Struct BearerIdentity

Source

pub struct BearerIdentity {
    pub caller_id: String,
    pub granted_capabilities: Vec<String>,
    pub secrets: Option<Arc<SecretBundle>>,
    pub expires_at: Option<SystemTime>,
    pub cache_until: Option<SystemTime>,
}

Expand description

Outcome of a successful bearer resolution. Returned by TokenBroker::resolve_bearer; the HTTP listener consumes this to build a CallContext per request (SP-streamable-http §4.3).

Fields are public so brokers in any crate can use struct-literal construction. New fields, if added, will be a minor-version bump.

Fields§

§caller_id: String

Stable caller identifier. Same shape as the CallContext::caller_id populated from SP-12 Hello.client_id, so RBAC checks downstream of the listener treat HTTP callers uniformly with UDS callers.

§granted_capabilities: Vec<String>

Capabilities this bearer’s caller is granted. The HTTP listener intersects these with the server’s granted_capabilities allow-list before each tools/call (SP-streamable-http §4.3, SP-12 Hello semantics specialised per-request rather than per-connection).

§secrets: Option<Arc<SecretBundle>>

Optional secret bundle, same role as the phase-1 TokenBroker::resolve return. Brokers MAY supply both secrets and the bearer identity in one resolve_bearer call when the bearer carries enough info to pre-stage secrets; otherwise leave None and let the listener call resolve separately. Celia leaves this None because the DEK lives in KeyCache only (patent §13.1) and is never relayed.

§expires_at: Option<SystemTime>

Absolute time at which this bearer ceases to be valid. None means “no advertised expiry” (Celia process-lifetime semantics — pairing codes live until the user revokes them in the wizard or the host process restarts). SSE listeners use this to schedule re-validation cadence per SP-token-broker-phase2 §4.7.

§cache_until: Option<SystemTime>

Hint to the broker’s own cache layer: do not return this BearerIdentity from cache after this time without revalidating. None lets the broker choose freely.

BearerIdentity

Struct BearerIdentity Copy item path

Fields§

Trait Implementations§

impl Clone for BearerIdentity

fn clone(&self) -> BearerIdentity

fn clone_from(&mut self, source: &Self)

impl Debug for BearerIdentity

fn fmt(&self, f: &mut Formatter<'_>) -> Result

Auto Trait Implementations§

impl Freeze for BearerIdentity

impl RefUnwindSafe for BearerIdentity

impl Send for BearerIdentity

impl Sync for BearerIdentity

impl Unpin for BearerIdentity

impl UnsafeUnpin for BearerIdentity

impl UnwindSafe for BearerIdentity

Blanket Implementations§

impl<T> Any for Twhere T: 'static + ?Sized,

fn type_id(&self) -> TypeId

impl<T> Borrow<T> for Twhere T: ?Sized,

fn borrow(&self) -> &T

impl<T> BorrowMut<T> for Twhere T: ?Sized,

fn borrow_mut(&mut self) -> &mut T

impl<T> CloneToUninit for Twhere T: Clone,

unsafe fn clone_to_uninit(&self, dest: *mut u8)

impl<T> From<T> for T

fn from(t: T) -> T

impl<T, U> Into<U> for Twhere U: From<T>,

fn into(self) -> U

impl<T> Same for T

type Output = T

impl<T> ToOwned for Twhere T: Clone,

type Owned = T

fn to_owned(&self) -> T

fn clone_into(&self, target: &mut T)

impl<T, U> TryFrom<U> for Twhere U: Into<T>,

type Error = Infallible

fn try_from(value: U) -> Result<T, <T as TryFrom<U>>::Error>

impl<T, U> TryInto<U> for Twhere U: TryFrom<T>,

type Error = <U as TryFrom<T>>::Error

fn try_into(self) -> Result<U, <U as TryFrom<T>>::Error>

impl<V, T> VZip<V> for Twhere V: MultiLane<T>,

fn vzip(self) -> V

Struct BearerIdentity

impl<T> Any for T
where T: 'static + ?Sized,

impl<T> Borrow<T> for T
where T: ?Sized,

impl<T> BorrowMut<T> for T
where T: ?Sized,

impl<T> CloneToUninit for T
where T: Clone,

impl<T, U> Into<U> for T
where U: From<T>,

impl<T> ToOwned for T
where T: Clone,

impl<T, U> TryFrom<U> for T
where U: Into<T>,

impl<T, U> TryInto<U> for T
where U: TryFrom<T>,

impl<V, T> VZip<V> for T
where V: MultiLane<T>,