Rust SDK
The official Hook0 SDK for Rust applications, providing a safe, performant, and idiomatic interface to the Hook0 API.
Installation
Add the following to your Cargo.toml:
[dependencies]
hook0-client = "0.2"
Quick Start
The Rust SDK (hook0-client) supports both webhook production (sending events) and consumption (verifying webhook signatures).
Send Events (Producer)
use hook0_client::{Hook0Client, Event};
use reqwest::Url;
use uuid::Uuid;
use std::borrow::Cow;
#[tokio::main]
async fn main() -> Result<(), Box<dyn std::error::Error>> {
// Initialize the client
let api_url = Url::parse("http://localhost:8081/api/v1")?;
let application_id = Uuid::parse_str("{APP_ID}-here")?;
let token = "{YOUR_TOKEN}";
let client = Hook0Client::new(api_url, application_id, token)?;
// Create an event
let event = Event {
event_id: &None,
event_type: "user.account.created",
payload: Cow::Borrowed(r#"{"user_id": "123", "email": "john@example.com"}"#),
payload_content_type: "application/json",
metadata: None,
occurred_at: None,
labels: vec![
("environment".to_string(), serde_json::json!("production")),
],
};
// Send the event
let event_id = client.send_event(&event).await?;
println!("Event sent: {}", event_id);
Ok(())
}
Verify Webhook Signatures (Consumer)
use hook0_client::verify_webhook_signature;
use std::time::Duration;
fn verify_incoming_webhook(
signature_header: &str,
body: &[u8],
headers: &[(&str, &str)],
secret: &str,
) -> Result<(), Box<dyn std::error::Error>> {
// 5 minutes tolerance for timestamp validation
let tolerance = Duration::from_secs(300);
verify_webhook_signature(
signature_header,
body,
headers,
secret,
tolerance,
)?;
println!("Webhook signature verified successfully");
Ok(())
}
Features
The SDK supports optional features that can be enabled in your Cargo.toml:
[dependencies]
hook0-client = { version = "0.2", features = ["producer", "consumer"] }
Available Features
producer(default): Enable features for sending events to Hook0 and upserting event typesconsumer(default): Enable features for verifying webhook signaturesreqwest-rustls-tls-webpki-roots(default): Uses Rustls with WebPKI roots (Mozilla's root certificates)reqwest-rustls-tls-native-roots: Uses Rustls with system's native root certificates
Minimal Producer-Only Installation
[dependencies]
hook0-client = { version = "0.2", default-features = false, features = ["producer", "reqwest-rustls-tls-webpki-roots"] }
Minimal Consumer-Only Installation
[dependencies]
hook0-client = { version = "0.2", default-features = false, features = ["consumer"] }
Configuration
Initialize the client with your Hook0 credentials:
use hook0_client::Hook0Client;
use reqwest::Url;
use uuid::Uuid;
let api_url = Url::parse("http://localhost:8081/api/v1")?;
let application_id = Uuid::parse_str("your-application-id")?;
let token = std::env::var("HOOK0_TOKEN")?;
let client = Hook0Client::new(api_url, application_id, &token)?;
Upserting Event Types
Ensure your application has the required event types defined:
let event_types = vec![
"user.account.created",
"user.account.updated",
"user.account.deleted",
"order.checkout.completed",
"order.shipped",
];
let created_types = client.upsert_event_types(&event_types).await?;
println!("Created {} new event types", created_types.len());
Webhook Verification
The SDK provides built-in webhook signature verification:
Example: Actix-web Integration
use actix_web::{web, App, HttpRequest, HttpResponse, HttpServer, Error};
use hook0_client::verify_webhook_signature;
use std::time::Duration;
// Configuration loaded at startup
struct Config {
webhook_secret: String,
}
impl Config {
fn from_env() -> Result<Self, String> {
let webhook_secret = std::env::var("WEBHOOK_SECRET")
.map_err(|_| "WEBHOOK_SECRET environment variable not set")?;
Ok(Self { webhook_secret })
}
}
async fn webhook_handler(
req: HttpRequest,
body: web::Bytes,
config: web::Data<Config>,
) -> Result<HttpResponse, Error> {
let signature = req
.headers()
.get("X-Hook0-Signature")
.and_then(|h| h.to_str().ok())
.ok_or_else(|| actix_web::error::ErrorUnauthorized("Missing signature"))?;
// Extract headers as tuples
let headers: Vec<(&str, &str)> = req
.headers()
.iter()
.filter_map(|(k, v)| {
Some((k.as_str(), v.to_str().ok()?))
