Skip to main content

AuthToken

auth_framework::tokens

Struct AuthToken 

Source 
pub struct AuthToken {
Show 16 fields
    pub token_id: String,
    pub user_id: String,
    pub access_token: String,
    pub token_type: Option<String>,
    pub subject: Option<String>,
    pub issuer: Option<String>,
    pub refresh_token: Option<String>,
    pub issued_at: DateTime<Utc>,
    pub expires_at: DateTime<Utc>,
    pub scopes: Scopes,
    pub auth_method: String,
    pub client_id: Option<String>,
    pub user_profile: Option<ProviderProfile>,
    pub permissions: Permissions,
    pub roles: Roles,
    pub metadata: TokenMetadata,

}
Expand description

An issued authentication token with all associated metadata.

Created by TokenManager and returned from AuthFramework::authenticate. Contains the encoded access_token string, optional refresh_token, granted scopes, and contextual TokenMetadata.

Fields§

§token_id: String

Unique token identifier

§user_id: String

User identifier this token belongs to

§access_token: String

Access token value

§token_type: Option<String>

Token type (e.g., “bearer”)

§subject: Option<String>

Subject claim

§issuer: Option<String>

Token issuer

§refresh_token: Option<String>

Optional refresh token

§issued_at: DateTime<Utc>

When the token was issued

§expires_at: DateTime<Utc>

When the token expires

§scopes: Scopes

Scopes granted to this token

§auth_method: String

Authentication method used to obtain this token

§client_id: Option<String>

Client ID that requested this token

§user_profile: Option<ProviderProfile>

User profile data (optional)

§permissions: Permissions

User’s permissions

§roles: Roles

User’s roles

§metadata: TokenMetadata

Additional token metadata

Implementations§

Source§

impl AuthToken

Source

pub fn builder( token_id: impl Into<String>, user_id: impl Into<String>, access_token: impl Into<String>, ) -> AuthTokenBuilder

Start building an AuthToken with fluent setters.

§Example
use auth_framework::tokens::AuthToken;

let token = AuthToken::builder("token123", "user456", "access_token")
    .expires_at(chrono::Utc::now() + chrono::Duration::hours(2))
    .build();
Source§

impl AuthToken

Source

pub fn new( user_id: impl Into<String>, access_token: impl Into<String>, expires_in: Duration, auth_method: impl Into<String>, ) -> Self

Create a new authentication token.

Source

pub fn access_token(&self) -> &str

Get the access token string.

§Example
use auth_framework::tokens::AuthToken;

let token = AuthToken::builder("t1", "u1", "my_token").build();
assert_eq!(token.access_token(), "my_token");
Source

pub fn user_id(&self) -> &str

Get the user ID.

§Example
use auth_framework::tokens::AuthToken;

let token = AuthToken::builder("t1", "user42", "access").build();
assert_eq!(token.user_id(), "user42");
Source

pub fn expires_at(&self) -> DateTime<Utc>

Get the expiration time.

§Example
use auth_framework::tokens::AuthToken;
use chrono::Utc;

let token = AuthToken::builder("t1", "u1", "access").build();
assert!(token.expires_at() > Utc::now());
Source

pub fn token_value(&self) -> &str

Get the token value.

Alias for access_token().

§Example
use auth_framework::tokens::AuthToken;

let token = AuthToken::builder("t1", "u1", "tok_value").build();
assert_eq!(token.token_value(), "tok_value");
Source

pub fn token_type(&self) -> Option<&str>

Get the token type.

§Example
use auth_framework::tokens::AuthToken;

let token = AuthToken::builder("t1", "u1", "access")
    .token_type("Bearer")
    .build();
assert_eq!(token.token_type(), Some("Bearer"));
Source

pub fn subject(&self) -> Option<&str>

Get the subject claim.

§Example
use auth_framework::tokens::AuthToken;

let token = AuthToken::builder("t1", "u1", "access")
    .subject("sub-123")
    .build();
assert_eq!(token.subject(), Some("sub-123"));
Source

pub fn issuer(&self) -> Option<&str>

Get the issuer.

