futucli/cmd/

keys.rs

//! `futucli list-keys` / `futucli revoke-key`: 查看和吊销 API Key
//!
//! 明文 plaintext 只在 `gen-key` 生成时打印一次，后续无法通过这个命令还原；
//! 所以 `list-keys` 只展示 id / scopes / 限额 / 过期 等元数据。

use std::path::PathBuf;

use anyhow::{Context, Result, anyhow};
use chrono::Utc;
use futu_auth::store;

/// 默认 keys.json 路径：按 OS 取 dirs::config_dir() (macOS ~/Library/Application Support/futu/ / Linux ~/.config/futu/ / Windows %APPDATA%\\futu\\)
fn default_keys_path() -> Result<PathBuf> {
    let base =
        dirs::config_dir().ok_or_else(|| anyhow!("cannot resolve config dir (set --keys-file)"))?;
    Ok(base.join("futu").join("keys.json"))
}

fn resolve_path(path: Option<PathBuf>) -> Result<PathBuf> {
    match path {
        Some(p) => Ok(p),
        None => default_keys_path(),
    }
}

pub async fn list(keys_file: Option<PathBuf>, json: bool) -> Result<()> {
    let path = resolve_path(keys_file)?;

    // v1.4.106 codex 0608 F3 (P2): --json 输出机读 JSON 数组
    // (无文件时 / 空 keys.json 都输出 `[]` 让脚本 / agent 一致解析).
    if json {
        if !path.exists() {
            println!("[]");
            return Ok(());
        }
        let records =
            store::list_keys(&path).with_context(|| format!("read {}", path.display()))?;
        let json_str =
            serde_json::to_string_pretty(&records).with_context(|| "serialize keys to JSON")?;
        println!("{json_str}");
        return Ok(());
    }

    if !path.exists() {
        println!("(no keys.json at {})", path.display());
        return Ok(());
    }
    let records = store::list_keys(&path).with_context(|| format!("read {}", path.display()))?;

    if records.is_empty() {
        println!("(empty keys.json at {})", path.display());
        return Ok(());
    }

    println!("keys.json: {}", path.display());
    println!("total: {}", records.len());
    println!();
    // v1.4.106 codex 0608 F3 (P2): 短表新增 ACCOUNTS / SYMBOLS / DAILY /
    // WINDOW 列, 让用户一眼看到每条 key 的完整白名单 + 时间 / 资金 cap 限制.
    // 之前只有 MARKETS / LIMITS / BOUND / EXPIRES → ACCOUNTS / SYMBOLS /
    // DAILY / WINDOW 全藏在 limits summary 里 (truncate 后看不到).
    println!(
        "{:<20} {:<8} {:<32} {:<8} {:<10} {:<10} {:<14} {:<10} {:<13} {:<10} {:<18} NOTE",
        "ID",
        "STATUS",
        "SCOPES",
        "MARKETS",
        "SYMBOLS",
        "ACCOUNTS",
        "LIMITS",
        "DAILY",
        "WINDOW",
        "BOUND",
        "EXPIRES",
    );
    println!("{}", "-".repeat(180));
    let now = Utc::now();
    for rec in &records {
        let status = if rec.is_expired(now) {
            "EXPIRED"
        } else {
            "active"
        };
        let scopes = {
            let mut v: Vec<&str> = rec.scopes.iter().map(|s| s.as_str()).collect();
            v.sort();
            v.join(",")
        };
        let markets = rec
            .allowed_markets
            .as_ref()
            .map(|s| {
                let mut v: Vec<&str> = s.iter().map(|x| x.as_str()).collect();
                v.sort();
                v.join(",")
            })
            .unwrap_or_else(|| "*".to_string());
        // SYMBOLS 列: 显示 count (避免长 symbol 列表把表撑爆); 0 时 "*"
        let symbols = match rec.allowed_symbols.as_ref() {
            None => "*".to_string(),
            Some(s) if s.is_empty() => "*".to_string(),
            Some(s) if s.len() == 1 => s.iter().next().cloned().unwrap_or_else(|| "*".to_string()),
            Some(s) => format!("{} syms", s.len()),
        };
        // ACCOUNTS 列: acc_id 集合 + card_num 集合 (合并展示)
        let accounts = format_accounts_summary(rec);
        let limits = format_limits_summary(rec);
        // DAILY / WINDOW: 单独列出 (之前藏在 limits summary 里 truncate 后看不到)
        let daily = rec
            .max_daily_value
            .map(humanize_money)
            .unwrap_or_else(|| "-".to_string());
        let window = rec.hours_window.clone().unwrap_or_else(|| "-".to_string());
        let bound = match rec.allowed_machines.as_deref() {
            None => "*".to_string(),
            Some([]) => "FROZEN".to_string(),
            Some(list) if list.len() == 1 => "1 machine".to_string(),
            Some(list) => format!("{} machines", list.len()),
        };
        let expires = rec
            .expires_at
            .map(|t| t.format("%Y-%m-%d %H:%MZ").to_string())
            .unwrap_or_else(|| "-".to_string());
        let note = rec.note.clone().unwrap_or_default();
        println!(
            "{:<20} {:<8} {:<32} {:<8} {:<10} {:<10} {:<14} {:<10} {:<13} {:<10} {:<18} {}",
            truncate(&rec.id, 20),
            status,
            truncate(&scopes, 32),
            truncate(&markets, 8),
            truncate(&symbols, 10),
            truncate(&accounts, 10),
            truncate(&limits, 14),
            truncate(&daily, 10),
            truncate(&window, 13),
            bound,
            expires,
            truncate(&note, 40),
        );
    }
    Ok(())
}

