spark_rust/wallet/

graphql.rs

// Copyright ©, 2023-present, Lightspark Group, Inc. - All Rights Reserved

//! GraphQL client for Lightspark API communication
//!
//! Provides a client for executing GraphQL operations against the Lightspark API,
//! with features for request compression, authentication, and error handling.

use std::collections::HashMap;

use bitcoin::secp256k1::PublicKey;
use once_cell::sync::Lazy;
use regex::Regex;
use reqwest::Client;
use serde_json::{from_slice, to_vec, Value};
use url::Url;
use zstd::{decode_all, encode_all};

use crate::{
    constants::spark::LIGHTSPARK_SSP_ENDPOINT,
    error::{IoError, NetworkError, SparkSdkError},
};

/// Client for making GraphQL requests to the Lightspark API
#[derive(Clone)]
pub struct GraphqlClient {
    base_url: Url,
    http_client: Client,
}

impl GraphqlClient {
    /// Creates a new GraphQL client
    ///
    /// Uses LIGHTSPARK_SSP_ENDPOINT environment variable if available,
    /// otherwise falls back to the default endpoint
    pub fn new() -> Result<Self, SparkSdkError> {
        let base_url = validate_base_url(
            std::env::var("LIGHTSPARK_SSP_ENDPOINT")
                .unwrap_or(LIGHTSPARK_SSP_ENDPOINT.to_string())
                .as_str(),
        )?;

        Ok(GraphqlClient {
            base_url,
            http_client: Client::new(),
        })
    }

    /// Executes a GraphQL query or mutation
    ///
    /// Handles payload compression, authentication, and response processing.
    /// Large payloads (>1KB) are automatically compressed using zstd.
    ///
    /// # Arguments
    /// * `identity_public_key` - Public key used for authentication
    /// * `query` - GraphQL operation (must include operation name)
    /// * `variables` - Variables to include with the GraphQL operation
    ///
    /// # Returns
    /// * `Ok(HashMap<String, Value>)` - Data returned from the GraphQL operation
    /// * `Err(SparkSdkError)` - If the request or response handling fails
    #[cfg_attr(feature = "telemetry", tracing::instrument(skip_all))]
    pub async fn execute_graphql(
        &self,
        identity_public_key: &PublicKey,
        query: &str,
        variables: HashMap<String, Value>,
    ) -> Result<HashMap<String, Value>, SparkSdkError> {
        let operation_name = validate_operation(query)?;

        // Prepare payload
        let payload = serde_json::json!({
            "operationName": operation_name,
            "query": query,
            "variables": variables,
        });
        let encoded_payload = to_vec(&payload).map_err(|_| {
            SparkSdkError::from(NetworkError::InvalidGraphQLOperation(query.to_string()))
        })?;

        // Compress if payload > 1024 bytes
        let (body, compressed) = if encoded_payload.len() > 1024 {
            let compressed = encode_all(&encoded_payload[..], 0)
                .map_err(|err| SparkSdkError::from(IoError::Io(err)))?;
            (compressed, true)
        } else {
            (encoded_payload, false)
        };

        // Build HTTP request
        let mut request = self
            .http_client
            .post(self.base_url.clone())
            .header(
                "Spark-Identity-Public-Key",
                hex::encode(identity_public_key.serialize()),
            )
            .header("Content-Type", "application/json")
            .header("Accept-Encoding", "zstd")
            .header("X-GraphQL-Operation", operation_name)
            .header("User-Agent", self.get_user_agent())
            .header("X-Polarity-SDK", self.get_user_agent());

        if compressed {
            request = request.header("Content-Encoding", "zstd");
        }

        let response = request
            .body(body)
            .send()
            .await
            .map_err(|err| SparkSdkError::from(NetworkError::Http(err)))?;

        // Handle response
        let status = response.status();

        if !status.is_success() {
            return Err(SparkSdkError::from(NetworkError::GraphQLRequestFailed {
                status_code: status.as_u16(),
            }));
        }