§Example
use auth_framework::tokens::AuthToken;

let token = AuthToken::builder("t1", "u1", "access")
    .issuer("my-service")
    .build();
assert_eq!(token.issuer(), Some("my-service"));
Source

pub fn is_expired(&self) -> bool

Check if the token has expired.

§Example
use auth_framework::tokens::AuthToken;

let token = AuthToken::builder("t1", "u1", "access").build();
assert!(!token.is_expired()); // 1-hour default
Source

pub fn is_expiring(&self, within: Duration) -> bool

Check if the token is expiring within the given duration.

§Example
use auth_framework::tokens::AuthToken;
use std::time::Duration;

let token = AuthToken::builder("t1", "u1", "access").build();
assert!(token.is_expiring(Duration::from_secs(7200))); // within 2 hours
Source

pub fn is_revoked(&self) -> bool

Check if the token has been revoked.

§Example
use auth_framework::tokens::AuthToken;

let mut token = AuthToken::builder("t1", "u1", "access").build();
assert!(!token.is_revoked());
token.revoke(Some("user request".to_string()));
assert!(token.is_revoked());
Source

pub fn is_valid(&self) -> bool

Check if the token is valid (not expired and not revoked).

§Example
use auth_framework::tokens::AuthToken;

let token = AuthToken::builder("t1", "u1", "access").build();
assert!(token.is_valid());
Source

pub fn has_refresh_token(&self) -> bool

Check whether this token carries a refresh token.

§Example
use auth_framework::tokens::AuthToken;

let token = AuthToken::builder("t1", "u1", "access")
    .refresh_token("rt-abc")
    .build();
assert!(token.has_refresh_token());
Source

pub fn get_refresh_token(&self) -> Option<&str>

Return the refresh token string, if present.

§Example
use auth_framework::tokens::AuthToken;

let token = AuthToken::builder("t1", "u1", "access")
    .refresh_token("rt-xyz")
    .build();
assert_eq!(token.get_refresh_token(), Some("rt-xyz"));
Source

pub fn revoke(&mut self, reason: Option<String>)

Revoke the token.

§Example
use auth_framework::tokens::AuthToken;

let mut token = AuthToken::builder("t1", "u1", "access").build();
token.revoke(Some("compromised".to_string()));
assert!(token.is_revoked());
Source

pub fn mark_used(&mut self)

Update the last used time and increment use count.

§Example
use auth_framework::tokens::AuthToken;

let mut token = AuthToken::builder("t1", "u1", "access").build();
assert_eq!(token.metadata.use_count, 0);
token.mark_used();
assert_eq!(token.metadata.use_count, 1);
Source

pub fn add_scope(&mut self, scope: impl Into<String>)

Add a scope to the token.

Duplicates are ignored.

§Example
use auth_framework::tokens::AuthToken;

let mut token = AuthToken::builder("t1", "u1", "access").build();
token.add_scope("read");
assert!(token.has_scope("read"));
Source

pub fn has_scope(&self, scope: &str) -> bool

Check if the token has a specific scope.

§Example
use auth_framework::tokens::AuthToken;

let mut token = AuthToken::builder("t1", "u1", "access").build();
token.add_scope("write");
assert!(token.has_scope("write"));
assert!(!token.has_scope("admin"));
Source

pub fn with_refresh_token(self, refresh_token: impl Into<String>) -> Self

Set the refresh token.

§Example
use auth_framework::tokens::AuthToken;

let token = AuthToken::builder("t1", "u1", "access").build()
    .with_refresh_token("refresh_xyz");
assert!(token.refresh_token.is_some());
Source

pub fn with_client_id(self, client_id: impl Into<String>) -> Self

Set the client ID.

§Example
use auth_framework::tokens::AuthToken;

let token = AuthToken::builder("t1", "u1", "access").build()
    .with_client_id("app-client");
assert_eq!(token.client_id.as_deref(), Some("app-client"));
Source

pub fn with_scopes(self, scopes: impl Into<Scopes>) -> Self

Set the token scopes.

