anzar-shared 0.9.15

Anzar is a lightweight authentication and authorization framework that runs as a separate microservice
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27

use crate::utils::crypto::Crypto;

pub struct LoginAttemptTracker<'a> {
    crypto: &'a Crypto,
}

impl<'a> LoginAttemptTracker<'a> {
    pub fn new(crypto: &'a Crypto) -> Self {
        Self { crypto }
    }

    pub fn resolve_identity(&self, cookie: Option<&str>, email: &str) -> String {
        // "who is making attempts" — device identity takes priority if verified
        match cookie {
            Some(val) => format!("device:{}", val),
            None => format!("user:{}", email),
        }
    }

    pub fn resolve_lockout_key(&self, cookie: Option<&str>, email: &str) -> String {
        // "what gets locked out" — verified device vs user account
        match cookie.and_then(|c| self.crypto.hmac.validate(c)) {
            Some(true) => format!("lockout:device:{}", cookie.unwrap_or_default()),
            Some(false) | None => format!("lockout:user:{}", email),
        }
    }
}