runique 2.0.1

A Django-inspired web framework for Rust with ORM, templates, and comprehensive security middleware
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57

//! CSP nonce generation — 16 random bytes encoded in base64, renewed for each request.

/// CSP Nonce Generation
///
/// Utilities to generate CSP (Content Security Policy) nonces
/// for inline scripts and styles.
use rand::RngExt;
#[derive(Debug, Clone)]
pub struct CspNonce(String);

impl CspNonce {
    #[must_use]
    pub fn generate() -> Self {
        let mut rng = rand::rng();
        let mut bytes = [0u8; 16]; // 16 bytes = 128 bits
        rng.fill(&mut bytes);
        let nonce = CspNonce::base64_encode(&bytes);
        CspNonce(nonce)
    }
    #[must_use]
    pub fn as_str(&self) -> &str {
        &self.0
    }
    #[must_use]
    pub fn base64_encode(data: &[u8]) -> String {
        use base64::Engine;
        let engine = base64::engine::general_purpose::STANDARD;
        engine.encode(data)
    }
}

#[cfg(test)]
mod tests {
    use super::*;

    fn nonce_attr() -> String {
        let nonce = CspNonce::generate();
        format!("nonce=\"{}\"", nonce.as_str())
    }

    #[test]
    fn test_nonce_generation() {
        let nonce1 = CspNonce::generate();
        let nonce2 = CspNonce::generate();

        assert!(!nonce1.as_str().is_empty());
        assert!(!nonce2.as_str().is_empty());
        assert_ne!(nonce1.as_str(), nonce2.as_str());
    }

    #[test]
    fn test_nonce_attr() {
        let attr = nonce_attr();
        assert!(attr.starts_with("nonce="));
        assert!(attr.contains('"'));
    }
}