auth-framework 0.5.0-rc19

A comprehensive, production-ready authentication and authorization framework for Rust applications
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97

//! Simple OAuth 2.0 Server Example
//!
//! This example demonstrates basic OAuth 2.0 server functionality
//! using working components of the Auth Framework.

use auth_framework::{
    AuthConfig, AuthFramework,
    methods::{AuthMethodEnum, JwtMethod},
    server::OAuth2Server,
    storage::memory::InMemoryStorage,
};
use std::sync::Arc;
use std::time::Duration;

#[tokio::main]
async fn main() -> Result<(), Box<dyn std::error::Error>> {
    println!("🚀 Starting Simple OAuth 2.0 Server...");

    // Initialize logging
    tracing_subscriber::fmt::init();

    // Create basic auth framework configuration
    let config = AuthConfig::new()
        .secret("oauth-server-secret".to_string())
        .issuer("https://auth.localhost:8080".to_string())
        .audience("oauth-clients".to_string())
        .token_lifetime(Duration::from_secs(3600))
        .refresh_token_lifetime(Duration::from_secs(86400 * 7));

    // Create auth framework
    let mut auth_framework = AuthFramework::new(config);

    // Register JWT method for OAuth tokens
    let jwt_method = JwtMethod::new()
        .secret_key("oauth-server-secret")
        .issuer("https://auth.localhost:8080");

    auth_framework.register_method("oauth", AuthMethodEnum::Jwt(jwt_method));

    // Initialize framework
    auth_framework.initialize().await?;
    println!("✅ Auth framework initialized successfully!");

    // Create in-memory storage for development
    let storage = Arc::new(InMemoryStorage::new());
    println!("✅ In-memory storage created");

    // Create OAuth 2.0 server with storage
    let oauth_server = OAuth2Server::new(storage).await?;
    println!("✅ OAuth 2.0 server created successfully!");

    // Get server configuration for informational purposes
    let server_config = oauth_server.get_server_configuration().await?;
    println!("📋 Server Configuration:");
    println!(
        "   Issuer: {}",
        server_config
            .get("issuer")
            .unwrap_or(&serde_json::json!("Not configured"))
    );

    // Demo: Create a sample token using the auth framework
    let demo_token = auth_framework
        .tokens()
        .create(
            "demo_client",
            vec!["read".to_string(), "write".to_string()],
            "oauth",
            None,
        )
        .await?;

    println!("🔑 Demo OAuth Token Created:");
    println!("   Token: {}", demo_token.access_token);
    println!("   User ID: {}", demo_token.user_id);
    println!("   Scopes: {:?}", demo_token.scopes);

    // Validate the demo token
    if auth_framework.tokens().validate(&demo_token).await? {
        println!("✅ Token validation successful!");

        // Check permissions
        if auth_framework
            .authorization()
            .check(&demo_token, "read", "api")
            .await?
        {
            println!("✅ Permission check passed for 'read' on 'api'!");
        }
    }

    println!("\n🎉 OAuth 2.0 server is running and functional!");
    println!("💡 This is a basic example showing working components.");
    println!("💡 For production use, implement proper OAuth flows and client management.");

    Ok(())
}