Crates.io | actix-4-jwt-auth |
lib.rs | actix-4-jwt-auth |
version | 1.2.5 |
source | src |
created_at | 2021-10-14 13:13:15.412568 |
updated_at | 2024-09-06 20:35:31.75613 |
description | OIDC authentication extractor for Actix 4 |
homepage | |
repository | https://github.com/spectare/actix-4-jwt-auth |
max_upload_size | |
id | 464898 |
size | 45,731 |
In order to make use of this crate, you can add it to your Cargo.toml
This crate is build with actix-4.
actix-4-jwt-auth = "1.2.0"
Or when you like to use the latest as found on github:
actix-4-jwt-auth = {git = "https://github.com/spectare/actix-4-jwt-auth", branch = "main"}
Works with extractors
#[derive(Debug, PartialEq, Clone, Serialize, Deserialize)]
pub struct FoundClaims {
pub iss: String,
pub sub: String,
pub aud: String,
pub name: String,
pub email: Option<String>,
pub email_verified: Option<bool>,
}
#[get("/authenticated_user")]
async fn authenticated_user(user: AuthenticatedUser<FoundClaims>) -> String {
format!("Welcome {}!", user.claims.name)
}
Is a Actix endpoint URL that extracts the AuthenticatedUser from the JWT based Authorization Bearer header.
You can wire your application like
let authority = "https://a.valid.openid-connect.idp/".to_string();
let oidc = Oidc::new(OidcConfig::Issuer(authority.clone().into())).await.unwrap();
let biscuit_validator = OidcBiscuitValidator { options: ValidationOptions {
issuer: Validation::Validate(authority),
..ValidationOptions::default()
}
};
HttpServer::new(move || {
App::new()
.app_data(oidc.clone())
.wrap(biscuit_validator.clone())
// .wrap(OidcBiscuitValidator::default()) //without issuer verification
.service(authenticated_user),
})
.bind("0.0.0.0:8080".to_string())?
.run()
.await
This will find the token from Authorization
header value if you use Oidc::new
You can override the token lookup location (custom header or cookie) by importing TokenLookup
enum
use actix_4_jwt_auth::{Oidc, OidcConfig, TokenLookup};
If you want you use custom header:
let token_lookup = TokenLookup::Header("x-custom-auth-header".into());
or use custom cookie:
let token_lookup = TokenLookup::Cookie("x-custom-auth-cookie".into());
and pass token_lookup
as Oidc::new_with_token_lookup
's second parameter
let oidc = Oidc::new_with_token_lookup(OidcConfig::Issuer(authority.clone().into()), token_lookup).await.unwrap();
More documentation is found on docs.rs