systemprompt-api 0.15.0

Axum-based HTTP server and API gateway for systemprompt.io AI governance infrastructure. Exposes governed agents, MCP, A2A, and admin endpoints with rate limiting and RBAC.
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144

use anyhow::Result;
use axum::Form;
use axum::extract::{Extension, State};
use axum::http::StatusCode;
use axum::response::{IntoResponse, Response};
use jsonwebtoken::dangerous::insecure_decode;
use serde::Deserialize;
use sha2::{Digest, Sha256};
use systemprompt_identifiers::SessionId;
use systemprompt_models::RequestContext;
use systemprompt_models::auth::JwtClaims;
use systemprompt_oauth::OAuthState;
use systemprompt_oauth::repository::OAuthRepository;
use systemprompt_oauth::services::validation::{get_audit_user, validate_client_credentials};
use tracing::instrument;

use crate::routes::oauth::OAuthHttpError;
use crate::routes::oauth::extractors::OAuthRepo;

#[derive(Debug, Deserialize)]
pub struct RevokeRequest {
    pub token: String,
    pub token_type_hint: Option<String>,
    pub client_id: Option<String>,
    pub client_secret: Option<String>,
}

#[instrument(skip(state, req_ctx, request, repo))]
pub async fn handle_revoke(
    Extension(req_ctx): Extension<RequestContext>,
    State(state): State<OAuthState>,
    OAuthRepo(repo): OAuthRepo,
    Form(request): Form<RevokeRequest>,
) -> Result<Response, OAuthHttpError> {
    let audit_user = get_audit_user(Some(&req_ctx.auth.actor.user_id)).map_err(|e| {
        OAuthHttpError::invalid_request(format!("Authenticated user required: {e}"))
    })?;

    let token_type = request
        .token_type_hint
        .as_deref()
        .unwrap_or("not_specified");
    let token_hash = hash_token(&request.token);

    if let Some(client_id_str) = &request.client_id {
        let client_id = systemprompt_identifiers::ClientId::new(client_id_str.clone());
        if validate_client_credentials(&repo, &client_id, request.client_secret.as_deref())
            .await
            .is_err()
        {
            return Err(OAuthHttpError::invalid_client("Invalid client credentials"));
        }
    }

    revoke_token(&repo, &request.token, request.token_type_hint.as_deref()).await?;

    if let Some(session_id) = extract_session_id_unverified(&request.token)
        && let Err(e) = state.analytics_provider().revoke_session(&session_id).await
    {
        tracing::warn!(
            session_id = %session_id,
            error = %e,
            "Failed to revoke session after token revocation"
        );
    }

    tracing::info!(
        token_hash = %token_hash,
        token_type = %token_type,
        client_id = ?request.client_id,
        revocation_reason = "user_request",
        revoked_by = %audit_user,
        "Token revoked"
    );

    Ok(StatusCode::OK.into_response())
}

async fn revoke_token(
    repo: &OAuthRepository,
    token: &str,
    token_type_hint: Option<&str>,
) -> Result<()> {
    use systemprompt_identifiers::RefreshTokenId;

    match token_type_hint {
        Some("refresh_token") => {
            let token_id = RefreshTokenId::new(token);
            repo.revoke_refresh_token(&token_id).await?;
        },
        Some("access_token") => {
            revoke_access_token_jti(repo, token).await;
        },
        _ => {
            let token_id = RefreshTokenId::new(token);
            if let Err(e) = repo.revoke_refresh_token(&token_id).await {
                tracing::debug!(error = %e, "Refresh-token revocation no-op; trying access-token JTI path");
                revoke_access_token_jti(repo, token).await;
            }
        },
    }

    Ok(())
}

async fn revoke_access_token_jti(repo: &OAuthRepository, token: &str) {
    let Some(claims) = insecure_decode::<JwtClaims>(token).ok().map(|d| d.claims) else {
        tracing::debug!("Access token did not parse as JWT; cannot revoke jti");
        return;
    };
    if claims.jti.is_empty() {
        tracing::debug!("Access token has no jti; nothing to revoke");
        return;
    }
    let exp = chrono::DateTime::<chrono::Utc>::from_timestamp(claims.exp, 0)
        .unwrap_or_else(chrono::Utc::now);
    let user_uuid = match uuid::Uuid::parse_str(&claims.sub) {
        Ok(u) => u,
        Err(e) => {
            tracing::debug!(error = %e, sub = %claims.sub, "Access token sub is not a UUID; cannot revoke");
            return;
        },
    };
    if let Err(e) = repo.revoke_jti(&claims.jti, user_uuid, exp).await {
        tracing::warn!(error = %e, "Failed to record JTI revocation for access token");
    }
}

// Why: RFC 7009 token revocation already authenticates the *client*; the
// signature on the token itself is irrelevant for the revocation decision
// (we only need to know which session to mark revoked). A forged token
// produces a session_id that either doesn't exist or belongs to a different
// principal — either way the revoke_session query is a no-op or rejected
// downstream, and we have not accepted the token for authentication.
fn extract_session_id_unverified(token: &str) -> Option<SessionId> {
    let data = insecure_decode::<JwtClaims>(token).ok()?;
    data.claims.session_id
}

fn hash_token(token: &str) -> String {
    let mut hasher = Sha256::new();
    hasher.update(token.as_bytes());
    hex::encode(hasher.finalize())
}