workos 0.8.1

Rust SDK for interacting with the WorkOS API.
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82

//! A module for interacting with the WorkOS User Management API.
//!
//! [WorkOS Docs: User Management](https://workos.com/docs/user-management)

mod cookie_session;
mod operations;
mod types;

use std::sync::{Arc, Mutex};

pub use cookie_session::*;
pub use operations::*;
use thiserror::Error;
pub use types::*;

use crate::{RemoteJwkSet, WorkOs};

/// An error returned from [`UserManagement::jwks`].
#[derive(Debug, Error)]
pub enum JwksError {
    /// Missing client ID
    #[error("missing client ID")]
    MissingClientId,

    /// Poison error.
    #[error("poison error: {0}")]
    Poison(String),

    /// URL error.
    #[error(transparent)]
    Url(#[from] url::ParseError),
}

/// User Management.
///
/// [WorkOS Docs: User Management](https://workos.com/docs/user-management)
pub struct UserManagement<'a> {
    workos: &'a WorkOs,
    jwks: Arc<Mutex<Option<RemoteJwkSet>>>,
}

impl<'a> UserManagement<'a> {
    /// Returns a new [`UserManagement`] instance for the provided WorkOS client.
    pub fn new(workos: &'a WorkOs) -> Self {
        Self {
            workos,
            jwks: Arc::new(Mutex::new(None)),
        }
    }

    /// Get remote JSON Web Key Set (JWKS).
    pub fn jwks(&'a self) -> Result<RemoteJwkSet, JwksError> {
        let mut jwks = self
            .jwks
            .lock()
            .map_err(|err| JwksError::Poison(err.to_string()))?;

        if let Some(jwks) = jwks.as_ref() {
            return Ok(jwks.clone());
        }

        let Some(client_id) = self.workos.client_id() else {
            return Err(JwksError::MissingClientId);
        };

        let new_jwks =
            RemoteJwkSet::new(self.workos.client().clone(), self.get_jwks_url(client_id)?);

        *jwks = Some(new_jwks.clone());

        Ok(new_jwks)
    }

    /// Load the session by providing the sealed session and the cookie password.
    pub fn load_sealed_session(
        &'a self,
        session_data: &'a str,
        cookie_password: &'a str,
    ) -> CookieSession<'a> {
        CookieSession::new(self, session_data, cookie_password)
    }
}