAuth2Config) -> Result<String> {
    // Try to bind to the port with retry logic
    let listener = acquire_oauth_port().await?;

    let (tx, mut rx) = mpsc::channel::<std::result::Result<String, String>>(1);

    // Build the authorization URL
    let auth_url = format!(
        "{}?client_id={}&redirect_uri={}&response_type=code&scope={}&access_type=offline&prompt=consent&state=state",
        config.auth_url,
        urlencoding::encode(&config.client_id),
        urlencoding::encode(OAUTH2_REDIRECT_URL),
        urlencoding::encode(&config.scopes.join(" "))
    );

    // Open browser
    if let Err(e) = webbrowser::open(&auth_url) {
        return Err(RobomotionError::OAuth(format!(
            "Failed to open browser: {}",
            e
        )));
    }

    // Start the callback server
    let tx_clone = tx.clone();
    let server_handle = tokio::spawn(async move {
        let listener = tokio::net::TcpListener::from_std(listener).unwrap();

        loop {
            match listener.accept().await {
                Ok((mut stream, _)) => {
                    use tokio::io::{AsyncBufReadExt, AsyncWriteExt, BufReader};

                    let mut reader = BufReader::new(&mut stream);
                    let mut request_line = String::new();

                    if reader.read_line(&mut request_line).await.is_ok() {
                        // Parse the request to get the code
                        if let Some(code) = extract_code_from_request(&request_line) {
                            // Send success response
                            let response = format!(
                                "HTTP/1.1 200 OK\r\nContent-Type: text/html\r\n\r\n{}",
                                SUCCESS_HTML
                            );
                            let _ = stream.write_all(response.as_bytes()).await;
                            let _ = tx_clone.send(Ok(code)).await;
                            break;
                        } else if let Some(error) = extract_error_from_request(&request_line) {
                            // Send error response
                            let response = format!(
                                "HTTP/1.1 200 OK\r\nContent-Type: text/html\r\n\r\n{}",
                                ERROR_HTML
                            );
                            let _ = stream.write_all(response.as_bytes()).await;
                            let _ = tx_clone.send(Err(error)).await;
                            break;
                        }
                    }
                }
                Err(_) => break,
            }
        }
    });

    // Wait for the callback with timeout
    let result = tokio::select! {
        result = rx.recv() => {
            match result {
                Some(Ok(code)) => Ok(code),
                Some(Err(e)) => Err(RobomotionError::OAuth(e)),
                None => Err(RobomotionError::OAuth("Channel closed".to_string())),
            }
        }
        _ = tokio::time::sleep(OAUTH2_AUTH_TIMEOUT) => {
            Err(RobomotionError::OAuth(format!(
                "OAuth authorization timed out after {:?} waiting for user to complete authorization",
                OAUTH2_AUTH_TIMEOUT
            )))
        }
    };

    // Clean up
    server_handle.abort();

    result
}

/// Acquire the OAuth port with retry logic.
async fn acquire_oauth_port() -> Result<std::net::TcpListener> {
    let start_time = std::time::Instant::now();
    let mut attempt = 0;

    loop {
        attempt += 1;

        match TcpListener::bind(format!("127.0.0.1:{}", OAUTH2_CALLBACK_PORT)) {
            Ok(listener) => {
                listener.set_nonblocking(true).ok();
                if attempt > 1 {
                    tracing::info!(
                        "OAuth: Successfully acquired port {} after {} attempts (elapsed: {:?})",
                        OAUTH2_CALLBACK_PORT,
                        attempt,
                        start_time.elapsed()
                    );
                }
                return Ok(listener);
            }
            Err(_) => {
                let elapsed = start_time.elapsed();
                if elapsed >= OAUTH2_PORT_MAX_TIMEOUT {
                    return Err(RobomotionError::OAuth(format!(
                        "Could not bind to port {} after {:?} ({} attempts). \
                         Port is in use by another process.",
                        OAUTH2_CALLBACK_PORT, OAUTH2_PORT_MAX_TIMEOUT, attempt
                    )));
                }

                if attempt == 1 {
                    tracing::info!(
                        "OAuth: Port {} is busy, waiting for it to become available...",
                        OAUTH2_CALLBACK_PORT
                    );
                }

                tokio::time::sleep(OAUTH2_PORT_RETRY_INTERVAL).await;
            }
        }
    }
}

/// Extract the authorization code from the request.
fn extract_code_from_request(request: &str) -> Option<String> {
    if request.contains("/oauth2/callback") {
        if let Some(query_start) = request.find('?') {
            let query = &request[query_start + 1..];
            if let Some(end) = query.find(' ') {
                let query = &query[..end];
                for param in query.split('&') {
                    let parts: Vec<&str> = param.splitn(2, '=').collect();
                    if parts.len() == 2 && parts[0] == "code" {
                        return Some(urlencoding::decode(parts[1]).ok()?.into_owned());
                    }
                }
            }
        }
    }
    None
}

/// Extract the error from the request.
fn extract_error_from_request(request: &str) -> Option<String> {
    if request.contains("/oauth2/callback") {
        if let Some(query_start) = request.find('?') {
            let query = &request[query_start + 1..];
            if let Some(end) = query.find(' ') {
                let query = &query[..end];
                let mut error = None;
                let mut error_desc = None;

                for param in query.split('&') {
                    let parts: Vec<&str> = param.splitn(2, '=').collect();
                    if parts.len() == 2 {
                        match parts[0] {
                            "error" => error = urlencoding::decode(parts[1]).ok().map(|s| s.into_owned()),
                            "error_description" => {
                                error_desc = urlencoding::decode(parts[1]).ok().map(|s| s.into_owned())
                            }
                            _ => {}
                        }
                    }
                }

                if let Some(err) = error {
                    return Some(match error_desc {
                        Some(desc) => format!("{}: {}", err, desc),
                        None => err,
                    });
                }
            }
        }
    }
    None
}

const SUCCESS_HTML: &str = r#"<!DOCTYPE html>
<html>
<head>
    <title>Authorization Successful</title>
    <style>
        body { font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, sans-serif; display: flex; justify-content: center; align-items: center; height: 100vh; margin: 0; background: #f5f5f5; }
        .container { text-align: center; padding: 40px; background: white; border-radius: 8px; box-shadow: 0 2px 10px rgba(0,0,0,0.1); }
        h1 { color: #4CAF50; margin-bottom: 16px; }
        p { color: #666; }
    </style>
</head>
<body>
    <div class="container">
        <h1>Authorization Successful</h1>
        <p>You can close this window and return to the application.</p>
    </div>
</body>
</html>"#;

const ERROR_HTML: &str = r#"<!DOCTYPE html>
<html>
<head>
    <title>Authorization Failed</title>
    <style>
        body { font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, sans-serif; display: flex; justify-content: center; align-items: center; height: 100vh; margin: 0; background: #f5f5f5; }
        .container { text-align: center; padding: 40px; background: white; border-radius: 8px; box-shadow: 0 2px 10px rgba(0,0,0,0.1); }
        h1 { color: #f44336; margin-bottom: 16px; }
        p { color: #666; }
    </style>
</head>
<body>
    <div class="container">
        <h1>Authorization Failed</h1>
        <p>An error occurred during authorization.</p>
        <p>You can close this window and try again.</p>
    </div>
</body>
</html>"#;