junobuild-auth 0.4.2

Authentication toolkit for Juno.
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136

use crate::openid::jwt::decode_jwt_header;
use crate::openid::jwt::types::errors::JwtFindKidError;
use crate::openid::jwt::types::token::UnsafeClaims;
use jsonwebtoken::dangerous;

/// ⚠️ **Warning:** This function decodes the JWT *without verifying its signature*.
/// Use only to inspect the header (e.g., `kid`) before performing a verified decode
/// before finalizing any task.
pub fn unsafe_find_jwt_kid(jwt: &str) -> Result<String, JwtFindKidError> {
    // 1) Header sanity check
    decode_jwt_header(jwt).map_err(JwtFindKidError::from)?;

    // 2) Decode the payload (⚠️ no signature validation)
    let token_data = dangerous::insecure_decode::<UnsafeClaims>(jwt)
        .map_err(|e| JwtFindKidError::BadSig(e.to_string()))?;

    // 3) Return kid
    token_data.header.kid.ok_or(JwtFindKidError::MissingKid)
}

#[cfg(test)]
mod unsafe_find_kid_tests {
    use super::unsafe_find_jwt_kid;
    use crate::openid::jwt::types::errors::JwtFindKidError;
    use candid::Deserialize;
    use jsonwebtoken::{encode, Algorithm, EncodingKey, Header};
    use serde::Serialize;
    use std::time::{SystemTime, UNIX_EPOCH};

    const TEST_RSA_PEM: &str = include_str!("../../../tests/keys/test_rsa.pem");

    const ISS: &str = "https://accounts.google.com";
    const AUD: &str = "client-123";
    const KID_OK: &str = "test-kid-1";

    fn now_secs() -> u64 {
        SystemTime::now()
            .duration_since(UNIX_EPOCH)
            .unwrap()
            .as_secs()
    }

    fn header_with(kid: Option<&str>) -> Header {
        let mut h = Header::new(Algorithm::RS256);
        h.typ = Some("JWT".into());
        h.kid = kid.map(str::to_string);
        h
    }

    #[derive(Debug, Clone, Deserialize, Serialize)]
    pub struct GoogleClaims {
        pub iss: String,
        pub sub: String,
        pub aud: String,
        pub exp: Option<u64>,
        pub nbf: Option<u64>,
        pub iat: Option<u64>,

        pub nonce: Option<String>,

        pub email: Option<String>,
        pub name: Option<String>,
        pub given_name: Option<String>,
        pub family_name: Option<String>,
        pub preferred_username: Option<String>,
        pub picture: Option<String>,
        pub locale: Option<String>,
    }

    fn claims_basic() -> GoogleClaims {
        let now = now_secs();
        GoogleClaims {
            iss: ISS.into(),
            sub: "sub".into(),
            aud: AUD.into(),
            exp: Some(now + 600),
            nbf: None,
            iat: Some(now),
            email: None,
            name: None,
            given_name: None,
            family_name: None,
            preferred_username: None,
            picture: None,
            nonce: None,
            locale: None,
        }
    }

    fn sign_token(h: &Header, c: &GoogleClaims) -> String {
        let enc = EncodingKey::from_rsa_pem(TEST_RSA_PEM.as_bytes()).expect("valid pem");
        encode(h, c, &enc).expect("jwt encode")
    }

    fn tamper_signature(jwt: &str) -> String {
        // Flip the last character of the signature segment in a base64url-safe way.
        let mut parts: Vec<&str> = jwt.split('.').collect();
        assert_eq!(parts.len(), 3, "expected 3-part JWT");
        let mut sig = parts[2].to_string();
        if let Some(last) = sig.pop() {
            sig.push(if last == 'A' { 'B' } else { 'A' });
        }
        parts[2] = Box::leak(sig.into_boxed_str());
        parts.join(".")
    }

    #[test]
    fn finds_kid_ok() {
        let token = sign_token(&header_with(Some(KID_OK)), &claims_basic());
        let kid = unsafe_find_jwt_kid(&token).expect("should find kid");
        assert_eq!(kid, KID_OK);
    }

    #[test]
    fn missing_kid_yields_error() {
        let token = sign_token(&header_with(None), &claims_basic());
        let err = unsafe_find_jwt_kid(&token).unwrap_err();
        assert!(matches!(err, JwtFindKidError::MissingKid));
    }

    #[test]
    fn malformed_token_is_badsig() {
        // Not a JWT at all → base64/structure error → mapped to BadSig
        let err = unsafe_find_jwt_kid("not-a.jwt.token").unwrap_err();
        assert!(matches!(err, JwtFindKidError::BadSig(_)));
    }

    #[test]
    fn signature_is_ignored() {
        let token = sign_token(&header_with(Some(KID_OK)), &claims_basic());
        let tampered = tamper_signature(&token);
        // Still succeeds because we use `dangerous::insecure_decode` internally.
        let kid = unsafe_find_jwt_kid(&tampered).expect("kid should still be readable");
        assert_eq!(kid, KID_OK);
    }
}