rustapi-extras 0.1.450

Production-ready middleware collection for RustAPI. Includes JWT auth, CORS, Rate Limiting, SQLx integration, and OpenTelemetry observability.
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133

//! OAuth2 provider presets
//!
//! Pre-configured settings for common OAuth2 providers.

use std::collections::HashSet;

/// Supported OAuth2 providers with pre-configured endpoints.
#[derive(Debug, Clone, PartialEq, Eq)]
pub enum Provider {
    /// Google OAuth2
    Google,
    /// GitHub OAuth2
    GitHub,
    /// Microsoft (Azure AD) OAuth2
    Microsoft,
    /// Discord OAuth2
    Discord,
    /// Custom provider with manual configuration
    Custom {
        /// Authorization endpoint URL
        auth_url: String,
        /// Token endpoint URL
        token_url: String,
        /// User info endpoint URL (optional)
        userinfo_url: Option<String>,
    },
}

impl Provider {
    /// Get the authorization endpoint URL for this provider.
    pub fn auth_url(&self) -> &str {
        match self {
            Provider::Google => "https://accounts.google.com/o/oauth2/v2/auth",
            Provider::GitHub => "https://github.com/login/oauth/authorize",
            Provider::Microsoft => "https://login.microsoftonline.com/common/oauth2/v2.0/authorize",
            Provider::Discord => "https://discord.com/api/oauth2/authorize",
            Provider::Custom { auth_url, .. } => auth_url,
        }
    }

    /// Get the token endpoint URL for this provider.
    pub fn token_url(&self) -> &str {
        match self {
            Provider::Google => "https://oauth2.googleapis.com/token",
            Provider::GitHub => "https://github.com/login/oauth/access_token",
            Provider::Microsoft => "https://login.microsoftonline.com/common/oauth2/v2.0/token",
            Provider::Discord => "https://discord.com/api/oauth2/token",
            Provider::Custom { token_url, .. } => token_url,
        }
    }

    /// Get the user info endpoint URL for this provider (if available).
    pub fn userinfo_url(&self) -> Option<&str> {
        match self {
            Provider::Google => Some("https://www.googleapis.com/oauth2/v3/userinfo"),
            Provider::GitHub => Some("https://api.github.com/user"),
            Provider::Microsoft => Some("https://graph.microsoft.com/v1.0/me"),
            Provider::Discord => Some("https://discord.com/api/users/@me"),
            Provider::Custom { userinfo_url, .. } => userinfo_url.as_deref(),
        }
    }

    /// Get default scopes for this provider.
    pub fn default_scopes(&self) -> HashSet<String> {
        match self {
            Provider::Google => ["openid", "email", "profile"]
                .iter()
                .map(|s| s.to_string())
                .collect(),
            Provider::GitHub => ["user:email", "read:user"]
                .iter()
                .map(|s| s.to_string())
                .collect(),
            Provider::Microsoft => ["openid", "email", "profile", "User.Read"]
                .iter()
                .map(|s| s.to_string())
                .collect(),
            Provider::Discord => ["identify", "email"]
                .iter()
                .map(|s| s.to_string())
                .collect(),
            Provider::Custom { .. } => HashSet::new(),
        }
    }

    /// Check if this provider supports PKCE (Proof Key for Code Exchange).
    pub fn supports_pkce(&self) -> bool {
        match self {
            Provider::Google => true,
            Provider::GitHub => false, // GitHub doesn't support PKCE yet
            Provider::Microsoft => true,
            Provider::Discord => true,
            Provider::Custom { .. } => true, // Assume custom supports PKCE
        }
    }
}

#[cfg(test)]
mod tests {
    use super::*;

    #[test]
    fn test_google_provider() {
        let provider = Provider::Google;
        assert!(provider.auth_url().contains("google.com"));
        assert!(provider.token_url().contains("googleapis.com"));
        assert!(provider.supports_pkce());
        assert!(provider.default_scopes().contains("openid"));
    }

    #[test]
    fn test_github_provider() {
        let provider = Provider::GitHub;
        assert!(provider.auth_url().contains("github.com"));
        assert!(!provider.supports_pkce());
        assert!(provider.default_scopes().contains("user:email"));
    }

    #[test]
    fn test_custom_provider() {
        let provider = Provider::Custom {
            auth_url: "https://custom.example.com/auth".to_string(),
            token_url: "https://custom.example.com/token".to_string(),
            userinfo_url: Some("https://custom.example.com/userinfo".to_string()),
        };
        assert_eq!(provider.auth_url(), "https://custom.example.com/auth");
        assert_eq!(provider.token_url(), "https://custom.example.com/token");
        assert_eq!(
            provider.userinfo_url(),
            Some("https://custom.example.com/userinfo")
        );
    }
}