Pierre Fitness Platform MCP Server

Overview Schema Related Servers Score Discussions

pierre_mcp_server
src
database_plugins

factory.rs•84.7 kB

// ABOUTME: Database factory and provider abstraction for multi-database support // ABOUTME: Provides unified interface for SQLite and PostgreSQL with runtime database selection // // SPDX-License-Identifier: MIT OR Apache-2.0 // Copyright (c) 2025 Pierre Fitness Intelligence //! Database factory for creating database providers //! //! This module provides automatic database type detection and creation //! based on connection strings. use super::DatabaseProvider; use crate::a2a::auth::A2AClient; use crate::a2a::client::A2ASession; use crate::a2a::protocol::{A2ATask, TaskStatus}; use crate::admin::jwks::JwksManager; use crate::admin::models::{ AdminToken, AdminTokenUsage, CreateAdminTokenRequest, GeneratedAdminToken, }; use crate::api_keys::{ApiKey, ApiKeyUsage, ApiKeyUsageStats}; use crate::config::fitness::FitnessConfig; use crate::dashboard_routes::{RequestLog, ToolUsage}; use crate::database::oauth_notifications::OAuthNotification; use crate::database::{ A2AUsage, A2AUsageStats, CreateUserMcpTokenRequest, UserMcpToken, UserMcpTokenCreated, UserMcpTokenInfo, }; use crate::errors::{AppError, AppResult}; use crate::models::{ AuthorizationCode, OAuthApp, Tenant, User, UserOAuthApp, UserOAuthToken, UserStatus, }; use crate::oauth2_server::models::{OAuth2AuthCode, OAuth2Client, OAuth2RefreshToken, OAuth2State}; use crate::pagination::{CursorPage, PaginationParams}; use crate::permissions::impersonation::ImpersonationSession; use crate::rate_limiting::JwtUsage; use crate::security::audit::AuditEvent; use crate::security::key_rotation::KeyVersion; use crate::tenant::llm_manager::{LlmCredentialRecord, LlmCredentialSummary}; use crate::tenant::oauth_manager::TenantOAuthCredentials; use async_trait::async_trait; use chrono::{DateTime, Utc}; #[cfg(not(feature = "postgresql"))] use tracing::error; use tracing::{debug, info}; use uuid::Uuid; #[cfg(feature = "postgresql")] use super::postgres::PostgresDatabase; #[cfg(feature = "postgresql")] use crate::config::environment::PostgresPoolConfig; // Phase 3: Use crate::database::Database directly (eliminates sqlite.rs wrapper) use crate::database::Database as SqliteDatabase; /// Supported database types #[derive(Debug, Clone, Copy, PartialEq, Eq)] pub enum DatabaseType { /// `SQLite` embedded database SQLite, /// `PostgreSQL` database server PostgreSQL, } /// Database instance wrapper that delegates to the appropriate implementation #[derive(Clone)] pub enum Database { /// `SQLite` database instance SQLite(SqliteDatabase), /// `PostgreSQL` database instance (requires postgresql feature) #[cfg(feature = "postgresql")] PostgreSQL(PostgresDatabase), } impl Database { /// Get a descriptive string for the current database backend #[must_use] pub const fn backend_info(&self) -> &'static str { match self { Self::SQLite(_) => "SQLite (Local Development)", #[cfg(feature = "postgresql")] Self::PostgreSQL(_) => "PostgreSQL (Cloud-Ready)", } } /// Get the database type enum #[must_use] pub const fn database_type(&self) -> DatabaseType { match self { Self::SQLite(_) => DatabaseType::SQLite, #[cfg(feature = "postgresql")] Self::PostgreSQL(_) => DatabaseType::PostgreSQL, } } /// Get detailed database information for logging/monitoring #[must_use] pub fn info_summary(&self) -> String { match self { Self::SQLite(_) => "Database Backend: SQLite\n\ Type: Embedded file-based database\n\ Use Case: Local development and testing\n\ Features: Zero-configuration, serverless, lightweight" .to_owned(), #[cfg(feature = "postgresql")] Self::PostgreSQL(_) => "Database Backend: PostgreSQL\n\ Type: Client-server relational database\n\ Use Case: Production and cloud deployments\n\ Features: Concurrent access, advanced queries, scalability" .to_owned(), } } /// Get the underlying `SQLite` connection pool if this is a `SQLite` database. /// /// Returns `None` for `PostgreSQL` databases. #[must_use] pub const fn sqlite_pool(&self) -> Option<&sqlx::Pool<sqlx::Sqlite>> { match self { Self::SQLite(db) => Some(db.pool()), #[cfg(feature = "postgresql")] Self::PostgreSQL(_) => None, } } /// Update the encryption key used for token encryption/decryption /// /// This is called after the actual DEK is loaded from the database during /// two-tier key management initialization. The database is initially created /// with a temporary key, then updated with the real key once it's loaded. /// /// # Safety /// Only call this once during startup, before any encrypted data operations. pub fn update_encryption_key(&mut self, new_key: Vec<u8>) { match self { Self::SQLite(db) => db.update_encryption_key(new_key), #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.update_encryption_key(new_key), } } /// Create a new database instance based on the connection string (internal implementation) /// /// # Errors /// /// Returns an error if: /// - Database URL format is unsupported or invalid /// - `PostgreSQL` feature is not enabled when `PostgreSQL` URL is provided /// - Database connection fails /// - Database initialization or migration fails /// - Encryption key is invalid async fn new_impl( database_url: &str, encryption_key: Vec<u8>, #[cfg(feature = "postgresql")] pool_config: &PostgresPoolConfig, ) -> AppResult<Self> { debug!("Detecting database type from URL: {}", database_url); let db_type = detect_database_type(database_url)?; info!("Detected database type: {:?}", db_type); Self::create_database_instance( db_type, database_url, encryption_key, #[cfg(feature = "postgresql")] pool_config, ) .await } async fn create_database_instance( db_type: DatabaseType, database_url: &str, encryption_key: Vec<u8>, #[cfg(feature = "postgresql")] pool_config: &PostgresPoolConfig, ) -> AppResult<Self> { match db_type { DatabaseType::SQLite => Self::initialize_sqlite(database_url, encryption_key).await, #[cfg(feature = "postgresql")] DatabaseType::PostgreSQL => { Self::initialize_postgresql(database_url, encryption_key, pool_config).await } #[cfg(not(feature = "postgresql"))] DatabaseType::PostgreSQL => Self::postgresql_not_enabled(), } } async fn initialize_sqlite(database_url: &str, encryption_key: Vec<u8>) -> AppResult<Self> { info!("Initializing SQLite database"); let db = SqliteDatabase::new(database_url, encryption_key).await?; info!("SQLite database initialized successfully"); Ok(Self::SQLite(db)) } #[cfg(feature = "postgresql")] async fn initialize_postgresql( database_url: &str, encryption_key: Vec<u8>, pool_config: &PostgresPoolConfig, ) -> AppResult<Self> { info!("Initializing PostgreSQL database"); let db = PostgresDatabase::new(database_url, encryption_key, pool_config).await?; info!("PostgreSQL database initialized successfully"); Ok(Self::PostgreSQL(db)) } #[cfg(not(feature = "postgresql"))] fn postgresql_not_enabled() -> AppResult<Self> { let err_msg = "PostgreSQL support not enabled. Enable the 'postgresql' feature flag."; error!("{}", err_msg); Err(AppError::config(err_msg)) } /// Create a new database instance based on the connection string (public API) /// /// # Errors /// /// Returns an error if: /// - Database URL format is unsupported or invalid /// - `PostgreSQL` feature is not enabled when `PostgreSQL` URL is provided /// - Database connection fails /// - Database initialization or migration fails /// - Encryption key is invalid pub async fn new( database_url: &str, encryption_key: Vec<u8>, #[cfg(feature = "postgresql")] pool_config: &PostgresPoolConfig, ) -> AppResult<Self> { #[cfg(feature = "postgresql")] { Self::new_impl(database_url, encryption_key, pool_config).await } #[cfg(not(feature = "postgresql"))] { Self::new_impl(database_url, encryption_key).await } } /// Check if auto-approval is enabled for new user registrations /// /// Returns `Some(true/false)` if explicitly set in database, /// or `None` if no database setting exists (caller should use config default). /// /// # Errors /// /// Returns an error if the database query fails pub async fn is_auto_approval_enabled(&self) -> AppResult<Option<bool>> { match self { Self::SQLite(db) => db.is_auto_approval_enabled().await, #[cfg(feature = "postgresql")] Self::PostgreSQL(_db) => Ok(None), // PostgreSQL: use config default } } /// Set auto-approval enabled state /// /// # Errors /// /// Returns an error if the database operation fails pub async fn set_auto_approval_enabled(&self, enabled: bool) -> AppResult<()> { match self { Self::SQLite(db) => db.set_auto_approval_enabled(enabled).