auth_framework::auth

Struct AuthFramework

Source 
pub struct AuthFramework { /* private fields */ }
Expand description

Main authentication framework.

Implementations§

Source§

impl AuthFramework

Source

pub fn new(config: AuthConfig) -> Self

Create a new authentication framework.

Source

pub fn register_method( &mut self, name: impl Into<String>, method: Box<dyn AuthMethod>, )

Register an authentication method.

Source

pub async fn initialize(&mut self) -> Result<()>

Initialize the authentication framework.

Source

pub async fn authenticate( &self, method_name: &str, credential: Credential, ) -> Result<AuthResult>

Authenticate a user with the specified method.

Source

pub async fn authenticate_with_metadata( &self, method_name: &str, credential: Credential, metadata: CredentialMetadata, ) -> Result<AuthResult>

Authenticate a user with the specified method and metadata.

Source

pub async fn complete_mfa( &self, challenge: MfaChallenge, mfa_code: &str, ) -> Result<AuthToken>

Complete multi-factor authentication.

Source

pub async fn validate_token(&self, token: &AuthToken) -> Result<bool>

Validate a token.

Source

pub async fn get_user_info(&self, token: &AuthToken) -> Result<UserInfo>

Get user information from a token.

Source

pub async fn check_permission( &self, token: &AuthToken, action: &str, resource: &str, ) -> Result<bool>

Check if a token has a specific permission.

Source

pub async fn refresh_token(&self, token: &AuthToken) -> Result<AuthToken>

Refresh a token.

Source

pub async fn revoke_token(&self, token: &AuthToken) -> Result<()>

Revoke a token.

Source

pub async fn create_api_key( &self, user_id: &str, expires_in: Option<Duration>, ) -> Result<String>

Create a new API key for a user.

Source

pub async fn validate_api_key(&self, api_key: &str) -> Result<UserInfo>

Validate an API key and return user information.

Source

pub async fn revoke_api_key(&self, api_key: &str) -> Result<()>

Revoke an API key.

Source

pub async fn create_session( &self, user_id: &str, expires_in: Duration, ip_address: Option<String>, user_agent: Option<String>, ) -> Result<String>

Create a new session.

Source

pub async fn get_session(&self, session_id: &str) -> Result<Option<SessionData>>

Get session information.

Source

pub async fn delete_session(&self, session_id: &str) -> Result<()>

Delete a session.

Source

pub async fn list_user_tokens(&self, user_id: &str) -> Result<Vec<AuthToken>>

Get all tokens for a user.

Source

pub async fn cleanup_expired_data(&self) -> Result<()>

Clean up expired data.

Source

pub async fn get_stats(&self) -> Result<AuthStats>

Get authentication framework statistics.

Source

pub async fn validate_username(&self, username: &str) -> Result<bool>

Validate username format.

Source

pub async fn validate_display_name(&self, display_name: &str) -> Result<bool>

Validate display name format.

Source

pub async fn validate_user_input(&self, input: &str) -> Result<bool>

Validate user input.

Source

pub async fn check_ip_rate_limit(&self, ip: &str) -> Result<bool>

Check IP rate limit.

Source

pub async fn get_security_metrics(&self) -> Result<HashMap<String, u64>>

Get security metrics.

Source

pub async fn create_auth_token( &self, user_id: impl Into<String>, scopes: Vec<String>, method_name: impl Into<String>, lifetime: Option<Duration>, ) -> Result<AuthToken>

Create an authentication token directly (useful for testing and demos).

Note: In production, tokens should be created through the authenticate method.

Source

pub async fn generate_totp_secret(&self, user_id: &str) -> Result<String>

Generate TOTP secret for a user.

Source

pub async fn generate_totp_qr_code( &self, user_id: &str, app_name: &str, secret: &str, ) -> Result<String>

Generate TOTP QR code URL.

Source

pub async fn generate_totp_code(&self, _secret: &str) -> Result<String>

Generate current TOTP code.

Source

pub async fn verify_totp_code(&self, user_id: &str, code: &str) -> Result<bool>

Verify TOTP code.

Source

pub async fn register_phone_number( &self, user_id: &str, _phone_number: &str, ) -> Result<()>

Register phone number for SMS MFA.

Source

pub async fn initiate_sms_challenge(&self, user_id: &str) -> Result<String>

Initiate SMS challenge.

Source

pub async fn generate_sms_code(&self, challenge_id: &str) -> Result<String>

Generate SMS code.

Source

pub async fn verify_sms_code( &self, challenge_id: &str, code: &str, ) -> Result<bool>

Verify SMS code.

Source

pub async fn register_email(&self, user_id: &str, _email: &str) -> Result<()>

Register email for email MFA.

Source

pub async fn initiate_email_challenge(&self, user_id: &str) -> Result<String>

Initiate email challenge.

Source

pub async fn generate_email_code(&self, challenge_id: &str) -> Result<String>

Generate email code.

Source

pub async fn verify_email_code( &self, challenge_id: &str, code: &str, ) -> Result<bool>

Verify email code.

