futu_rest/adapter/

mod.rs

//! 通用适配器：JSON ↔ Protobuf 转换 + 请求分发
//!
//! 核心思路：
//! 1. HTTP 请求带 JSON body → 反序列化为 prost Message → encode 为 bytes
//! 2. 构造 IncomingRequest { proto_id, body } → 调用 RequestRouter::dispatch
//! 3. 响应 bytes → decode 为 prost Message → 序列化为 JSON 返回

use std::collections::{HashMap, HashSet};
use std::sync::atomic::{AtomicU32, AtomicU64, Ordering};
use std::sync::{Arc, RwLock};

use bytes::Bytes;
use prost::Message;

use futu_auth::KeyStore;
use futu_codec::header::ProtoFmtType;
use futu_server::conn::IncomingRequest;
use futu_server::router::RequestRouter;
use futu_surface_spec::{DispatchError, EndpointSpec};

use crate::ws::WsBroadcaster;

pub(crate) type RestAccSubscriptionMap = HashMap<String, HashSet<u64>>;
pub(crate) type RestAccSubscriptions = Arc<RwLock<RestAccSubscriptionMap>>;

pub(crate) fn with_rest_acc_subscriptions_read<T>(
    subscriptions: &RestAccSubscriptions,
    f: impl FnOnce(&RestAccSubscriptionMap) -> T,
) -> T {
    match subscriptions.read() {
        Ok(guard) => f(&guard),
        Err(poisoned) => {
            tracing::warn!("rest_acc_subscriptions read lock poisoned; recovering inner state");
            let guard = poisoned.into_inner();
            f(&guard)
        }
    }
}

pub(crate) fn with_rest_acc_subscriptions_write<T>(
    subscriptions: &RestAccSubscriptions,
    f: impl FnOnce(&mut RestAccSubscriptionMap) -> T,
) -> T {
    match subscriptions.write() {
        Ok(mut guard) => f(&mut guard),
        Err(poisoned) => {
            tracing::warn!("rest_acc_subscriptions write lock poisoned; recovering inner state");
            let mut guard = poisoned.into_inner();
            f(&mut guard)
        }
    }
}

/// v1.4.90 P0-C DoS guard: 单次请求 `security_list` / `code_list` / `symbols`
/// / `stocks` / `symbol_list` 数组最大长度。
///
/// **背景**: v1.4.82 B1 引入 string-array shorthand expand 后, adapter 层
/// 对数组长度无约束. 攻击者(或 buggy SDK) `POST /api/subscribe` 一次传
/// 150_000 symbols → quota 爆 + RSS 40× 放大 + handler O(N) 处理阻塞.
///
/// 100 是 Futu OpenD 单订阅 batch 的合理上限(参照 C++ OpenD 真机经验, 大
/// portfolio 用户也极少超过 100). 超出 → 立即 400 + loud msg 引导 client
/// 分批.
///
/// 触发位置: `expand_symbols_array_to_security_list` 入口 + 已含 object
/// array 的 `security_list` 原样路径(防止用户绕过 string shorthand 直接
/// 传 150k objects). v1.4.82 B1 漏的 input validation 这里补上.
pub const MAX_SYMBOLS_PER_REQUEST: usize = 100;

/// v1.4.32+ `/api/admin/status` 的后端快照 provider。
///
/// 由 `futu-opend` 启动时注入：closure 捕获 `Arc<GatewayBridge>`，每次调用
/// 返回 `serde_json::Value` 形式的 `StatusSnapshot`。这样 futu-rest 不需要
/// 反向依赖 futu-gateway。未配置时 `admin_status` 返 503。
pub type AdminStatusProvider = Arc<dyn Fn() -> serde_json::Value + Send + Sync>;

/// v1.4.32+ `/api/admin/reload` 的 handler closure。
///
/// 同 `AdminStatusProvider`：由 opend 注入，捕获 Bridge 的 Arc 调其
/// `reload()` 方法，返 JSON。
/// v1.4.34: reload 升级到 async（内部调 remember_login 网络 I/O），所以 handler
/// 也变成 async。返 `Pin<Box<dyn Future>>` 是标准做法。如果做成 sync + 内部
/// block_on 会在 axum async handler 里导致 runtime 死锁。
pub type AdminReloadHandler = Arc<
    dyn Fn() -> std::pin::Pin<
            Box<dyn std::future::Future<Output = serde_json::Value> + Send + 'static>,
        > + Send
        + Sync,
>;

/// v1.4.83 §9 Phase 2 F5: Push channel health snapshot provider.
///
/// opend 启动时注入 closure, 捕获 `GatewayBridge.push_health` Arc, 在
/// `/api/push-subscriber-info` 调用时返 JSON snapshot. 和 `AdminStatusProvider`
/// 同一 pattern —— 避免 futu-rest 直接依赖 futu-gateway 造成循环.
pub type PushHealthSnapshotProvider = Arc<dyn Fn() -> serde_json::Value + Send + Sync>;

/// v1.4.105 D12 (Phase 2): card_num → acc_ids 解析器.
///
/// opend 启动时注入 closure, 捕获 `bridge.caches.trd_cache` Arc, 调
/// `find_acc_ids_by_card_num(input) -> Vec<u64>`. REST trade handler 在 dispatch
/// 前用此解析 user 传的 `card_num` 字段(4 位末尾 / 16 位完整)→ acc_id, 写
/// 进 `c2s.header.acc_id`. 和 `AdminStatusProvider` 同 pattern —— 避免 futu-rest
/// 反向依赖 futu-cache / futu-gateway.
///
/// 行为契约 (与 `TrdCache::find_acc_ids_by_card_num` 等价):
/// - input 必须 4 位 / 16 位纯数字 (caller 应已 validate, 此处不 validate)
/// - 0 match → empty Vec (caller 决定 reject)
/// - 多 match → 多 acc_id Vec (caller 决定 reject ambiguous)
/// - 1 match → 单 acc_id Vec
pub type CardNumResolver = Arc<dyn Fn(&str) -> Vec<u64> + Send + Sync>;

// Split from the former 1223-line adapter.rs into focused submodules.
mod proto_request;
mod response;
mod state;
mod symbol_normalize;
#[cfg(test)]
use axum::Json;
#[cfg(test)]
use axum::http::StatusCode;
#[cfg(test)]
use proto_request::{map_dispatch_error, maybe_wrap_err_code_prefix, validation_error_body};
#[cfg(test)]
use symbol_normalize::to_snake_case;
#[cfg(test)]
mod tests;

pub use proto_request::{
    proto_request, proto_request_with_ctx, proto_request_with_filter,
    proto_request_with_idempotency, proto_request_with_idempotency_and_caller,
};
pub use response::ApiResponse;
pub(crate) use response::{
    apply_known_field_aliases, expand_symbol_shorthand, maybe_expand_flat_trd_header,
    maybe_wrap_flat_body_as_c2s,
};
pub use state::RestState;
pub use symbol_normalize::normalize_json_keys_snake_case;