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(_db) => Ok(()), // PostgreSQL implementation pending } } } /// Automatically detect database type from connection string /// /// # Errors /// /// Returns an error if: /// - Database URL format is not recognized (must start with 'sqlite:' or 'postgresql://') /// - `PostgreSQL` URL is provided but `PostgreSQL` feature is not enabled /// - Connection string is malformed or empty pub fn detect_database_type(database_url: &str) -> AppResult<DatabaseType> { if database_url.starts_with("sqlite:") { Ok(DatabaseType::SQLite) } else if database_url.starts_with("postgresql://") || database_url.starts_with("postgres://") { #[cfg(feature = "postgresql")] return Ok(DatabaseType::PostgreSQL); #[cfg(not(feature = "postgresql"))] return Err(AppError::config( "PostgreSQL connection string detected, but PostgreSQL support is not enabled. \ Enable the 'postgresql' feature flag in Cargo.toml", )); } else { Err(AppError::config(format!( "Unsupported database URL format: {database_url}. \ Supported formats: sqlite:path/to/db.sqlite, postgresql://user:pass@host/db" ))) } } // Implement DatabaseProvider for the enum by delegating to the appropriate implementation #[async_trait] impl DatabaseProvider for Database { /// Create a new database provider instance /// /// # Errors /// /// Returns an error if: /// - Database URL format is unsupported /// - Database connection fails /// - Migration process fails /// - Encryption setup fails async fn new(database_url: &str, encryption_key: Vec<u8>) -> AppResult<Self> { #[cfg(feature = "postgresql")] { let pool_config = PostgresPoolConfig::default(); Self::new_impl(database_url, encryption_key, &pool_config).await } #[cfg(not(feature = "postgresql"))] { Self::new_impl(database_url, encryption_key).await } } /// Run database migrations /// /// # Errors /// /// Returns an error if: /// - SQL migration statements fail to execute /// - Database connection is lost during migration /// - Migration scripts are malformed /// - Insufficient database permissions async fn migrate(&self) -> AppResult<()> { match self { Self::SQLite(db) => db.migrate().await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.migrate().await, } } /// Create a new user in the database /// /// # Errors /// /// Returns an error if: /// - User data validation fails /// - Database constraint violations (e.g., duplicate email) /// - SQL execution fails /// - Database connection issues #[tracing::instrument(skip(self, user), fields(db_operation = "create_user", email = %user.email))] async fn create_user(&self, user: &User) -> AppResult<uuid::Uuid> { match self { Self::SQLite(db) => db.create_user(user).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.create_user(user).await, } } /// Get a user by their UUID /// /// # Errors /// /// Returns an error if: /// - Database query execution fails /// - Data deserialization fails /// - Database connection issues #[tracing::instrument(skip(self), fields(db_operation = "get_user"))] async fn get_user(&self, user_id: uuid::Uuid) -> AppResult<Option<User>> { match self { Self::SQLite(db) => db.get_user(user_id).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.get_user(user_id).await, } } /// Get a user by their email address /// /// # Errors /// /// Returns an error if: /// - Database query execution fails /// - Data deserialization fails /// - Database connection issues /// - Email format validation fails async fn get_user_by_email(&self, email: &str) -> AppResult<Option<User>> { match self { Self::SQLite(db) => db.get_user_by_email(email).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.get_user_by_email(email).await, } } /// Get a user by email, returning an error if not found /// /// # Errors /// /// Returns an error if: /// - User with email is not found /// - Database query execution fails /// - Data deserialization fails /// - Database connection issues async fn get_user_by_email_required(&self, email: &str) -> AppResult<User> { match self { Self::SQLite(db) => db.get_user_by_email_required(email).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.get_user_by_email_required(email).await, } } /// Get a user by Firebase UID /// /// # Errors /// /// Returns an error if: /// - Database query execution fails /// - Data deserialization fails /// - Database connection issues async fn get_user_by_firebase_uid(&self, firebase_uid: &str) -> AppResult<Option<User>> { match self { Self::SQLite(db) => db.get_user_by_firebase_uid(firebase_uid).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.get_user_by_firebase_uid(firebase_uid).await, } } /// Update user's last active timestamp /// /// # Errors /// /// Returns an error if: /// - User does not exist /// - Database update fails /// - Database connection issues async fn update_last_active(&self, user_id: uuid::Uuid) -> AppResult<()> { match self { Self::SQLite(db) => db.update_last_active(user_id).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.update_last_active(user_id).await, } } /// Get total count of users in the database /// /// # Errors /// /// Returns an error if: /// - Database query execution fails /// - Count aggregation fails /// - Database connection issues async fn get_user_count(&self) -> AppResult<i64> { match self { Self::SQLite(db) => db.get_user_count().await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.get_user_count().await, } } async fn get_users_by_status(&self, status: &str) -> AppResult<Vec<User>> { match self { Self::SQLite(db) => db.get_users_by_status(status).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.get_users_by_status(status).await, } } async fn get_users_by_status_cursor( &self, status: &str, params: &PaginationParams, ) -> AppResult<CursorPage<User>> { match self { Self::SQLite(db) => db.get_users_by_status_cursor(status, params).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.get_users_by_status_cursor(status, params).await, } } async fn update_user_status( &self, user_id: uuid::Uuid, new_status: UserStatus, approved_by: Option<uuid::Uuid>, ) -> AppResult<User> { match self { Self::SQLite(db) => { db.update_user_status(user_id, new_status, approved_by) .await } #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => { db.update_user_status(user_id, new_status, approved_by) .await } } } async fn update_user_tenant_id(&self, user_id: uuid::Uuid, tenant_id: &str) -> AppResult<()> { match self { Self::SQLite(db) => db.update_user_tenant_id(user_id, tenant_id).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.update_user_tenant_id(user_id, tenant_id).await, } } async fn update_user_password( &self, user_id: uuid::Uuid, password_hash: &str, ) -> AppResult<()> { match self { Self::SQLite(db) => db.update_user_password(user_id, password_hash).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.update_user_password(user_id, password_hash).await, } } async fn update_user_display_name( &self, user_id: uuid::Uuid, display_name: &str, ) -> AppResult<User> { match self { Self::SQLite(db) => db.update_user_display_name(user_id, display_name).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.update_user_display_name(user_id, display_name).await, } } /// Create or update a user profile with the provided data /// /// # Errors /// /// Returns an error if: /// - Database operation fails /// - Data serialization fails /// - Database connection issues async fn upsert_user_profile( &self, user_id: uuid::Uuid, profile_data: serde_json::Value, ) -> AppResult<()> { match self { Self::SQLite(db) => db.upsert_user_profile(user_id, profile_data).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.upsert_user_profile(user_id, profile_data).await, } } /// Get user profile data by user ID /// /// # Errors /// /// Returns an error if: /// - Database query execution fails /// - Data deserialization fails /// - Database connection issues async fn get_user_profile(&self, user_id: uuid::Uuid) -> AppResult<Option<serde_json::Value>> { match self { Self::SQLite(db) => db.get_user_profile(user_id).