tideway 0.7.17

A batteries-included Rust web framework built on Axum for building SaaS applications quickly
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113

use crate::error::TidewayError;
use axum::http::request::Parts;

/// Extracts bearer token from request headers
pub struct TokenExtractor;

impl TokenExtractor {
    /// Extract token from Authorization header
    pub fn from_header(parts: &Parts) -> Result<String, TidewayError> {
        let auth_header = parts
            .headers
            .get("authorization")
            .and_then(|value| value.to_str().ok())
            .ok_or_else(|| TidewayError::unauthorized("Missing authorization header"))?;

        if !auth_header.starts_with("Bearer ") {
            return Err(TidewayError::unauthorized(
                "Invalid authorization header format. Expected: Bearer <token>",
            ));
        }

        let token = auth_header.trim_start_matches("Bearer ").to_string();

        if token.is_empty() {
            return Err(TidewayError::unauthorized("Empty bearer token"));
        }

        Ok(token)
    }

    /// Extract token from cookie (optional, for session-based auth)
    pub fn from_cookie(parts: &Parts, cookie_name: &str) -> Result<String, TidewayError> {
        let cookie_header = parts
            .headers
            .get("cookie")
            .and_then(|value| value.to_str().ok())
            .ok_or_else(|| TidewayError::unauthorized("Missing cookie header"))?;

        for cookie in cookie_header.split(';') {
            let cookie = cookie.trim();
            if let Some(value) = cookie.strip_prefix(&format!("{}=", cookie_name)) {
                return Ok(value.to_string());
            }
        }

        Err(TidewayError::unauthorized(format!(
            "Cookie '{}' not found",
            cookie_name
        )))
    }

    /// Extract token from query parameter (useful for WebSocket upgrades)
    pub fn from_query(parts: &Parts, param_name: &str) -> Result<String, TidewayError> {
        let query = parts
            .uri
            .query()
            .ok_or_else(|| TidewayError::unauthorized("No query parameters"))?;

        for pair in query.split('&') {
            if let Some((key, value)) = pair.split_once('=') {
                if key == param_name {
                    return Ok(value.to_string());
                }
            }
        }

        Err(TidewayError::unauthorized(format!(
            "Query parameter '{}' not found",
            param_name
        )))
    }
}

#[cfg(test)]
mod tests {
    use super::*;
    use axum::http::Request;

    #[test]
    fn test_extract_from_valid_bearer_header() {
        let req = Request::builder()
            .header("authorization", "Bearer test_token_123")
            .body(())
            .unwrap();

        let (parts, _) = req.into_parts();
        let token = TokenExtractor::from_header(&parts).unwrap();

        assert_eq!(token, "test_token_123");
    }

    #[test]
    fn test_extract_from_missing_header() {
        let req = Request::builder().body(()).unwrap();
        let (parts, _) = req.into_parts();

        let result = TokenExtractor::from_header(&parts);
        assert!(result.is_err());
    }

    #[test]
    fn test_extract_from_invalid_format() {
        let req = Request::builder()
            .header("authorization", "Basic credentials")
            .body(())
            .unwrap();

        let (parts, _) = req.into_parts();
        let result = TokenExtractor::from_header(&parts);

        assert!(result.is_err());
    }
}