chore: Improvements

Author: zeljkoX

src/models/relayer/rpc_config.rs

@@ -4,6 +4,7 @@
 //! including URLs and weights for load balancing.
 
 use crate::constants::DEFAULT_RPC_WEIGHT;
+use crate::utils::mask_url;
 use eyre::eyre;
 use serde::{
     de::Error as DeError, ser::SerializeStruct, Deserialize, Deserializer, Serialize, Serializer,
@@ -155,49 +156,6 @@ impl RpcConfig {
     }
 }
 
-/// Masks a URL by showing only the scheme and host, hiding the path and query parameters.
-///
-/// This is used to safely display RPC URLs in API responses without exposing
-/// sensitive API keys that are often embedded in the URL path or query string.
-///
-/// # Examples
-/// - `https://eth-mainnet.g.alchemy.com/v2/abc123` → `https://eth-mainnet.g.alchemy.com/***`
-/// - `https://mainnet.infura.io/v3/PROJECT_ID` → `https://mainnet.infura.io/***`
-/// - `http://localhost:8545` → `http://localhost:8545` (no path to mask)
-/// - `invalid-url` → `***` (fallback for unparseable URLs)
-pub fn mask_url(url: &str) -> String {
-    // Find the scheme separator "://"
-    let Some(scheme_end) = url.find("://") else {
-        // No valid scheme, mask entirely for safety
-        return "***".to_string();
-    };
-
-    // Find where the host ends (first "/" after "://")
-    let host_start = scheme_end + 3; // Skip "://"
-    let rest = &url[host_start..];
-
-    // Find the first "/" which marks the start of the path
-    if let Some(path_start) = rest.find('/') {
-        // Check if there's actually content in the path (not just "/")
-        let path_and_beyond = &rest[path_start..];
-        if path_and_beyond.len() > 1 || url.contains('?') {
-            // There's a path or query to mask
-            let host_end = host_start + path_start;
-            format!("{}/***", &url[..host_end])
-        } else {
-            // Just a trailing "/" with no real path content
-            url.to_string()
-        }
-    } else if url.contains('?') {
-        // No path but has query parameters - mask those
-        let query_start = url.find('?').unwrap();
-        format!("{}?***", &url[..query_start])
-    } else {
-        // No path or query to mask, return original
-        url.to_string()
-    }
-}
-
 /// RPC configuration with masked URL for API responses.
 ///
 /// This type is used in API responses to prevent exposing sensitive API keys
@@ -705,90 +663,6 @@ mod tests {
         assert_eq!(urls[0].url, "  https://rpc.example.com  ");
     }
 
-    // =========================================================================
-    // Tests for mask_url function
-    // =========================================================================
-
-    #[test]
-    fn test_mask_url_alchemy_with_api_key() {
-        let url = "https://eth-mainnet.g.alchemy.com/v2/abc123xyz";
-        let masked = super::mask_url(url);
-        assert_eq!(masked, "https://eth-mainnet.g.alchemy.com/***");
-    }
-
-    #[test]
-    fn test_mask_url_infura_with_project_id() {
-        let url = "https://mainnet.infura.io/v3/my-project-id";
-        let masked = super::mask_url(url);
-        assert_eq!(masked, "https://mainnet.infura.io/***");
-    }
-
-    #[test]
-    fn test_mask_url_quicknode_with_api_key() {
-        let url = "https://my-node.quiknode.pro/secret-api-key/";
-        let masked = super::mask_url(url);
-        assert_eq!(masked, "https://my-node.quiknode.pro/***");
-    }
-
-    #[test]
-    fn test_mask_url_localhost_no_path() {
-        // No path to mask, should return original
-        let url = "http://localhost:8545";
-        let masked = super::mask_url(url);
-        assert_eq!(masked, "http://localhost:8545");
-    }
-
-    #[test]
-    fn test_mask_url_localhost_with_trailing_slash() {
-        // Just a trailing slash with no real path content
-        let url = "http://localhost:8545/";
-        let masked = super::mask_url(url);
-        assert_eq!(masked, "http://localhost:8545/");
-    }
-
-    #[test]
-    fn test_mask_url_with_query_params() {
-        let url = "https://rpc.example.com/v1?api_key=secret123&network=mainnet";
-        let masked = super::mask_url(url);
-        assert_eq!(masked, "https://rpc.example.com/***");
-    }
-
-    #[test]
-    fn test_mask_url_query_params_no_path() {
-        let url = "https://rpc.example.com?api_key=secret123";
-        let masked = super::mask_url(url);
-        assert_eq!(masked, "https://rpc.example.com?***");
-    }
-
-    #[test]
-    fn test_mask_url_invalid_url_no_scheme() {
-        // Invalid URL without scheme should be fully masked for safety
-        let url = "invalid-url";
-        let masked = super::mask_url(url);
-        assert_eq!(masked, "***");
-    }
-
-    #[test]
-    fn test_mask_url_empty_string() {
-        let url = "";
-        let masked = super::mask_url(url);
-        assert_eq!(masked, "***");
-    }
-
-    #[test]
-    fn test_mask_url_with_port_and_path() {
-        let url = "https://rpc.example.com:8080/api/v1/secret";
-        let masked = super::mask_url(url);
-        assert_eq!(masked, "https://rpc.example.com:8080/***");
-    }
-
-    #[test]
-    fn test_mask_url_ankr_with_api_key() {
-        let url = "https://rpc.ankr.com/eth/my-api-key-here";
-        let masked = super::mask_url(url);
-        assert_eq!(masked, "https://rpc.ankr.com/***");
-    }
-
     // =========================================================================
     // Tests for MaskedRpcConfig
     // =========================================================================

