securitydept-token-set-context 0.2.0

Token Set Context of SecurityDept, a layered authentication and authorization toolkit built as reusable Rust crates.
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81

//! Shared orchestration abstractions — cross-mode lifecycle infrastructure.
//!
//! This module provides types and utilities shared across all OIDC modes:
//!
//! - [`OidcSharedConfig`] — shared OIDC provider connectivity config
//! - [`BackendConfigError`] — unified config resolution error
//! - Infrastructure re-exports (provider, OIDC client, resource server)
//!
//! Adopters working with mode-specific config resolution should start here
//! for shared defaults, then use the appropriate `*_mode` module for
//! mode-specific config types.

// Re-export shared-defaults core so adopters don't need to depend on
// securitydept-oauth-provider directly.
pub use securitydept_oauth_provider::OidcSharedConfig;
// Re-export infrastructure types that adopters commonly need during
// config resolution — both configuration and runtime.
pub use securitydept_oauth_provider::{OAuthProviderConfig, OAuthProviderRuntime};
pub use securitydept_oauth_resource_server::{
    OAuthResourceServerConfig, OAuthResourceServerIntrospectionConfig,
};
pub use securitydept_oidc_client::{
    OidcClient, OidcClientConfig, OidcClientRawConfig, PendingOauthStoreConfig,
};

// ---------------------------------------------------------------------------
// Unified config resolution error
// ---------------------------------------------------------------------------

/// Unified error for backend config resolution across all modes.
///
/// Each variant identifies which sub-config caused the failure, enabling
/// adopters to produce clear diagnostics without matching on mode-specific
/// error types.
#[derive(Debug)]
pub enum BackendConfigError {
    OidcClient(securitydept_oidc_client::OidcError),
    ResourceServer(securitydept_oauth_resource_server::OAuthResourceServerError),
    BackendOidcModeRuntime(crate::backend_oidc_mode::BackendOidcModeRuntimeError),
    TokenPropagation(crate::access_token_substrate::TokenPropagatorError),
}

impl std::fmt::Display for BackendConfigError {
    fn fmt(&self, f: &mut std::fmt::Formatter<'_>) -> std::fmt::Result {
        match self {
            Self::OidcClient(e) => write!(f, "oidc_client config: {e}"),
            Self::ResourceServer(e) => write!(f, "oauth_resource_server config: {e}"),
            Self::BackendOidcModeRuntime(e) => write!(f, "backend_oidc_mode_runtime: {e}"),
            Self::TokenPropagation(e) => write!(f, "token_propagation config: {e}"),
        }
    }
}

impl std::error::Error for BackendConfigError {
    fn source(&self) -> Option<&(dyn std::error::Error + 'static)> {
        match self {
            Self::OidcClient(e) => Some(e),
            Self::ResourceServer(e) => Some(e),
            Self::BackendOidcModeRuntime(e) => Some(e),
            Self::TokenPropagation(e) => Some(e),
        }
    }
}

impl From<securitydept_oidc_client::OidcError> for BackendConfigError {
    fn from(e: securitydept_oidc_client::OidcError) -> Self {
        Self::OidcClient(e)
    }
}

impl From<securitydept_oauth_resource_server::OAuthResourceServerError> for BackendConfigError {
    fn from(e: securitydept_oauth_resource_server::OAuthResourceServerError) -> Self {
        Self::ResourceServer(e)
    }
}

impl From<crate::backend_oidc_mode::BackendOidcModeRuntimeError> for BackendConfigError {
    fn from(e: crate::backend_oidc_mode::BackendOidcModeRuntimeError) -> Self {
        Self::BackendOidcModeRuntime(e)
    }
}