sui-id-core 0.63.2

Authentication / authorization core (OIDC / OAuth2 + PKCE) for sui-id, a self-hosted Rust OIDC provider.
Documentation

sui-id-core

Authentication and authorization core for sui-id. Provides:

  • Argon2id password hashing and verification.
  • Ed25519 (EdDSA) JWT signing and verification.
  • OAuth 2.0 Authorization Code with mandatory PKCE (S256).
  • OAuth 2.0 Refresh Token grant with rotation on every use.
  • OpenID Connect Discovery and JWKS document construction.
  • Admin session lifecycle and the first-run setup state machine.

This crate has no knowledge of HTTP. It speaks in terms of sui-id-store and pure data; the HTTP wiring lives in the sui-id binary crate.

Status

This crate is an implementation detail of sui-id. Its API may change between minor versions. For a working OIDC provider, install the binary instead:

cargo install sui-id

License

Apache-2.0.