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.get_user_profile(user_id).await, } } /// Create a new goal for a user /// /// # Errors /// /// Returns an error if: /// - Goal data validation fails /// - Database insertion fails /// - Database connection issues async fn create_goal( &self, user_id: uuid::Uuid, goal_data: serde_json::Value, ) -> AppResult<String> { match self { Self::SQLite(db) => db.create_goal(user_id, goal_data).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.create_goal(user_id, goal_data).await, } } /// Get all goals for a specific user /// /// # Errors /// /// Returns an error if: /// - Database query execution fails /// - Data deserialization fails /// - Database connection issues async fn get_user_goals(&self, user_id: uuid::Uuid) -> AppResult<Vec<serde_json::Value>> { match self { Self::SQLite(db) => db.get_user_goals(user_id).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.get_user_goals(user_id).await, } } /// Update the progress value for a specific goal /// /// # Errors /// /// Returns an error if: /// - Goal does not exist /// - Database update fails /// - Database connection issues async fn update_goal_progress(&self, goal_id: &str, current_value: f64) -> AppResult<()> { match self { Self::SQLite(db) => db.update_goal_progress(goal_id, current_value).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.update_goal_progress(goal_id, current_value).await, } } /// Get user configuration data by user ID /// /// # Errors /// /// Returns an error if: /// - Database query execution fails /// - Data deserialization fails /// - Database connection issues async fn get_user_configuration(&self, user_id: &str) -> AppResult<Option<String>> { match self { Self::SQLite(db) => db.get_user_configuration(user_id).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.get_user_configuration(user_id).await, } } /// Save user configuration data /// /// # Errors /// /// Returns an error if: /// - Configuration validation fails /// - Database update fails /// - Database connection issues async fn save_user_configuration(&self, user_id: &str, config_json: &str) -> AppResult<()> { match self { Self::SQLite(db) => db.save_user_configuration(user_id, config_json).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.save_user_configuration(user_id, config_json).await, } } /// Store a new insight for a user /// /// # Errors /// /// Returns an error if: /// - Insight data validation fails /// - Database insertion fails /// - Database connection issues async fn store_insight( &self, user_id: uuid::Uuid, insight_data: serde_json::Value, ) -> AppResult<String> { match self { Self::SQLite(db) => db.store_insight(user_id, insight_data).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.store_insight(user_id, insight_data).await, } } /// Get insights for a user with optional filtering /// /// # Errors /// /// Returns an error if: /// - Database query execution fails /// - Data deserialization fails /// - Database connection issues async fn get_user_insights( &self, user_id: uuid::Uuid, insight_type: Option<&str>, limit: Option<u32>, ) -> AppResult<Vec<serde_json::Value>> { match self { Self::SQLite(db) => db.get_user_insights(user_id, insight_type, limit).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.get_user_insights(user_id, insight_type, limit).await, } } /// Create a new API key in the database /// /// # Errors /// /// Returns an error if: /// - API key data validation fails /// - Database constraint violations (e.g., duplicate key) /// - SQL execution fails /// - Database connection issues async fn create_api_key(&self, api_key: &ApiKey) -> AppResult<()> { match self { Self::SQLite(db) => db.create_api_key(api_key).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.create_api_key(api_key).await, } } /// Get an API key by its prefix and hash /// /// # Errors /// /// Returns an error if: /// - Database query execution fails /// - Data deserialization fails /// - Database connection issues async fn get_api_key_by_prefix(&self, prefix: &str, hash: &str) -> AppResult<Option<ApiKey>> { match self { Self::SQLite(db) => db.get_api_key_by_prefix(prefix, hash).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.get_api_key_by_prefix(prefix, hash).await, } } /// Get all API keys for a specific user /// /// # Errors /// /// Returns an error if: /// - Database query execution fails /// - Data deserialization fails /// - Database connection issues async fn get_user_api_keys(&self, user_id: uuid::Uuid) -> AppResult<Vec<ApiKey>> { match self { Self::SQLite(db) => db.get_user_api_keys(user_id).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.get_user_api_keys(user_id).await, } } /// Update the last used timestamp for an API key /// /// # Errors /// /// Returns an error if: /// - API key does not exist /// - Database update fails /// - Database connection issues async fn update_api_key_last_used(&self, api_key_id: &str) -> AppResult<()> { match self { Self::SQLite(db) => db.update_api_key_last_used(api_key_id).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.update_api_key_last_used(api_key_id).await, } } /// Deactivate an API key for a specific user /// /// # Errors /// /// Returns an error if: /// - API key does not exist or doesn't belong to user /// - Database update fails /// - Database connection issues async fn deactivate_api_key(&self, api_key_id: &str, user_id: uuid::Uuid) -> AppResult<()> { match self { Self::SQLite(db) => db.deactivate_api_key(api_key_id, user_id).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.deactivate_api_key(api_key_id, user_id).await, } } /// Get an API key by its ID /// /// # Errors /// /// Returns an error if: /// - Database query execution fails /// - Data deserialization fails /// - Database connection issues async fn get_api_key_by_id(&self, api_key_id: &str) -> AppResult<Option<ApiKey>> { match self { Self::SQLite(db) => db.get_api_key_by_id(api_key_id).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.get_api_key_by_id(api_key_id).await, } } /// Get API keys with optional filtering by user email, active status, limit and offset /// /// # Errors /// /// Returns an error if: /// - Database query execution fails /// - Data deserialization fails /// - Database connection issues async fn get_api_keys_filtered( &self, user_email: Option<&str>, active_only: bool, limit: Option<i32>, offset: Option<i32>, ) -> AppResult<Vec<ApiKey>> { match self { Self::SQLite(db) => { DatabaseProvider::get_api_keys_filtered(db, user_email, active_only, limit, offset) .await } #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => { db.get_api_keys_filtered(user_email, active_only, limit, offset) .await } } } async fn cleanup_expired_api_keys(&self) -> AppResult<u64> { match self { Self::SQLite(db) => db.cleanup_expired_api_keys().await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.cleanup_expired_api_keys().await, } } async fn get_expired_api_keys(&self) -> AppResult<Vec<ApiKey>> { match self { Self::SQLite(db) => db.get_expired_api_keys().await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.get_expired_api_keys().await, } } async fn record_api_key_usage(&self, usage: &ApiKeyUsage) -> AppResult<()> { match self { Self::SQLite(db) => db.record_api_key_usage(usage).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.record_api_key_usage(usage).await, } } async fn get_api_key_current_usage(&self, api_key_id: &str) -> AppResult<u32> { match self { Self::SQLite(db) => db.get_api_key_current_usage(api_key_id).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.get_api_key_current_usage(api_key_id).await, } } async fn get_api_key_usage_stats( &self, api_key_id: &str, start_date: chrono::DateTime<chrono::Utc>, end_date: chrono::DateTime<chrono::Utc>, ) -> AppResult<ApiKeyUsageStats> { match self { Self::SQLite(db) => { db.get_api_key_usage_stats(api_key_id, start_date, end_date) .await } #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => { db.get_api_key_usage_stats(api_key_id, start_date, end_date) .await } } } async fn record_jwt_usage(&self, usage: &JwtUsage) -> AppResult<()> { match self { Self::SQLite(db) => db.record_jwt_usage(usage).