rustfinity 0.4.9

Rustfinity.com CLI
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86

use anyhow::{bail, Context, Result};
use serde::Deserialize;
use std::time::Duration;

use crate::constants::api_base_url;

#[derive(Deserialize)]
struct DeviceCodeResponse {
    device_code: String,
    user_code: String,
    verification_url: String,
    interval: u64,
}

#[derive(Deserialize)]
struct TokenResponse {
    api_key: Option<String>,
    error: Option<String>,
}

pub async fn device_login() -> Result<String> {
    let client = reqwest::Client::new();
    let base_url = api_base_url();

    // Step 1: Request device code
    let res = client
        .post(format!("{}/auth/device/code", base_url))
        .send()
        .await
        .context("Failed to connect to Rustfinity API")?;

    if !res.status().is_success() {
        bail!("Failed to initiate device login (status {})", res.status());
    }

    let device: DeviceCodeResponse = res.json().await.context("Invalid response from API")?;

    // Step 2: Display code and open browser
    println!();
    println!("  ┌─────────────────────────────────────────┐");
    println!("  │                                         │");
    println!("  │   Your verification code is:            │");
    println!("  │                                         │");
    println!("{:^8}", device.user_code);
    println!("  │                                         │");
    println!("  │   Opening browser to complete login...  │");
    println!("  │                                         │");
    println!("  └─────────────────────────────────────────┘");
    println!();

    if webbrowser::open(&device.verification_url).is_err() {
        println!("Could not open browser. Please visit:");
        println!("  {}", device.verification_url);
        println!();
    }

    println!("Waiting for authorization...");

    // Step 3: Poll for token
    let interval = Duration::from_secs(device.interval);

    loop {
        tokio::time::sleep(interval).await;

        let res = client
            .post(format!("{}/auth/device/token", base_url))
            .json(&serde_json::json!({ "device_code": device.device_code }))
            .send()
            .await
            .context("Failed to poll for token")?;

        let token_res: TokenResponse = res.json().await.context("Invalid token response")?;

        if let Some(api_key) = token_res.api_key {
            return Ok(api_key);
        }

        match token_res.error.as_deref() {
            Some("authorization_pending") => continue,
            Some("expired_token") => bail!("Device code expired. Please try again."),
            Some("access_denied") => bail!("Authorization was denied."),
            Some(err) => bail!("Unexpected error: {}", err),
            None => bail!("Unexpected response from API"),
        }
    }
}