refactor: simplify c8y_http_proxy

[didier-wenzek]

Proposed changes

Can c8y_http_proxy be fully deprecated and replaced by c8y_auth_proxy ?

As noted here the c8y mapper is already bypassing c8y_http_proxy in favor of c8y_auth_proxy but only partially: to upload the file attached to an event but not to create that event.

Actually, c8y_mapper_ext (and also c8y_firmware_manager) can be independent of c8y_http_proxy and c8y_auth_proxy altogether. Indeed, the key point is related to url rewriting.

1. To use the local auth proxy to Cumulocity, the mapper has simply to rewrite the urls provided by c8y_api::http_proxy::C8yEndPoint using the c8y_auth_proxy::url::ProxyUrlGenerator. There is no need for a direct dependency on the c8y_auth_proxy crate beyond that url generator.
2. All the c8y urls being rewritten to go through the local auth proxy, there is no more needs for the mapper to fetch JWT tokens. Hence, the code of the c8y_http_proxy can be simplified to focus only one URL generation.

Tasks:

• Remove unused method C8YHttpProxy::upload_log_binary
• Move ProxyUrlGenerator from c8y_auth_proxy to c8y_api
• Combine C8yEndPoint with ProxyUrlGenerator: enforce the use of the auth proxy for c8y urls
• Remove JWT fetching from c8y_http_proxy
• Remove the dependencies on c8y_http_proxy from c8y_auth_proxy, c8y_firmware_plugin, and c8y_firmware_manager (this is only to get some struct definitions).
• Fully remove c8y_http_proxy.

Types of changes

• Bugfix (non-breaking change which fixes an issue)
• New feature (non-breaking change which adds functionality)
• Improvement (general improvements like code refactoring that doesn't explicitly fix a bug or add any new functionality)
• Documentation Update (if none of the other choices apply)
• Breaking change (fix or feature that would cause existing functionality to not work as expected)

Paste Link to the issue

• Creating an event should use the local c8y proxy #2938

Checklist

• I have read the CONTRIBUTING doc
• I have signed the CLA (in all commits with git commit -s)
• I ran cargo fmt as mentioned in CODING_GUIDELINES
• I used cargo clippy as mentioned in CODING_GUIDELINES
• I have added tests that prove my fix is effective or that my feature works
• I have added necessary documentation (if appropriate)

Further comments

[codecov]

Codecov Report

Attention: Patch coverage is 80.35714% with 88 lines in your changes missing coverage. Please review.

Files with missing lines	Patch %	Lines
crates/core/c8y_api/src/http_proxy.rs	74.00%	26 Missing ⚠️
crates/extensions/c8y_auth_proxy/src/tokens.rs	21.05%	13 Missing and 2 partials ⚠️
crates/extensions/c8y_http_proxy/src/actor.rs	72.50%	0 Missing and 11 partials ⚠️
crates/extensions/c8y_http_proxy/src/tests.rs	88.31%	0 Missing and 9 partials ⚠️
crates/extensions/c8y_mapper_ext/src/converter.rs	66.66%	1 Missing and 4 partials ⚠️
crates/extensions/c8y_mapper_ext/src/tests.rs	84.84%	5 Missing ⚠️
...ates/extensions/tedge_http_ext/src/test_helpers.rs	0.00%	4 Missing ⚠️
crates/core/tedge_mapper/src/c8y/mapper.rs	0.00%	3 Missing ⚠️
.../tedge_config/src/tedge_config_cli/tedge_config.rs	75.00%	0 Missing and 2 partials ⚠️
crates/extensions/c8y_auth_proxy/src/actor.rs	0.00%	2 Missing ⚠️
... and 5 more

Additional details and impacted files

📢 Thoughts on this report? Let us know!

---

🚨 Try these New Features:

• Flaky Tests Detection - Detect and resolve failed and flaky tests

[github-actions]

Robot Results

✅ Passed	❌ Failed	⏭️ Skipped	Total	Pass %	⏱️ Duration
524	0	2	524	100	1h31m11.367236999s

[albinsuresh]

Everything looks fine, except for dropping the get_internal_id retry logic which may have other side effects. Happy to approve once that comment is resolved.

[albinsuresh]

From what I remember, the retry mechanism was added to prevent the mapper from failing on startup if the device did not have internet connection at that very moment. Wouldn't that be broken with this simplification? Or we're hoping that the service manager would restart the mapper on this failure anyway and hence it will recover eventually?

[albinsuresh]

Ignore that comment. That internal id lookup was there earlier when we were eagerly fetching the internal id of the main device during the startup (in the C8yHttpActor::init()). Now that we don't have that init logic and internal id is always fetched on-demand, this shouldn't be an issue.

[didier-wenzek]

Yes, this was one of the intent, however the removed piece of code was useless in case of internet disruptions: TCP and TLS errors breaking the retry loop.

The only place where a retry might is useful is when publishing the software list on start. But this should be done at a different level - in the c8y mapper and not blindly at the HTTP level.

[albinsuresh]

Suggested change

	let c8y_host = tedge_config
	.c8y
	.try_get(c8y_profile)?
	.http
	.or_config_not_set()?
	.to_string();
	let c8y_mqtt_host = tedge_config
	.c8y
	.try_get(c8y_profile)?
	.mqtt
	.or_config_not_set()?
	.to_string();
	let c8y_config = tedge_config.c8y.try_get(c8y_profile)?;
	let auth_proxy_addr = c8y_config.proxy.client.host.clone();
	let c8y_config = tedge_config.c8y.try_get(c8y_profile)?;
	let c8y_host = c8y_config
	.http
	.or_config_not_set()?
	.to_string();
	let c8y_mqtt_host = c8y_config
	.mqtt
	.or_config_not_set()?
	.to_string();
	let auth_proxy_addr = c8y_config.proxy.client.host.clone();

[didier-wenzek]

Done

[albinsuresh]

I'm assuming that even the remaining functions in this "non-actor" would be moved to handle in the next step.

[albinsuresh]

LGTM.

[Bravo555]

Happy to approve as it is and defer the full removal of c8y_http_proxy to another PR, as this one is already quite big.