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.record_jwt_usage(usage).await, } } async fn get_jwt_current_usage(&self, user_id: uuid::Uuid) -> AppResult<u32> { match self { Self::SQLite(db) => db.get_jwt_current_usage(user_id).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.get_jwt_current_usage(user_id).await, } } async fn get_request_logs( &self, api_key_id: Option<&str>, start_time: Option<chrono::DateTime<chrono::Utc>>, end_time: Option<chrono::DateTime<chrono::Utc>>, status_filter: Option<&str>, tool_filter: Option<&str>, ) -> AppResult<Vec<RequestLog>> { match self { Self::SQLite(db) => { DatabaseProvider::get_request_logs( db, api_key_id, start_time, end_time, status_filter, tool_filter, ) .await } #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => { db.get_request_logs(api_key_id, start_time, end_time, status_filter, tool_filter) .await } } } async fn get_system_stats(&self) -> AppResult<(u64, u64)> { match self { Self::SQLite(db) => db.get_system_stats().await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.get_system_stats().await, } } /// Create a new A2A (Agent-to-Agent) client /// /// # Errors /// /// Returns an error if: /// - Client data validation fails /// - Database constraint violations /// - Secret encryption fails /// - SQL execution fails /// - Database connection issues async fn create_a2a_client( &self, client: &A2AClient, client_secret: &str, api_key_id: &str, ) -> AppResult<String> { match self { Self::SQLite(db) => { db.create_a2a_client(client, client_secret, api_key_id) .await } #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => { db.create_a2a_client(client, client_secret, api_key_id) .await } } } /// Get an A2A client by ID /// /// # Errors /// /// Returns an error if: /// - Database query execution fails /// - Data deserialization fails /// - Database connection issues async fn get_a2a_client(&self, client_id: &str) -> AppResult<Option<A2AClient>> { match self { Self::SQLite(db) => db.get_a2a_client(client_id).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.get_a2a_client(client_id).await, } } async fn get_a2a_client_by_api_key_id(&self, api_key_id: &str) -> AppResult<Option<A2AClient>> { match self { Self::SQLite(db) => db.get_a2a_client_by_api_key_id(api_key_id).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.get_a2a_client_by_api_key_id(api_key_id).await, } } async fn get_a2a_client_by_name(&self, name: &str) -> AppResult<Option<A2AClient>> { match self { Self::SQLite(db) => db.get_a2a_client_by_name(name).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.get_a2a_client_by_name(name).await, } } async fn list_a2a_clients(&self, user_id: &uuid::Uuid) -> AppResult<Vec<A2AClient>> { match self { Self::SQLite(db) => db.list_a2a_clients(user_id).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.list_a2a_clients(user_id).await, } } async fn deactivate_a2a_client(&self, client_id: &str) -> AppResult<()> { match self { Self::SQLite(db) => db.deactivate_a2a_client(client_id).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.deactivate_a2a_client(client_id).await, } } async fn get_a2a_client_credentials( &self, client_id: &str, ) -> AppResult<Option<(String, String)>> { match self { Self::SQLite(db) => db.get_a2a_client_credentials(client_id).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.get_a2a_client_credentials(client_id).await, } } async fn invalidate_a2a_client_sessions(&self, client_id: &str) -> AppResult<()> { match self { Self::SQLite(db) => db.invalidate_a2a_client_sessions(client_id).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.invalidate_a2a_client_sessions(client_id).await, } } async fn deactivate_client_api_keys(&self, client_id: &str) -> AppResult<()> { match self { Self::SQLite(db) => db.deactivate_client_api_keys(client_id).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.deactivate_client_api_keys(client_id).await, } } async fn create_a2a_session( &self, client_id: &str, user_id: Option<&uuid::Uuid>, granted_scopes: &[String], expires_in_hours: i64, ) -> AppResult<String> { match self { Self::SQLite(db) => { db.create_a2a_session(client_id, user_id, granted_scopes, expires_in_hours) .await } #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => { db.create_a2a_session(client_id, user_id, granted_scopes, expires_in_hours) .await } } } async fn get_a2a_session(&self, session_token: &str) -> AppResult<Option<A2ASession>> { match self { Self::SQLite(db) => db.get_a2a_session(session_token).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.get_a2a_session(session_token).await, } } async fn update_a2a_session_activity(&self, session_token: &str) -> AppResult<()> { match self { Self::SQLite(db) => db.update_a2a_session_activity(session_token).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.update_a2a_session_activity(session_token).await, } } async fn get_active_a2a_sessions(&self, client_id: &str) -> AppResult<Vec<A2ASession>> { match self { Self::SQLite(db) => db.get_active_a2a_sessions(client_id).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.get_active_a2a_sessions(client_id).await, } } async fn create_a2a_task( &self, client_id: &str, session_id: Option<&str>, task_type: &str, input_data: &serde_json::Value, ) -> AppResult<String> { match self { Self::SQLite(db) => { db.create_a2a_task(client_id, session_id, task_type, input_data) .await } #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => { db.create_a2a_task(client_id, session_id, task_type, input_data) .await } } } async fn get_a2a_task(&self, task_id: &str) -> AppResult<Option<A2ATask>> { match self { Self::SQLite(db) => db.get_a2a_task(task_id).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.get_a2a_task(task_id).await, } } async fn list_a2a_tasks( &self, client_id: Option<&str>, status_filter: Option<&TaskStatus>, limit: Option<u32>, offset: Option<u32>, ) -> AppResult<Vec<A2ATask>> { match self { Self::SQLite(db) => { db.list_a2a_tasks(client_id, status_filter, limit, offset) .await } #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => { db.list_a2a_tasks(client_id, status_filter, limit, offset) .await } } } async fn update_a2a_task_status( &self, task_id: &str, status: &TaskStatus, result: Option<&serde_json::Value>, error: Option<&str>, ) -> AppResult<()> { match self { Self::SQLite(db) => { db.update_a2a_task_status(task_id, status, result, error) .await } #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => { db.update_a2a_task_status(task_id, status, result, error) .await } } } async fn record_a2a_usage(&self, usage: &A2AUsage) -> AppResult<()> { match self { Self::SQLite(db) => db.record_a2a_usage(usage).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.record_a2a_usage(usage).await, } } async fn get_a2a_client_current_usage(&self, client_id: &str) -> AppResult<u32> { match self { Self::SQLite(db) => db.get_a2a_client_current_usage(client_id).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.get_a2a_client_current_usage(client_id).await, } } async fn get_a2a_usage_stats( &self, client_id: &str, start_date: chrono::DateTime<chrono::Utc>, end_date: chrono::DateTime<chrono::Utc>, ) -> AppResult<A2AUsageStats> { match self { Self::SQLite(db) => { db.get_a2a_usage_stats(client_id, start_date, end_date) .await } #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => { db.get_a2a_usage_stats(client_id, start_date, end_date) .await } } } async fn get_a2a_client_usage_history( &self, client_id: &str, days: u32, ) -> AppResult<Vec<(chrono::DateTime<chrono::Utc>, u32, u32)>> { match self { Self::SQLite(db) => db.get_a2a_client_usage_history(client_id, days).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.get_a2a_client_usage_history(client_id, days).await, } } async fn get_provider_last_sync( &self, user_id: uuid::Uuid, provider: &str, ) -> AppResult<Option<chrono::DateTime<chrono::Utc>>> { match self { Self::SQLite(db) => db.get_provider_last_sync(user_id, provider).