§Example
use auth_framework::tokens::AuthToken;
use auth_framework::types::Scopes;

let token = AuthToken::builder("t1", "u1", "access").build()
    .with_scopes(Scopes::new(vec!["read".into()]));
assert!(token.has_scope("read"));
Source

pub fn with_metadata(self, metadata: TokenMetadata) -> Self

Add metadata to the token.

§Example
use auth_framework::tokens::{AuthToken, TokenMetadata};

let meta = TokenMetadata::builder().issued_ip("192.168.1.1").build();
let token = AuthToken::builder("t1", "u1", "access").build()
    .with_metadata(meta);
assert_eq!(token.metadata.issued_ip.as_deref(), Some("192.168.1.1"));
Source

pub fn time_until_expiry(&self) -> Duration

Get time until expiration.

Returns Duration::ZERO if the token has already expired.

§Example
use auth_framework::tokens::AuthToken;
use std::time::Duration;

let token = AuthToken::builder("t1", "u1", "access").build();
assert!(token.time_until_expiry() > Duration::ZERO);
Source

pub fn add_custom_claim(&mut self, key: impl Into<String>, value: Value)

Add a custom claim to the token metadata.

§Example
use auth_framework::tokens::AuthToken;

let mut token = AuthToken::builder("t1", "u1", "access").build();
token.add_custom_claim("tenant", serde_json::json!("acme"));
assert_eq!(token.get_custom_claim("tenant").unwrap(), &serde_json::json!("acme"));
Source

pub fn get_custom_claim(&self, key: &str) -> Option<&Value>

Get a custom claim from the token metadata.

§Example
use auth_framework::tokens::AuthToken;

let token = AuthToken::builder("t1", "u1", "access").build();
assert!(token.get_custom_claim("missing").is_none());
Source

pub fn has_permission(&self, permission: &str) -> bool

Check if the token has a specific permission.

§Example
use auth_framework::tokens::AuthToken;

let mut token = AuthToken::builder("t1", "u1", "access").build();
token.add_permission("admin");
assert!(token.has_permission("admin"));
Source

pub fn add_permission(&mut self, permission: impl Into<String>)

Add a permission to the token.

Duplicates are ignored.

§Example
use auth_framework::tokens::AuthToken;

let mut token = AuthToken::builder("t1", "u1", "access").build();
token.add_permission("write");
assert!(token.has_permission("write"));
Source

pub fn add_role(&mut self, role: impl Into<String>)

Add a role to the token.

Duplicates are ignored.

§Example
use auth_framework::tokens::AuthToken;

let mut token = AuthToken::builder("t1", "u1", "access").build();
token.add_role("editor");
assert!(token.has_role("editor"));
Source

pub fn has_role(&self, role: &str) -> bool

Check if the token has a specific role.

§Example
use auth_framework::tokens::AuthToken;

let mut token = AuthToken::builder("t1", "u1", "access").build();
token.add_role("admin");
assert!(token.has_role("admin"));
assert!(!token.has_role("guest"));
Source

pub fn with_permissions(self, permissions: impl Into<Permissions>) -> Self

Set the permissions.

§Example
use auth_framework::tokens::AuthToken;
use auth_framework::types::Permissions;

let token = AuthToken::builder("t1", "u1", "access").build()
    .with_permissions(Permissions::new(vec!["read".into()]));
assert!(token.has_permission("read"));
Source

pub fn with_roles(self, roles: impl Into<Roles>) -> Self

Set the roles.

