Skip to main content

Credentials

Enum Credentials 

Source
#[non_exhaustive]
pub enum Credentials { SqlServer { username: Cow<'static, str>, password: Cow<'static, str>, }, AzureAccessToken { token: Cow<'static, str>, }, AzureManagedIdentity { client_id: Option<Cow<'static, str>>, }, AzureServicePrincipal { tenant_id: Cow<'static, str>, client_id: Cow<'static, str>, client_secret: Cow<'static, str>, }, AzureDefault, Certificate { tenant_id: Cow<'static, str>, client_id: Cow<'static, str>, cert_path: Cow<'static, str>, password: Option<Cow<'static, str>>, }, }
Expand description

Credentials for SQL Server authentication.

This enum represents the various authentication methods supported. Credentials are designed to minimize copying of sensitive data.

Variants (Non-exhaustive)§

This enum is marked as non-exhaustive
Non-exhaustive enums could have additional variants added in future. Therefore, when matching against variants of non-exhaustive enums, an extra wildcard arm must be added to account for any future variants.
§

SqlServer

SQL Server authentication with username and password.

Fields

§username: Cow<'static, str>

Username.

§password: Cow<'static, str>

Password.

§

AzureAccessToken

Azure Active Directory / Entra ID access token.

Fields

§token: Cow<'static, str>

The access token string.

§

AzureManagedIdentity

Azure Managed Identity (for VMs and containers).

Fields

§client_id: Option<Cow<'static, str>>

Optional client ID for user-assigned identity.

§

AzureServicePrincipal

Azure Service Principal.

Fields

§tenant_id: Cow<'static, str>

Tenant ID.

§client_id: Cow<'static, str>

Client ID.

§client_secret: Cow<'static, str>

Client secret.

§

AzureDefault

Azure default credential chain (managed identity, then the signed-in az / azd CLI session). Maps to Authentication=ActiveDirectoryDefault.

§

Certificate

Client certificate authentication (Azure AD service principal with an X.509 certificate).

The certificate authenticates to Microsoft Entra, which issues the access token used for the FEDAUTH login. This is NOT TDS-level mutual TLS — SQL Server does not accept client certificates at the protocol level.

Fields

§tenant_id: Cow<'static, str>

Azure AD tenant ID.

§client_id: Cow<'static, str>

Application (client) ID of the service principal.

§cert_path: Cow<'static, str>

Path to the certificate file: PKCS#12 (.pfx), or a PEM file containing both the certificate and its private key.

§password: Option<Cow<'static, str>>

Optional password protecting the certificate’s private key.

Implementations§

Source§

impl Credentials

Source

pub fn sql_server( username: impl Into<Cow<'static, str>>, password: impl Into<Cow<'static, str>>, ) -> Credentials

Create SQL Server credentials.

Source

pub fn azure_token(token: impl Into<Cow<'static, str>>) -> Credentials

Create Azure access token credentials.

Source

pub fn azure_default() -> Credentials

Create Azure default-credential-chain credentials (Authentication=ActiveDirectoryDefault): managed identity, then the signed-in az / azd CLI session.

Requires the azure-identity feature.

Source

pub fn certificate( tenant_id: impl Into<Cow<'static, str>>, client_id: impl Into<Cow<'static, str>>, cert_path: impl Into<Cow<'static, str>>, password: Option<Cow<'static, str>>, ) -> Credentials

Create client-certificate (Azure AD service principal) credentials.

cert_path points at a PKCS#12 (.pfx) file, or a PEM file containing both the certificate and its private key. The certificate authenticates to Microsoft Entra, which issues the access token used for login.

Requires the cert-auth feature.

Source

pub fn is_sql_auth(&self) -> bool

Check if these credentials use SQL authentication.

Source

pub fn is_azure_ad(&self) -> bool

Check if these credentials use Azure AD.

Source

pub fn method_name(&self) -> &'static str

Get the authentication method name.

Trait Implementations§

Source§

impl Clone for Credentials

Source§

fn clone(&self) -> Credentials

Returns a duplicate of the value. Read more
1.0.0 (const: unstable) · Source§

fn clone_from(&mut self, source: &Self)

Performs copy-assignment from source. Read more
Source§

impl Debug for Credentials

Source§

fn fmt(&self, f: &mut Formatter<'_>) -> Result<(), Error>

Formats the value using the given formatter. Read more
Source§

impl From<Credentials> for SecureCredentials

Available on crate feature zeroize only.

