skailar 0.0.1

Official Rust SDK for the Skailar API
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45

//! Internal credential handling.
//!
//! The API key is held in an [`ApiKey`] newtype whose [`Debug`] implementation
//! redacts the secret, so it never lands in logs or panic messages by accident.

use reqwest::header::{AUTHORIZATION, HeaderMap, HeaderName, HeaderValue};

/// A bearer credential, redacted in [`Debug`] output.
#[derive(Clone)]
pub(crate) struct ApiKey(String);

impl ApiKey {
    pub(crate) fn new(key: String) -> Self {
        ApiKey(key)
    }

    /// Builds the `Authorization` header value, marking it sensitive so reqwest
    /// keeps it out of its own logging.
    pub(crate) fn header_value(&self) -> HeaderValue {
        let mut value = HeaderValue::from_str(&format!("Bearer {}", self.0))
            .unwrap_or_else(|_| HeaderValue::from_static("Bearer"));
        value.set_sensitive(true);
        value
    }
}

impl std::fmt::Debug for ApiKey {
    fn fmt(&self, f: &mut std::fmt::Formatter<'_>) -> std::fmt::Result {
        f.write_str("ApiKey(***redacted***)")
    }
}

/// Applies the bearer credential last, after dropping any caller-supplied
/// `Authorization` header (case-insensitively), so it can never be overridden.
pub(crate) fn apply_authorization(headers: &mut HeaderMap, key: &ApiKey) {
    headers.remove(AUTHORIZATION);
    headers.insert(AUTHORIZATION, key.header_value());
}

/// Removes a header by name, case-insensitively.
pub(crate) fn remove_header_ci(headers: &mut HeaderMap, name: &str) {
    if let Ok(parsed) = name.parse::<HeaderName>() {
        headers.remove(parsed);
    }
}