Skip to main content

arcly_http/auth/
mod.rs

1//! Identity & Access — JWT, signed cookies, server-side sessions, OAuth2, guards.
2//!
3//! | Submodule  | Responsibility                                              |
4//! |------------|--------------------------------------------------------------|
5//! | [`jwt`]    | Sign / decode / validate JSON Web Tokens (`JwtService`)     |
6//! | [`cookie`] | HMAC-SHA256 signed cookies (`CookieService`)                 |
7//! | [`session`]| Server-side session store abstraction (`SessionManager`)    |
8//! | [`oauth`]  | OAuth2 Authorization Code + PKCE provider trait              |
9//! | [`guards`] | Request guards (`JwtAuthGuard`, `RoleGuard`, …)              |
10//! | [`extract`]| The single credential-extraction pipeline used by every      |
11//! |            | request boundary (HTTP, plugin routes, WebSocket handshake)  |
12
13pub mod cookie;
14pub mod extract;
15pub mod guards;
16pub mod jwt;
17pub mod oauth;
18pub mod policy;
19pub mod secrets;
20pub mod session;
21
22// `crate::auth::{JwtService, JwtConfig, decode_bearer_token}` keeps working —
23// jwt.rs is the direct descendant of the old src/auth.rs.
24pub use jwt::*;