Crate ockam_identity
source ·Expand description
Identity is an abstraction over Identitys and Vaults, easing the use of these primitives in authentication and authorization APIs.
Re-exports
pub use error::*;
Modules
AccessControl
implementation based on SecureChannel authentication guarantees- SecureChannel API
- Storage used for previously authenticated info about others: attributes, public identities, etc.
- Possible change of an
Identity
- Change history of an
Identity
Identity history - Credential support
- Authority test support
- Errors
Structs
- Succeeds only if both
TrustPolicy
checks succeeded - Succeeds if any or both
TrustPolicy
checks succeeded - Authority Info is a set of information defining an authority
- Unique
crate::change::IdentityChange
identifier, computed as SHA256 of the change data - SecureChannelListener message wrapper.
- Credential retriever that retrieves a credential from memory
- Identity implementation
- Builder for
Identity
- An identifier of an Identity.
- Identity SecureChannel LocalInfo used for LocalMessage
Identity
-related constants- Attributes that are used to identify a key
- Public part of an
Identity
- Trust options for a Secure Channel Listener
- Trust options for a Secure Channel
- Registry of all known Secure Channels
- Known information about particular SecureChannel
- Authenticated data of the newly created SecureChannel to perform
TrustPolicy
check - A trust context defines which authorities are trusted to attest to which attributes, within a context. Our first implementation assumes that there is only one authority and it is trusted to attest to all attributes within this context.
- Trust any participant
TrustPolicy
based on pre-knownIdentityIdentifier
of the other participantTrustPolicy
based on list of pre-knownIdentityIdentifier
s of the possible participantsTrustPolicy
based on pre-knownPublicKey
of the other participant
Constants
- Identity SecureChannel LocalInfo unique Identifier
Traits
- Trait for retrieving a credential
- Traits required for a Vault implementation suitable for use in an Identity
- KeyExchanger with extra constraints
- NewKeyExchanger with extra constraints
- Vault with XX required functionality
- TrustPolicy check is run when creating new SecureChannel, its creation only succeeds if this check succeeds
Functions
- Return this vault as a hasher
- Return this vault as a secret vault
- Return this vault as a symmetric vault
- Return this vault as a XX vault