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.get_provider_last_sync(user_id, provider).await, } } async fn update_provider_last_sync( &self, user_id: uuid::Uuid, provider: &str, sync_time: chrono::DateTime<chrono::Utc>, ) -> AppResult<()> { match self { Self::SQLite(db) => { db.update_provider_last_sync(user_id, provider, sync_time) .await } #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => { db.update_provider_last_sync(user_id, provider, sync_time) .await } } } async fn get_top_tools_analysis( &self, user_id: uuid::Uuid, start_time: chrono::DateTime<chrono::Utc>, end_time: chrono::DateTime<chrono::Utc>, ) -> AppResult<Vec<ToolUsage>> { match self { Self::SQLite(db) => { db.get_top_tools_analysis(user_id, start_time, end_time) .await } #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => { db.get_top_tools_analysis(user_id, start_time, end_time) .await } } } // ================================ // Admin Token Management // ================================ /// Create a new admin token /// /// # Errors /// /// Returns an error if: /// - Token generation fails /// - Database insertion fails /// - Token data validation fails /// - Hash generation fails /// - Database connection issues async fn create_admin_token( &self, request: &CreateAdminTokenRequest, admin_jwt_secret: &str, jwks_manager: &JwksManager, ) -> AppResult<GeneratedAdminToken> { match self { Self::SQLite(db) => { db.create_admin_token(request, admin_jwt_secret, jwks_manager) .await } #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => { db.create_admin_token(request, admin_jwt_secret, jwks_manager) .await } } } async fn get_admin_token_by_id(&self, token_id: &str) -> AppResult<Option<AdminToken>> { match self { Self::SQLite(db) => db.get_admin_token_by_id(token_id).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.get_admin_token_by_id(token_id).await, } } async fn get_admin_token_by_prefix(&self, token_prefix: &str) -> AppResult<Option<AdminToken>> { match self { Self::SQLite(db) => db.get_admin_token_by_prefix(token_prefix).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.get_admin_token_by_prefix(token_prefix).await, } } async fn list_admin_tokens(&self, include_inactive: bool) -> AppResult<Vec<AdminToken>> { match self { Self::SQLite(db) => db.list_admin_tokens(include_inactive).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.list_admin_tokens(include_inactive).await, } } async fn deactivate_admin_token(&self, token_id: &str) -> AppResult<()> { match self { Self::SQLite(db) => db.deactivate_admin_token(token_id).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.deactivate_admin_token(token_id).await, } } async fn update_admin_token_last_used( &self, token_id: &str, ip_address: Option<&str>, ) -> AppResult<()> { match self { Self::SQLite(db) => db.update_admin_token_last_used(token_id, ip_address).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.update_admin_token_last_used(token_id, ip_address).await, } } async fn record_admin_token_usage(&self, usage: &AdminTokenUsage) -> AppResult<()> { match self { Self::SQLite(db) => db.record_admin_token_usage(usage).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.record_admin_token_usage(usage).await, } } async fn get_admin_token_usage_history( &self, token_id: &str, start_date: chrono::DateTime<chrono::Utc>, end_date: chrono::DateTime<chrono::Utc>, ) -> AppResult<Vec<AdminTokenUsage>> { match self { Self::SQLite(db) => { db.get_admin_token_usage_history(token_id, start_date, end_date) .await } #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => { db.get_admin_token_usage_history(token_id, start_date, end_date) .await } } } async fn record_admin_provisioned_key( &self, admin_token_id: &str, api_key_id: &str, user_email: &str, tier: &str, rate_limit_requests: u32, rate_limit_period: &str, ) -> AppResult<()> { match self { Self::SQLite(db) => { db.record_admin_provisioned_key( admin_token_id, api_key_id, user_email, tier, rate_limit_requests, rate_limit_period, ) .await } #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => { db.record_admin_provisioned_key( admin_token_id, api_key_id, user_email, tier, rate_limit_requests, rate_limit_period, ) .await } } } async fn get_admin_provisioned_keys( &self, admin_token_id: Option<&str>, start_date: chrono::DateTime<chrono::Utc>, end_date: chrono::DateTime<chrono::Utc>, ) -> AppResult<Vec<serde_json::Value>> { match self { Self::SQLite(db) => { db.get_admin_provisioned_keys(admin_token_id, start_date, end_date) .await } #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => { db.get_admin_provisioned_keys(admin_token_id, start_date, end_date) .await } } } // Multi-tenant management implementations async fn create_tenant(&self, tenant: &Tenant) -> AppResult<()> { match self { Self::SQLite(db) => db.create_tenant(tenant).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.create_tenant(tenant).await, } } async fn get_tenant_by_id(&self, tenant_id: uuid::Uuid) -> AppResult<Tenant> { match self { Self::SQLite(db) => db.get_tenant_by_id(tenant_id).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.get_tenant_by_id(tenant_id).await, } } async fn get_tenant_by_slug(&self, slug: &str) -> AppResult<Tenant> { match self { Self::SQLite(db) => db.get_tenant_by_slug(slug).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.get_tenant_by_slug(slug).await, } } async fn list_tenants_for_user(&self, user_id: uuid::Uuid) -> AppResult<Vec<Tenant>> { match self { Self::SQLite(db) => db.list_tenants_for_user(user_id).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.list_tenants_for_user(user_id).await, } } async fn store_tenant_oauth_credentials( &self, credentials: &TenantOAuthCredentials, ) -> AppResult<()> { match self { Self::SQLite(db) => db.store_tenant_oauth_credentials(credentials).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.store_tenant_oauth_credentials(credentials).await, } } async fn get_tenant_oauth_providers( &self, tenant_id: uuid::Uuid, ) -> AppResult<Vec<TenantOAuthCredentials>> { match self { Self::SQLite(db) => db.get_tenant_oauth_providers(tenant_id).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.get_tenant_oauth_providers(tenant_id).await, } } async fn get_tenant_oauth_credentials( &self, tenant_id: uuid::Uuid, provider: &str, ) -> AppResult<Option<TenantOAuthCredentials>> { match self { Self::SQLite(db) => db.get_tenant_oauth_credentials(tenant_id, provider).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.get_tenant_oauth_credentials(tenant_id, provider).await, } } // OAuth app registration implementations async fn create_oauth_app(&self, app: &OAuthApp) -> AppResult<()> { match self { Self::SQLite(db) => db.create_oauth_app(app).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.create_oauth_app(app).await, } } async fn get_oauth_app_by_client_id(&self, client_id: &str) -> AppResult<OAuthApp> { match self { Self::SQLite(db) => db.get_oauth_app_by_client_id(client_id).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.get_oauth_app_by_client_id(client_id).await, } } async fn list_oauth_apps_for_user(&self, user_id: uuid::Uuid) -> AppResult<Vec<OAuthApp>> { match self { Self::SQLite(db) => db.list_oauth_apps_for_user(user_id).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.list_oauth_apps_for_user(user_id).await, } } // ================================ // OAuth 2.0 Server (RFC 7591) // ================================ async fn store_oauth2_client(&self, client: &OAuth2Client) -> AppResult<()> { match self { Self::SQLite(db) => db.store_oauth2_client(client).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.store_oauth2_client(client).await, } } async fn get_oauth2_client(&self, client_id: &str) -> AppResult<Option<OAuth2Client>> { match self { Self::SQLite(db) => db.get_oauth2_client(client_id).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.get_oauth2_client(client_id).await, } } async fn store_oauth2_auth_code(&self, auth_code: &OAuth2AuthCode) -> AppResult<()> { match self { Self::SQLite(db) => db.store_oauth2_auth_code(auth_code).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.store_oauth2_auth_code(auth_code).await, } } async fn get_oauth2_auth_code(&self, code: &str) -> AppResult<Option<OAuth2AuthCode>> { match self { Self::SQLite(db) => db.get_oauth2_auth_code(code).