typeway-server 0.1.0

Server runtime for the typeway type-level web framework
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96

//! Demonstrates authentication middleware using a custom extractor.
//!
//! Run: cargo run -p typeway-server --example auth
//! Test:
//!   curl http://127.0.0.1:3000/public              # 200 — no auth needed
//!   curl http://127.0.0.1:3000/protected            # 401 — missing token
//!   curl -H "Authorization: Bearer admin-token" \
//!        http://127.0.0.1:3000/protected            # 200 — authenticated

use typeway_core::*;
use typeway_macros::*;
use typeway_server::*;

// ---------------------------------------------------------------------------
// Auth extractor — validates Bearer tokens
// ---------------------------------------------------------------------------

#[derive(Clone)]
struct AuthUser {
    username: String,
    role: String,
}

impl FromRequestParts for AuthUser {
    type Error = JsonError;

    fn from_request_parts(parts: &http::request::Parts) -> Result<Self, Self::Error> {
        let token = parts
            .headers
            .get(http::header::AUTHORIZATION)
            .and_then(|v| v.to_str().ok())
            .and_then(|v| v.strip_prefix("Bearer "))
            .ok_or_else(|| JsonError::unauthorized("missing or invalid Authorization header"))?;

        // In production, verify against a database/JWT/etc.
        match token {
            "admin-token" => Ok(AuthUser {
                username: "admin".into(),
                role: "admin".into(),
            }),
            "user-token" => Ok(AuthUser {
                username: "user".into(),
                role: "user".into(),
            }),
            _ => Err(JsonError::unauthorized("invalid token")),
        }
    }
}

// ---------------------------------------------------------------------------
// Handlers
// ---------------------------------------------------------------------------

typeway_path!(type PublicPath = "public");
typeway_path!(type ProtectedPath = "protected");
typeway_path!(type AdminPath = "admin");

type API = (
    GetEndpoint<PublicPath, String>,
    GetEndpoint<ProtectedPath, String>,
    GetEndpoint<AdminPath, String>,
);

async fn public_handler() -> &'static str {
    "This is public — no auth needed"
}

async fn protected_handler(user: AuthUser) -> String {
    format!("Hello, {}! You have role: {}", user.username, user.role)
}

async fn admin_handler(user: AuthUser) -> Result<String, JsonError> {
    if user.role != "admin" {
        return Err(JsonError::forbidden("admin access required"));
    }
    Ok(format!("Welcome to the admin panel, {}!", user.username))
}

#[tokio::main]
async fn main() {
    let server = Server::<API>::new((
        bind!(public_handler),
        bind!(protected_handler),
        bind!(admin_handler),
    ));

    println!("Auth example on http://127.0.0.1:3000");
    println!("  GET /public    — no auth");
    println!("  GET /protected — requires Bearer token");
    println!("  GET /admin     — requires admin token");

    server
        .serve("127.0.0.1:3000".parse().unwrap())
        .await
        .unwrap();
}