Skip to content
/ auth-client Public

Rust authentication client library with support for Rocket

License

AGPL-3.0 license
2 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

hintjen/auth-client

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

54 Commits
.cargo
.cargo
 
 
src
src
 
 
tool
tool
 
 
.gitignore
.gitignore
 
 
.gitlab-ci.yml
.gitlab-ci.yml
 
 
Cargo.toml
Cargo.toml
 
 
LICENSE.md
LICENSE.md
 
 
README.md
README.md
 
 

Repository files navigation

Authentication Client Library

This is a library crate that is used to authenticate incoming requests. It supports different authentication mechanisms, including JWT authentication (by fetching and parsing a JWKS that contains keys needed to validate the JWT), authentication via making an API call to a dedicated accounts API or hardcoded static authentication tokens.

The library distinguishes between user tokens (that represent real user accounts) and system tokens (that represent internal administrative accounts). System tokens are usually required for administrative APIs. Accounts are represented by UUIDs. It has support for Rocket built-in, but can also be used without it.

You want to use this library if you want an existing, but opinionated authentication library that is relatively flexible in that it can be setup to support different authentication mechanisms, which is quite useful for enabling local development (with authentication turned off or done with static tokens) but still being able to deploy to production (where JWTs are used, for instance).

Resources:

Examples

The client library needs an instance of AuthConfig in order to function. This is where the authentication providers can be set up.

use fractal_auth_client::{AuthConfig, key_store};
use uuid::Uuid;

// new, empty authentication config
let mut auth_config = AuthConfig::new();

let key_store = fractal_auth_client::key_store(&jwks.to_string()).await?;
auth_config = auth_config.with_keystore(key_store("http://example.com/path/to/jwks").await?);

// add static user
auth_config.add_static_user(&"secure-token", &Uuid::new_v4());

In order to use it with Rocket, the UserContext and SystemContext guards can be added to routes.

use fractal_auth_client::UserContext;

/// Example route.
#[get("/example")]
async fn link_create(
    user: UserContext,
) -> String {
    format!("Hello {}", user.account())
}

Optional Features

Features that can be enabled:

  • axum turns on support for Axum.
  • rocket turns on support for Rocket.
  • static-tokens turns on support for defining static tokens (enabled by default).
  • Deprecated: insecure-stub enables the insecure-auth option of the AuthConfig struct, which bypasses authentication. Use static tokens instead.

License

AGPL 3.0, commercial licensing available upon request.

About

Rust authentication client library with support for Rocket

Resources

Readme

License

AGPL-3.0 license
Activity
Custom properties

Stars

2 stars

Watchers

3 watching

Forks

0 forks
Report repository

Releases

1 tags

Packages

No packages published

Contributors 2

  •  
  •  

Languages