Skip to content

Latest commit

 

History

History
125 lines (79 loc) · 6.8 KB

ARCHITECTURE.md

File metadata and controls

125 lines (79 loc) · 6.8 KB

Architecture

Table of contents:

Overview

For general info about this project, you can read in the README.md file. In this document, you will find a more detailed explanation of how it works, how we write components, etc.

How it works

From README.md:

Written in Rust 🦀 using yew

So, as you can already guess, the Rust code is compiled into WASM using trunk and then executed on the client side in the browser. It also means that any heavy computation will affect the client's browser performance and can even freeze it (for example, bcrypt with 20 rounds).

The compiled app looks like a bunch of files (.html, .css, .wasm, .js). All these files are just served in the user's browser.

Why yew?

Because it's an excellent framework for building web applications in Rust, it is very familiar to React.js devs. The only disadvantage I've seen is styling: yew doesn't have any good tools/libraries for styling at this moment. At this moment, all styles are written in .scss files. Classes are used in components via the classes! macro.

So, what do we have:

  • Rust is the primary programming language in this project. It allows us to write highly maintainable code with fewer bugs.
  • Fast computations thanks to the WASM.

Code style

  1. We use the custom rustfmt.toml configuration. If you want to change some formatting options, create a pull request with your changes and an explanation of your motivation and how it'll help us.
  2. All code must be formatted using the cargo fmt. Run cargo +nightly fmt --all -- --check.
  3. All build and Clippy warnings must be fixed. Run cargo clippy -- -D warnings.

Components

We have three main groups of components (divided by purpose):

  1. General-purpose components.
  2. Crypto-helper related components.
  3. JWT-related components.
  4. Other components.

General-purpose components

Those components can be used on any app page and located in the src/common directory. They are small, side-effect-free, and have only one special purpose. Examples:

  • ByteInput. This component is used for the bytes entering. You can use it anywhere you need to read input bytes from the user. It automatically supports many input formats, validation, etc.

  • Switch. Just a regular switch. It can be used to switch between any two options. For example, encrypt <-> decrypt, hash <-> verify, etc.

  • There are and will be more common components. The above two are just examples. If some component was purpose-specialized during creation but became common, then it should be moved to the src/common directory.

Crypto-helper related components

In short: all components from the src/crypto_helper directory belong to this group. Here are the input/output components for the different algorithms, computations, etc.

If some components will be used only on the /crypto-helper page, then they should be placed somewhere in the src/crypto_helper directory.

Jwt-related components

In short: all components from the src/jwt directory belong to this group. Here are the input/output components for the JWT, its parts parsing/editing/viewing, etc.

If some components will be used only on the /jwt page, then they should be placed somewhere in the src/jwt directory.

Other components

The About page, Header, Footer, etc.

Practices

  1. Validate on input.

Components that take user input usually have validation rules. For example, the ByteInput component with the ByteFormat::Hex parameter will require only hex-encoded bytes from the user.

In the app state, we save only validated/parsed data. If the user enters an invalid string, inform them. But do not save raw String or smth like that in the state. If you look at the Algorithm enum, you can see that all input data for algorithms is saved in a "parsed" state:

// some fields and structures are omitted
enum Algorithm {
    Md5(Vec<u8>),
    Rsa(RsaInput),
}

struct RsaInput {
    pub action: RsaAction,
    pub payload: Vec<u8>,
}

enum RsaAction {
    Encrypt(RsaPublicKey),
    Decrypt(RsaPrivateKey),
    Sign(RsaSignInput),
    Verify(RsaVerifyInput),
}

You won't find any raw Strings. Bytes for hashing/encryption are Vec<u8> (not raw String), RSA keys are parsed and saved in Public/PrivateKey structures, etc.

  1. Logging.

This app uses a simple, typical logging system: tracing-web and tracing. If you want to log something, then use any suitable macros from the tracing crate. All logs will be written into the browser's console. This is how it looks:

  1. Inform the user about everything.

You have two main ways to tell the user that something went wrong:

  • Spawn notifications using the use_notifications hook from the yew_notifications crate.
  • Different UI tricks like painting the input component in red, on-page messages, etc. Example: