List of all items

Structs

• audit::chain::ChainHasher
• audit::logger::AuditEntry
• audit::logger::StructuredAuditLogger
• constant_time::ConstantTimeOps
• error_sanitizer::AuthErrorSanitizer
• error_sanitizer::SanitizedError
• handlers::AuthCallbackQuery
• handlers::AuthCallbackResponse
• handlers::AuthLogoutRequest
• handlers::AuthRefreshRequest
• handlers::AuthRefreshResponse
• handlers::AuthStartRequest
• handlers::AuthStartResponse
• handlers::AuthState
• jwks::JwksCache
• jwt::Claims
• jwt::JwtValidator
• middleware::AuthMiddleware
• middleware::AuthenticatedUser
• monitoring::AuthEvent
• monitoring::AuthMetrics
• monitoring::OperationTimer
• oauth::audit::OAuthAuditEvent
• oauth::client::AuthorizationRequest
• oauth::client::OAuth2Client
• oauth::client::OIDCClient
• oauth::client::OIDCProviderConfig
• oauth::failover::ProviderFailoverManager
• oauth::pkce::NonceParameter
• oauth::pkce::PKCEChallenge
• oauth::pkce::StateParameter
• oauth::provider::ExternalAuthProvider
• oauth::provider::OAuth2ClientConfig
• oauth::provider::OAuthSession
• oauth::provider::ProviderRegistry
• oauth::refresh::TokenRefreshScheduler
• oauth::refresh::TokenRefreshWorker
• oauth::types::IdTokenClaims
• oauth::types::TokenResponse
• oauth::types::UserInfo
• oidc_provider::OidcProvider
• oidc_server_client::OidcEndpoints
• oidc_server_client::OidcServerClient
• oidc_server_client::OidcTokenResponse
• operation_rbac::RBACPolicy
• operation_rbac::Role
• pkce::ConsumedPkceState
• pkce::InMemoryPkceStateStore
• provider::PkceChallenge
• provider::TokenResponse
• provider::UserInfo
• providers::auth0::Auth0OAuth
• providers::auth0::Auth0Roles
• providers::auth0::Auth0User
• providers::azure_ad::AzureADOAuth
• providers::azure_ad::AzureADUser
• providers::github::GitHubOAuth
• providers::github::GitHubOrg
• providers::github::GitHubTeam
• providers::github::GitHubUser
• providers::google::GoogleOAuth
• providers::google::GoogleUser
• providers::google::GoogleWorkspaceGroup
• providers::keycloak::ClientRoles
• providers::keycloak::KeycloakOAuth
• providers::keycloak::KeycloakTokenClaims
• providers::keycloak::RealmAccess
• providers::logto::LogtoOAuth
• providers::okta::OktaGroups
• providers::okta::OktaOAuth
• providers::okta::OktaUser
• providers::ory::OryOAuth
• proxy::ProxyConfig
• rate_limiting::AuthRateLimitConfig
• rate_limiting::KeyedRateLimiter
• rate_limiting::RateLimiters
• security_config::AuditLoggingSettings
• security_config::ErrorSanitizationSettings
• security_config::RateLimitingSettings
• security_config::SecurityConfigFromSchema
• security_config::StateEncryptionSettings
• session::SessionData
• session::TokenPair
• session_postgres::PostgresSessionStore
• state_encryption::EncryptedState
• state_encryption::StateEncryption
• state_encryption::StateEncryptionConfig
• state_encryption::StateEncryptionService
• state_store::InMemoryStateStore

Enums

• audit::chain::ChainVerifyError
• audit::logger::AuditEventType
• audit::logger::SecretType
• error::AuthError
• jwks::JwksError
• oauth::provider::ProviderType
• operation_rbac::OperationPermission
• pkce::PkceError
• pkce::PkceStateStore
• state_encryption::DecryptionError
• state_encryption::EncryptionAlgorithm
• state_encryption::KeyError

Traits

• audit::logger::AuditExt
• audit::logger::AuditLogger
• error_sanitizer::Sanitize
• oauth::refresh::TokenRefresher
• provider::OAuthProvider
• session::SessionStore
• state_store::StateStore

Functions

• audit::chain::verify_chain
• audit::logger::get_audit_logger
• audit::logger::init_audit_logger
• handlers::auth_callback
• handlers::auth_logout
• handlers::auth_refresh
• handlers::auth_start
• handlers::generate_secure_state
• jwt::generate_hs256_token
• jwt::generate_rs256_token
• providers::create_provider
• rate_limiting::warn_if_single_node_rate_limiting
• security_init::init_default_security_config
• security_init::init_security_config
• security_init::log_security_config
• security_init::validate_security_config
• session::generate_refresh_token
• session::hash_token
• state_encryption::generate_state_encryption_key

Type Aliases

• error::Result

Statics

• audit::logger::AUDIT_LOGGER

Constants

• audit::logger::bounds::BYTES_PER_ENTRY
• audit::logger::bounds::MAX_CONTEXT_LEN
• audit::logger::bounds::MAX_ENTRIES_IN_MEMORY
• audit::logger::bounds::MAX_ERROR_MESSAGE_LEN
• audit::logger::bounds::MAX_OPERATION_LEN
• audit::logger::bounds::MAX_SUBJECT_LEN
• error_sanitizer::messages::AUTH_FAILED
• error_sanitizer::messages::INVALID_SIGNATURE
• error_sanitizer::messages::INVALID_STATE
• error_sanitizer::messages::PERMISSION_DENIED
• error_sanitizer::messages::REQUEST_FAILED
• error_sanitizer::messages::SERVICE_UNAVAILABLE
• error_sanitizer::messages::SESSION_EXPIRED
• error_sanitizer::messages::SESSION_REVOKED
• error_sanitizer::messages::TOKEN_EXPIRED