feat(api): add #[non_exhaustive] to public types likely to evolve

ForwardingAction, TargetPattern, ForwardingRule, OperationType,
InterfaceConfig, InterfaceKind, DynamicConfig, and CallError are all
likely to gain variants/fields in future phases. Marking them
#[non_exhaustive] now prevents downstream breakage when new
variants/fields are added. Added constructor methods for types that
are constructed from other crates.

crates/alknet-core/src/call/response.rs

@@ -2,12 +2,23 @@ use serde::{Deserialize, Serialize};
 use serde_json::Value;
 
 #[derive(Debug, Clone, PartialEq, Serialize, Deserialize)]
+#[non_exhaustive]
 pub struct CallError {
     pub code: String,
     pub message: String,
     pub retryable: bool,
 }
 
+impl CallError {
+    pub fn new(code: impl Into<String>, message: impl Into<String>, retryable: bool) -> Self {
+        Self {
+            code: code.into(),
+            message: message.into(),
+            retryable,
+        }
+    }
+}
+
 #[derive(Debug, Clone, Serialize, Deserialize)]
 pub struct ResponseEnvelope {
     pub request_id: String,

crates/alknet-core/src/call/spec.rs

@@ -2,6 +2,7 @@ use serde::{Deserialize, Serialize};
 use serde_json::Value;
 
 #[derive(Debug, Clone, Copy, PartialEq, Eq, Hash, Serialize, Deserialize)]
+#[non_exhaustive]
 pub enum OperationType {
     Query,
     Mutation,

crates/alknet-core/src/config/dynamic_config.rs

@@ -229,6 +229,7 @@ impl Default for RateLimitConfig {
 }
 
 #[derive(Debug, Clone)]
+#[non_exhaustive]
 pub struct DynamicConfig {
     pub auth: AuthPolicy,
     pub forwarding: ForwardingPolicy,
@@ -244,6 +245,18 @@ impl DynamicConfig {
         }
     }
 
+    pub fn from_parts(
+        auth: AuthPolicy,
+        forwarding: ForwardingPolicy,
+        rate_limits: RateLimitConfig,
+    ) -> Self {
+        Self {
+            auth,
+            forwarding,
+            rate_limits,
+        }
+    }
+
     pub fn with_forwarding_policy(mut self, policy: ForwardingPolicy) -> Self {
         self.forwarding = policy;
         self

crates/alknet-core/src/config/forwarding.rs

@@ -8,12 +8,14 @@ use crate::auth::identity::Identity;
 use crate::transport::TransportKind;
 
 #[derive(Debug, Clone, PartialEq)]
+#[non_exhaustive]
 pub enum ForwardingAction {
     Allow,
     Deny,
 }
 
 #[derive(Debug, Clone, PartialEq)]
+#[non_exhaustive]
 pub enum TargetPattern {
     Any,
     Host(String),
@@ -62,6 +64,7 @@ fn match_cidr(network: &IpNetwork, target: &str) -> bool {
 }
 
 #[derive(Debug, Clone, PartialEq)]
+#[non_exhaustive]
 pub struct ForwardingRule {
     pub target: TargetPattern,
     pub action: ForwardingAction,
@@ -69,6 +72,22 @@ pub struct ForwardingRule {
     pub transports: Vec<TransportKind>,
 }
 
+impl ForwardingRule {
+    pub fn new(
+        target: TargetPattern,
+        action: ForwardingAction,
+        principals: Vec<String>,
+        transports: Vec<TransportKind>,
+    ) -> Self {
+        Self {
+            target,
+            action,
+            principals,
+            transports,
+        }
+    }
+}
+
 impl ForwardingRule {
     fn matches_principal(&self, identity: &Identity) -> bool {
         if self.principals.is_empty() {

crates/alknet-core/src/interface/config.rs

@@ -7,6 +7,7 @@ use crate::auth::IdentityProvider;
 use crate::config::DynamicConfig;
 
 #[derive(Debug, Clone, Copy, PartialEq, Eq)]
+#[non_exhaustive]
 pub enum InterfaceKind {
     Ssh,
     RawFraming,
@@ -21,6 +22,7 @@ impl std::fmt::Display for InterfaceKind {
     }
 }
 
+#[non_exhaustive]
 pub enum InterfaceConfig {
     Ssh(SshInterfaceConfig),
     RawFraming(RawFramingConfig),
@@ -28,9 +30,11 @@ pub enum InterfaceConfig {
 
 impl InterfaceConfig {
     pub fn kind(&self) -> InterfaceKind {
+        #[allow(unreachable_patterns)]
         match self {
             InterfaceConfig::Ssh(_) => InterfaceKind::Ssh,
             InterfaceConfig::RawFraming(_) => InterfaceKind::RawFraming,
+            _ => InterfaceKind::Ssh,
         }
     }
 }