use chacha20poly1305::Key as ChaCha20Poly1305Key;use openid::DiscoveredClient;use serde::{de::Error as SerdeDeError, Deserialize};use std::collections::HashMap;use thiserror::Error;#[derive(Error, Debug)]pub enum Error {#[error("Error discovering OpenID provider: {0}")]OpenId(#[from] openid::error::Error),}pub type OidcClients = HashMap<String, DiscoveredClient>;#[derive(Deserialize, Default, Debug)]#[serde(deny_unknown_fields)]pub struct Config {pub auth: AuthConfig,#[serde(deserialize_with = "deserialize_encryption_key")]pub encryption_key: ChaCha20Poly1305Key,}impl Config {pub async fn create_oidc_clients(&self) -> Result<OidcClients, Error> {Ok(futures::future::try_join_all(self.auth.oauth.iter().filter(|(_, config)| config.enabled).map(|(name, config)| async move {Ok::<_, Error>((name.to_string(),DiscoveredClient::discover(config.client_id.to_string(),config.client_secret.to_string(),Some("http://127.0.0.1:1234/login/oauth".to_string()),config.discovery_uri.clone(),).await?,))}),).await?.into_iter().collect())}}#[derive(Deserialize, Default, Debug)]pub struct AuthConfig {pub password: PasswordAuthConfig,#[serde(flatten)]pub oauth: HashMap<String, OAuthConfig>,}#[derive(Deserialize, Default, Debug)]#[serde(deny_unknown_fields)]pub struct PasswordAuthConfig {pub enabled: bool,}#[derive(Deserialize, Debug)]pub struct OAuthConfig {pub enabled: bool,#[serde(deserialize_with = "deserialize_url")]pub discovery_uri: reqwest::Url,pub client_id: String,pub client_secret: String,}fn deserialize_encryption_key<'de, D: serde::Deserializer<'de>>(deserializer: D,) -> Result<ChaCha20Poly1305Key, D::Error> {let key = String::deserialize(deserializer)?;if key.as_bytes().len() != 32 {return Err(D::Error::custom("encryption_key must be 32 bytes"));}Ok(ChaCha20Poly1305Key::clone_from_slice(key.as_bytes()))}fn deserialize_url<'de, D: serde::Deserializer<'de>>(deserializer: D,) -> Result<reqwest::Url, D::Error> {let uri = String::deserialize(deserializer)?;reqwest::Url::parse(&uri).map_err(D::Error::custom)}