src/repositories/network/network_in_memory.rs

@@ -99,8 +99,7 @@ impl Repository<NetworkRepoModel, String> for InMemoryNetworkRepository {
 
         if !store.contains_key(&id) {
             return Err(RepositoryError::NotFound(format!(
-                "Network with id {} not found",
-                id
+                "Network with id {id} not found"
             )));
         }
 

src/services/provider/evm/mod.rs

@@ -32,7 +32,7 @@ use async_trait::async_trait;
 use eyre::Result;
 use reqwest::ClientBuilder as ReqwestClientBuilder;
 use serde_json;
-use tracing::info;
+use tracing::debug;
 
 use super::rpc_selector::RpcSelector;
 use super::{retry_rpc_call, ProviderConfig, RetryConfig};
@@ -41,6 +41,7 @@ use crate::{
         BlockResponse, EvmTransactionData, RpcConfig, TransactionError, TransactionReceipt, U256,
     },
     services::provider::{is_retriable_error, should_mark_provider_failed},
+    utils::mask_url,
 };
 
 #[cfg(test)]
@@ -200,7 +201,7 @@ impl EvmProvider {
 
     /// Initialize a provider for a given URL
     fn initialize_provider(&self, url: &str) -> Result<EvmProviderType, ProviderError> {
-        info!("Initializing provider for URL: {url}");
+        debug!("Initializing provider for URL: {}", mask_url(url));
         let rpc_url = url
             .parse()
             .map_err(|e| ProviderError::NetworkConfiguration(format!("Invalid URL format: {e}")))?;

src/utils/mod.rs

@@ -47,5 +47,8 @@ pub use json_rpc_error::*;
 mod error_sanitization;
 pub use error_sanitization::*;
 
+mod url;
+pub use url::*;
+
 #[cfg(test)]
 pub mod mocks;

