rustauth-core 0.2.0

Core types and primitives for RustAuth.
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62

use serde::{Deserialize, Serialize};

use rustauth_core::crypto::jwt::{sign_jwt, verify_jwt};

#[derive(Debug, Serialize, Deserialize, PartialEq, Eq)]
struct Claims {
    sub: String,
}

#[test]
fn verify_jwt_accepts_token_signed_with_same_secret() -> Result<(), Box<dyn std::error::Error>> {
    let token = sign_jwt(
        &Claims {
            sub: "user_123".to_owned(),
        },
        "secret-a-at-least-32-chars-long!!",
        3600,
    )?;

    let claims = verify_jwt::<Claims>(&token, "secret-a-at-least-32-chars-long!!")?;

    assert_eq!(
        claims,
        Some(Claims {
            sub: "user_123".to_owned()
        })
    );
    Ok(())
}

#[test]
fn verify_jwt_rejects_token_signed_with_different_secret() -> Result<(), Box<dyn std::error::Error>>
{
    let token = sign_jwt(
        &Claims {
            sub: "user_123".to_owned(),
        },
        "secret-a-at-least-32-chars-long!!",
        3600,
    )?;

    let claims = verify_jwt::<Claims>(&token, "secret-b-at-least-32-chars-long!!")?;

    assert_eq!(claims, None);
    Ok(())
}

#[test]
fn verify_jwt_rejects_expired_token() -> Result<(), Box<dyn std::error::Error>> {
    let token = sign_jwt(
        &Claims {
            sub: "user_123".to_owned(),
        },
        "secret-a-at-least-32-chars-long!!",
        -1,
    )?;

    let claims = verify_jwt::<Claims>(&token, "secret-a-at-least-32-chars-long!!")?;

    assert_eq!(claims, None);
    Ok(())
}