modo-rs 0.6.2

Rust web framework for small monolithic apps
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26

use std::pin::Pin;

use crate::Result;

/// Optional trait for JWT token revocation checks.
///
/// Implement this against your storage backend (DB, Redis, `LruCache`, etc.).
/// Register with [`JwtLayer::with_revocation()`](super::middleware::JwtLayer::with_revocation) —
/// the middleware skips the check when no backend is registered.
///
/// # Behavior
///
/// - Only called when a revocation backend is registered AND the token has a `jti` claim.
/// - Token without `jti` + registered backend: accepted without calling `is_revoked`.
/// - `Ok(true)`: token rejected with `jwt:revoked`.
/// - `Ok(false)`: token accepted.
/// - `Err(_)`: token rejected with `jwt:revocation_check_failed` (fail-closed).
pub trait Revocation: Send + Sync {
    /// Returns `Ok(true)` if the token identified by `jti` has been revoked.
    ///
    /// # Errors
    ///
    /// Returning `Err` causes the middleware to reject the request with
    /// `jwt:revocation_check_failed` (fail-closed behavior).
    fn is_revoked(&self, jti: &str) -> Pin<Box<dyn Future<Output = Result<bool>> + Send + '_>>;
}