tiny-proxy 0.3.0

A high-performance HTTP reverse proxy server written in Rust with SSE support, connection pooling, and configurable routing
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131

//! Token validation module for authentication
//!
//! This module provides functionality for validating tokens
//! against external authentication services.

use hyper::Request;

/// Validate an authentication token from a request
///
/// This function extracts the token from the request headers
/// and validates it against an external authentication service.
///
/// # Arguments
///
/// * `req` - The incoming HTTP request containing the token
/// * `validator_url` - URL of the external token validation service
///
/// # Returns
///
/// * `Ok(true)` - Token is valid
/// * `Ok(false)` - Token is invalid
/// * `Err(...)` - Error occurred during validation
///
/// # Example
///
/// ```no_run
/// use tiny_proxy::auth::validator::validate_token;
/// use hyper::Request;
/// use bytes::Bytes;
/// use http_body_util::Empty;
///
/// # #[tokio::main]
/// # async fn main() -> anyhow::Result<()> {
/// # let req = Request::builder().body(Empty::<Bytes>::new()).unwrap();
/// let is_valid = validate_token(&req, "http://auth-service:8080/validate").await?;
/// # Ok(())
/// # }
/// ```
pub async fn validate_token<B>(req: &Request<B>, validator_url: &str) -> anyhow::Result<bool> {
    // Extract token from Authorization header
    let auth_header = req
        .headers()
        .get("Authorization")
        .and_then(|h| h.to_str().ok())
        .ok_or_else(|| anyhow::anyhow!("Missing Authorization header"))?;

    // TODO: Implement actual token validation against external service
    // This is a placeholder implementation

    // In a real implementation, you would:
    // 1. Send a request to the validator_url with the token
    // 2. Wait for the response
    // 3. Return true/false based on the response

    tracing::debug!("Validating token against {}", validator_url);
    tracing::debug!("Token: {}", auth_header);

    // Placeholder: always return true for now
    Ok(true)
}

/// Validate token with custom header name
///
/// Similar to `validate_token` but allows specifying a custom header
/// name for the token (e.g., "X-Auth-Token" instead of "Authorization").
///
/// # Arguments
///
/// * `req` - The incoming HTTP request
/// * `validator_url` - URL of the external token validation service
/// * `header_name` - Name of the header containing the token
///
/// # Returns
///
/// * `Ok(true)` - Token is valid
/// * `Ok(false)` - Token is invalid
/// * `Err(...)` - Error occurred during validation
pub async fn validate_token_with_header<B>(
    req: &Request<B>,
    validator_url: &str,
    header_name: &str,
) -> anyhow::Result<bool> {
    // Extract token from custom header
    let auth_header = req
        .headers()
        .get(header_name)
        .and_then(|h| h.to_str().ok())
        .ok_or_else(|| anyhow::anyhow!("Missing {} header", header_name))?;

    tracing::debug!(
        "Validating token in {} header against {}",
        header_name,
        validator_url
    );
    tracing::debug!("Token: {}", auth_header);

    // Placeholder: always return true for now
    Ok(true)
}

#[cfg(test)]
mod tests {
    use bytes::Bytes;
    use http_body_util::Empty;
    use hyper::Request;

    #[test]
    fn test_validate_token_missing_header() {
        let _req = Request::builder().body(Empty::<Bytes>::new()).unwrap();

        // This would fail in a real async test, but we're just testing the logic
        let _validator_url = "http://auth-service:8080/validate";

        // Note: This test demonstrates the function signature
        // In a real test, you'd use a tokio::test and mock the HTTP client
    }

    #[test]
    fn test_validate_token_with_custom_header() {
        let _req = Request::builder()
            .header("X-Auth-Token", "test-token-123")
            .body(Empty::<Bytes>::new())
            .unwrap();

        let _validator_url = "http://auth-service:8080/validate";
        let _header_name = "X-Auth-Token";

        // Note: This test demonstrates the function signature
        // In a real test, you'd use a tokio::test and mock the HTTP client
    }
}