Expand description
OAuth 2.0 scope definitions and parsing for AT Protocol. AT Protocol OAuth scopes module
This module provides comprehensive support for AT Protocol OAuth scopes, including parsing, serialization, normalization, and permission checking.
Scopes in AT Protocol follow a prefix-based format with optional query parameters:
account: Access to account information (email, repo, status)identity: Access to identity information (handle)blob: Access to blob operations with mime type constraintsrepo: Repository operations with collection and action constraintsrpc: RPC method access with lexicon and audience constraintsatproto: Required scope to indicate that other AT Protocol scopes will be usedtransition: Migration operations (generic or email)
Standard OpenID Connect scopes (no suffixes or query parameters):
openid: Required for OpenID Connect authenticationprofile: Access to user profile informationemail: Access to user email address
Structs§
- Account
Scope - Account scope attributes
- Blob
Scope - Blob scope with mime type constraints
- Repo
Scope - Repository scope with collection and action constraints
- RpcScope
- RPC scope with lexicon method and audience constraints
Enums§
- Account
Action - Account action permissions
- Account
Resource - Account resource types
- Identity
Scope - Identity scope attributes
- Mime
Pattern - MIME type pattern for blob scope
- Parse
Error - Error type for scope parsing
- Repo
Action - Repository actions
- Repo
Collection - Repository collection identifier
- RpcAudience
- RPC audience identifier
- RpcLexicon
- RPC lexicon identifier
- Scope
- Represents an AT Protocol OAuth scope
- Transition
Scope - Transition scope types