baseid_transport/

http.rs

//! HTTP client abstraction for BaseID protocol flows.
//!
//! Provides an injectable async HTTP client trait used by OID4VCI, OID4VP,
//! SIOPv2, DID resolution, and DIDComm message delivery.
//!
//! # Usage
//!
//! Protocol crates accept `impl HttpClient` so tests can inject `MockHttpClient`
//! instead of making real network requests.
//!
//! ```rust
//! use baseid_transport::HttpClient;
//!
//! async fn discover_issuer(client: &impl HttpClient, url: &str) {
//!     let metadata = client.get_json(url).await.unwrap();
//!     // ...
//! }
//! ```

use baseid_core::error::ProtocolError;
use std::collections::HashMap;

/// HTTP response with status, headers, and body.
#[derive(Debug, Clone)]
pub struct HttpResponse {
    /// HTTP status code.
    pub status: u16,
    /// Response headers (lowercase keys).
    pub headers: HashMap<String, String>,
    /// Response body as bytes.
    pub body: Vec<u8>,
}

impl HttpResponse {
    /// Parse the body as JSON.
    pub fn json(&self) -> baseid_core::Result<serde_json::Value> {
        serde_json::from_slice(&self.body).map_err(|_| ProtocolError::InvalidResponse.into())
    }

    /// Return the body as a UTF-8 string.
    pub fn text(&self) -> baseid_core::Result<String> {
        String::from_utf8(self.body.clone()).map_err(|_| ProtocolError::InvalidResponse.into())
    }

    /// Whether the status code indicates success (2xx).
    pub fn is_success(&self) -> bool {
        (200..300).contains(&self.status)
    }
}

/// Async HTTP client trait for BaseID protocol network requests.
///
/// All protocol crates (OID4VCI, OID4VP, SIOPv2, DIDComm) accept this trait
/// for dependency injection and testability.
#[allow(async_fn_in_trait)]
pub trait HttpClient: Send + Sync {
    /// Perform a GET request and parse the JSON response.
    async fn get_json(&self, url: &str) -> baseid_core::Result<serde_json::Value>;

    /// Perform a POST request with form-encoded parameters and parse the JSON response.
    async fn post_form(
        &self,
        url: &str,
        params: &[(&str, &str)],
    ) -> baseid_core::Result<serde_json::Value>;

    /// Perform a POST request with a JSON body and bearer token, returning the JSON response.
    async fn post_json_bearer(
        &self,
        url: &str,
        body: &serde_json::Value,
        token: &str,
    ) -> baseid_core::Result<serde_json::Value>;

    /// Perform a POST request with a JSON body (no auth), returning the JSON response.
    async fn post_json(
        &self,
        url: &str,
        body: &serde_json::Value,
    ) -> baseid_core::Result<serde_json::Value>;

    /// Perform a raw GET request, returning the full response.
    async fn get(&self, url: &str) -> baseid_core::Result<HttpResponse>;

    /// Perform a raw POST request with bytes body and content type.
    async fn post_raw(
        &self,
        url: &str,
        body: &[u8],
        content_type: &str,
    ) -> baseid_core::Result<HttpResponse>;
}

// ---------------------------------------------------------------------------
// ReqwestHttpClient — default production backend
// ---------------------------------------------------------------------------

/// HTTP client backed by `reqwest` (enabled by default via the `http-reqwest` feature).
#[cfg(feature = "http-reqwest")]
pub struct ReqwestHttpClient {
    inner: reqwest::Client,
}

#[cfg(feature = "http-reqwest")]
impl ReqwestHttpClient {
    /// Create a new client with default settings.
    pub fn new() -> Self {
        Self {
            inner: reqwest::Client::new(),
        }
    }

    /// Create a client wrapping an existing `reqwest::Client`.
    pub fn with_client(client: reqwest::Client) -> Self {
        Self { inner: client }
    }
}

#[cfg(feature = "http-reqwest")]
impl Default for ReqwestHttpClient {
    fn default() -> Self {
        Self::new()
    }
}

