taler-rust

config.rs (3458B)

---

 /*
   This file is part of TALER
   Copyright (C) 2025 Taler Systems SA
 
   TALER is free software; you can redistribute it and/or modify it under the
   terms of the GNU Affero General Public License as published by the Free Software
   Foundation; either version 3, or (at your option) any later version.
 
   TALER is distributed in the hope that it will be useful, but WITHOUT ANY
   WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR
   A PARTICULAR PURPOSE.  See the GNU Affero General Public License for more details.
 
   You should have received a copy of the GNU Affero General Public License along with
   TALER; see the file COPYING.  If not, see <http://www.gnu.org/licenses/>
 */
 
 use std::net::{IpAddr, SocketAddr};
 
 use base64::{Engine, prelude::BASE64_STANDARD};
 use sqlx::postgres::PgConnectOptions;
 use taler_common::{
     config::{Section, ValueErr},
     map_config,
 };
 
 use crate::{Serve, auth::AuthMethod};
 
 /// Basic database config
 pub struct DbCfg {
     pub cfg: PgConnectOptions,
     pub sql_dir: String,
 }
 
 impl DbCfg {
     pub fn parse(sect: Section) -> Result<Self, ValueErr> {
         Ok(Self {
             cfg: sect.postgres("CONFIG").require()?,
             sql_dir: sect.path("SQL_DIR").require()?,
         })
     }
 }
 
 pub enum AuthCfg {
     None,
     Bearer(String),
     Basic { username: String, password: String },
 }
 
 impl AuthCfg {
     pub fn method(&self) -> AuthMethod {
         match self {
             AuthCfg::None => AuthMethod::None,
             AuthCfg::Bearer(token) => AuthMethod::Bearer(token.clone()),
             AuthCfg::Basic { username, password } => {
                 AuthMethod::Basic(BASE64_STANDARD.encode(format!("{username}:{password}")))
             }
         }
     }
 }
 
 /// Basic api config
 pub struct ApiCfg {
     pub auth: AuthCfg,
 }
 
 impl ApiCfg {
     pub fn parse(sect: Section) -> Result<Option<Self>, ValueErr> {
         Ok(if sect.boolean("ENABLED").require()? {
             let auth = map_config!(sect, "auth_method", "AUTH_METHOD",
                 "none" => {
                     Ok(AuthCfg::None)
                 },
                 "basic" => {
                     Ok(AuthCfg::Basic {
                          username: sect.str("USERNAME").require()?,
                      password: sect.str("PASSWORD").require()?
                     })
                 },
                 "bearer" => {
                     let token = sect.str("AUTH_TOKEN").opt()?;
                     if let Some(token) = token {
                         Ok(AuthCfg::Bearer(token))
                     } else {
                         Ok(AuthCfg::Bearer(sect.str("TOKEN").require()?))
                     }
                 }
             )
             .require()?;
             Some(Self { auth })
         } else {
             None
         })
     }
 }
 
 impl Serve {
     pub fn parse(sect: Section) -> Result<Self, ValueErr> {
         map_config!(sect, "serve", "SERVE",
             "tcp" => {
                 let port = sect.number("PORT").require()?;
                 let ip: IpAddr = sect.parse("IP addr", "BIND_TO").require()?;
                 Ok::<Serve, ValueErr>(Serve::Tcp(SocketAddr::new(ip, port)))
             },
             "unix" => {
                 let path = sect.path("UNIXPATH").require()?;
                 let permission = sect.unix_mode("UNIXPATH_MODE").require()?;
                 Ok::<Serve, ValueErr>(Serve::Unix { path, permission })
             }
         )
         .require()
     }
 }