src/utils/url.rs

@@ -0,0 +1,132 @@
+//! URL utility functions.
+//!
+//! This module provides utility functions for working with URLs,
+//! including masking sensitive information from URLs.
+
+/// Masks a URL by showing only the scheme and host, hiding the path and query parameters.
+///
+/// This is used to safely display RPC URLs in API responses and logs without exposing
+/// sensitive API keys that are often embedded in the URL path or query string.
+///
+/// # Examples
+/// - `https://eth-mainnet.g.alchemy.com/v2/abc123` → `https://eth-mainnet.g.alchemy.com/***`
+/// - `https://mainnet.infura.io/v3/PROJECT_ID` → `https://mainnet.infura.io/***`
+/// - `http://localhost:8545` → `http://localhost:8545` (no path to mask)
+/// - `invalid-url` → `***` (fallback for unparseable URLs)
+pub fn mask_url(url: &str) -> String {
+    // Find the scheme separator "://"
+    let Some(scheme_end) = url.find("://") else {
+        // No valid scheme, mask entirely for safety
+        return "***".to_string();
+    };
+
+    // Find where the host ends (first "/" after "://")
+    let host_start = scheme_end + 3; // Skip "://"
+    let rest = &url[host_start..];
+
+    // Find the first "/" which marks the start of the path
+    if let Some(path_start) = rest.find('/') {
+        // Check if there's actually content in the path (not just "/")
+        let path_and_beyond = &rest[path_start..];
+        if path_and_beyond.len() > 1 || url.contains('?') {
+            // There's a path or query to mask
+            let host_end = host_start + path_start;
+            format!("{}/***", &url[..host_end])
+        } else {
+            // Just a trailing "/" with no real path content
+            url.to_string()
+        }
+    } else if url.contains('?') {
+        // No path but has query parameters - mask those
+        let query_start = url.find('?').unwrap();
+        format!("{}?***", &url[..query_start])
+    } else {
+        // No path or query to mask, return original
+        url.to_string()
+    }
+}
+
+#[cfg(test)]
+mod tests {
+    use super::*;
+
+    #[test]
+    fn test_mask_url_alchemy_with_api_key() {
+        let url = "https://eth-mainnet.g.alchemy.com/v2/abc123xyz";
+        let masked = mask_url(url);
+        assert_eq!(masked, "https://eth-mainnet.g.alchemy.com/***");
+    }
+
+    #[test]
+    fn test_mask_url_infura_with_project_id() {
+        let url = "https://mainnet.infura.io/v3/my-project-id";
+        let masked = mask_url(url);
+        assert_eq!(masked, "https://mainnet.infura.io/***");
+    }
+
+    #[test]
+    fn test_mask_url_quicknode_with_api_key() {
+        let url = "https://my-node.quiknode.pro/secret-api-key/";
+        let masked = mask_url(url);
+        assert_eq!(masked, "https://my-node.quiknode.pro/***");
+    }
+
+    #[test]
+    fn test_mask_url_localhost_no_path() {
+        // No path to mask, should return original
+        let url = "http://localhost:8545";
+        let masked = mask_url(url);
+        assert_eq!(masked, "http://localhost:8545");
+    }
+
+    #[test]
+    fn test_mask_url_localhost_with_trailing_slash() {
+        // Just a trailing slash with no real path content
+        let url = "http://localhost:8545/";
+        let masked = mask_url(url);
+        assert_eq!(masked, "http://localhost:8545/");
+    }
+
+    #[test]
+    fn test_mask_url_with_query_params() {
+        let url = "https://rpc.example.com/v1?api_key=secret123&network=mainnet";
+        let masked = mask_url(url);
+        assert_eq!(masked, "https://rpc.example.com/***");
+    }
+
+    #[test]
+    fn test_mask_url_query_params_no_path() {
+        let url = "https://rpc.example.com?api_key=secret123";
+        let masked = mask_url(url);
+        assert_eq!(masked, "https://rpc.example.com?***");
+    }
+
+    #[test]
+    fn test_mask_url_invalid_url_no_scheme() {
+        // Invalid URL without scheme should be fully masked for safety
+        let url = "invalid-url";
+        let masked = mask_url(url);
+        assert_eq!(masked, "***");
+    }
+
+    #[test]
+    fn test_mask_url_empty_string() {
+        let url = "";
+        let masked = mask_url(url);
+        assert_eq!(masked, "***");
+    }
+
+    #[test]
+    fn test_mask_url_with_port_and_path() {
+        let url = "https://rpc.example.com:8080/api/v1/secret";
+        let masked = mask_url(url);
+        assert_eq!(masked, "https://rpc.example.com:8080/***");
+    }
+
+    #[test]
+    fn test_mask_url_ankr_with_api_key() {
+        let url = "https://rpc.ankr.com/eth/my-api-key-here";
+        let masked = mask_url(url);
+        assert_eq!(masked, "https://rpc.ankr.com/***");
+    }
+}