systemprompt-api 0.12.0

Axum-based HTTP server and API gateway for systemprompt.io AI governance infrastructure. Exposes governed agents, MCP, A2A, and admin endpoints with rate limiting and RBAC.
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77

//! JTI revocation tower layer.
//!
//! Runs after [`crate::services::middleware::context::ContextMiddleware`] has
//! built the [`RequestContext`] and attached it to request extensions. The
//! JWT itself was already validated upstream (signature, audience, expiry);
//! this layer adds the one stateful check JWT validation cannot do — has the
//! token been explicitly revoked?
//!
//! - Anonymous / system contexts (empty `jti`) → no-op.
//! - Cache hit (revoked) → 401 immediately.
//! - Cache hit (fresh negative) → next.
//! - Cache miss → DB lookup, cache the result, then 401 or next.

use axum::extract::{Request, State};
use axum::http::StatusCode;
use axum::middleware::Next;
use axum::response::{IntoResponse, Response};
use std::sync::Arc;
use systemprompt_models::RequestContext;
use systemprompt_models::api::{ApiError, ErrorCode};
use systemprompt_oauth::repository::{JtiRevocationCache, OAuthRepository};

#[derive(Clone)]
pub struct JtiRevocationState {
    pub repo: Arc<OAuthRepository>,
    pub cache: Arc<JtiRevocationCache>,
}

impl std::fmt::Debug for JtiRevocationState {
    fn fmt(&self, f: &mut std::fmt::Formatter<'_>) -> std::fmt::Result {
        f.debug_struct("JtiRevocationState").finish_non_exhaustive()
    }
}

pub async fn jti_revocation_middleware(
    State(state): State<JtiRevocationState>,
    request: Request,
    next: Next,
) -> Response {
    let jti = request
        .extensions()
        .get::<RequestContext>()
        .map(|ctx| ctx.jti().to_owned())
        .unwrap_or_default();

    if jti.is_empty() {
        return next.run(request).await;
    }

    if state.cache.peek(&jti) == Some(true) {
        return token_revoked_response();
    }
    if state.cache.peek(&jti) == Some(false) {
        return next.run(request).await;
    }

    match state.repo.is_jti_revoked(&jti).await {
        Ok(revoked) => {
            state.cache.record(&jti, revoked);
            if revoked {
                token_revoked_response()
            } else {
                next.run(request).await
            }
        },
        Err(e) => {
            tracing::error!(error = %e, "JTI revocation lookup failed; failing closed");
            ApiError::new(ErrorCode::InternalError, "auth state lookup failed").into_response()
        },
    }
}

fn token_revoked_response() -> Response {
    let mut resp = ApiError::new(ErrorCode::Unauthorized, "Token revoked").into_response();
    *resp.status_mut() = StatusCode::UNAUTHORIZED;
    resp
}