1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61

use super::{Ctx, Handler};

use crate::capability::secrets::store::{HostSecret, Secret, SecretValue};
use crate::capability::secrets::{self, reveal, store};

use std::sync::Arc;

use async_trait::async_trait;
use tracing::instrument;
use wasmtime::component::Resource;

/// `wasmcloud:secrets` implementation
#[async_trait]
pub trait Secrets {
    /// Handle `wasmcloud:secrets/store.get`
    async fn get(
        &self,
        key: &str,
    ) -> anyhow::Result<Result<secrets::store::Secret, secrets::store::SecretsError>>;

    /// Handle `wasmcloud:secrets/reveal.reveal`
    async fn reveal(
        &self,
        secret: secrets::reveal::Secret,
    ) -> anyhow::Result<secrets::reveal::SecretValue>;
}

#[async_trait]
impl<H: Handler> HostSecret for Ctx<H> {
    async fn drop(&mut self, secret: Resource<Secret>) -> anyhow::Result<()> {
        self.table.delete(secret)?;
        Ok(())
    }
}

#[async_trait]
impl<H: Handler> store::Host for Ctx<H> {
    #[instrument(skip(self))]
    async fn get(
        &mut self,
        key: String,
    ) -> anyhow::Result<Result<Resource<Secret>, store::SecretsError>> {
        let secret = Secrets::get(&self.handler, &key).await?;
        if let Some(err) = secret.err() {
            Ok(Err(err))
        } else {
            let secret_resource = self.table.push(Arc::new(key))?;
            Ok(Ok(secret_resource))
        }
    }
}

#[async_trait]
impl<H: Handler> reveal::Host for Ctx<H> {
    #[instrument(skip(self))]
    async fn reveal(&mut self, secret: Resource<Secret>) -> anyhow::Result<SecretValue> {
        let key = self.table.get(&secret)?;
        let secret_value = self.handler.reveal(key.clone()).await?;
        Ok(secret_value)
    }
}