vetis 0.1.4-beta.8

Very Tiny Server
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216

use crate::errors::{ConfigError, VetisError};
use futures_util::future::BoxFuture;
use http::HeaderMap;
use serde::Deserialize;
use std::{collections::HashMap, path::Path};

#[derive(Clone, Debug, Deserialize, PartialEq)]
/// An enum with authentication algorithms.
///
/// # Variants
///
/// * `BCrypt` - The bcrypt algorithm.
/// * `Argon2` - The argon2 algorithm.
pub enum Algorithm {
    /// The bcrypt algorithm.
    BCrypt,
    /// The argon2 algorithm.
    Argon2,
}

/// A trait for authentication methods.
pub trait Auth {
    /// Authenticate method takes a reference to a `HeaderMap` and returns a `Result<bool, VetisError>`.
    ///
    /// # Arguments
    ///
    /// * `headers` - A reference to a `HeaderMap` containing the request headers.
    ///
    /// # Returns
    ///
    /// * `Result<bool, VetisError>` - A result containing a boolean indicating whether the authentication was successful, or a `VetisError` if the authentication failed.
    fn authenticate(&self, headers: &HeaderMap) -> BoxFuture<'_, Result<bool, VetisError>>;
}

/// A builder for creating a `BasicAuthConfig`.
pub struct BasicAuthConfigBuilder {
    users: HashMap<String, String>,
    algorithm: Algorithm,
    htpasswd: Option<String>,
}

impl BasicAuthConfigBuilder {
    /// Allow manually set a hashmap of user and passowrd
    ///
    /// # Returns
    ///
    /// * `Self` - The builder.
    pub fn users(mut self, users: HashMap<String, String>) -> Self {
        self.users = users;
        self
    }

    /// Allow manually set the algorithm
    ///
    /// # Returns
    ///
    /// * `Self` - The builder.
    pub fn algorithm(mut self, algorithm: Algorithm) -> Self {
        self.algorithm = algorithm;
        self
    }

    /// Allow manually set the htpasswd file
    ///
    /// # Returns
    ///
    /// * `Self` - The builder.
    pub fn htpasswd(mut self, htpasswd: &str) -> Self {
        self.htpasswd = Some(htpasswd.to_owned());
        self
    }

    /// Caches the users from the htpasswd file.
    ///
    /// # Note
    ///
    /// This will read the htpasswd file and cache the users in memory.
    /// You must call this method before building the config.
    ///
    /// # Returns
    ///
    /// * `Self` - The builder.
    pub fn cache_users(mut self) -> Self {
        if self
            .htpasswd
            .is_none()
        {
            return self;
        }

        if let Some(htpasswd) = &self.htpasswd {
            let htpasswd = Path::new(htpasswd);
            if !htpasswd.exists() {
                return self;
            }

            let htpasswd = std::fs::read_to_string(htpasswd);
            match htpasswd {
                Ok(file) => {
                    file.lines()
                        .for_each(|line| {
                            let credentials = line.split_once(':');

                            if let Some(credentials) = credentials {
                                self.users.insert(
                                    credentials
                                        .0
                                        .to_string(),
                                    credentials
                                        .1
                                        .to_string(),
                                );
                            }
                        });
                }
                Err(e) => {
                    log::error!("Failed to read htpasswd file: {}", e);
                }
            }
        }

        self
    }

    /// Build the `BasicAuthConfig` with the configured settings.
    ///
    /// # Returns
    ///
    /// * `Result<BasicAuthConfig, VetisError>` - The `BasicAuthConfig` with the configured settings.
    pub fn build(self) -> Result<BasicAuthConfig, VetisError> {
        if let Some(htpasswd) = &self.htpasswd {
            let htpasswd = Path::new(htpasswd);
            if !htpasswd.exists() {
                return Err(VetisError::Config(ConfigError::Auth(
                    ".htpasswd file not found".to_string(),
                )));
            }
        }

        Ok(BasicAuthConfig {
            users: self.users,
            algorithm: self.algorithm,
            htpasswd: self.htpasswd,
        })
    }
}

#[cfg(feature = "auth")]
#[derive(Clone, Deserialize)]
/// A struct with basic authentication configuration.
///
/// # Fields
///
/// * `users` - A map of username to hashed password.
/// * `algorithm` - The algorithm used for password hashing.
/// * `htpasswd` - The path to the htpasswd file.
///
/// # Examples
///
/// ```rust,no_run
/// use std::collections::HashMap;
/// use vetis::auth::{Algorithm, BasicAuthConfig};
///
/// let auth = BasicAuthConfig::builder()
///     .users(HashMap::new())
///     .algorithm(Algorithm::BCrypt)
///     .build();
/// ```
pub struct BasicAuthConfig {
    users: HashMap<String, String>,
    algorithm: Algorithm,
    htpasswd: Option<String>,
}

#[cfg(feature = "auth")]
impl BasicAuthConfig {
    /// Creates a new `BasicAuthConfigBuilder` with default settings.
    ///
    /// # Returns
    ///
    /// * `BasicAuthConfigBuilder` - The builder.
    pub fn builder() -> BasicAuthConfigBuilder {
        BasicAuthConfigBuilder {
            users: HashMap::new(),
            algorithm: Algorithm::BCrypt,
            htpasswd: None,
        }
    }

    /// Returns users
    ///
    /// # Returns
    ///
    /// * `&HashMap<String, String>` - The users.
    pub fn users(&self) -> &HashMap<String, String> {
        &self.users
    }

    /// Returns the algorithm used for password hashing.
    ///
    /// # Returns
    ///
    /// * `&Algorithm` - The algorithm used for password hashing.
    pub fn algorithm(&self) -> &Algorithm {
        &self.algorithm
    }

    /// Returns the path to the htpasswd file.
    ///
    /// # Returns
    ///
    /// * `&Option<String>` - The path to the htpasswd file.
    pub fn htpasswd(&self) -> &Option<String> {
        &self.htpasswd
    }
}