#[cfg(feature = "http-reqwest")]
impl HttpClient for ReqwestHttpClient {
    async fn get_json(&self, url: &str) -> baseid_core::Result<serde_json::Value> {
        let resp = self
            .inner
            .get(url)
            .send()
            .await
            .map_err(|_| ProtocolError::Transport)?;
        if !resp.status().is_success() {
            return Err(ProtocolError::InvalidResponse.into());
        }
        resp.json()
            .await
            .map_err(|_| ProtocolError::InvalidResponse.into())
    }

    async fn post_form(
        &self,
        url: &str,
        params: &[(&str, &str)],
    ) -> baseid_core::Result<serde_json::Value> {
        let resp = self
            .inner
            .post(url)
            .form(params)
            .send()
            .await
            .map_err(|_| ProtocolError::Transport)?;
        if !resp.status().is_success() {
            return Err(ProtocolError::InvalidResponse.into());
        }
        resp.json()
            .await
            .map_err(|_| ProtocolError::InvalidResponse.into())
    }

    async fn post_json_bearer(
        &self,
        url: &str,
        body: &serde_json::Value,
        token: &str,
    ) -> baseid_core::Result<serde_json::Value> {
        let resp = self
            .inner
            .post(url)
            .bearer_auth(token)
            .json(body)
            .send()
            .await
            .map_err(|_| ProtocolError::Transport)?;
        if !resp.status().is_success() {
            return Err(ProtocolError::InvalidResponse.into());
        }
        resp.json()
            .await
            .map_err(|_| ProtocolError::InvalidResponse.into())
    }

    async fn post_json(
        &self,
        url: &str,
        body: &serde_json::Value,
    ) -> baseid_core::Result<serde_json::Value> {
        let resp = self
            .inner
            .post(url)
            .json(body)
            .send()
            .await
            .map_err(|_| ProtocolError::Transport)?;
        if !resp.status().is_success() {
            return Err(ProtocolError::InvalidResponse.into());
        }
        resp.json()
            .await
            .map_err(|_| ProtocolError::InvalidResponse.into())
    }

    async fn get(&self, url: &str) -> baseid_core::Result<HttpResponse> {
        let resp = self
            .inner
            .get(url)
            .send()
            .await
            .map_err(|_| ProtocolError::Transport)?;
        let status = resp.status().as_u16();
        let headers = resp
            .headers()
            .iter()
            .map(|(k, v)| {
                (
                    k.as_str().to_lowercase(),
                    v.to_str().unwrap_or("").to_string(),
                )
            })
            .collect();
        let body = resp.bytes().await.map_err(|_| ProtocolError::Transport)?;
        Ok(HttpResponse {
            status,
            headers,
            body: body.to_vec(),
        })
    }

    async fn post_raw(
        &self,
        url: &str,
        body: &[u8],
        content_type: &str,
    ) -> baseid_core::Result<HttpResponse> {
        let resp = self
            .inner
            .post(url)
            .header("content-type", content_type)
            .body(body.to_vec())
            .send()
            .await
            .map_err(|_| ProtocolError::Transport)?;
        let status = resp.status().as_u16();
        let headers = resp
            .headers()
            .iter()
            .map(|(k, v)| {
                (
                    k.as_str().to_lowercase(),
                    v.to_str().unwrap_or("").to_string(),
                )
            })
            .collect();
        let body = resp.bytes().await.map_err(|_| ProtocolError::Transport)?;
        Ok(HttpResponse {
            status,
            headers,
            body: body.to_vec(),
        })
    }
}

// ---------------------------------------------------------------------------
// MockHttpClient — for testing without network access
// ---------------------------------------------------------------------------

/// Mock HTTP client for testing. Returns pre-configured responses.
///
/// # Example
///
/// ```rust
/// use baseid_transport::MockHttpClient;
/// use serde_json::json;
///
/// let mock = MockHttpClient::new()
///     .on_get("https://issuer.example.com/.well-known/openid-credential-issuer",
///         json!({"credential_issuer": "https://issuer.example.com"}))
///     .on_post("https://issuer.example.com/token",
///         json!({"access_token": "tok_123", "token_type": "bearer"}));
/// ```
pub struct MockHttpClient {
    get_responses: std::sync::Mutex<HashMap<String, serde_json::Value>>,
    post_responses: std::sync::Mutex<HashMap<String, serde_json::Value>>,
    raw_get_responses: std::sync::Mutex<HashMap<String, HttpResponse>>,
    raw_post_responses: std::sync::Mutex<HashMap<String, HttpResponse>>,
}

impl MockHttpClient {
    /// Create a new empty mock client.
    pub fn new() -> Self {
        Self {
            get_responses: std::sync::Mutex::new(HashMap::new()),
            post_responses: std::sync::Mutex::new(HashMap::new()),
            raw_get_responses: std::sync::Mutex::new(HashMap::new()),
            raw_post_responses: std::sync::Mutex::new(HashMap::new()),
        }
    }