§Example
use auth_framework::tokens::AuthToken;
use auth_framework::types::Roles;

let token = AuthToken::builder("t1", "u1", "access").build()
    .with_roles(Roles::new(vec!["viewer".into()]));
assert!(token.has_role("viewer"));

Trait Implementations§

Source§

impl Clone for AuthToken

Source§

fn clone(&self) -> AuthToken

Returns a duplicate of the value. Read more
1.0.0 · Source§

fn clone_from(&mut self, source: &Self)

Performs copy-assignment from source. Read more
Source§

impl Debug for AuthToken

Source§

fn fmt(&self, f: &mut Formatter<'_>) -> Result

Formats the value using the given formatter. Read more
Source§

impl<'de> Deserialize<'de> for AuthToken

Source§

fn deserialize<__D>(__deserializer: __D) -> Result<Self, __D::Error>
where __D: Deserializer<'de>,

Deserialize this value from the given Serde deserializer. Read more
Source§

impl<'a, R: Row> FromRow<'a, R> for AuthToken
where &'a str: ColumnIndex<R>, String: Decode<'a, R::Database> + Type<R::Database>, Option<String>: Decode<'a, R::Database> + Type<R::Database>, DateTime<Utc>: Decode<'a, R::Database> + Type<R::Database>, Scopes: Decode<'a, R::Database> + Type<R::Database>, Option<ProviderProfile>: Decode<'a, R::Database> + Type<R::Database>, Permissions: Decode<'a, R::Database> + Type<R::Database>, Roles: Decode<'a, R::Database> + Type<R::Database>, TokenMetadata: Decode<'a, R::Database> + Type<R::Database>,

Source§

fn from_row(__row: &'a R) -> Result<Self>

Source§

impl Serialize for AuthToken

Source§

fn serialize<__S>(&self, __serializer: __S) -> Result<__S::Ok, __S::Error>
where __S: Serializer,

Serialize this value into the given Serde serializer. Read more
Source§

impl TokenToProfile for AuthToken

Source§

fn to_profile<'life0, 'life1, 'async_trait>( &'life0 self, provider: &'life1 OAuthProvider, ) -> Pin<Box<dyn Future<Output = Result<ProviderProfile>> + Send + 'async_trait>>
where Self: 'async_trait, 'life0: 'async_trait, 'life1: 'async_trait,

Convert this token to a user profile using the specified provider
Source§

fn to_profile_with_extractor<'life0, 'life1, 'life2, 'async_trait>( &'life0 self, provider: &'life1 OAuthProvider, extractor: &'life2 ProfileExtractor, ) -> Pin<Box<dyn Future<Output = Result<ProviderProfile>> + Send + 'async_trait>>
where Self: 'async_trait, 'life0: 'async_trait, 'life1: 'async_trait, 'life2: 'async_trait,

Convert this token to a user profile with a custom extractor
Source§

impl TokenToProfile for AuthToken

Source§

async fn to_profile(&self, _provider: &OAuthProvider) -> Result<ProviderProfile>

Convert a token to a user profile

Auto Trait Implementations§

Blanket Implementations§

Source§

impl<T> Any for T
where T: 'static + ?Sized,

Source§

fn type_id(&self) -> TypeId

Gets the TypeId of self. Read more
Source§

impl<'a, T, E> AsTaggedExplicit<'a, E> for T
where T: 'a,

Source§

fn explicit(self, class: Class, tag: u32) -> TaggedParser<'a, Explicit, Self, E>

Source§

impl<'a, T, E> AsTaggedImplicit<'a, E> for T
where T: 'a,

Source§

fn implicit( self, class: Class, constructed: bool, tag: u32, ) -> TaggedParser<'a, Implicit, Self, E>

Source§

impl<T> Borrow<T> for T
where T: ?Sized,

Source§

fn borrow(&self) -> &T

Immutably borrows from an owned value. Read more
Source§

impl<T> BorrowMut<T> for T
where T: ?Sized,

Source§

fn borrow_mut(&mut self) -> &mut T

Mutably borrows from an owned value. Read more
Source§

impl<T> CloneToUninit for T
where T: Clone,

Source§

unsafe fn clone_to_uninit(&self, dest: *mut u8)

🔬This is a nightly-only experimental API. (clone_to_uninit)
Performs copy-assignment from self to dest. Read more
Source§

impl<T> From<T> for T

Source§

fn from(t: T) -> T

Returns the argument unchanged.

