oxidite-auth 2.3.1

Authentication and authorization for Oxidite (RBAC, JWT, OAuth2, 2FA, API keys)
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81

use oxidite_auth::{ApiKey, ApiKeyMiddleware};
use oxidite_db::{Database, DatabaseType, DbTransaction, Result};
use async_trait::async_trait;
use sqlx::any::AnyRow;
use std::sync::Arc;

#[derive(Debug)]
struct MockDb;

#[async_trait]
impl Database for MockDb {
    fn db_type(&self) -> DatabaseType { DatabaseType::Sqlite }
    async fn execute(&self, _query: &str) -> Result<u64> { Ok(1) }
    async fn query(&self, _query: &str) -> Result<Vec<AnyRow>> { Ok(vec![]) }
    async fn query_one(&self, _query: &str) -> Result<Option<AnyRow>> { Ok(None) }
    async fn ping(&self) -> Result<()> { Ok(()) }
    async fn begin_transaction(&self) -> Result<DbTransaction> { unimplemented!() }
    
    async fn execute_query<'q>(&self, _query: sqlx::query::Query<'q, sqlx::Any, sqlx::any::AnyArguments<'q>>) -> Result<u64> {
        Ok(1)
    }
    async fn fetch_all<'q>(&self, _query: sqlx::query::Query<'q, sqlx::Any, sqlx::any::AnyArguments<'q>>) -> Result<Vec<AnyRow>> { Ok(vec![]) }
    async fn fetch_one<'q>(&self, _query: sqlx::query::Query<'q, sqlx::Any, sqlx::any::AnyArguments<'q>>) -> Result<Option<AnyRow>> { Ok(None) }
    fn inspector(&self) -> Box<dyn oxidite_db::DbInspector> {
        struct MockInspector;
        #[async_trait]
        impl oxidite_db::DbInspector for MockInspector {
            async fn get_table_schema(&self, _table_name: &str) -> Result<Option<oxidite_db::TableSchema>> { Ok(None) }
            async fn list_tables(&self) -> Result<Vec<String>> { Ok(vec![]) }
        }
        Box::new(MockInspector)
    }
}

#[test]
fn test_api_key_generation() {
    let key1 = ApiKey::generate_key();
    let key2 = ApiKey::generate_key();
    
    // Keys should start with ox_ prefix
    assert!(key1.starts_with("ox_"));
    assert!(key2.starts_with("ox_"));
    
    // Keys should be unique
    assert_ne!(key1, key2);
    
    // Keys should be reasonably long
    assert!(key1.len() > 40);
}

#[test]
fn test_api_key_hashing() {
    let key = "ox_test_key_12345";
    let hash1 = ApiKey::hash_key(key);
    let hash2 = ApiKey::hash_key(key);
    
    // Same key should produce same hash
    assert_eq!(hash1, hash2);
    
    // Hash should be hex string
    assert!(hash1.chars().all(|c| c.is_ascii_hexdigit()));
    
    // Different keys should produce different hashes
    let different_key = "ox_different_key";
    let hash3 = ApiKey::hash_key(different_key);
    assert_ne!(hash1, hash3);
}

#[tokio::test]
async fn test_api_key_middleware() {
    let db = Arc::new(MockDb);
    let _middleware = ApiKeyMiddleware::new(db);
    
    // In a real integration test with database, we would test:
    // - Key extraction from headers
    // - Key verification
    // - User ID injection into request extensions
    
    // For now, just verify it compiles and instantiates
    assert!(true);
}