Expand description
OAuth 2.0 bearer Authenticator for klieo HTTP transports.
Implements klieo_auth_common::Authenticator with local JWT
verification + a JWKS cache fetched at builder construction +
refreshed on signature-verification failure. Scope-based method
authorization via an operator-supplied allow-list.
See ADR-021 and the cluster 0.21 spec for design details. T3 fills in the actual verifier; T2 is the crate skeleton.
Structs§
- OAuth
Authenticator - OAuth 2.0 bearer-token Authenticator. Construct via
OAuthAuthenticator::builder. - OAuth
Authenticator Builder - Fluent builder for
OAuthAuthenticator.
Enums§
- OAuth
Error - Errors surfaced by
crate::OAuthAuthenticator+crate::OAuthAuthenticatorBuilder. T3 fills in the verifier paths; T2 ships the variant shapes the rest of the cluster depends on.