})
.collect();
// Verify signature with 5 minute tolerance
verify_webhook_signature(
signature,
&body,
&headers,
&config.webhook_secret,
Duration::from_secs(300),
)
.map_err(|_| actix_web::error::ErrorUnauthorized("Invalid signature"))?;
let payload: serde_json::Value = serde_json::from_slice(&body)?;
println!("Webhook received: {:?}", payload);
Ok(HttpResponse::Ok().json(serde_json::json!({
"status": "processed"
})))
}
#[actix_web::main]
async fn main() -> std::io::Result<()> {
// Load and validate config at startup - exits gracefully if missing
let config = Config::from_env().unwrap_or_else(|e| {
eprintln!("Configuration error: {}", e);
std::process::exit(1);
});
let config = web::Data::new(config);
HttpServer::new(move || {
App::new()
.app_data(config.clone())
.route("/webhook", web::post().to(webhook_handler))
})
.bind("127.0.0.1:8080")?
.run()
.await
}
See the examples/actix-web.rs file in the repository for a complete example.
Error Handling
The SDK uses the Hook0ClientError enum for comprehensive error handling:
use hook0_client::{Hook0Client, Hook0ClientError, Event};
async fn send_event_with_handling(client: &Hook0Client, event: &Event<'_>) {
match client.send_event(event).await {
Ok(event_id) => {
println!("Event sent successfully: {}", event_id);
}
Err(Hook0ClientError::EventSending { event_id, error, body }) => {
eprintln!("Failed to send event {}: {}", event_id, error);
if let Some(body) = body {
eprintln!("Response body: {}", body);
}
}
Err(Hook0ClientError::InvalidEventType(event_type)) => {
eprintln!("Invalid event type: {}", event_type);
}
Err(e) => {
eprintln!("Unexpected error: {}", e);
}
}
}
Consumer Errors
use hook0_client::{Hook0ClientError, verify_webhook_signature};
use std::time::Duration;
fn handle_webhook_verification(
signature: &str,
payload: &[u8],
headers: &[(&str, &str)],
secret: &str,
) {
match verify_webhook_signature(signature, payload, headers, secret, Duration::from_secs(300)) {
Ok(()) => println!("Valid webhook"),
Err(Hook0ClientError::InvalidSignature) => {
eprintln!("Invalid signature - webhook may be forged");
}
Err(Hook0ClientError::ExpiredWebhook { signed_at, tolerance, current_time }) => {
eprintln!("Webhook expired: signed at {}, current time {}, tolerance {:?}",
signed_at, current_time, tolerance);
}
Err(Hook0ClientError::MissingHeader(header)) => {
eprintln!("Missing required header: {}", header);
}
Err(e) => {
eprintln!("Verification error: {}", e);
}
}
}
Type Safety
Use strongly-typed payloads with serde:
use serde::{Deserialize, Serialize};
use chrono::{DateTime, Utc};
use hook0_client::{Hook0Client, Event};
use std::borrow::Cow;
// Define strongly-typed payloads
#[derive(Serialize, Deserialize, Debug)]
struct UserCreatedPayload {
user_id: String,
email: String,
created_at: DateTime<Utc>,
}
#[derive(Serialize, Deserialize, Debug)]
struct OrderPlacedPayload {
order_id: String,
customer_id: String,
total: f64,
items: Vec<OrderItem>,
}
#[derive(Serialize, Deserialize, Debug)]
struct OrderItem {
product_id: String,
quantity: u32,
price: f64,
}
// Type-safe event creation
async fn create_and_send_user_event(
client: &Hook0Client,
user: UserCreatedPayload,
) -> Result<uuid::Uuid, Box<dyn std::error::Error>> {
let payload = serde_json::to_string(&user)?;
let event = Event {
event_id: &None,
event_type: "user.account.created",
payload: Cow::Owned(payload),
payload_content_type: "application/json",
metadata: None,
occurred_at: None,
labels: vec![
("source".to_string(), serde_json::json!("api")),
("version".to_string(), serde_json::json!("1.0")),
],
};
let event_id = client.send_event(&event).await?;
Ok(event_id)
}
Testing
Unit Testing Webhook Verification
#[cfg(test)]
mod tests {
use hook0_client::verify_webhook_signature;
use std::time::Duration;
#[test]
fn test_valid_signature_v1() {
// v1 signature includes headers in the HMAC computation
let signature = "t=1636936200,h=x-event-id x-event-type,v1=bc521546ba5de381b12f135782d2008b028c3065c191760b12b76850a8fc8f51";
let payload = "hello !".as_bytes();
let secret = "secret";
let tolerance = Duration::from_secs(i64::MAX as u64);
let headers = vec![
("x-event-id", "1a01cb48-5142-4d9b-8f90-d20cca61f0ee"),
("x-event-type", "service.resource.verb"),
];
assert!(verify_webhook_signature(
signature,
payload,
&headers,
secret,
tolerance,
).is_ok());
}
}
Integration Testing
#[cfg(test)]
mod integration_tests {
use hook0_client::{Hook0Client, Event};
use reqwest::Url;
use uuid::Uuid;
use std::borrow::Cow;
#[tokio::test]