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.get_oauth2_auth_code(code).await, } } async fn update_oauth2_auth_code(&self, auth_code: &OAuth2AuthCode) -> AppResult<()> { match self { Self::SQLite(db) => db.update_oauth2_auth_code(auth_code).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.update_oauth2_auth_code(auth_code).await, } } async fn store_oauth2_refresh_token( &self, refresh_token: &OAuth2RefreshToken, ) -> AppResult<()> { match self { Self::SQLite(db) => db.store_oauth2_refresh_token(refresh_token).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.store_oauth2_refresh_token(refresh_token).await, } } async fn get_oauth2_refresh_token(&self, token: &str) -> AppResult<Option<OAuth2RefreshToken>> { match self { Self::SQLite(db) => db.get_oauth2_refresh_token(token).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.get_oauth2_refresh_token(token).await, } } async fn revoke_oauth2_refresh_token(&self, token: &str) -> AppResult<()> { match self { Self::SQLite(db) => db.revoke_oauth2_refresh_token(token).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.revoke_oauth2_refresh_token(token).await, } } async fn consume_auth_code( &self, code: &str, client_id: &str, redirect_uri: &str, now: DateTime<Utc>, ) -> AppResult<Option<OAuth2AuthCode>> { match self { Self::SQLite(db) => { db.consume_auth_code(code, client_id, redirect_uri, now) .await } #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => { db.consume_auth_code(code, client_id, redirect_uri, now) .await } } } async fn consume_refresh_token( &self, token: &str, client_id: &str, now: DateTime<Utc>, ) -> AppResult<Option<OAuth2RefreshToken>> { match self { Self::SQLite(db) => db.consume_refresh_token(token, client_id, now).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.consume_refresh_token(token, client_id, now).await, } } async fn get_refresh_token_by_value( &self, token: &str, ) -> AppResult<Option<OAuth2RefreshToken>> { match self { Self::SQLite(db) => db.get_refresh_token_by_value(token).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.get_refresh_token_by_value(token).await, } } async fn store_authorization_code( &self, code: &str, client_id: &str, redirect_uri: &str, scope: &str, user_id: Uuid, ) -> AppResult<()> { match self { Self::SQLite(db) => { db.store_authorization_code(code, client_id, redirect_uri, scope, user_id) .await } #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => { db.store_authorization_code(code, client_id, redirect_uri, scope, user_id) .await } } } async fn get_authorization_code(&self, code: &str) -> AppResult<AuthorizationCode> { match self { Self::SQLite(db) => db.get_authorization_code(code).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.get_authorization_code(code).await, } } async fn delete_authorization_code(&self, code: &str) -> AppResult<()> { match self { Self::SQLite(db) => db.delete_authorization_code(code).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.delete_authorization_code(code).await, } } async fn store_oauth2_state(&self, state: &OAuth2State) -> AppResult<()> { match self { Self::SQLite(db) => db.store_oauth2_state(state).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.store_oauth2_state(state).await, } } async fn consume_oauth2_state( &self, state_value: &str, client_id: &str, now: DateTime<Utc>, ) -> AppResult<Option<OAuth2State>> { match self { Self::SQLite(db) => db.consume_oauth2_state(state_value, client_id, now).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.consume_oauth2_state(state_value, client_id, now).await, } } // ================================ // Key Rotation & Security // ================================ async fn store_key_version(&self, version: &KeyVersion) -> AppResult<()> { match self { Self::SQLite(db) => db.store_key_version(version).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.store_key_version(version).await, } } async fn get_key_versions(&self, tenant_id: Option<uuid::Uuid>) -> AppResult<Vec<KeyVersion>> { match self { Self::SQLite(db) => db.get_key_versions(tenant_id).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.get_key_versions(tenant_id).await, } } async fn get_current_key_version( &self, tenant_id: Option<uuid::Uuid>, ) -> AppResult<Option<KeyVersion>> { match self { Self::SQLite(db) => db.get_current_key_version(tenant_id).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.get_current_key_version(tenant_id).await, } } async fn update_key_version_status( &self, tenant_id: Option<uuid::Uuid>, version: u32, is_active: bool, ) -> AppResult<()> { match self { Self::SQLite(db) => { db.update_key_version_status(tenant_id, version, is_active) .await } #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => { db.update_key_version_status(tenant_id, version, is_active) .await } } } async fn delete_old_key_versions( &self, tenant_id: Option<uuid::Uuid>, keep_count: u32, ) -> AppResult<u64> { match self { Self::SQLite(db) => db.delete_old_key_versions(tenant_id, keep_count).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.delete_old_key_versions(tenant_id, keep_count).await, } } async fn get_all_tenants(&self) -> AppResult<Vec<Tenant>> { match self { Self::SQLite(db) => db.get_all_tenants().await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.get_all_tenants().await, } } async fn store_audit_event(&self, event: &AuditEvent) -> AppResult<()> { match self { Self::SQLite(db) => db.store_audit_event(event).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.store_audit_event(event).await, } } async fn get_audit_events( &self, tenant_id: Option<uuid::Uuid>, event_type: Option<&str>, limit: Option<u32>, ) -> AppResult<Vec<AuditEvent>> { match self { Self::SQLite(db) => db.get_audit_events(tenant_id, event_type, limit).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.get_audit_events(tenant_id, event_type, limit).await, } } // ================================ // User OAuth Tokens (Multi-Tenant) // ================================ async fn upsert_user_oauth_token(&self, token: &UserOAuthToken) -> AppResult<()> { match self { Self::SQLite(db) => DatabaseProvider::upsert_user_oauth_token(db, token).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.upsert_user_oauth_token(token).await, } } async fn get_user_oauth_token( &self, user_id: Uuid, tenant_id: &str, provider: &str, ) -> AppResult<Option<UserOAuthToken>> { match self { Self::SQLite(db) => db.get_user_oauth_token(user_id, tenant_id, provider).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.get_user_oauth_token(user_id, tenant_id, provider).await, } } async fn get_user_oauth_tokens(&self, user_id: Uuid) -> AppResult<Vec<UserOAuthToken>> { match self { Self::SQLite(db) => db.get_user_oauth_tokens(user_id).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.get_user_oauth_tokens(user_id).await, } } async fn get_tenant_provider_tokens( &self, tenant_id: &str, provider: &str, ) -> AppResult<Vec<UserOAuthToken>> { match self { Self::SQLite(db) => db.get_tenant_provider_tokens(tenant_id, provider).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.get_tenant_provider_tokens(tenant_id, provider).await, } } async fn delete_user_oauth_token( &self, user_id: Uuid, tenant_id: &str, provider: &str, ) -> AppResult<()> { match self { Self::SQLite(db) => { db.delete_user_oauth_token(user_id, tenant_id, provider) .await } #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => { db.delete_user_oauth_token(user_id, tenant_id, provider) .await } } } async fn delete_user_oauth_tokens(&self, user_id: Uuid) -> AppResult<()> { match self { Self::SQLite(db) => db.delete_user_oauth_tokens(user_id).