    /// Register a JSON response for a GET URL.
    pub fn on_get(self, url: &str, response: serde_json::Value) -> Self {
        self.get_responses
            .lock()
            .unwrap()
            .insert(url.to_string(), response);
        self
    }

    /// Register a JSON response for a POST URL.
    pub fn on_post(self, url: &str, response: serde_json::Value) -> Self {
        self.post_responses
            .lock()
            .unwrap()
            .insert(url.to_string(), response);
        self
    }

    /// Register a raw HTTP response for a GET URL.
    pub fn on_get_raw(self, url: &str, response: HttpResponse) -> Self {
        self.raw_get_responses
            .lock()
            .unwrap()
            .insert(url.to_string(), response);
        self
    }

    /// Register a raw HTTP response for a POST URL.
    pub fn on_post_raw(self, url: &str, response: HttpResponse) -> Self {
        self.raw_post_responses
            .lock()
            .unwrap()
            .insert(url.to_string(), response);
        self
    }

    fn get_json_response(&self, url: &str) -> baseid_core::Result<serde_json::Value> {
        self.get_responses
            .lock()
            .unwrap()
            .get(url)
            .cloned()
            .ok_or_else(|| ProtocolError::Transport.into())
    }

    fn get_post_response(&self, url: &str) -> baseid_core::Result<serde_json::Value> {
        self.post_responses
            .lock()
            .unwrap()
            .get(url)
            .cloned()
            .ok_or_else(|| ProtocolError::Transport.into())
    }
}

impl Default for MockHttpClient {
    fn default() -> Self {
        Self::new()
    }
}

impl HttpClient for MockHttpClient {
    async fn get_json(&self, url: &str) -> baseid_core::Result<serde_json::Value> {
        self.get_json_response(url)
    }

    async fn post_form(
        &self,
        url: &str,
        _params: &[(&str, &str)],
    ) -> baseid_core::Result<serde_json::Value> {
        self.get_post_response(url)
    }

    async fn post_json_bearer(
        &self,
        url: &str,
        _body: &serde_json::Value,
        _token: &str,
    ) -> baseid_core::Result<serde_json::Value> {
        self.get_post_response(url)
    }

    async fn post_json(
        &self,
        url: &str,
        _body: &serde_json::Value,
    ) -> baseid_core::Result<serde_json::Value> {
        self.get_post_response(url)
    }

    async fn get(&self, url: &str) -> baseid_core::Result<HttpResponse> {
        self.raw_get_responses
            .lock()
            .unwrap()
            .get(url)
            .cloned()
            .ok_or_else(|| ProtocolError::Transport.into())
    }

    async fn post_raw(
        &self,
        url: &str,
        _body: &[u8],
        _content_type: &str,
    ) -> baseid_core::Result<HttpResponse> {
        self.raw_post_responses
            .lock()
            .unwrap()
            .get(url)
            .cloned()
            .ok_or_else(|| ProtocolError::Transport.into())
    }
}

#[cfg(test)]
mod tests {
    use super::*;
    use serde_json::json;

    #[tokio::test]
    async fn mock_get_json_returns_configured_response() {
        let client =
            MockHttpClient::new().on_get("https://example.com/metadata", json!({"issuer": "test"}));
        let resp = client
            .get_json("https://example.com/metadata")
            .await
            .unwrap();
        assert_eq!(resp["issuer"], "test");
    }

    #[tokio::test]
    async fn mock_get_json_returns_error_for_unknown_url() {
        let client = MockHttpClient::new();
        let result = client.get_json("https://unknown.example.com").await;
        assert!(result.is_err());
    }

    #[tokio::test]
    async fn mock_post_form_returns_configured_response() {
        let client = MockHttpClient::new().on_post(
            "https://example.com/token",
            json!({"access_token": "tok_123", "token_type": "bearer"}),
        );
        let resp = client
            .post_form(
                "https://example.com/token",
                &[("grant_type", "authorization_code")],
            )
            .await
            .unwrap();
        assert_eq!(resp["access_token"], "tok_123");
    }

