steam-user 0.1.0

Steam User web client for Rust - HTTP-based Steam Community interactions
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143

//! Kind-aware retry strategy for `reqwest-middleware`.
//!
//! Wraps `reqwest_retry::DefaultRetryableStrategy` and short-circuits to
//! "do not retry" when the active endpoint's [`EndpointKind`] is one that
//! Steam treats as security-sensitive:
//!
//! - [`EndpointKind::Recovery`]: account recovery wizard on
//!   `help.steampowered.com`. Repeated wrong codes lock the account.
//! - [`EndpointKind::Auth`]: login / 2FA / mobile confirmation. Steam
//!   IP-bans aggressive retries here.
//!
//! All other kinds keep the default behaviour: retry 5XX, 408, 429, and
//! transient network errors.

use reqwest::Response;
use reqwest_middleware::Error;
use reqwest_retry::{DefaultRetryableStrategy, Retryable, RetryableStrategy};

use crate::endpoint::{current_endpoint, EndpointKind};

/// Retry strategy that consults the active endpoint via task-local
/// [`crate::endpoint::CURRENT_ENDPOINT`].
pub struct KindAwareRetryStrategy;

impl RetryableStrategy for KindAwareRetryStrategy {
    fn handle(&self, res: &Result<Response, Error>) -> Option<Retryable> {
        if let Some(ep) = current_endpoint() {
            match ep.kind {
                EndpointKind::Recovery | EndpointKind::Auth => {
                    if let Err(e) = res {
                        tracing::warn!(
                            steam.endpoint.kind = %ep.kind,
                            steam.endpoint.path = %ep.path,
                            error = %e,
                            "skipping auto-retry for security-sensitive endpoint",
                        );
                    } else if let Ok(r) = res {
                        let s = r.status();
                        if s.is_server_error() || s == reqwest::StatusCode::TOO_MANY_REQUESTS {
                            tracing::warn!(
                                steam.endpoint.kind = %ep.kind,
                                steam.endpoint.path = %ep.path,
                                status = %s,
                                "skipping auto-retry for security-sensitive endpoint",
                            );
                        }
                    }
                    return None;
                }
                EndpointKind::Read | EndpointKind::Write | EndpointKind::Upload => {
                    // Fall through to default behaviour.
                }
            }
        }
        DefaultRetryableStrategy.handle(res)
    }
}

#[cfg(test)]
mod tests {
    use super::*;
    use crate::endpoint::{EndpointInfo, Host, HttpMethod, CURRENT_ENDPOINT};

    fn make_500_response() -> Response {
        let raw = http::Response::builder().status(500).body("").expect("valid http response");
        Response::from(raw)
    }

    fn make_200_response() -> Response {
        let raw = http::Response::builder().status(200).body("").expect("valid http response");
        Response::from(raw)
    }

    fn ep(kind: EndpointKind) -> EndpointInfo {
        EndpointInfo {
            name: "test", module: "test", method: HttpMethod::Get,
            host: Host::Help, path: "/test", kind,
        }
    }

    #[tokio::test]
    async fn recovery_endpoint_skips_retry_on_5xx() {
        static EP: std::sync::OnceLock<EndpointInfo> = std::sync::OnceLock::new();
        let info = EP.get_or_init(|| ep(EndpointKind::Recovery));

        let decision = CURRENT_ENDPOINT
            .scope(info, async {
                KindAwareRetryStrategy.handle(&Ok(make_500_response()))
            })
            .await;

        assert!(decision.is_none(), "Recovery must not retry on 5xx");
    }

    #[tokio::test]
    async fn auth_endpoint_skips_retry_on_5xx() {
        static EP: std::sync::OnceLock<EndpointInfo> = std::sync::OnceLock::new();
        let info = EP.get_or_init(|| ep(EndpointKind::Auth));

        let decision = CURRENT_ENDPOINT
            .scope(info, async {
                KindAwareRetryStrategy.handle(&Ok(make_500_response()))
            })
            .await;

        assert!(decision.is_none(), "Auth must not retry on 5xx");
    }

    #[tokio::test]
    async fn read_endpoint_uses_default_retry_on_5xx() {
        static EP: std::sync::OnceLock<EndpointInfo> = std::sync::OnceLock::new();
        let info = EP.get_or_init(|| ep(EndpointKind::Read));

        let decision = CURRENT_ENDPOINT
            .scope(info, async {
                KindAwareRetryStrategy.handle(&Ok(make_500_response()))
            })
            .await;

        assert!(matches!(decision, Some(Retryable::Transient)), "Read on 5xx should retry");
    }

    #[tokio::test]
    async fn read_endpoint_no_retry_on_200() {
        static EP: std::sync::OnceLock<EndpointInfo> = std::sync::OnceLock::new();
        let info = EP.get_or_init(|| ep(EndpointKind::Read));

        let decision = CURRENT_ENDPOINT
            .scope(info, async {
                KindAwareRetryStrategy.handle(&Ok(make_200_response()))
            })
            .await;

        assert!(decision.is_none(), "200 should not retry");
    }

    #[test]
    fn no_endpoint_falls_back_to_default() {
        // No CURRENT_ENDPOINT scope — strategy should fall through to default.
        let decision = KindAwareRetryStrategy.handle(&Ok(make_500_response()));
        assert!(matches!(decision, Some(Retryable::Transient)));
    }
}