The Rust SASL framework

license

rsasl is an framework for RFC 4422; the Simple Authentication and Security Layer — aka SASL.

It is designed to enable implementing SASL support in protocol handling crates while abstracting away the details, allowing downstream users to select available mechanisms and add support for additional mechanisms without any changes required in the protocol handling crate.

rsasl provide a number of mechanisms by itself:

EXTERNAL
ANONYMOUS
PLAIN
LOGIN
SCRAM-SHA-1 and SCRAM-SHA-1-PLUS
SCRAM-SHA-256 and SCRAM-SHA-256-PLUS
XOAUTH2 (Client side only)

Support for the following mechanisms was available in rsasl 1 but is not implemented in rsasl 2:

OPENID20
SAML20
GSSAPI
GS2-KRB5
KERBEROS_V5
NTLM
SECURID
CRAM-MD5
DIGEST-MD5

Additional mechanisms can be implemented by other crates. (NOTE: In the current v2.0.0 this feature is unstable)

Conditional compilation of mechanism

rsasl allows users to select the available mechanisms at compile time using cargo features. For an overview refer to the module documentation of rsasl::mechanisms.

MSRV — Minimum Supported Rust Version

The current msrv rsasl is Rust 1.56.0, however do note that certain features (e.g. registry_static) have dependencies with much more recent msrv.

Versions

The CHANGELOG.md contains a detailed release history, including added features and fixed bugs.

Major version 1 of this crate uses gsasl-sys which are binding to GNU gsasl. This makes the use of unsafe code and FFI necessary. You can find the latest 1.X.Y version in the branch 1.X.X

Version 2.0.0-preview is a pure-Rust rewrite using sources transpiled using c2rust. Keep in mind that despite being Rust this code is as least as unsafe as the original C code. Most of this unsafe code will be removed before the first non-preview 2.0.0 release.

License

Version 2 and later of this library are dual licensed under both Apache-2.0 and MIT, at your option.

Examples