smart-id-rust-client 0.3.3

Smart ID Rust Client
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188

use crate::error::Result;
use crate::error::SmartIdClientError;
use crate::models::api::response::SmartIdAPIResponse;
use crate::models::common::CertificateLevel;
use crate::models::interaction::InteractionFlow;
use crate::models::signature::{ResponseSignature, SignatureProtocol};
use serde::{Deserialize, Serialize};
use serde_with::skip_serializing_none;

pub(crate) type SessionResponse = SmartIdAPIResponse<SessionStatusResponse>;

/// Session Status
///
/// This struct represents the status of a session with the Smart ID service.
/// It is returned from the Smart ID service session status endpoint.
///
/// # Properties
///
/// * `state` - The current state of the session, either `RUNNING` or `COMPLETE`.
/// * `result` - The result of the session, if available. result.endResult will be `OK` if the session was successful.
/// * `signature_protocol` - The protocol used for the signature, if available.
/// * `signature` - The signature response, if available.
/// * `cert` - The session certificate, if available. Contains the level of the certificate and the certificate value DER+Base64 encoded.
/// * `ignored_properties` - Any values from requestProperties that were unsupported or ignored.
/// * `interaction_type_used` - The interaction flow used during the session, if available.
/// * `device_ip_address` - The IP address of the mobile device, if it was requested using "shareMdClientIpAddress" in the session creation parameters.
#[skip_serializing_none]
#[derive(Debug, Clone, PartialEq, Serialize, Deserialize, Default)]
#[serde(rename_all = "camelCase")]
pub struct SessionStatusResponse {
    pub state: SessionState,
    pub result: Option<SessionResult>,
    pub signature_protocol: Option<SignatureProtocol>,
    pub signature: Option<ResponseSignature>,
    pub cert: Option<SessionCertificate>,
    pub ignored_properties: Option<Vec<String>>,
    pub interaction_type_used: Option<InteractionFlow>,
    pub device_ip_address: Option<String>,
}

/// Session Certificate
///
/// This struct represents the certificate used in a session with the Smart ID service.
/// During an auth flow a certificate that is non-repudiation capable is returned, for signing flows a certificate that is digital signature capable is returned.
///
/// # Properties
///
/// * `value` - The certificate value, DER+Base64 encoded. The certificate itself contains info on whether the certificate is QSCD-enabled, data which is not represented by certificate level.
/// * `certificate_level` - The level of the certificate.
#[skip_serializing_none]
#[derive(Default, Debug, Clone, PartialEq, Serialize, Deserialize)]
#[serde(rename_all = "camelCase")]
pub struct SessionCertificate {
    // Certificate value, DER+Base64 encoded. The certificate itself contains info on whether the certificate is QSCD-enabled, data which is not represented by certificate level.
    pub value: String,
    pub certificate_level: CertificateLevel,
}

/// Session Result
///
/// This struct represents the result of a session with the Smart ID service.
/// It is part of the session status response.
///
/// # Properties
///
/// * `end_result` - The end result of the session. OK for success, otherwise an error.
/// * `document_number` - The document number associated with the session, if available. Can be used in further signature and authentication requests.
#[skip_serializing_none]
#[derive(Default, Debug, Clone, PartialEq, Serialize, Deserialize)]
#[serde(rename_all = "camelCase")]
pub struct SessionResult {
    pub end_result: EndResult,
    pub document_number: Option<String>,
}

#[allow(non_camel_case_types)]
#[derive(Debug, Clone, PartialEq, Default, Serialize, Deserialize)]
#[non_exhaustive]
pub enum SessionState {
    #[default]
    RUNNING,
    COMPLETE,
}

