xposedornot 1.0.1

Rust client library for the XposedOrNot data breach API
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64

//! Password exposure check endpoint.

use crate::client::Client;
use crate::errors::{Error, Result};
use crate::models::PasswordCheckResponse;
use crate::utils::keccak_hash_prefix;

impl Client {
    /// Checks if a password has been exposed in known data breaches.
    ///
    /// The password is hashed locally using Keccak-512 and only the first
    /// 10 hex characters of the digest are sent to the API (k-anonymity).
    /// The full password never leaves the client.
    ///
    /// # Errors
    ///
    /// - [`Error::Validation`] if the password is empty.
    /// - [`Error::NotFound`] if the password hash prefix is not found.
    /// - [`Error::Network`] on connection errors.
    /// - [`Error::RateLimit`] if rate limited after retries.
    ///
    /// # Examples
    ///
    /// ```no_run
    /// use xposedornot::Client;
    ///
    /// # async fn example() -> Result<(), xposedornot::Error> {
    /// let client = Client::builder().build()?;
    /// let result = client.check_password("mysecretpassword").await?;
    /// println!("Exposure count: {}", result.search_pass_anon.count);
    /// # Ok(())
    /// # }
    /// ```
    pub async fn check_password(&self, password: &str) -> Result<PasswordCheckResponse> {
        if password.is_empty() {
            return Err(Error::Validation {
                message: "password must not be empty".to_string(),
            });
        }

        let hash_prefix = keccak_hash_prefix(password);
        let url = format!(
            "{}/v1/pass/anon/{}",
            self.config.password_base_url, hash_prefix
        );
        match self.get_with_retry(&url).await {
            Ok(response) => {
                let body: PasswordCheckResponse = response.json().await?;
                Ok(body)
            }
            Err(Error::NotFound { .. }) => {
                // 404 means password hash prefix not found — password is not exposed
                Ok(PasswordCheckResponse {
                    search_pass_anon: crate::models::PasswordSearchAnon {
                        anon: hash_prefix,
                        char: String::new(),
                        count: "0".to_string(),
                    },
                })
            }
            Err(e) => Err(e),
        }
    }
}