/// v1.4.106 F3: ACCOUNTS 列摘要 — 合并 acc_id 集合 + card_num 集合
///
/// - 都 None / 空 → "*" (无限制)
/// - 单个 acc_id → 直接显示数字
/// - 单个 card_num (4-digit suffix) → 显示 `~7680`
/// - 多个 → "N accs"
fn format_accounts_summary(rec: &futu_auth::KeyRecord) -> String {
    let acc_count = rec.allowed_acc_ids.as_ref().map_or(0, |s| s.len());
    let card_count = rec.allowed_card_nums.as_ref().map_or(0, |v| v.len());
    let total = acc_count + card_count;
    if total == 0 {
        return "*".to_string();
    }
    if acc_count == 1 && card_count == 0 {
        return rec
            .allowed_acc_ids
            .as_ref()
            .and_then(|s| s.iter().next())
            .map(|id| id.to_string())
            .unwrap_or_else(|| "1 acc".to_string());
    }
    if acc_count == 0 && card_count == 1 {
        return format!(
            "~{}",
            rec.allowed_card_nums
                .as_ref()
                .and_then(|v| v.first())
                .cloned()
                .unwrap_or_default()
        );
    }
    format!("{total} accs")
}

/// 把速率 / 方向 / 金额等"非白名单"类限额压成一个短字符串
///
/// 例：`rate=3/m,sell` / `rate=5/m` / `sell,buyback` / `ord=50k` / `-`
fn format_limits_summary(rec: &futu_auth::KeyRecord) -> String {
    let mut parts: Vec<String> = Vec::new();
    if let Some(r) = rec.max_orders_per_minute {
        parts.push(format!("rate={r}/m"));
    }
    if let Some(sides) = rec.allowed_trd_sides.as_ref()
        && !sides.is_empty()
    {
        // 压缩：只取小写首词
        let mut v: Vec<String> = sides
            .iter()
            .map(|s| match s.as_str() {
                "BUY" => "buy".into(),
                "SELL" => "sell".into(),
                "SELL_SHORT" => "short".into(),
                "BUY_BACK" => "cover".into(),
                other => other.to_ascii_lowercase(),
            })
            .collect();
        v.sort();
        parts.push(v.join(","));
    }
    if let Some(v) = rec.max_order_value {
        parts.push(format!("ord={}", humanize_money(v)));
    }
    if parts.is_empty() {
        "-".into()
    } else {
        parts.join(",")
    }
}

fn humanize_money(v: f64) -> String {
    if v >= 1_000_000.0 {
        format!("{:.0}m", v / 1_000_000.0)
    } else if v >= 1_000.0 {
        format!("{:.0}k", v / 1_000.0)
    } else {
        format!("{v:.0}")
    }
}

pub async fn revoke(id: String, keys_file: Option<PathBuf>, yes: bool) -> Result<()> {
    let path = resolve_path(keys_file)?;
    if !path.exists() {
        return Err(anyhow!("keys.json not found at {}", path.display()));
    }
    if !yes {
        eprintln!("About to revoke key id={:?} from {}.", id, path.display());
        eprintln!("Pass --yes to confirm. Aborting.");
        return Ok(());
    }
    let removed =
        store::remove_key(&path, &id).with_context(|| format!("remove from {}", path.display()))?;
    if removed {
        println!("revoked: id={:?}  ({})", id, path.display());
        println!("note: running gateway must receive SIGHUP to pick up the change. Run:");
        println!("  kill -HUP $(pgrep futu-opend)    # Linux / macOS，shell 会自动探测 pid");
        println!(
            "  # Windows / 没装 pgrep：先 `ps aux | grep futu-opend` 查 pid，再 `kill -HUP <pid>`"
        );
    } else {
        println!("no key with id={:?} in {}", id, path.display());
    }
    Ok(())
}

fn truncate(s: &str, n: usize) -> String {
    if s.chars().count() <= n {
        s.to_string()
    } else {
        let mut out: String = s.chars().take(n.saturating_sub(1)).collect();
        out.push('…');
        out
    }
}

#[cfg(test)]
mod tests;