acton-service 0.23.0

Production-ready Rust backend framework with type-enforced API versioning
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118

//! Authentication module for token generation, password hashing, and more
//!
//! This module complements the existing token validation middleware with
//! token generation capabilities, password hashing, API key management,
//! and OAuth/OIDC support.
//!
//! # Features
//!
//! - `auth` - Core authentication: password hashing (Argon2id) + token generation
//! - `oauth` - OAuth/OIDC provider support (requires `auth`)
//! - `auth-full` - All auth features combined
//!
//! # Example
//!
//! ```rust,ignore
//! use acton_service::auth::{PasswordHasher, PasetoGenerator, TokenGenerator};
//! use acton_service::middleware::Claims;
//!
//! // Hash a password
//! let hasher = PasswordHasher::default();
//! let hash = hasher.hash("my_secure_password")?;
//!
//! // Verify a password
//! assert!(hasher.verify("my_secure_password", &hash)?);
//!
//! // Generate a token
//! let generator = PasetoGenerator::new(&config)?;
//! let claims = Claims { sub: "user:123".to_string(), /* ... */ };
//! let token = generator.generate_token(&claims)?;
//! ```

// Configuration
pub mod config;

// Password hashing (Argon2id)
pub mod password;

// Token generation
pub mod tokens;

// API key management
pub mod api_keys;

// Key rotation (NIST SC-12)
pub mod key_rotation;

// OAuth/OIDC providers (requires oauth feature)
#[cfg(feature = "oauth")]
pub mod oauth;

// Re-exports for convenience
pub use config::{
    AuthConfig, PasetoGenerationConfig, PasswordConfig, RefreshTokenConfig, TokenGenerationConfig,
};

#[cfg(feature = "oauth")]
pub use config::{ApiKeyConfig, OAuthConfig, OAuthProviderConfig};

pub use password::PasswordHasher;

pub use tokens::paseto_generator::PasetoGenerator;
pub use tokens::refresh::{RefreshTokenData, RefreshTokenMetadata, RefreshTokenStorage};
pub use tokens::{TokenGenerator, TokenPair};

#[cfg(feature = "cache")]
pub use tokens::refresh::RedisRefreshStorage;

#[cfg(feature = "database")]
pub use tokens::refresh::PgRefreshStorage;

#[cfg(feature = "turso")]
pub use tokens::refresh::TursoRefreshStorage;

#[cfg(feature = "surrealdb")]
pub use tokens::refresh::SurrealDbRefreshStorage;

#[cfg(feature = "jwt")]
pub use tokens::jwt_generator::JwtGenerator;

// API key exports
pub use api_keys::{ApiKey, ApiKeyGenerator, ApiKeyStorage};

#[cfg(feature = "cache")]
pub use api_keys::RedisApiKeyStorage;

#[cfg(feature = "database")]
pub use api_keys::PgApiKeyStorage;

#[cfg(feature = "turso")]
pub use api_keys::TursoApiKeyStorage;

#[cfg(feature = "surrealdb")]
pub use api_keys::SurrealDbApiKeyStorage;

// OAuth exports (requires oauth feature)
#[cfg(feature = "oauth")]
pub use oauth::{
    generate_state, CustomOidcConfig, CustomOidcProvider, GitHubProvider, GoogleProvider,
    OAuthProvider, OAuthStateManager, OAuthTokens, OAuthUserInfo, StateData,
};

#[cfg(all(feature = "oauth", feature = "cache"))]
pub use oauth::RedisOAuthStateManager;

// Key rotation exports
pub use key_rotation::{
    CachedKey, KeyFormat, KeyManager, KeyRotationConfig, KeyRotationStorage, KeyStatus,
    SigningKeyMetadata,
};

#[cfg(feature = "database")]
pub use key_rotation::PgKeyRotationStorage;

#[cfg(feature = "turso")]
pub use key_rotation::TursoKeyRotationStorage;

#[cfg(feature = "surrealdb")]
pub use key_rotation::SurrealKeyRotationStorage;