rsigma-runtime 0.12.0

Streaming runtime for rsigma — event sources, sinks, and log processing pipeline
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57

use std::path::PathBuf;

/// NATS connection configuration shared between source and sink.
///
/// Holds optional authentication and TLS fields. When no auth is configured,
/// connects without credentials (suitable for local development).
#[derive(Debug, Clone, Default)]
pub struct NatsConnectConfig {
    pub url: String,
    pub credentials_file: Option<PathBuf>,
    pub token: Option<String>,
    pub username: Option<String>,
    pub password: Option<String>,
    pub nkey: Option<String>,
    pub tls_client_cert: Option<PathBuf>,
    pub tls_client_key: Option<PathBuf>,
    pub require_tls: bool,
}

impl NatsConnectConfig {
    pub fn new(url: String) -> Self {
        Self {
            url,
            ..Default::default()
        }
    }

    /// Build an `async_nats::Client` from this configuration.
    ///
    /// Auth methods are mutually exclusive; the first one found wins
    /// (credentials file > token > user/password > nkey).
    pub async fn connect(&self) -> Result<async_nats::Client, async_nats::Error> {
        let options = if let Some(ref path) = self.credentials_file {
            async_nats::ConnectOptions::with_credentials_file(path).await?
        } else if let Some(ref token) = self.token {
            async_nats::ConnectOptions::with_token(token.clone())
        } else if let (Some(user), Some(pass)) = (&self.username, &self.password) {
            async_nats::ConnectOptions::with_user_and_password(user.clone(), pass.clone())
        } else if let Some(ref seed) = self.nkey {
            async_nats::ConnectOptions::with_nkey(seed.clone())
        } else {
            async_nats::ConnectOptions::new()
        };

        let mut options = options;

        if let (Some(cert), Some(key)) = (&self.tls_client_cert, &self.tls_client_key) {
            options = options.add_client_certificate(cert.clone(), key.clone());
        }

        if self.require_tls {
            options = options.require_tls(true);
        }

        options.connect(&self.url).await.map_err(|e| e.into())
    }
}