Expand description
The reference authenticator the binary uses.
A minimal token authenticator: a configured token -> principal map. With
no tokens configured it runs in dev mode, accepting any caller as an
anonymous (or token-named) principal, convenient for local runs, never for
production. Real consumers provide their own Authenticator (mTLS, JWT, an
external identity provider, …).
Structs§
- Allow
AllAuthorizer - The default
Authorizer: permits every authenticated principal every action. Authentication still applies; this only declines to add a second policy layer, so a deployment that wants none pays nothing. Swap in a realAuthorizerviacrate::handler::AppHandler::with_authorizer. - Reference
Authenticator - A bearer-token authenticator over a static
token -> principal idmap.