split: server foundation (Cargo, config, errors, utils, main)

Cargo.{toml,lock} bumps, build.rs, config-e2e.yml, rust-toolchain.toml, src/config/* (database/logging/server/user configs), src/consts.rs, src/errors.rs, src/main.rs, and src/utils/* (dedup_paths, find_first_available_path, rotating_file_writer, sanitize_path).
2026-05-08 21:35:18 +01:00 · 2026-05-08 21:35:18 +01:00 · a9ce09b59d
commit a9ce09b59d
parent 70f97c4b16
17 changed files with 535 additions and 99 deletions
--- a/sync-server/src/config/user_config.rs
+++ b/sync-server/src/config/user_config.rs
@ -1,6 +1,7 @@
 use bimap::BiHashMap;
 use rand::{Rng, distr::Alphanumeric, rng};
 use serde::{Deserialize, Deserializer, Serialize, de::Error};
+use subtle::ConstantTimeEq;

 use crate::app_state::database::models::VaultId;

@ -19,10 +20,19 @@ where
    let mut user_token_map = BiHashMap::new();
    for user in &users {
        if let Some(existing_name) = user_token_map.get_by_right(&user.token) {
+            let redacted = if user.token.len() > 6 {
+                format!(
+                    "{}...{}",
+                    &user.token[..3],
+                    &user.token[user.token.len() - 3..]
+                )
+            } else {
+                "***".to_owned()
+            };
            return Err(D::Error::custom(format!(
-                "Duplicate user token found: `{}` for users `{}` and `{}`. User tokens must be \
-                unique.",
-                user.token, existing_name, user.name
+                "Duplicate user token found: `{redacted}` for users `{}` and `{}`. User tokens \
+                must be unique.",
+                existing_name, user.name
            )));
        }

@ -41,7 +51,9 @@ where

 impl UserConfig {
    pub fn get_user(&self, token: &str) -> Option<&User> {
-        self.user_configs.iter().find(|u| u.token == token)
+        self.user_configs
+            .iter()
+            .find(|u| u.token.as_bytes().ct_eq(token.as_bytes()).into())
    }
 }