cellular/jspg
3
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

boon now included

Browse Source
This commit is contained in:
Alex Groleau
2025-09-30 01:10:58 -04:00
parent c9b1245a57
commit cc04f38c14
77 changed files with 12905 additions and 52 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1156
validator/cli/Cargo.lock generated Normal file
View File

File diff suppressed because it is too large Load Diff

25
validator/cli/Cargo.toml Normal file
View File

@ -0,0 +1,25 @@
[package]
name = "boon-cli"
version = "0.6.2"
edition = "2021"
description = "cli for JSONSchema (draft 2020-12, draft 2019-09, draft-7, draft-6, draft-4) Validation"
repository = "https://github.com/santhosh-tekuri/boon/cli"
authors = ["santhosh kumar tekuri <santhosh.tekuri@gmail.com>"]
keywords = ["jsonschema", "validation"]
categories = ["web-programming"]
license = "MIT OR Apache-2.0"
[dependencies]
boon = { version = "0.6.1", path = ".."}
url = "2"
getopts = "0.2"
serde = { version = "1.0", features = ["derive"] }
serde_json = "1"
serde_yaml = "0.9"
ureq = "2.12"
rustls = { version = "0.23", features = ["ring"] }
rustls-pemfile = "2.1"
[[bin]]
name = "boon"
path = "src/main.rs"

