laye 0.1.0

A framework-agnostic role and permission based access control library
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22

//! The [`LayeCheckResult`] type returned by every policy evaluation.

/// The outcome of an [`AccessPolicy::check`](crate::AccessPolicy::check) call.
///
/// Distinguishes between a missing principal (unauthenticated request) and a principal that is
/// present but does not satisfy the policy.
#[derive(Debug, Clone, Copy, PartialEq)]
pub enum LayeCheckResult {
    /// The principal satisfies the policy — allow the request.
    Authorized,

    /// No principal was present, or the principal's [`is_authenticated`](crate::Principal::is_authenticated)
    /// returned `false`.
    ///
    /// Maps to HTTP **401 Unauthorized**.
    Unauthorized,

    /// A principal was present but does not meet the policy's requirements.
    ///
    /// Maps to HTTP **403 Forbidden**.
    Forbidden,
}