systemprompt-security 0.13.0

Security infrastructure for systemprompt.io AI governance: JWT, OAuth2 token extraction, scope enforcement, ChaCha20-Poly1305 secret encryption, the four-layer tool-call governance pipeline, and the unified authz decision plane (deny-overrides resolver + AuthzDecisionHook) shared by gateway and MCP enforcement.
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99

//! Error types raised by the security infrastructure.
//!
//! Public APIs in this crate return `thiserror`-derived error enums:
//!
//! - [`AuthError`] — request validation, JWT decoding, claim extraction.
//! - [`JwtError`] — JWT minting (admin tokens, session tokens).
//! - [`ManifestSigningError`] — Ed25519 signing of bridge manifests.
//!
//! All three implement `std::error::Error` and can be composed into larger
//! `thiserror` enums via `#[from]`.

use thiserror::Error;

#[derive(Debug, Error)]
pub enum AuthError {
    #[error("missing authorization header")]
    MissingAuthorization,

    #[error("invalid JWT token: {0}")]
    InvalidToken(#[source] jsonwebtoken::errors::Error),

    #[error("missing session_id in token")]
    MissingSessionId,

    #[error("hook token: missing or non-`hook` audience")]
    HookAudienceMissing,

    #[error("hook token: required scope `{0}` not present")]
    HookScopeMissing(&'static str),

    #[error("hook token: missing `plugin_id` claim")]
    HookPluginIdMissing,

    #[error(
        "hook token: plugin_id `{actual}` in claim does not match request plugin_id `{expected}`"
    )]
    HookPluginIdMismatch { expected: String, actual: String },

    #[error("token has unsupported algorithm `{got}`; only RS256 is accepted")]
    UnsupportedAlgorithm { got: String },

    #[error("token is missing `kid` header")]
    MissingKid,

    #[error("token `kid` `{0}` does not match any known signing key")]
    UnknownKid(String),

    #[error("signing key lookup failed: {0}")]
    KeyLookup(String),

    #[error("issuer `{0}` is not trusted")]
    UntrustedIssuer(String),

    #[error("JWKS fetch failed for issuer `{issuer}`: {source}")]
    JwksFetch {
        issuer: String,
        #[source]
        source: crate::keys::JwksClientError,
    },

    #[error("token `act` delegation chain exceeds maximum depth of {max} (got {depth})")]
    ActChainTooDeep { depth: usize, max: usize },

    #[error("token is missing the `scope` claim")]
    MissingScope,

    #[error("token `user_type` claim `{claimed}` does not match permissions (derived `{derived}`)")]
    UserTypeMismatch {
        claimed: systemprompt_models::auth::UserType,
        derived: systemprompt_models::auth::UserType,
    },
}

#[derive(Debug, Error)]
pub enum JwtError {
    #[error("jwt encoding failed: {0}")]
    Encoding(#[from] jsonwebtoken::errors::Error),

    #[error("jwt signing key unavailable: {0}")]
    Signing(String),
}

#[derive(Debug, Error)]
pub enum ManifestSigningError {
    #[error("manifest signing seed unavailable: {0}")]
    SeedUnavailable(String),

    #[error("jcs canonicalize: {0}")]
    Canonicalize(String),

    #[error("signing key missing after initialization")]
    KeyMissing,
}

pub type AuthResult<T> = Result<T, AuthError>;

pub type JwtResult<T> = Result<T, JwtError>;

pub type ManifestSigningResult<T> = Result<T, ManifestSigningError>;