secure_identity 0.1.2

Authentication helpers for JWT, OIDC, MFA, API keys, sessions, and step-up policy.
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38

//! BDD tests for DevAuthenticator.

#[cfg(feature = "dev")]
mod dev_tests {
    use secure_identity::{
        authenticator::{AuthenticationRequest, Authenticator, TokenKind},
        dev::DevAuthenticator,
    };
    use security_core::types::ActorId;
    use uuid::Uuid;

    #[tokio::test]
    async fn scenario_dev_authenticator_accepts_any_credentials() {
        let actor_id = ActorId::from(Uuid::new_v4());
        let dev = DevAuthenticator::new(actor_id.clone(), None, vec!["admin".to_string()]);
        let req = AuthenticationRequest {
            token: "any-token-value".to_string(),
            token_kind: TokenKind::BearerJwt,
        };
        let result = dev.authenticate(&req).await;
        assert!(result.is_ok());
        let identity = result.unwrap();
        assert_eq!(identity.actor_id.as_inner(), actor_id.as_inner());
        assert_eq!(identity.roles, vec!["admin"]);
    }

    #[tokio::test]
    async fn scenario_dev_authenticator_emits_warning() {
        let actor_id = ActorId::from(Uuid::new_v4());
        let _dev = DevAuthenticator::new(actor_id, None, vec![]);
    }
}

#[cfg(not(feature = "dev"))]
#[test]
fn dev_authenticator_not_available_without_feature() {
    // compile-time guard
}