Source§

impl<T> FromRef<T> for T
where T: Clone,

Source§

fn from_ref(input: &T) -> T

Converts to this type from a reference to the input type.
Source§

impl<T> Instrument for T

Source§

fn instrument(self, span: Span) -> Instrumented<Self>

Instruments this type with the provided Span, returning an Instrumented wrapper. Read more
Source§

fn in_current_span(self) -> Instrumented<Self>

Instruments this type with the current Span, returning an Instrumented wrapper. Read more
Source§

impl<T, U> Into<U> for T
where U: From<T>,

Source§

fn into(self) -> U

Calls U::from(self).

That is, this conversion is whatever the implementation of From<T> for U chooses to do.

Source§

impl<T> IntoEither for T

Source§

fn into_either(self, into_left: bool) -> Either<Self, Self>

Converts self into a Left variant of Either<Self, Self> if into_left is true. Converts self into a Right variant of Either<Self, Self> otherwise. Read more
Source§

fn into_either_with<F>(self, into_left: F) -> Either<Self, Self>
where F: FnOnce(&Self) -> bool,

Converts self into a Left variant of Either<Self, Self> if into_left(&self) returns true. Converts self into a Right variant of Either<Self, Self> otherwise. Read more
Source§

impl<T> Pointable for T

Source§

const ALIGN: usize

The alignment of pointer.
Source§

type Init = T

The type for initializers.
Source§

unsafe fn init(init: <T as Pointable>::Init) -> usize

Initializes a with the given initializer. Read more
Source§

unsafe fn deref<'a>(ptr: usize) -> &'a T

Dereferences the given pointer. Read more
Source§

unsafe fn deref_mut<'a>(ptr: usize) -> &'a mut T

Mutably dereferences the given pointer. Read more
Source§

unsafe fn drop(ptr: usize)

Drops the object pointed to by the given pointer. Read more
Source§

impl<T> PolicyExt for T
where T: ?Sized,

Source§

fn and<P, B, E>(self, other: P) -> And<T, P>
where T: Policy<B, E>, P: Policy<B, E>,

Create a new Policy that returns Action::Follow only if self and other return Action::Follow. Read more
Source§

fn or<P, B, E>(self, other: P) -> Or<T, P>
where T: Policy<B, E>, P: Policy<B, E>,

Create a new Policy that returns Action::Follow if either self or other returns Action::Follow. Read more
Source§

impl<T> Same for T

Source§

type Output = T

Should always be Self
Source§

impl<T> ToOwned for T
where T: Clone,

Source§

type Owned = T

The resulting type after obtaining ownership.
Source§

fn to_owned(&self) -> T

Creates owned data from borrowed data, usually by cloning. Read more
Source§

fn clone_into(&self, target: &mut T)

Uses borrowed data to replace owned data, usually by cloning. Read more
Source§

impl<T, U> TryFrom<U> for T
where U: Into<T>,

Source§

type Error = Infallible

The type returned in the event of a conversion error.
Source§

fn try_from(value: U) -> Result<T, <T as TryFrom<U>>::Error>

Performs the conversion.
Source§

impl<T, U> TryInto<U> for T
where U: TryFrom<T>,

Source§

type Error = <U as TryFrom<T>>::Error

The type returned in the event of a conversion error.
Source§

fn try_into(self) -> Result<U, <U as TryFrom<T>>::Error>

Performs the conversion.
Source§

impl<V, T> VZip<V> for T
where V: MultiLane<T>,

Source§

fn vzip(self) -> V

Source§

impl<T> WithSubscriber for T

Source§

fn with_subscriber<S>(self, subscriber: S) -> WithDispatch<Self>
where S: Into<Dispatch>,

Attaches the provided Subscriber to this type, returning a WithDispatch wrapper. Read more
Source§

fn with_current_subscriber(self) -> WithDispatch<Self>

Attaches the current default Subscriber to this type, returning a WithDispatch wrapper. Read more
Source§

impl<T> DeserializeOwned for T
where T: for<'de> Deserialize<'de>,