        // Check headers before consuming response
        let is_zstd_encoded = response
            .headers()
            .get("Content-Encoding")
            .is_some_and(|v| v == "zstd");

        // Now consume response to get the body
        let mut data = response
            .bytes()
            .await
            .map_err(|err| SparkSdkError::from(NetworkError::Http(err)))?
            .to_vec();

        // Decode if zstd encoded
        if is_zstd_encoded {
            data = decode_all(&data[..]).map_err(|err| SparkSdkError::from(IoError::Io(err)))?;
        }

        // Parse JSON response
        let result: HashMap<String, Value> =
            from_slice(&data).map_err(|err| SparkSdkError::from(IoError::SerdeJson(err)))?;
        if let Some(errors) = result.get("errors") {
            let err = errors
                .as_array()
                .and_then(|arr| arr.first())
                .and_then(|v| v.as_object())
                .ok_or("invalid error format")?;
            let error_message = err
                .get("message")
                .and_then(|v| v.as_str())
                .ok_or("missing error message")?
                .to_string();

            if let Some(extensions) = err.get("extensions").and_then(|v| v.as_object()) {
                if extensions
                    .get("error_name")
                    .and_then(|v| v.as_str())
                    .is_some()
                {
                    return Err(SparkSdkError::from(NetworkError::GraphQL(error_message)));
                }
            }
            return Err(SparkSdkError::from(NetworkError::GraphQL(error_message)));
        }

        result
            .get("data")
            .and_then(|v| {
                v.as_object()
                    .map(|o| o.into_iter().map(|(k, v)| (k.clone(), v.clone())).collect())
            })
            .ok_or_else(|| "missing data field".into())
    }

    /// Returns the user agent string for requests
    fn get_user_agent(&self) -> &str {
        "spark"
    }
}

/// Extracts the operation name from a GraphQL query or mutation
///
/// # Arguments
/// * `query` - GraphQL operation string
///
/// # Returns
/// * `Ok(String)` - The extracted operation name
/// * `Err(SparkSdkError)` - If the operation name cannot be extracted
fn validate_operation(query: &str) -> Result<String, SparkSdkError> {
    static RE: Lazy<Regex> =
        Lazy::new(|| Regex::new(r"(?i)\s*(?:query|mutation)\s+(?P<OperationName>\w+)").unwrap());

    let captures =
        RE.captures(query)
            .ok_or(SparkSdkError::from(NetworkError::InvalidGraphQLOperation(
                query.to_string(),
            )))?;

    captures
        .name("OperationName")
        .ok_or(SparkSdkError::from(NetworkError::InvalidGraphQLOperation(
            query.to_string(),
        )))
        .map(|m| m.as_str().to_string())
}

/// Checks if a hostname is a localhost or local network address
///
/// # Arguments
/// * `hostname` - Hostname to check
///
/// # Returns
/// * `true` if the hostname is localhost or a local network address
/// * `false` otherwise
fn is_localhost(hostname: &str) -> bool {
    hostname == "localhost"
        || hostname == "127.0.0.1"
        || hostname
            .split('.')
            .next_back()
            .is_some_and(|tld| tld == "internal" || tld == "local")
}

/// Validates and parses a base URL for the GraphQL API
///
/// Ensures the URL uses HTTPS unless it's a localhost address
///
/// # Arguments
/// * `base_url` - URL string to validate
///
/// # Returns
/// * `Ok(Url)` - Parsed and validated URL
/// * `Err(SparkSdkError)` - If the URL is invalid or uses an insecure scheme
fn validate_base_url(base_url: &str) -> Result<Url, SparkSdkError> {
    let url = Url::parse(base_url).map_err(|_| {
        SparkSdkError::from(NetworkError::InvalidUrl {
            url: base_url.to_string(),
            details: None,
        })
    })?;

    if url.scheme() != "https" && !url.host_str().is_some_and(is_localhost) {
        return Err(SparkSdkError::from(NetworkError::InvalidUrl {
            url: base_url.to_string(),
            details: Some("Only HTTPS is supported for non-localhost".to_string()),
        }));
    }
    Ok(url)
}