Skip to content

Observability/convert error handling #59

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
merged 4 commits into from
May 13, 2025
Merged

Observability/convert error handling #59

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
4 commits
Select commit Hold shift + click to select a range
252abc7
Reorg errors
alukach May 13, 2025
d396b8e
Finalize flattening & error handling
alukach May 13, 2025
e7026b8
Continue to flatten
alukach May 13, 2025
ce7a621
Make use of api handler util
alukach May 13, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
1 change: 0 additions & 1 deletion Cargo.lock
View file
Open in desktop

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

1 change: 0 additions & 1 deletion Cargo.toml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -27,7 +27,6 @@ xml-rs = "0.8"
serde = { version = "1.0", features = ["derive"] }
serde-xml-rs = "0.6"
bytes = "1.0"
serde_json = "1.0"
pin-project-lite = "0.2"
futures = "0.3"
futures-core = "0.3"
Expand Down
2 changes: 1 addition & 1 deletion src/apis/mod.rs
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -27,5 +27,5 @@ pub trait API {
&self,
account_id: String,
user_identity: UserIdentity,
) -> Result<Account, ()>;
) -> Result<Account, BackendError>;
}
135 changes: 57 additions & 78 deletions src/apis/source.rs
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -4,12 +4,11 @@ use crate::backends::common::Repository;
use crate::backends::s3::S3Repository;
use crate::utils::api::process_json_response;
use crate::utils::auth::UserIdentity;
use crate::utils::errors::{APIError, BackendError, InternalServerError};
use crate::utils::errors::BackendError;
use async_trait::async_trait;
use moka::future::Cache;
use rusoto_core::Region;
use serde::{Deserialize, Serialize};
use serde_json::Value;
use std::collections::HashMap;
use std::env;
use std::sync::Arc;
Expand Down Expand Up @@ -237,7 +236,7 @@ impl API for SourceAPI {
&self,
account_id: String,
user_identity: UserIdentity,
) -> Result<Account, ()> {
) -> Result<Account, BackendError> {
let client = reqwest::Client::new();
// Create headers
let mut headers = reqwest::header::HeaderMap::new();
Expand All @@ -252,29 +251,27 @@ impl API for SourceAPI {
);
}

match client
let response = client
.get(format!(
"{}/api/v1/repositories/{}",
self.endpoint, account_id
))
.headers(headers)
.send()
.await
{
Ok(response) => match response.json::<SourceRepositoryList>().await {
Ok(repository_list) => {
let mut account = Account::default();
.await?;

for repository in repository_list.repositories {
account.repositories.push(repository.repository_id);
}
let repository_list = process_json_response::<SourceRepositoryList>(
response,
BackendError::RepositoryNotFound,
)
.await?;
let mut account = Account::default();

Ok(account)
}
Err(_) => Err(()),
},
Err(_) => Err(()),
for repository in repository_list.repositories {
account.repositories.push(repository.repository_id);
}

Ok(account)
}
}

Expand Down Expand Up @@ -323,7 +320,7 @@ impl SourceAPI {
/// # Returns
///
/// Returns a `Result` containing either a `SourceRepository` struct with the
/// repository information or a boxed `APIError` if the request fails.
/// repository information or a BackendError if the request fails.
pub async fn get_repository_record(
&self,
account_id: &String,
Expand Down Expand Up @@ -397,7 +394,7 @@ impl SourceAPI {
}
}

pub async fn get_api_key(&self, access_key_id: String) -> Result<APIKey, Box<dyn APIError>> {
pub async fn get_api_key(&self, access_key_id: String) -> Result<APIKey, BackendError> {
// Try to get the cached value
let cache_key = format!("{}", access_key_id);

Expand All @@ -406,32 +403,23 @@ impl SourceAPI {
}

// If not in cache, fetch it
match self.fetch_api_key(access_key_id).await {
Ok(secret) => {
// Cache the successful result
match secret {
Some(secret) => {
self.api_key_cache.insert(cache_key, secret.clone()).await;
Ok(secret)
}
None => {
let secret = APIKey {
access_key_id: "".to_string(),
secret_access_key: "".to_string(),
};
self.api_key_cache.insert(cache_key, secret.clone()).await;
Ok(secret)
}
}
}
Err(e) => Err(e),
let secret = self.fetch_api_key(access_key_id).await?;

// Cache the successful result
if let Some(secret) = secret {
self.api_key_cache.insert(cache_key, secret.clone()).await;
Ok(secret)
} else {
let secret = APIKey {
access_key_id: "".to_string(),
secret_access_key: "".to_string(),
};
self.api_key_cache.insert(cache_key, secret.clone()).await;
Ok(secret)
}
}

async fn fetch_api_key(
&self,
access_key_id: String,
) -> Result<Option<APIKey>, Box<dyn APIError>> {
async fn fetch_api_key(&self, access_key_id: String) -> Result<Option<APIKey>, BackendError> {
if access_key_id.is_empty() {
return Ok(None);
}
Expand All @@ -445,44 +433,20 @@ impl SourceAPI {
reqwest::header::AUTHORIZATION,
reqwest::header::HeaderValue::from_str(&source_key).unwrap(),
);
match client
let response = client
.get(format!(
"{}/api/v1/api-keys/{}/auth",
source_api_url, access_key_id
))
.headers(headers)
.send()
.await
{
Ok(response) => {
if response.status().is_success() {
match response.text().await {
Ok(text) => {
let json: Value = serde_json::from_str(&text).unwrap();
let secret_access_key = json["secret_access_key"].as_str().unwrap();

return Ok(Some(APIKey {
access_key_id,
secret_access_key: secret_access_key.to_string(),
}));
}
Err(_) => Err(Box::new(InternalServerError {
message: "Internal Server Error".to_string(),
})),
}
} else {
if response.status().is_client_error() {
return Ok(None);
}
Err(Box::new(InternalServerError {
message: "Internal Server Error".to_string(),
}))
}
}
Err(_) => Err(Box::new(InternalServerError {
message: "Internal Server Error".to_string(),
})),
}
.await?;
let key: APIKey = process_json_response::<APIKey>(response, BackendError::ApiKeyNotFound).await?;

Ok(Some(APIKey {
access_key_id,
secret_access_key: key.secret_access_key,
}))
}

async fn fetch_repository(
Expand All @@ -495,8 +459,7 @@ impl SourceAPI {
self.endpoint, account_id, repository_id
))
.await?;
process_json_response::<SourceRepository>(response, BackendError::RepositoryNotFound)
.await
process_json_response::<SourceRepository>(response, BackendError::RepositoryNotFound).await
}

pub async fn is_authorized(
Expand Down Expand Up @@ -535,10 +498,26 @@ impl SourceAPI {
self.permissions_cache
.insert(cache_key, permissions.clone())
.await;

Ok(permissions.contains(&permission))
}

pub async fn assert_authorized(
&self,
user_identity: UserIdentity,
account_id: &String,
repository_id: &String,
permission: RepositoryPermission,
) -> Result<bool, BackendError> {
let authorized = self
.is_authorized(user_identity, account_id, repository_id, permission)
.await?;
if !authorized {
return Err(BackendError::UnauthorizedError);
}
Ok(authorized)
}

async fn fetch_permission(
&self,
user_identity: UserIdentity,
Expand Down Expand Up @@ -569,7 +548,7 @@ impl SourceAPI {
.headers(headers)
.send()
.await?;

process_json_response::<Vec<RepositoryPermission>>(
response,
BackendError::RepositoryPermissionsNotFound,
Expand Down
Loading