fix: TLS error on docker image

[gonzalezzfelipe]

Summary by CodeRabbit

• Chores
  • Updated backend dependencies with enhanced TLS/SSL configuration for improved security.
  • Optimized Docker build process to include security certificates and reduce image size.
  • Configured release builds with locked dependency management for consistent deployments.

[coderabbitai]

Caution

Review failed

Pull request was closed or merged during review

📝 Walkthrough

Walkthrough

The changes introduce explicit HTTP client management to the backend by replacing implicit BlockfrostAPI client creation with a custom Reqwest client configured for TLS, while ensuring proper certificate handling in Docker builds through dependency specification and runtime image preparation.

Changes

Cohort / File(s)	Summary
Dependency Configuration backend/Cargo.toml	blockfrost updated to explicitly disable default features and enable rustls-tls; reqwest dependency added with matching TLS configuration.
Backend Application Initialization backend/src/main.rs	BlockfrostAPI constructor switched from new() to new_with_client() with explicit Reqwest client instantiation using TLS, project ID from environment variable, and updated error handling.
Docker Build Configuration docker/Dockerfile.backend	Added ca-certificates to build and runtime stages; Cargo.lock copied and cargo build --locked enforced for reproducible builds.

Estimated code review effort

🎯 3 (Moderate) | ⏱️ ~20 minutes

Possibly related PRs

• chore: Update backend to use blockfrost instead of mumak #139: Introduces initial Blockfrost client integration; this PR extends it with explicit client management and TLS configuration.

Suggested reviewers

• mduthey

Poem

🐰 A Rust rabbit with TLS so bright,
Builds clients with rustls delight,
Certificates locked in each layer's care,
No secrets exposed in the midnight air! ✨

🚥 Pre-merge checks | ✅ 3

✅ Passed checks (3 passed)

Check name	Status	Explanation
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.
Title check	✅ Passed	The title directly addresses the main change in the changeset: fixing TLS errors in the Docker image by adding ca-certificates, configuring rustls-tls features, and using a custom reqwest client.
Docstring Coverage	✅ Passed	Docstring coverage is 100.00% which is sufficient. The required threshold is 80.00%.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing Touches

• 📝 Generate docstrings (stacked PR)
• 📝 Generate docstrings (commit on current branch)

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Post copyable unit tests in a comment
• Commit unit tests in branch fix/asteria-backend-base-image

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}