sanctum_ai/

protocol.rs

use serde::{Deserialize, Serialize};

/// JSON-RPC request over the Unix socket.
#[derive(Debug, Clone, Serialize, Deserialize)]
pub struct RpcRequest {
    pub id: u64,
    pub method: String,
    #[serde(default)]
    pub params: serde_json::Value,
}

/// Structured error for AI-agent-friendly diagnostics.
#[derive(Debug, Clone, Serialize, Deserialize)]
pub struct RpcError {
    pub code: String,
    pub message: String,
    #[serde(skip_serializing_if = "Option::is_none")]
    pub detail: Option<String>,
    #[serde(skip_serializing_if = "Option::is_none")]
    pub suggestion: Option<String>,
    #[serde(skip_serializing_if = "Option::is_none")]
    pub docs_url: Option<String>,
    #[serde(skip_serializing_if = "Option::is_none")]
    pub context: Option<serde_json::Value>,
}

impl RpcError {
    pub fn new(code: impl Into<String>, message: impl Into<String>) -> Self {
        let code = code.into();
        let docs_url = format!("https://sanctum.dev/errors/{code}");
        Self {
            code,
            message: message.into(),
            detail: None,
            suggestion: None,
            docs_url: Some(docs_url),
            context: None,
        }
    }

    pub fn detail(mut self, d: impl Into<String>) -> Self {
        self.detail = Some(d.into());
        self
    }

    pub fn suggestion(mut self, s: impl Into<String>) -> Self {
        self.suggestion = Some(s.into());
        self
    }

    pub fn context(mut self, ctx: serde_json::Value) -> Self {
        self.context = Some(ctx);
        self
    }
}

/// JSON-RPC response. The `error` field is either a string (legacy) or a
/// structured `RpcError` object, keeping backward compatibility.
#[derive(Debug, Clone, Serialize, Deserialize)]
pub struct RpcResponse {
    pub id: u64,
    #[serde(skip_serializing_if = "Option::is_none")]
    pub result: Option<serde_json::Value>,
    #[serde(skip_serializing_if = "Option::is_none")]
    pub error: Option<serde_json::Value>,
}

impl RpcResponse {
    pub fn success(id: u64, result: serde_json::Value) -> Self {
        Self {
            id,
            result: Some(result),
            error: None,
        }
    }

    /// Legacy string error (backward compatible).
    pub fn error(id: u64, message: impl Into<String>) -> Self {
        Self {
            id,
            result: None,
            error: Some(serde_json::Value::String(message.into())),
        }
    }

    /// Structured error with full diagnostic context for AI agents.
    pub fn structured_error(id: u64, err: RpcError) -> Self {
        Self {
            id,
            result: None,
            error: Some(
                serde_json::to_value(err)
                    .unwrap_or(serde_json::Value::String("serialization error".into())),
            ),
        }
    }

    /// Check whether this response is an error (structured or legacy).
    pub fn is_error(&self) -> bool {
        self.error.is_some()
    }

    /// Extract the error code from a structured error, or None for legacy strings.
    pub fn error_code(&self) -> Option<&str> {
        self.error
            .as_ref()
            .and_then(|v| v.as_object())
            .and_then(|obj| obj.get("code"))
            .and_then(|c| c.as_str())
    }

    /// Extract the error message (works for both legacy strings and structured errors).
    pub fn error_message(&self) -> Option<&str> {
        match &self.error {
            Some(serde_json::Value::String(s)) => Some(s.as_str()),
            Some(v) => v
                .as_object()
                .and_then(|o| o.get("message"))
                .and_then(|m| m.as_str()),
            None => None,
        }
    }
}

/// Encode a message with a 4-byte big-endian length prefix.
pub fn encode_message(msg: &[u8]) -> Vec<u8> {
    let len = msg.len() as u32;
    let mut buf = Vec::with_capacity(4 + msg.len());
    buf.extend_from_slice(&len.to_be_bytes());
    buf.extend_from_slice(msg);
    buf
}