    #[tokio::test]
    async fn mock_post_json_bearer_returns_configured_response() {
        let client = MockHttpClient::new().on_post(
            "https://example.com/credential",
            json!({"credential": "ey..."}),
        );
        let body = json!({"types": ["VerifiableCredential"]});
        let resp = client
            .post_json_bearer("https://example.com/credential", &body, "tok_123")
            .await
            .unwrap();
        assert_eq!(resp["credential"], "ey...");
    }

    #[tokio::test]
    async fn mock_post_json_returns_configured_response() {
        let client =
            MockHttpClient::new().on_post("https://example.com/present", json!({"status": "ok"}));
        let body = json!({"vp_token": "ey..."});
        let resp = client
            .post_json("https://example.com/present", &body)
            .await
            .unwrap();
        assert_eq!(resp["status"], "ok");
    }

    #[tokio::test]
    async fn mock_post_returns_error_for_unknown_url() {
        let client = MockHttpClient::new();
        let result = client.post_form("https://unknown.example.com", &[]).await;
        assert!(result.is_err());
    }

    #[tokio::test]
    async fn mock_raw_get_returns_configured_response() {
        let client = MockHttpClient::new().on_get_raw(
            "https://example.com/doc",
            HttpResponse {
                status: 200,
                headers: HashMap::new(),
                body: b"hello".to_vec(),
            },
        );
        let resp = client.get("https://example.com/doc").await.unwrap();
        assert_eq!(resp.status, 200);
        assert_eq!(resp.text().unwrap(), "hello");
    }

    #[tokio::test]
    async fn mock_raw_post_returns_configured_response() {
        let client = MockHttpClient::new().on_post_raw(
            "https://example.com/submit",
            HttpResponse {
                status: 201,
                headers: HashMap::new(),
                body: b"{\"id\":\"abc\"}".to_vec(),
            },
        );
        let resp = client
            .post_raw("https://example.com/submit", b"data", "application/json")
            .await
            .unwrap();
        assert_eq!(resp.status, 201);
        assert_eq!(resp.json().unwrap()["id"], "abc");
    }

    #[tokio::test]
    async fn http_response_is_success() {
        let ok = HttpResponse {
            status: 200,
            headers: HashMap::new(),
            body: vec![],
        };
        assert!(ok.is_success());
        let created = HttpResponse {
            status: 201,
            headers: HashMap::new(),
            body: vec![],
        };
        assert!(created.is_success());
        let not_found = HttpResponse {
            status: 404,
            headers: HashMap::new(),
            body: vec![],
        };
        assert!(!not_found.is_success());
        let error = HttpResponse {
            status: 500,
            headers: HashMap::new(),
            body: vec![],
        };
        assert!(!error.is_success());
    }

    #[tokio::test]
    async fn http_response_json_parsing() {
        let resp = HttpResponse {
            status: 200,
            headers: HashMap::new(),
            body: b"{\"key\":\"value\"}".to_vec(),
        };
        let json = resp.json().unwrap();
        assert_eq!(json["key"], "value");
    }

    #[tokio::test]
    async fn http_response_json_parse_error() {
        let resp = HttpResponse {
            status: 200,
            headers: HashMap::new(),
            body: b"not json".to_vec(),
        };
        assert!(resp.json().is_err());
    }

    #[tokio::test]
    async fn mock_client_is_send_sync() {
        fn assert_send_sync<T: Send + Sync>() {}
        assert_send_sync::<MockHttpClient>();
    }

    #[tokio::test]
    async fn mock_multiple_urls() {
        let client = MockHttpClient::new()
            .on_get("https://a.example.com", json!({"site": "a"}))
            .on_get("https://b.example.com", json!({"site": "b"}))
            .on_post("https://c.example.com", json!({"site": "c"}));

        assert_eq!(
            client.get_json("https://a.example.com").await.unwrap()["site"],
            "a"
        );
        assert_eq!(
            client.get_json("https://b.example.com").await.unwrap()["site"],
            "b"
        );
        assert_eq!(
            client
                .post_form("https://c.example.com", &[])
                .await
                .unwrap()["site"],
            "c"
        );
    }

    #[cfg(feature = "http-reqwest")]
    #[test]
    fn reqwest_client_is_send_sync() {
        fn assert_send_sync<T: Send + Sync>() {}
        assert_send_sync::<ReqwestHttpClient>();
    }
}