Convert from non-secure credentials to secure credentials.

Source§

fn from(creds: Credentials) -> SecureCredentials

Converts to this type from the input type.

Auto Trait Implementations§

Blanket Implementations§

Source§

impl<T> Any for T
where T: 'static + ?Sized,

Source§

fn type_id(&self) -> TypeId

Gets the TypeId of self. Read more
Source§

impl<T> Borrow<T> for T
where T: ?Sized,

Source§

fn borrow(&self) -> &T

Immutably borrows from an owned value. Read more
Source§

impl<T> BorrowMut<T> for T
where T: ?Sized,

Source§

fn borrow_mut(&mut self) -> &mut T

Mutably borrows from an owned value. Read more
Source§

impl<T> CloneToUninit for T
where T: Clone,

Source§

unsafe fn clone_to_uninit(&self, dest: *mut u8)

🔬This is a nightly-only experimental API. (clone_to_uninit)
Performs copy-assignment from self to dest. Read more
Source§

impl<T> DynClone for T
where T: Clone,

Source§

fn __clone_box(&self, _: Private) -> *mut ()

Source§

impl<T> From<T> for T

Source§

fn from(t: T) -> T

Returns the argument unchanged.

Source§

impl<T> FutureExt for T

Source§

fn with_context(self, otel_cx: Context) -> WithContext<Self>

Attaches the provided Context to this type, returning a WithContext wrapper. Read more
Source§

fn with_current_context(self) -> WithContext<Self>

Attaches the current Context to this type, returning a WithContext wrapper. Read more
Source§

impl<T> Instrument for T

Source§

fn instrument(self, span: Span) -> Instrumented<Self>

Instruments this type with the provided Span, returning an Instrumented wrapper. Read more
Source§

fn in_current_span(self) -> Instrumented<Self>

Instruments this type with the current Span, returning an Instrumented wrapper. Read more
Source§

impl<T, U> Into<U> for T
where U: From<T>,

Source§

fn into(self) -> U

Calls U::from(self).

That is, this conversion is whatever the implementation of From<T> for U chooses to do.

Source§

impl<T> PolicyExt for T
where T: ?Sized,

Source§

fn and<P, B, E>(self, other: P) -> And<T, P>
where T: Sized + Policy<B, E>, P: Policy<B, E>,

Create a new Policy that returns Action::Follow only if self and other return Action::Follow. Read more
Source§

fn or<P, B, E>(self, other: P) -> Or<T, P>
where T: Sized + Policy<B, E>, P: Policy<B, E>,

Create a new Policy that returns Action::Follow if either self or other returns Action::Follow. Read more
Source§

impl<T> Same for T

Source§

type Output = T

Should always be Self
Source§

impl<T> ToOwned for T
where T: Clone,

Source§

type Owned = T

The resulting type after obtaining ownership.
Source§

fn to_owned(&self) -> T

Creates owned data from borrowed data, usually by cloning. Read more
Source§

fn clone_into(&self, target: &mut T)

Uses borrowed data to replace owned data, usually by cloning. Read more
Source§

impl<T, U> TryFrom<U> for T
where U: Into<T>,

Source§

type Error = Infallible

The type returned in the event of a conversion error.
Source§

fn try_from(value: U) -> Result<T, <T as TryFrom<U>>::Error>

Performs the conversion.
Source§

impl<T, U> TryInto<U> for T
where U: TryFrom<T>,

Source§

type Error = <U as TryFrom<T>>::Error

The type returned in the event of a conversion error.
Source§

fn try_into(self) -> Result<U, <U as TryFrom<T>>::Error>

Performs the conversion.
Source§

impl<V, T> VZip<V> for T
where V: MultiLane<T>,

Source§

fn vzip(self) -> V

Source§

impl<T> WithSubscriber for T

Source§

fn with_subscriber<S>(self, subscriber: S) -> WithDispatch<Self>
where S: Into<Dispatch>,

Attaches the provided Subscriber to this type, returning a WithDispatch wrapper. Read more
Source§

fn with_current_subscriber(self) -> WithDispatch<Self>

Attaches the current default Subscriber to this type, returning a WithDispatch wrapper. Read more