Source

pub async fn generate_backup_codes( &self, user_id: &str, count: usize, ) -> Result<Vec<String>>

Generate backup codes.

Source

pub async fn verify_backup_code( &self, user_id: &str, code: &str, ) -> Result<bool>

Verify backup code.

Source

pub async fn get_remaining_backup_codes(&self, user_id: &str) -> Result<usize>

Get remaining backup codes count.

Source

pub async fn create_role(&self, role: Role) -> Result<()>

Create a new role.

Source

pub async fn assign_role(&self, user_id: &str, role_name: &str) -> Result<()>

Assign a role to a user.

Source

pub async fn set_role_inheritance( &self, child_role: &str, parent_role: &str, ) -> Result<()>

Set role inheritance.

Source

pub async fn grant_permission( &self, user_id: &str, action: &str, resource: &str, ) -> Result<()>

Grant permission to a user.

Source

pub async fn revoke_permission( &self, user_id: &str, action: &str, resource: &str, ) -> Result<()>

Revoke permission from a user.

Source

pub async fn user_has_role( &self, user_id: &str, role_name: &str, ) -> Result<bool>

Check if user has a role.

Source

pub async fn get_effective_permissions( &self, user_id: &str, ) -> Result<Vec<String>>

Get effective permissions for a user.

Source

pub async fn create_abac_policy( &self, name: &str, _description: &str, ) -> Result<()>

Create ABAC policy.

Source

pub async fn map_user_attribute( &self, user_id: &str, attribute: &str, value: &str, ) -> Result<()>

Map user attribute.

Source

pub async fn get_user_attribute( &self, user_id: &str, attribute: &str, ) -> Result<Option<String>>

Get user attribute.

Source

pub async fn check_dynamic_permission( &self, user_id: &str, action: &str, resource: &str, _context: HashMap<String, String>, ) -> Result<bool>

Check dynamic permission.

Source

pub async fn create_resource(&self, resource: &str) -> Result<()>

Create resource.

Source

pub async fn delegate_permission( &self, delegator: &str, delegate: &str, permission: &str, resource: &str, duration: Duration, ) -> Result<()>

Delegate permission.

Source

pub async fn get_active_delegations(&self, user_id: &str) -> Result<Vec<String>>

Get active delegations.

Source

pub async fn get_permission_audit_logs( &self, _user_id: Option<&str>, _permission: Option<&str>, _limit: Option<usize>, ) -> Result<Vec<String>>

Get permission audit logs.

Source

pub async fn get_permission_metrics(&self) -> Result<HashMap<String, u64>>

Get permission metrics.

Auto Trait Implementations§

Blanket Implementations§

Source§

impl<T> Any for T
where T: 'static + ?Sized,

Source§

fn type_id(&self) -> TypeId

Gets the TypeId of self. Read more
Source§

impl<T> Borrow<T> for T
where T: ?Sized,

Source§

fn borrow(&self) -> &T

Immutably borrows from an owned value. Read more
Source§

impl<T> BorrowMut<T> for T
where T: ?Sized,

Source§

fn borrow_mut(&mut self) -> &mut T

Mutably borrows from an owned value. Read more
Source§

impl<T> From<T> for T

Source§

fn from(t: T) -> T

Returns the argument unchanged.

Source§

impl<T> Instrument for T

Source§

fn instrument(self, span: Span) -> Instrumented<Self>

Instruments this type with the provided Span, returning an Instrumented wrapper. Read more
Source§

fn in_current_span(self) -> Instrumented<Self>

Instruments this type with the current Span, returning an Instrumented wrapper. Read more
Source§

impl<T, U> Into<U> for T
where U: From<T>,

Source§

fn into(self) -> U

Calls U::from(self).

That is, this conversion is whatever the implementation of From<T> for U chooses to do.

Source§

impl<T> Same for T

Source§

type Output = T

Should always be Self
Source§

impl<T, U> TryFrom<U> for T
where U: Into<T>,

Source§

type Error = Infallible

The type returned in the event of a conversion error.
Source§

fn try_from(value: U) -> Result<T, <T as TryFrom<U>>::Error>

Performs the conversion.
Source§

impl<T, U> TryInto<U> for T
where U: TryFrom<T>,

Source§

type Error = <U as TryFrom<T>>::Error

The type returned in the event of a conversion error.
Source§

fn try_into(self) -> Result<U, <U as TryFrom<T>>::Error>

Performs the conversion.
Source§

impl<V, T> VZip<V> for T
where V: MultiLane<T>,

Source§

fn vzip(self) -> V

Source§

impl<T> WithSubscriber for T

Source§

fn with_subscriber<S>(self, subscriber: S) -> WithDispatch<Self>
where S: Into<Dispatch>,

Attaches the provided Subscriber to this type, returning a WithDispatch wrapper. Read more
Source§

fn with_current_subscriber(self) -> WithDispatch<Self>

Attaches the current default Subscriber to this type, returning a WithDispatch wrapper. Read more
Source§

impl<T> ErasedDestructor for T
where T: 'static,