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.delete_user_oauth_tokens(user_id).await, } } async fn refresh_user_oauth_token( &self, user_id: Uuid, tenant_id: &str, provider: &str, access_token: &str, refresh_token: Option<&str>, expires_at: Option<chrono::DateTime<chrono::Utc>>, ) -> AppResult<()> { match self { Self::SQLite(db) => { db.refresh_user_oauth_token( user_id, tenant_id, provider, access_token, refresh_token, expires_at, ) .await } #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => { db.refresh_user_oauth_token( user_id, tenant_id, provider, access_token, refresh_token, expires_at, ) .await } } } /// Get user role for a specific tenant async fn get_user_tenant_role( &self, user_id: Uuid, tenant_id: Uuid, ) -> AppResult<Option<String>> { match self { Self::SQLite(db) => { DatabaseProvider::get_user_tenant_role(db, user_id, tenant_id).await } #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.get_user_tenant_role(user_id, tenant_id).await, } } // ================================ // User OAuth App Credentials // ================================ /// Store user OAuth app credentials (`client_id`, `client_secret`) async fn store_user_oauth_app( &self, user_id: Uuid, provider: &str, client_id: &str, client_secret: &str, redirect_uri: &str, ) -> AppResult<()> { match self { Self::SQLite(db) => { db.store_user_oauth_app(user_id, provider, client_id, client_secret, redirect_uri) .await } #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => { db.store_user_oauth_app(user_id, provider, client_id, client_secret, redirect_uri) .await } } } /// Get user OAuth app credentials for a provider async fn get_user_oauth_app( &self, user_id: Uuid, provider: &str, ) -> AppResult<Option<UserOAuthApp>> { match self { Self::SQLite(db) => db.get_user_oauth_app(user_id, provider).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.get_user_oauth_app(user_id, provider).await, } } /// List all OAuth app providers configured for a user async fn list_user_oauth_apps(&self, user_id: Uuid) -> AppResult<Vec<UserOAuthApp>> { match self { Self::SQLite(db) => db.list_user_oauth_apps(user_id).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.list_user_oauth_apps(user_id).await, } } /// Remove user OAuth app credentials for a provider async fn remove_user_oauth_app(&self, user_id: Uuid, provider: &str) -> AppResult<()> { match self { Self::SQLite(db) => db.remove_user_oauth_app(user_id, provider).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.remove_user_oauth_app(user_id, provider).await, } } // ================================ // System Secret Management // ================================ /// Get or create system secret (generates if not exists) async fn get_or_create_system_secret(&self, secret_type: &str) -> AppResult<String> { match self { Self::SQLite(db) => db.get_or_create_system_secret(secret_type).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.get_or_create_system_secret(secret_type).await, } } /// Get existing system secret async fn get_system_secret(&self, secret_type: &str) -> AppResult<String> { match self { Self::SQLite(db) => db.get_system_secret(secret_type).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.get_system_secret(secret_type).await, } } /// Update system secret (for rotation) async fn update_system_secret(&self, secret_type: &str, new_value: &str) -> AppResult<()> { match self { Self::SQLite(db) => db.update_system_secret(secret_type, new_value).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.update_system_secret(secret_type, new_value).await, } } // ================================ // OAuth Notifications // ================================ /// Store OAuth completion notification for MCP resource delivery async fn store_oauth_notification( &self, user_id: Uuid, provider: &str, success: bool, message: &str, expires_at: Option<&str>, ) -> AppResult<String> { match self { Self::SQLite(db) => { db.store_oauth_notification(user_id, provider, success, message, expires_at) .await } #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => { db.store_oauth_notification(user_id, provider, success, message, expires_at) .await } } } /// Get unread OAuth notifications for a user async fn get_unread_oauth_notifications( &self, user_id: Uuid, ) -> AppResult<Vec<OAuthNotification>> { match self { Self::SQLite(db) => db.get_unread_oauth_notifications(user_id).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.get_unread_oauth_notifications(user_id).await, } } /// Mark OAuth notification as read async fn mark_oauth_notification_read( &self, notification_id: &str, user_id: Uuid, ) -> AppResult<bool> { match self { Self::SQLite(db) => { db.mark_oauth_notification_read(notification_id, user_id) .await } #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => { db.mark_oauth_notification_read(notification_id, user_id) .await } } } /// Mark all OAuth notifications as read for a user async fn mark_all_oauth_notifications_read(&self, user_id: Uuid) -> AppResult<u64> { match self { Self::SQLite(db) => db.mark_all_oauth_notifications_read(user_id).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.mark_all_oauth_notifications_read(user_id).await, } } /// Get all OAuth notifications for a user (read and unread) async fn get_all_oauth_notifications( &self, user_id: Uuid, limit: Option<i64>, ) -> AppResult<Vec<OAuthNotification>> { match self { Self::SQLite(db) => db.get_all_oauth_notifications(user_id, limit).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.get_all_oauth_notifications(user_id, limit).await, } } // ================================ // Fitness Configuration Management // ================================ /// Save tenant-level fitness configuration async fn save_tenant_fitness_config( &self, tenant_id: &str, configuration_name: &str, config: &FitnessConfig, ) -> AppResult<String> { match self { Self::SQLite(db) => { db.save_tenant_fitness_config(tenant_id, configuration_name, config) .await } #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => { db.save_tenant_fitness_config(tenant_id, configuration_name, config) .await } } } /// Save user-specific fitness configuration async fn save_user_fitness_config( &self, tenant_id: &str, user_id: &str, configuration_name: &str, config: &FitnessConfig, ) -> AppResult<String> { match self { Self::SQLite(db) => { db.save_user_fitness_config(tenant_id, user_id, configuration_name, config) .await } #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => { db.save_user_fitness_config(tenant_id, user_id, configuration_name, config) .await } } } /// Get tenant-level fitness configuration async fn get_tenant_fitness_config( &self, tenant_id: &str, configuration_name: &str, ) -> AppResult<Option<FitnessConfig>> { match self { Self::SQLite(db) => { db.get_tenant_fitness_config(tenant_id, configuration_name) .await } #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => { db.get_tenant_fitness_config(tenant_id, configuration_name) .await } } } /// Get user-specific fitness configuration async fn get_user_fitness_config( &self, tenant_id: &str, user_id: &str, configuration_name: &str, ) -> AppResult<Option<FitnessConfig>> { match self { Self::SQLite(db) => { db.get_user_fitness_config(tenant_id, user_id, configuration_name) .await } #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => { db.get_user_fitness_config(tenant_id, user_id, configuration_name) .await } } } /// List all tenant-level fitness configuration names async fn list_tenant_fitness_configurations(&self, tenant_id: &str) -> AppResult<Vec<String>> { match self { Self::SQLite(db) => db.list_tenant_fitness_configurations(tenant_id).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.list_tenant_fitness_configurations(tenant_id).await, } } /// List all user-specific fitness configuration names async fn list_user_fitness_configurations( &self, tenant_id: &str, user_id: &str, ) -> AppResult<Vec<String>> { match self { Self::SQLite(db) => { db.list_user_fitness_configurations(tenant_id, user_id) .await } #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => { db.list_user_fitness_configurations(tenant_id, user_id) .await } } } /// Delete fitness configuration (tenant or user-specific) async fn delete_fitness_config( &self, tenant_id: &str, user_id: Option<&str>, configuration_name: &str, ) -> AppResult<bool> { match self { Self::SQLite(db) => { db.delete_fitness_config(tenant_id, user_id, configuration_name) .await } #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => { db.delete_fitness_config(tenant_id, user_id, configuration_name) .await } } } /// Save RSA keypair to database async fn save_rsa_keypair( &self, kid: &str, private_key_pem: &str, public_key_pem: &str, created_at: chrono::DateTime<chrono::Utc>, is_active: bool, key_size_bits: i32, ) -> AppResult<()> { match self { Self::SQLite(db) => { db.save_rsa_keypair( kid, private_key_pem, public_key_pem, created_at, is_active, usize::try_from(key_size_bits).unwrap_or(2048), ) .await } #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => { db.save_rsa_keypair( kid, private_key_pem, public_key_pem, created_at, is_active, key_size_bits, ) .await } } } /// Load all RSA keypairs from database async fn load_rsa_keypairs( &self, ) -> AppResult<Vec<(String, String, String, chrono::DateTime<chrono::Utc>, bool)>> { match self { Self::SQLite(db) => db.load_rsa_keypairs().await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.load_rsa_keypairs().await, } } /// Update active status of RSA keypair async fn update_rsa_keypair_active_status(&self, kid: &str, is_active: bool) -> AppResult<()> { match self { Self::SQLite(db) => db.update_rsa_keypair_active_status(kid, is_active).