camel-auth 0.12.0

Provider-neutral authentication and claim mapping for rust-camel
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96

use camel_api::CamelError;

#[derive(Debug, Clone, thiserror::Error)]
pub enum AuthError {
    #[error("Unauthenticated: {0}")]
    Unauthenticated(String),

    #[error("Unauthorized: {0}")]
    Unauthorized(String),

    #[error("Token expired")]
    TokenExpired,

    #[error("Token invalid: {0}")]
    TokenInvalid(String),

    #[error("Config error: {0}")]
    ConfigError(String),

    #[error("authentication failed: {0}")]
    AuthenticationFailed(String),

    #[error("authorization denied: {0}")]
    AuthorizationDenied(String),

    #[error("configuration error: {0}")]
    Config(String),

    #[error("Auth provider unavailable: {0}")]
    ProviderUnavailable(String),
}

impl From<AuthError> for CamelError {
    fn from(e: AuthError) -> Self {
        match e {
            AuthError::Unauthenticated(s) => CamelError::Unauthenticated(s),
            AuthError::TokenExpired => CamelError::Unauthenticated("token expired".into()),
            AuthError::TokenInvalid(s) => CamelError::Unauthenticated(s),
            AuthError::Unauthorized(s) => CamelError::Unauthorized(s),
            AuthError::AuthenticationFailed(s) => CamelError::Unauthenticated(s),
            AuthError::AuthorizationDenied(s) => CamelError::Unauthorized(s),
            AuthError::ProviderUnavailable(s) => {
                CamelError::ProcessorError(format!("auth provider unavailable: {s}"))
            }
            AuthError::ConfigError(s) => CamelError::Config(s),
            AuthError::Config(s) => CamelError::Config(s),
        }
    }
}

#[cfg(test)]
mod tests {
    use super::*;

    #[test]
    fn auth_error_maps_unauthenticated() {
        let err = AuthError::Unauthenticated("bad token".into());
        let camel_err: CamelError = err.into();
        assert!(matches!(camel_err, CamelError::Unauthenticated(s) if s.contains("bad token")));
    }

    #[test]
    fn auth_error_maps_token_expired() {
        let err = AuthError::TokenExpired;
        let camel_err: CamelError = err.into();
        assert!(matches!(camel_err, CamelError::Unauthenticated(_)));
    }

    #[test]
    fn auth_error_maps_token_invalid() {
        let err = AuthError::TokenInvalid("bad sig".into());
        let camel_err: CamelError = err.into();
        assert!(matches!(camel_err, CamelError::Unauthenticated(s) if s.contains("bad sig")));
    }

    #[test]
    fn auth_error_maps_unauthorized() {
        let err = AuthError::Unauthorized("no admin".into());
        let camel_err: CamelError = err.into();
        assert!(matches!(camel_err, CamelError::Unauthorized(s) if s.contains("no admin")));
    }

    #[test]
    fn auth_error_maps_provider_unavailable() {
        let err = AuthError::ProviderUnavailable("jwks down".into());
        let camel_err: CamelError = err.into();
        assert!(matches!(camel_err, CamelError::ProcessorError(s) if s.contains("jwks down")));
    }

    #[test]
    fn auth_error_maps_config_error() {
        let err = AuthError::ConfigError("bad config".into());
        let camel_err: CamelError = err.into();
        assert!(matches!(camel_err, CamelError::Config(s) if s.contains("bad config")));
    }
}