Struct jwt_simple::common::VerificationOptions

source · 
pub struct VerificationOptions {
Show 13 fields
    pub reject_before: Option<UnixTimeStamp>,
    pub accept_future: bool,
    pub required_subject: Option<String>,
    pub required_key_id: Option<String>,
    pub required_public_key: Option<String>,
    pub required_nonce: Option<String>,
    pub allowed_issuers: Option<HashSet<String>>,
    pub allowed_audiences: Option<HashSet<String>>,
    pub time_tolerance: Option<Duration>,
    pub max_validity: Option<Duration>,
    pub max_token_length: Option<usize>,
    pub max_header_length: Option<usize>,
    pub artificial_time: Option<UnixTimeStamp>,

}
Expand description

Additional features to enable during verification. Signatures and token expiration are already automatically verified.

Fields§

§reject_before: Option<UnixTimeStamp>

Reject tokens created before the given date

For a given user, the time of the last successful authentication can be kept in a database, and reject_before can then be used to reject older (replayed) tokens.

§accept_future: bool

Accept tokens created with a date in the future

§required_subject: Option<String>

Require a specific subject to be present

§required_key_id: Option<String>

Require a specific key identifier to be present

§required_public_key: Option<String>

Require a specific public key to be present

§required_nonce: Option<String>

Require a specific nonce to be present

§allowed_issuers: Option<HashSet<String>>

Require the issuer to be present in the set

§allowed_audiences: Option<HashSet<String>>

Require the audience to be present in the set

§time_tolerance: Option<Duration>

How much clock drift to tolerate when verifying token timestamps Default is 15 minutes, to work around common issues with clocks that are not perfectly accurate

§max_validity: Option<Duration>

Reject tokens created more than max_validity ago

§max_token_length: Option<usize>

Maximum token length to accept

§max_header_length: Option<usize>

Maximum unsafe, untrusted, unverified JWT header length to accept

§artificial_time: Option<UnixTimeStamp>

Change the current time. Only used for testing.

Trait Implementations§

source§

impl Clone for VerificationOptions

source§

fn clone(&self) -> VerificationOptions

Returns a copy of the value. Read more
1.0.0 · source§

fn clone_from(&mut self, source: &Self)

Performs copy-assignment from source. Read more
source§

impl Debug for VerificationOptions

source§

fn fmt(&self, f: &mut Formatter<'_>) -> Result

Formats the value using the given formatter. Read more
source§

impl Default for VerificationOptions

source§

fn default() -> Self

Returns the “default value” for a type. Read more
source§

impl PartialEq for VerificationOptions

source§

fn eq(&self, other: &VerificationOptions) -> bool

This method tests for self and other values to be equal, and is used by ==.
1.0.0 · source§

fn ne(&self, other: &Rhs) -> bool

This method tests for !=. The default implementation is almost always sufficient, and should not be overridden without very good reason.
source§

impl Eq for VerificationOptions

source§

impl StructuralPartialEq for VerificationOptions

Auto Trait Implementations§

Blanket Implementations§

source§

impl<T> Any for T
where T: 'static + ?Sized,

source§

fn type_id(&self) -> TypeId

Gets the TypeId of self. Read more
source§

impl<T> Borrow<T> for T
where T: ?Sized,

source§

fn borrow(&self) -> &T

Immutably borrows from an owned value. Read more
source§

impl<T> BorrowMut<T> for T
where T: ?Sized,

source§

fn borrow_mut(&mut self) -> &mut T

Mutably borrows from an owned value. Read more
source§

impl<T> From<T> for T

source§

fn from(t: T) -> T

Returns the argument unchanged.

source§

impl<T, U> Into<U> for T
where U: From<T>,

source§

fn into(self) -> U

Calls U::from(self).

That is, this conversion is whatever the implementation of From<T> for U chooses to do.

source§

impl<T> Same for T

§

type Output = T

Should always be Self
source§

impl<T> ToOwned for T
where T: Clone,

§

type Owned = T

The resulting type after obtaining ownership.
source§

fn to_owned(&self) -> T

Creates owned data from borrowed data, usually by cloning. Read more
source§

fn clone_into(&self, target: &mut T)

Uses borrowed data to replace owned data, usually by cloning. Read more
source§

impl<T, U> TryFrom<U> for T
where U: Into<T>,

§

type Error = Infallible

The type returned in the event of a conversion error.
source§

fn try_from(value: U) -> Result<T, <T as TryFrom<U>>::Error>

Performs the conversion.
source§

impl<T, U> TryInto<U> for T
where U: TryFrom<T>,

§

type Error = <U as TryFrom<T>>::Error

The type returned in the event of a conversion error.
source§

fn try_into(self) -> Result<U, <U as TryFrom<T>>::Error>

Performs the conversion.
§

impl<V, T> VZip<V> for T
where V: MultiLane<T>,

§

fn vzip(self) -> V