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.update_rsa_keypair_active_status(kid, is_active).await, } } // ================================ // User MCP Tokens (AI Client Authentication) // ================================ /// Create a new user MCP token for AI client authentication async fn create_user_mcp_token( &self, user_id: Uuid, request: &CreateUserMcpTokenRequest, ) -> AppResult<UserMcpTokenCreated> { match self { Self::SQLite(db) => db.create_user_mcp_token(user_id, request).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.create_user_mcp_token(user_id, request).await, } } /// Validate a user MCP token and return the associated user ID async fn validate_user_mcp_token(&self, token_value: &str) -> AppResult<Uuid> { match self { Self::SQLite(db) => db.validate_user_mcp_token(token_value).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.validate_user_mcp_token(token_value).await, } } /// List all MCP tokens for a user async fn list_user_mcp_tokens(&self, user_id: Uuid) -> AppResult<Vec<UserMcpTokenInfo>> { match self { Self::SQLite(db) => db.list_user_mcp_tokens(user_id).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.list_user_mcp_tokens(user_id).await, } } /// Revoke a user MCP token async fn revoke_user_mcp_token(&self, token_id: &str, user_id: Uuid) -> AppResult<()> { match self { Self::SQLite(db) => db.revoke_user_mcp_token(token_id, user_id).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.revoke_user_mcp_token(token_id, user_id).await, } } /// Get a user MCP token by ID async fn get_user_mcp_token( &self, token_id: &str, user_id: Uuid, ) -> AppResult<Option<UserMcpToken>> { match self { Self::SQLite(db) => db.get_user_mcp_token(token_id, user_id).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.get_user_mcp_token(token_id, user_id).await, } } /// Cleanup expired user MCP tokens (mark as revoked) async fn cleanup_expired_user_mcp_tokens(&self) -> AppResult<u64> { match self { Self::SQLite(db) => db.cleanup_expired_user_mcp_tokens().await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.cleanup_expired_user_mcp_tokens().await, } } // ================================ // Impersonation Session Management // ================================ /// Create a new impersonation session for audit trail async fn create_impersonation_session(&self, session: &ImpersonationSession) -> AppResult<()> { match self { Self::SQLite(db) => db.create_impersonation_session(session).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.create_impersonation_session(session).await, } } /// Get impersonation session by ID async fn get_impersonation_session( &self, session_id: &str, ) -> AppResult<Option<ImpersonationSession>> { match self { Self::SQLite(db) => db.get_impersonation_session(session_id).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.get_impersonation_session(session_id).await, } } /// Get active impersonation session for an impersonator async fn get_active_impersonation_session( &self, impersonator_id: Uuid, ) -> AppResult<Option<ImpersonationSession>> { match self { Self::SQLite(db) => db.get_active_impersonation_session(impersonator_id).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.get_active_impersonation_session(impersonator_id).await, } } /// End an impersonation session async fn end_impersonation_session(&self, session_id: &str) -> AppResult<()> { match self { Self::SQLite(db) => db.end_impersonation_session(session_id).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.end_impersonation_session(session_id).await, } } /// End all active impersonation sessions for an impersonator async fn end_all_impersonation_sessions(&self, impersonator_id: Uuid) -> AppResult<u64> { match self { Self::SQLite(db) => db.end_all_impersonation_sessions(impersonator_id).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.end_all_impersonation_sessions(impersonator_id).await, } } /// List impersonation sessions with optional filters async fn list_impersonation_sessions( &self, impersonator_id: Option<Uuid>, target_user_id: Option<Uuid>, active_only: bool, limit: u32, ) -> AppResult<Vec<ImpersonationSession>> { match self { Self::SQLite(db) => { db.list_impersonation_sessions(impersonator_id, target_user_id, active_only, limit) .await } #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => { db.list_impersonation_sessions(impersonator_id, target_user_id, active_only, limit) .await } } } // ================================ // LLM Credentials Management // ================================ async fn store_llm_credentials(&self, record: &LlmCredentialRecord) -> AppResult<()> { match self { Self::SQLite(db) => db.store_llm_credentials(record).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.store_llm_credentials(record).await, } } async fn get_llm_credentials( &self, tenant_id: Uuid, user_id: Option<Uuid>, provider: &str, ) -> AppResult<Option<LlmCredentialRecord>> { match self { Self::SQLite(db) => db.get_llm_credentials(tenant_id, user_id, provider).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.get_llm_credentials(tenant_id, user_id, provider).await, } } async fn list_llm_credentials(&self, tenant_id: Uuid) -> AppResult<Vec<LlmCredentialSummary>> { match self { Self::SQLite(db) => db.list_llm_credentials(tenant_id).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.list_llm_credentials(tenant_id).await, } } async fn delete_llm_credentials( &self, tenant_id: Uuid, user_id: Option<Uuid>, provider: &str, ) -> AppResult<bool> { match self { Self::SQLite(db) => { db.delete_llm_credentials(tenant_id, user_id, provider) .await } #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => { db.delete_llm_credentials(tenant_id, user_id, provider) .await } } } async fn get_admin_config_override( &self, config_key: &str, tenant_id: Option<&str>, ) -> AppResult<Option<String>> { match self { Self::SQLite(db) => db.get_admin_config_override(config_key, tenant_id).await, #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.get_admin_config_override(config_key, tenant_id).await, } } // ================================ // Encryption Interface // ================================ fn encrypt_data_with_aad(&self, data: &str, aad: &str) -> AppResult<String> { match self { Self::SQLite(db) => db.encrypt_data_with_aad(data, aad), #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.encrypt_data_with_aad(data, aad), } } fn decrypt_data_with_aad(&self, encrypted: &str, aad: &str) -> AppResult<String> { match self { Self::SQLite(db) => db.decrypt_data_with_aad(encrypted, aad), #[cfg(feature = "postgresql")] Self::PostgreSQL(db) => db.decrypt_data_with_aad(encrypted, aad), } } }

Loading blob content...

Latest Blog Posts

Don't Use Large Strings as Cache Keys
By punkpeye on January 11, 2026.
markdown
node-js
cache
What are Claude Skills?
By punkpeye on January 10, 2026.
mcp
skills
How to Test MCP Streamable HTTP Endpoints Using cURL
By punkpeye on January 2, 2026.
tutorial
bash

MCP directory API

We provide all the information about MCP servers via our MCP API.

curl -X GET 'https://glama.ai/api/mcp/v1/servers/jfarcand/pierre_mcp_server'

If you have feedback or need assistance with the MCP directory API, please join our Discord server

factory.rs•84.7 kB