316
validator/cli/src/main.rs Normal file
View File

@ -0,0 +1,316 @@
use core::panic;
use std::{env, error::Error, fs::File, io::BufReader, process, str::FromStr, sync::Arc};
use boon::{Compiler, Draft, Schemas, SchemeUrlLoader, UrlLoader};
use getopts::Options;
use rustls::client::danger::{HandshakeSignatureValid, ServerCertVerified, ServerCertVerifier};
use serde_json::Value;
use ureq::Agent;
use url::Url;
fn main() {
let opts = options();
let matches = match opts.parse(env::args().skip(1)) {
Ok(m) => m,
Err(f) => {
eprintln!("{f}");
eprintln!();
eprintln!("{}", opts.usage(BRIEF));
process::exit(1)
}
};
if matches.opt_present("version") {
println!("{}", env!("CARGO_PKG_VERSION"));
process::exit(0);
}
if matches.opt_present("help") {
println!("{}", opts.usage(BRIEF));
process::exit(0);
}
// draft --
let mut draft = Draft::default();
if let Some(v) = matches.opt_str("draft") {
let Ok(v) = usize::from_str(&v) else {
eprintln!("invalid draft: {v}");
eprintln!();
eprintln!("{}", opts.usage(BRIEF));
process::exit(1);
};
draft = match v {
4 => Draft::V4,
6 => Draft::V6,
7 => Draft::V7,
2019 => Draft::V2019_09,
2020 => Draft::V2020_12,
_ => {
eprintln!("invalid draft: {v}");
eprintln!();
eprintln!("{}", opts.usage(BRIEF));
process::exit(1);
}
};
}
// output --
let output = matches.opt_str("output");
if let Some(o) = &output {
if !matches!(o.as_str(), "simple" | "alt" | "flag" | "basic" | "detailed") {
eprintln!("invalid output: {o}");
eprintln!();
eprintln!("{}", opts.usage(BRIEF));
process::exit(1);
}
}
// flags --
let quiet = matches.opt_present("quiet");
let assert_format = matches.opt_present("assert-format");
let assert_content = matches.opt_present("assert-content");
let insecure = matches.opt_present("insecure");
// schema --
let Some(schema) = matches.free.first() else {
eprintln!("missing SCHEMA");
eprintln!();
eprintln!("{}", opts.usage(BRIEF));
process::exit(1);
};
// compile --
let mut schemas = Schemas::new();
let mut compiler = Compiler::new();
let mut loader = SchemeUrlLoader::new();
loader.register("file", Box::new(FileUrlLoader));
let cacert = matches.opt_str("cacert");
let cacert = cacert.as_deref();
loader.register("http", Box::new(HttpUrlLoader::new(cacert, insecure)));
loader.register("https", Box::new(HttpUrlLoader::new(cacert, insecure)));
compiler.use_loader(Box::new(loader));
compiler.set_default_draft(draft);
if assert_format {
compiler.enable_format_assertions();
}
if assert_content {
compiler.enable_content_assertions();
}
let sch = match compiler.compile(schema, &mut schemas) {
Ok(sch) => {
println!("schema {schema}: ok");
sch
}
Err(e) => {
println!("schema {schema}: failed");
if !quiet {
println!("{e:#}");
}
process::exit(2);
}
};
// validate --
let mut all_valid = true;
for instance in &matches.free[1..] {
if !quiet {
println!();
}
let rdr = match File::open(instance) {
Ok(rdr) => BufReader::new(rdr),
Err(e) => {
println!("instance {instance}: failed");
if !quiet {
println!("error reading file {instance}: {e}");
}
all_valid = false;
continue;
}
};
let value: Result<Value, String> =
if instance.ends_with(".yaml") || instance.ends_with(".yml") {
serde_yaml::from_reader(rdr).map_err(|e| e.to_string())
} else {
serde_json::from_reader(rdr).map_err(|e| e.to_string())
};
let value = match value {
Ok(v) => v,
Err(e) => {
println!("instance {instance}: failed");
if !quiet {
println!("error parsing file {instance}: {e}");
}
all_valid = false;
continue;
}
};
match schemas.validate(&value, sch) {
Ok(_) => println!("instance {instance}: ok"),
Err(e) => {
println!("instance {instance}: failed");
if !quiet {
match &output {
Some(out) => match out.as_str() {
"simple" => println!("{e}"),
"alt" => println!("{e:#}"),
"flag" => println!("{:#}", e.flag_output()),
"basic" => println!("{:#}", e.basic_output()),
"detailed" => println!("{:#}", e.detailed_output()),
_ => (),
},
None => println!("{e}"),
}
}
all_valid = false;
continue;
}
};
}
if !all_valid {
process::exit(2);
}
}
const BRIEF: &str = "Usage: boon [OPTIONS] SCHEMA [INSTANCE...]";
fn options() -> Options {
let mut opts = Options::new();
opts.optflag("v", "version", "Print version and exit");
opts.optflag("h", "help", "Print help information");
opts.optflag("q", "quiet", "Do not print errors");
opts.optopt(
"d",
"draft",
"Draft used when '$schema' is missing. Valid values 4, 6, 7, 2019, 2020 (default 2020)",
"<VER>",
);
opts.optopt(
"o",
"output",
"Output format. Valid values simple, alt, flag, basic, detailed (default simple)",
"<FMT>",
);
opts.optflag(
"f",
"assert-format",
"Enable format assertions with draft >= 2019",
);
opts.optflag(
"c",
"assert-content",
"Enable content assertions with draft >= 7",
);
opts.optopt(
"",
"cacert",
"Use the specified PEM certificate file to verify the peer. The file may contain multiple CA certificates",
"<FILE>",
);
opts.optflag("k", "insecure", "Use insecure TLS connection");
opts
}
struct FileUrlLoader;
impl UrlLoader for FileUrlLoader {
fn load(&self, url: &str) -> Result<Value, Box<dyn Error>> {
let url = Url::parse(url)?;
let path = url.to_file_path().map_err(|_| "invalid file path")?;
let file = File::open(&path)?;
if path
.extension()
.filter(|&ext| ext == "yaml" || ext == "yml")
.is_some()
{
Ok(serde_yaml::from_reader(file)?)
} else {
Ok(serde_json::from_reader(file)?)
}
}
}
struct HttpUrlLoader(Agent);
impl HttpUrlLoader {
fn new(cacert: Option<&str>, insecure: bool) -> Self {
let mut builder = ureq::builder();
if let Some(cacert) = cacert {
let file = File::open(cacert).unwrap_or_else(|e| panic!("error opening {cacert}: {e}"));
let certs: Result<Vec<_>, _> =
rustls_pemfile::certs(&mut BufReader::new(file)).collect();
let certs = certs.unwrap_or_else(|e| panic!("error reading cacert: {e}"));
assert!(!certs.is_empty(), "no certs in cacert");
let mut store = rustls::RootCertStore::empty();
for cert in certs {
store
.add(cert)
.unwrap_or_else(|e| panic!("error adding cert: {e}"))
}
let tls_config = rustls::ClientConfig::builder()
.with_root_certificates(store)
.with_no_client_auth();
builder = builder.tls_config(tls_config.into());
} else if insecure {
let tls_config = rustls::ClientConfig::builder()
.dangerous()
.with_custom_certificate_verifier(Arc::new(InsecureVerifier))
.with_no_client_auth();
builder = builder.tls_config(tls_config.into());
}
Self(builder.build())
}
}
impl UrlLoader for HttpUrlLoader {
fn load(&self, url: &str) -> Result<Value, Box<dyn Error>> {
let response = self.0.get(url).call()?;
let is_yaml = url.ends_with(".yaml") || url.ends_with(".yml") || {
let ctype = response.content_type();
ctype.ends_with("/yaml") || ctype.ends_with("-yaml")
};
if is_yaml {
Ok(serde_yaml::from_reader(response.into_reader())?)
} else {
Ok(serde_json::from_reader(response.into_reader())?)
}
}
}
#[derive(Debug)]
struct InsecureVerifier;
impl ServerCertVerifier for InsecureVerifier {
fn verify_server_cert(
&self,
_end_entity: &rustls::pki_types::CertificateDer<'_>,
_intermediates: &[rustls::pki_types::CertificateDer<'_>],
_server_name: &rustls::pki_types::ServerName<'_>,
_ocsp_response: &[u8],
_now: rustls::pki_types::UnixTime,
) -> Result<rustls::client::danger::ServerCertVerified, rustls::Error> {
Ok(ServerCertVerified::assertion())
}
fn verify_tls12_signature(
&self,
_message: &[u8],
_cert: &rustls::pki_types::CertificateDer<'_>,
_dss: &rustls::DigitallySignedStruct,
) -> Result<rustls::client::danger::HandshakeSignatureValid, rustls::Error> {
Ok(HandshakeSignatureValid::assertion())
}
fn verify_tls13_signature(
&self,
_message: &[u8],
_cert: &rustls::pki_types::CertificateDer<'_>,
_dss: &rustls::DigitallySignedStruct,
) -> Result<rustls::client::danger::HandshakeSignatureValid, rustls::Error> {
Ok(HandshakeSignatureValid::assertion())
}
fn supported_verify_schemes(&self) -> Vec<rustls::SignatureScheme> {
rustls::crypto::ring::default_provider()
.signature_verification_algorithms
.supported_schemes()
}
}