#[ignore] // Run with: cargo test -- --ignored
async fn test_end_to_end() {
let api_url = Url::parse("http://localhost:8081/api/v1").unwrap();
let application_id = Uuid::parse_str(&std::env::var("TEST_APP_ID").unwrap()).unwrap();
let token = std::env::var("TEST_HOOK0_TOKEN").expect("TEST_HOOK0_TOKEN not set");
let client = Hook0Client::new(api_url, application_id, &token).unwrap();
// Ensure event type exists
client.upsert_event_types(&["test.integration"]).await.unwrap();
// Send test event
let event = Event {
event_id: &None,
event_type: "test.integration",
payload: Cow::Borrowed(r#"{"test": true}"#),
payload_content_type: "application/json",
metadata: None,
occurred_at: None,
labels: vec![("test".to_string(), serde_json::json!("integration"))],
};
let event_id = client.send_event(&event).await.unwrap();
assert!(!event_id.to_string().is_empty());
}
}
Performance Optimization
Connection Reuse
The Hook0Client uses reqwest::Client internally, which maintains a connection pool. Reuse the client instance:
use hook0_client::Hook0Client;
use std::sync::Arc;
// Create once, share across threads
let client = Arc::new(Hook0Client::new(api_url, application_id, &token)?);
// Clone Arc for different async tasks
let client_clone = client.clone();
tokio::spawn(async move {
let event = /* ... */;
client_clone.send_event(&event).await.unwrap();
});
Parallel Event Processing
use futures::future::join_all;
use hook0_client::{Hook0Client, Event};
use std::sync::Arc;
async fn send_events_parallel(
client: Arc<Hook0Client>,
events: Vec<Event<'_>>,
) -> Vec<Result<uuid::Uuid, hook0_client::Hook0ClientError>> {
let futures: Vec<_> = events
.iter()
.map(|event| {
let client = client.clone();
async move {
client.send_event(event).await
}
})
.collect();
join_all(futures).await
}
Best Practices
1. Reuse Client Instances
// Initialize once at application startup
let client = Hook0Client::new(api_url, application_id, &token)?;
// Share across your application (use Arc for thread-safety)
let client = Arc::new(client);
2. Use Strong Types
use serde::Serialize;
#[derive(Serialize)]
struct UserPayload {
user_id: String,
email: String,
}
let payload = UserPayload {
user_id: "123".to_string(),
email: "test@example.com".to_string(),
};
let payload_str = serde_json::to_string(&payload)?;
3. Handle Errors Properly
use log::{info, error};
match client.send_event(&event).await {
Ok(event_id) => {
info!("Event sent: {}", event_id);
}
Err(e) => {
error!("Failed to send event: {:?}", e);
// Implement retry or fallback logic
}
}
4. Use Environment Variables
let token = std::env::var("HOOK0_TOKEN")
.expect("HOOK0_TOKEN environment variable not set");
let application_id = std::env::var("HOOK0_APP_ID")
.expect("HOOK0_APP_ID environment variable not set");
5. Provide Custom Event IDs for Idempotency
use uuid::Uuid;
let custom_event_id = Uuid::new_v4();
let event = Event {
event_id: &Some(&custom_event_id),
event_type: "payment.processed",
payload: Cow::Borrowed(r#"{"amount": 100.00}"#),
payload_content_type: "application/json",
metadata: None,
occurred_at: None,
labels: vec![],
};
Troubleshooting
Common Issues
Lifetime Issues with Async
use std::sync::Arc;
use hook0_client::Hook0Client;
// Wrap client in Arc for sharing across async tasks
let client = Arc::new(Hook0Client::new(api_url, application_id, &token)?);
let client_clone = client.clone();
tokio::spawn(async move {
let event = /* ... */;
client_clone.send_event(&event).await.unwrap();
});
Payload Content Type Mismatch
// Ensure payload string matches content type
let event = Event {
event_id: &None,
event_type: "user.account.created",
payload: Cow::Borrowed(r#"{"user_id": "123"}"#), // JSON string
payload_content_type: "application/json", // Must match
metadata: None,
occurred_at: None,
labels: vec![],
};
Missing TLS Feature
# If you get TLS errors, ensure one of these features is enabled:
[dependencies]
hook0-client = { version = "0.2", features = ["reqwest-rustls-tls-webpki-roots"] }
# OR
hook0-client = { version = "0.2", features = ["reqwest-rustls-tls-native-roots"] }
Async Runtime Issues
// Use tokio::main for simple cases
#[tokio::main]
async fn main() -> Result<(), Box<dyn std::error::Error>> {
let client = /* ... */;
client.send_event(&event).await?;
Ok(())
}
Links
- Crate: hook0-client on crates.io
- Documentation: docs.rs/hook0-client
- Source Code: GitHub Repository
- Examples: examples/actix-web.rs
- API Docs: Hook0 API Reference
- Issues: GitHub Issues
- Discord: Join Community