#[derive(Debug, Clone, PartialEq, Default, Serialize, Deserialize)]
#[allow(non_camel_case_types)]
#[non_exhaustive]
pub enum EndResult {
    // Session was completed successfully, there is a certificate, document number and possibly signature in return structure.
    OK,
    // User refused the session.
    USER_REFUSED,
    // User refused on interaction screen, i.e. displayed text and PIN, or verification code choice.
    USER_REFUSED_INTERACTION,
    // There was a timeout, i.e. end user did not confirm or refuse the operation within given time frame.
    TIMEOUT,
    // For some reason, this RP request cannot be completed. User must either check his/her Smart-ID mobile application or turn to customer support for getting the exact reason.
    DOCUMENT_UNUSABLE,
    // In case the multiple-choice verification code was requested, the user did not choose the correct verification code.
    WRONG_VC,
    // User app version does not support any of the allowedInteractionsOrder interactions.
    REQUIRED_INTERACTION_NOT_SUPPORTED_BY_APP,
    // User has multiple accounts and pressed Cancel on device choice screen on any device.
    USER_REFUSED_CERT_CHOICE,
    // User pressed Cancel on PIN screen. Can be from the most common displayTextAndPIN flow or from verificationCodeChoice flow when user chosen the right code and then pressed cancel on PIN screen.
    USER_REFUSED_DISPLAYTEXTANDPIN,
    // User cancelled verificationCodeChoice screen.
    USER_REFUSED_VC_CHOICE,
    // User cancelled on confirmationMessage screen.
    USER_REFUSED_CONFIRMATIONMESSAGE,
    // User cancelled on confirmationMessageAndVerificationCodeChoice screen.
    USER_REFUSED_CONFIRMATIONMESSAGE_WITH_VC_CHOICE,
    // Failure in executing the protocol
    PROTOCOL_FAILURE,
    // Generic server error
    SERVER_ERROR,
    #[default]
    UNKNOWN,
}

impl EndResult {
    pub fn is_ok(&self) -> Result<()> {
        match self {
            EndResult::OK => Ok(()),
            EndResult::USER_REFUSED => {
                Err(SmartIdClientError::UserRefusedVerificationChoiceException)
            }
            EndResult::TIMEOUT => Err(SmartIdClientError::SessionTimeoutException),
            EndResult::DOCUMENT_UNUSABLE => Err(SmartIdClientError::DocumentUnusableException),
            EndResult::WRONG_VC => {
                Err(SmartIdClientError::UserSelectedWrongVerificationCodeException)
            }
            EndResult::REQUIRED_INTERACTION_NOT_SUPPORTED_BY_APP => {
                Err(SmartIdClientError::RequiredInteractionNotSupportedByAppException)
            }
            EndResult::USER_REFUSED_CERT_CHOICE => {
                Err(SmartIdClientError::UserRefusedCertChoiceException)
            }
            EndResult::USER_REFUSED_DISPLAYTEXTANDPIN => {
                Err(SmartIdClientError::UserRefusedDisplayTextAndPinException)
            }
            EndResult::USER_REFUSED_VC_CHOICE => {
                Err(SmartIdClientError::UserRefusedVerificationChoiceException)
            }
            EndResult::USER_REFUSED_CONFIRMATIONMESSAGE => {
                Err(SmartIdClientError::UserRefusedConfirmationMessageException)
            }
            EndResult::USER_REFUSED_CONFIRMATIONMESSAGE_WITH_VC_CHOICE => Err(
                SmartIdClientError::UserRefusedConfirmationMessageWithVerificationChoiceException,
            ),
            EndResult::PROTOCOL_FAILURE => Err(SmartIdClientError::ProtocolFailureException),
            EndResult::SERVER_ERROR => Err(SmartIdClientError::ServerErrorException),
            EndResult::UNKNOWN | _ => Err(SmartIdClientError::SmartIdClientException(
                "Unknown session end result",
            )),
        }
    }
}

impl From<EndResult> for SmartIdClientError {
    fn from(val: EndResult) -> Self {
        match val {
            EndResult::USER_REFUSED => SmartIdClientError::UserRefusedVerificationChoiceException,
            EndResult::TIMEOUT => SmartIdClientError::SessionTimeoutException,
            EndResult::DOCUMENT_UNUSABLE => SmartIdClientError::DocumentUnusableException,
            EndResult::WRONG_VC => SmartIdClientError::UserSelectedWrongVerificationCodeException,
            EndResult::REQUIRED_INTERACTION_NOT_SUPPORTED_BY_APP => {
                SmartIdClientError::RequiredInteractionNotSupportedByAppException
            }
            EndResult::USER_REFUSED_CERT_CHOICE => {
                SmartIdClientError::UserRefusedCertChoiceException
            }
            EndResult::USER_REFUSED_DISPLAYTEXTANDPIN => {
                SmartIdClientError::UserRefusedDisplayTextAndPinException
            }
            EndResult::USER_REFUSED_VC_CHOICE => {
                SmartIdClientError::UserRefusedVerificationChoiceException
            }
            EndResult::USER_REFUSED_CONFIRMATIONMESSAGE => {
                SmartIdClientError::UserRefusedConfirmationMessageException
            }
            EndResult::USER_REFUSED_CONFIRMATIONMESSAGE_WITH_VC_CHOICE => {
                SmartIdClientError::UserRefusedConfirmationMessageWithVerificationChoiceException
            }
            _ => SmartIdClientError::SmartIdClientException("Unknown session end result"),
        }
    }
}