Expand description
§Kotoba Security
Comprehensive security components for Kotoba graph database system.
This crate provides:
- JWT token generation and validation
- OAuth2/OpenID Connect integration
- Multi-factor authentication (TOTP)
- Secure password hashing
- Session management
Re-exports§
pub use jwt::JwtService;pub use jwt::JwtClaims;pub use jwt::TokenPair;pub use oauth2::OAuth2Service;pub use oauth2::OAuth2Provider;pub use oauth2::OAuth2Tokens;pub use crate::config::OAuth2Config;pub use mfa::MfaService;pub use mfa::MfaSecret;pub use mfa::MfaCode;pub use password::PasswordService;pub use password::PasswordHash;pub use session::SessionManager;pub use session::SessionData;pub use audit::AuditService;pub use audit::AuditEvent;pub use audit::AuditEventType;pub use audit::AuditSeverity;pub use audit::AuditResult;pub use error::SecurityError;pub use error::Result;pub use config::SecurityConfig;pub use config::AuthMethod;pub use capabilities::Capability;pub use capabilities::CapabilitySet;pub use capabilities::CapabilityService;pub use capabilities::ResourceType;pub use capabilities::Action;
Modules§
- abac
- Attribute-Based Access Control (ABAC) implementation
- audit
- Security audit logging and event tracking
- capabilities
- Kotoba Capabilities
- config
- Security configuration types
- error
- Security error types and handling
- jwt
- JWT token management
- mfa
- Multi-Factor Authentication (MFA) using TOTP
- oauth2
- OAuth2 and OpenID Connect integration
- password
- Password hashing and verification
- policy
- Unified Policy Engine combining RBAC and ABAC
- rbac
- Role-Based Access Control (RBAC) implementation
- session
- Session management for stateless authentication
Structs§
- Auth
Result - Authentication result
- Authz
Result - Authorization check result
- Principal
- Principal for authorization decisions
- Resource
- Resource for authorization checks
- Security
Service - Main security service combining all components
- Simple
EnvProvider Wrapper - Simple
Resource Provider Wrapper - Simple
User Provider Wrapper - User
- User identity representation
Functions§
- init_
security - Convenience function to create a security service