/// Read the 4-byte length prefix and return the expected message length.
pub fn decode_length(header: &[u8; 4]) -> u32 {
    u32::from_be_bytes(*header)
}

// --- Param types for each RPC method ---

#[derive(Debug, Deserialize)]
pub struct AuthenticateParams {
    pub agent_name: String,
}

#[derive(Debug, Deserialize)]
pub struct ChallengeResponseParams {
    pub session_id: String,
    pub signature: String, // hex
}

#[derive(Debug, Deserialize)]
pub struct RetrieveParams {
    pub session_id: String,
    pub path: String,
    pub ttl: Option<u64>,
}

#[derive(Debug, Deserialize)]
pub struct ListParams {
    pub session_id: String,
}

#[derive(Debug, Deserialize)]
pub struct ReleaseLeaseParams {
    pub lease_id: String,
}

#[derive(Debug, Deserialize)]
pub struct UseParams {
    pub session_id: String,
    pub path: String,
    pub operation: String,
    pub params: serde_json::Value,
}

#[cfg(test)]
mod tests {
    use super::*;

    #[test]
    fn test_rpc_request_serialize() {
        let req = RpcRequest {
            id: 1,
            method: "authenticate".to_string(),
            params: serde_json::json!({"agent_name": "test"}),
        };
        let json = serde_json::to_string(&req).unwrap();
        let parsed: RpcRequest = serde_json::from_str(&json).unwrap();
        assert_eq!(parsed.id, 1);
        assert_eq!(parsed.method, "authenticate");
    }

    #[test]
    fn test_rpc_response_success() {
        let resp = RpcResponse::success(1, serde_json::json!({"ok": true}));
        assert!(resp.result.is_some());
        assert!(resp.error.is_none());
        let json = serde_json::to_string(&resp).unwrap();
        assert!(json.contains("\"ok\":true"));
        assert!(!json.contains("error"));
    }

    #[test]
    fn test_rpc_response_error() {
        let resp = RpcResponse::error(2, "access denied");
        assert!(resp.result.is_none());
        assert!(resp.is_error());
        assert_eq!(resp.error_message(), Some("access denied"));
    }

    #[test]
    fn test_rpc_structured_error() {
        let err = RpcError::new("ACCESS_DENIED", "Agent 'a' cannot retrieve 'k'")
            .detail("No matching policy")
            .suggestion("Add a policy for agent:a")
            .context(serde_json::json!({"agent": "a", "resource": "k"}));
        let resp = RpcResponse::structured_error(1, err);
        assert!(resp.is_error());
        assert_eq!(resp.error_code(), Some("ACCESS_DENIED"));
        assert_eq!(resp.error_message(), Some("Agent 'a' cannot retrieve 'k'"));
        // Verify it serializes to JSON with all fields
        let json = serde_json::to_string(&resp).unwrap();
        assert!(json.contains("ACCESS_DENIED"));
        assert!(json.contains("docs_url"));
    }

    #[test]
    fn test_encode_decode_message() {
        let msg = b"hello world";
        let encoded = encode_message(msg);
        assert_eq!(encoded.len(), 4 + msg.len());
        let header: [u8; 4] = encoded[..4].try_into().unwrap();
        assert_eq!(decode_length(&header), msg.len() as u32);
        assert_eq!(&encoded[4..], msg);
    }

    #[test]
    fn test_authenticate_params_deserialize() {
        let json = r#"{"agent_name": "my-agent"}"#;
        let params: AuthenticateParams = serde_json::from_str(json).unwrap();
        assert_eq!(params.agent_name, "my-agent");
    }

    #[test]
    fn test_retrieve_params_deserialize() {
        let json = r#"{"session_id": "abc", "path": "openai/key", "ttl": 300}"#;
        let params: RetrieveParams = serde_json::from_str(json).unwrap();
        assert_eq!(params.path, "openai/key");
        assert_eq!(params.ttl, Some(300));
    }
}