flow_domain/

connection.rs

use serde::{Deserialize, Serialize};

/// Connection profile metadata. Secrets (password / token) live in the OS
/// keyring under `flow-security`'s `zowe:<id>` account; this struct only
/// carries non-secret fields.
#[derive(Debug, Clone, Serialize, Deserialize)]
pub struct ConnectionProfile {
    pub id: String,
    pub name: String,
    /// Connection type - `"zosmf"` is the only one supported in v1; reserved
    /// for `"ssh"`, `"db2"`, etc. as adapters land.
    #[serde(rename = "type")]
    pub kind: String,
    pub host: String,
    pub port: u16,
    pub user: String,
    /// `"https"` (default) or `"http"` for plaintext zosmf endpoints.
    #[serde(default = "default_protocol")]
    pub protocol: String,
    /// When false, refuse to connect over TLS to a server with a self-signed
    /// or otherwise untrusted certificate. Defaults to `true` for safety;
    /// users who need to talk to internal LPARs with self-signed certs flip it.
    #[serde(default = "default_reject_unauthorized", rename = "rejectUnauthorized")]
    pub reject_unauthorized: bool,
}

fn default_protocol() -> String {
    "https".into()
}

fn default_reject_unauthorized() -> bool {
    true
}

impl ConnectionProfile {
    pub fn new_zosmf(
        id: impl Into<String>,
        name: impl Into<String>,
        host: impl Into<String>,
        port: u16,
        user: impl Into<String>,
    ) -> Self {
        Self {
            id: id.into(),
            name: name.into(),
            kind: "zosmf".into(),
            host: host.into(),
            port,
            user: user.into(),
            protocol: "https".into(),
            reject_unauthorized: true,
        }
    }
}