vta-service 0.2.0

Service for Verifiable Trust Agents operating in Verifiable Trust Communities
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40

use std::future::Future;
use std::pin::Pin;

use crate::error::AppError;
use tracing::debug;

/// Seed store that reads a hex-encoded seed from the config.
///
/// Initialized from `[secrets] seed` in the config file. The seed is
/// read-only at runtime — to change it, update the config and restart.
pub struct ConfigSeedStore {
    hex_seed: String,
}

impl ConfigSeedStore {
    pub fn new(hex_seed: String) -> Self {
        Self { hex_seed }
    }
}

impl super::SeedStore for ConfigSeedStore {
    fn get(&self) -> Pin<Box<dyn Future<Output = Result<Option<Vec<u8>>, AppError>> + Send + '_>> {
        Box::pin(async {
            let bytes = hex::decode(&self.hex_seed).map_err(|e| {
                AppError::SecretStore(format!("failed to decode hex seed from config: {e}"))
            })?;
            debug!("seed loaded from config");
            Ok(Some(bytes))
        })
    }

    fn set(&self, _seed: &[u8]) -> Pin<Box<dyn Future<Output = Result<(), AppError>> + Send + '_>> {
        Box::pin(async {
            Err(AppError::SecretStore(
                "config-seed backend is read-only at runtime; update [secrets] seed in config.toml"
                    .into(),
            ))
        })
    }
}