feature: rewrite season subscription extractor

apps/recorder/src/crypto/config.rs

@@ -0,0 +1,4 @@
+use serde::{Deserialize, Serialize};
+
+#[derive(Debug, Clone, Serialize, Deserialize)]
+pub struct CryptoConfig {}

apps/recorder/src/crypto/error.rs

@@ -0,0 +1,11 @@
+#[derive(Debug, snafu::Snafu)]
+pub enum CryptoError {
+    #[snafu(transparent)]
+    Base64DecodeError { source: base64::DecodeError },
+    #[snafu(display("CocoonError: {source:?}"), context(false))]
+    CocoonError { source: cocoon::Error },
+    #[snafu(transparent)]
+    FromUtf8Error { source: std::string::FromUtf8Error },
+    #[snafu(transparent)]
+    SerdeJsonError { source: serde_json::Error },
+}

apps/recorder/src/crypto/mod.rs

@@ -0,0 +1,9 @@
+pub mod config;
+pub mod error;
+pub mod service;
+pub mod userpass;
+
+pub use config::CryptoConfig;
+pub use error::CryptoError;
+pub use service::CryptoService;
+pub use userpass::UserPassCredential;

apps/recorder/src/crypto/service.rs

@@ -0,0 +1,65 @@
+use base64::prelude::{BASE64_URL_SAFE, *};
+use cocoon::Cocoon;
+use rand::Rng;
+use serde::{Deserialize, Serialize};
+
+use super::CryptoConfig;
+use crate::crypto::error::CryptoError;
+
+pub struct CryptoService {
+    #[allow(dead_code)]
+    config: CryptoConfig,
+}
+
+impl CryptoService {
+    pub async fn from_config(config: CryptoConfig) -> Result<Self, CryptoError> {
+        Ok(Self { config })
+    }
+
+    pub fn encrypt_data(&self, data: String) -> Result<String, CryptoError> {
+        let key = rand::rng().random::<[u8; 32]>();
+        let mut cocoon = Cocoon::new(&key);
+
+        let mut data = data.into_bytes();
+
+        let detached_prefix = cocoon.encrypt(&mut data)?;
+
+        let mut combined = Vec::with_capacity(key.len() + detached_prefix.len() + data.len());
+        combined.extend_from_slice(&key);
+        combined.extend_from_slice(&detached_prefix);
+        combined.extend_from_slice(&data);
+
+        Ok(BASE64_URL_SAFE.encode(combined))
+    }
+
+    pub fn decrypt_data(&self, data: &str) -> Result<String, CryptoError> {
+        let decoded = BASE64_URL_SAFE.decode(data)?;
+
+        let (key, remain) = decoded.split_at(32);
+        let (detached_prefix, data) = remain.split_at(60);
+        let mut data = data.to_vec();
+        let cocoon = Cocoon::new(key);
+
+        cocoon.decrypt(&mut data, detached_prefix)?;
+
+        String::from_utf8(data).map_err(CryptoError::from)
+    }
+
+    pub fn encrypt_credentials<T: Serialize>(
+        &self,
+        credentials: &T,
+    ) -> Result<String, CryptoError> {
+        let json = serde_json::to_string(credentials)?;
+
+        self.encrypt_data(json)
+    }
+
+    pub fn decrypt_credentials<T: for<'de> Deserialize<'de>>(
+        &self,
+        encrypted: &str,
+    ) -> Result<T, CryptoError> {
+        let data = self.decrypt_data(encrypted)?;
+
+        serde_json::from_str(&data).map_err(CryptoError::from)
+    }
+}

apps/recorder/src/crypto/userpass.rs

@@ -0,0 +1,19 @@
+use std::fmt::Debug;
+
+pub struct UserPassCredential {
+    pub username: String,
+    pub password: String,
+    pub user_agent: Option<String>,
+    pub cookies: Option<String>,
+}
+
+impl Debug for UserPassCredential {
+    fn fmt(&self, f: &mut std::fmt::Formatter<'_>) -> std::fmt::Result {
+        f.debug_struct("UserPassCredential")
+            .field("username", &"[Secret]")
+            .field("password", &"[Secret]")
+            .field("cookies", &"[Secret]")
+            .field("user_agent", &self.user_agent)
+            .finish()
+    }
+}