Expand description
VerifiedUser — sealed proof that an IdP-signed token was verified.
Possessing a VerifiedUser value is proof the framework verified an
IdP-signed token. The constructor is pub(crate) to plexus-auth-core,
so no other crate can fabricate one — the only path to producing a
VerifiedUser runs through the (forthcoming) verifier inside this crate.
Per AUTHZ-0 §“The sealed-type pattern”:
- No fabrication. Constructor is crate-private.
- No backdoor
From/Into. Orphan rules forbid foreign-trait impls for this foreign type from a third crate. - No accidental
Default. Not derived; a default would be anonymous-with-no-claims, easy to confuse with verified-anonymous. - No leaky
Deserialize. Not derived; raw JSON cannot fabricate a sealed value. - No mutation. Fields are private; no setters.
Structs§
- Verified
User - Sealed proof that an IdP-signed token was verified.