AccessSpecifier

google_cloud_auth::credentials::service_account

Enum AccessSpecifier 

Source 
pub enum AccessSpecifier {
    Audience(String),
    Scopes(Vec<String>),
}
Expand description

Represents the access specifier for a service account based token, specifying either OAuth 2.0 scopes or a JWT audience.

It ensures that only one of these access specifiers can be applied for a given credential setup.

Variants§

§

Audience(String)

Use AccessSpecifier::Audience for setting audience in the token. aud is a JWT claim specifying intended recipient of the token, that is, a service. Only one of audience or scopes can be specified for a credentials.

§

Scopes(Vec<String>)

Use AccessSpecifier::Scopes for setting scopes in the token.

scopes is a JWT claim specifying requested permission(s) for the token. Only one of audience or scopes can be specified for a credentials.

scopes define the permissions being requested for this specific session when interacting with a service. For example, https://www.googleapis.com/auth/devstorage.read_write. IAM permissions, on the other hand, define the underlying capabilities the service account possesses within a system. For example, storage.buckets.delete. When a token generated with specific scopes is used, the request must be permitted by both the service account’s underlying IAM permissions and the scopes requested for the token. Therefore, scopes act as an additional restriction on what the token can be used for. Please see relevant section in service account authorization to learn more about scopes and IAM permissions.

Implementations§

Source§

impl AccessSpecifier

Source

pub fn from_scopes<I, S>(scopes: I) -> Self
where I: IntoIterator<Item = S>, S: Into<String>,

Creates AccessSpecifier with scopes.

§Example
let access_specifier = AccessSpecifier::from_scopes(["https://www.googleapis.com/auth/pubsub"]);
let service_account_key = serde_json::json!({ /* add details here */ });
let credentials = Builder::new(service_account_key)
    .with_access_specifier(access_specifier)
    .build();
Source

pub fn from_audience<S: Into<String>>(audience: S) -> Self

Creates AccessSpecifier with an audience.

The value should be https://{SERVICE}/, e.g., https://pubsub.googleapis.com/

§Example
let access_specifier = AccessSpecifier::from_audience("https://bigtable.googleapis.com/");
let service_account_key = serde_json::json!({ /* add details here */ });
let credentials = Builder::new(service_account_key)
    .with_access_specifier(access_specifier)
    .build();

Trait Implementations§

Source§

impl Clone for AccessSpecifier

Source§

fn clone(&self) -> AccessSpecifier

Returns a duplicate of the value. Read more
1.0.0 · Source§

fn clone_from(&mut self, source: &Self)

Performs copy-assignment from source. Read more
Source§

impl Debug for AccessSpecifier

Source§

fn fmt(&self, f: &mut Formatter<'_>) -> Result

Formats the value using the given formatter. Read more
Source§

impl PartialEq for AccessSpecifier

Source§

fn eq(&self, other: &AccessSpecifier) -> bool

Tests for self and other values to be equal, and is used by ==.
1.0.0 · Source§

fn ne(&self, other: &Rhs) -> bool

Tests for !=. The default implementation is almost always sufficient, and should not be overridden without very good reason.
Source§

impl StructuralPartialEq for AccessSpecifier

Auto Trait Implementations§

Blanket Implementations§

Source§

impl<T> Any for T
where T: 'static + ?Sized,

Source§

fn type_id(&self) -> TypeId

Gets the TypeId of self. Read more
Source§

impl<T> Borrow<T> for T
where T: ?Sized,

Source§

fn borrow(&self) -> &T

Immutably borrows from an owned value. Read more
Source§

impl<T> BorrowMut<T> for T
where T: ?Sized,

Source§

fn borrow_mut(&mut self) -> &mut T

Mutably borrows from an owned value. Read more
Source§

impl<T> CloneToUninit for T
where T: Clone,

Source§

unsafe fn clone_to_uninit(&self, dest: *mut u8)

🔬This is a nightly-only experimental API. (clone_to_uninit)
Performs copy-assignment from self to dest. Read more
Source§

impl<T> From<T> for T

Source§

fn from(t: T) -> T

Returns the argument unchanged.

Source§

impl<T> Instrument for T

Source§

fn instrument(self, span: Span) -> Instrumented<Self>

Instruments this type with the provided Span, returning an Instrumented wrapper. Read more
Source§

fn in_current_span(self) -> Instrumented<Self>

Instruments this type with the current Span, returning an Instrumented wrapper. Read more
Source§

impl<T, U> Into<U> for T
where U: From<T>,

Source§

fn into(self) -> U

Calls U::from(self).

That is, this conversion is whatever the implementation of From<T> for U chooses to do.

Source§

impl<T> PolicyExt for T
where T: ?Sized,

Source§

fn and<P, B, E>(self, other: P) -> And<T, P>
where T: Policy<B, E>, P: Policy<B, E>,

Create a new Policy that returns Action::Follow only if self and other return Action::Follow. Read more
Source§

fn or<P, B, E>(self, other: P) -> Or<T, P>
where T: Policy<B, E>, P: Policy<B, E>,

Create a new Policy that returns Action::Follow if either self or other returns Action::Follow. Read more
Source§

impl<T> ToOwned for T
where T: Clone,

Source§

type Owned = T

The resulting type after obtaining ownership.
Source§

fn to_owned(&self) -> T

Creates owned data from borrowed data, usually by cloning. Read more
Source§

fn clone_into(&self, target: &mut T)

Uses borrowed data to replace owned data, usually by cloning. Read more
Source§

impl<T, U> TryFrom<U> for T
where U: Into<T>,

Source§

type Error = Infallible

The type returned in the event of a conversion error.
Source§

fn try_from(value: U) -> Result<T, <T as TryFrom<U>>::Error>

Performs the conversion.
Source§

impl<T, U> TryInto<U> for T
where U: TryFrom<T>,

Source§

type Error = <U as TryFrom<T>>::Error

The type returned in the event of a conversion error.
Source§

fn try_into(self) -> Result<U, <U as TryFrom<T>>::Error>

Performs the conversion.
Source§

impl<V, T> VZip<V> for T
where V: MultiLane<T>,

Source§

fn vzip(self) -> V

Source§

impl<T> WithSubscriber for T

Source§

fn with_subscriber<S>(self, subscriber: S) -> WithDispatch<Self>
where S: Into<Dispatch>,

Attaches the provided Subscriber to this type, returning a WithDispatch wrapper. Read more
Source§

fn with_current_subscriber(self) -> WithDispatch<Self>

Attaches the current default Subscriber to this type, returning a WithDispatch wrapper. Read more
Source§

impl<T> ErasedDestructor for T
where T: 'static,