Skip to main content

IssueConfig

ppoppo_token::id_token

Struct IssueConfig

pub struct IssueConfig { /* private fields */ }

Expand description

Issuance configuration for an OIDC id_token.

Constructed via IssueConfig::id_token which pins typ="JWT", cat="id", single-audience array, and the RP-supplied Nonce. Multi-audience tokens replace the audience list via with_audiences; hybrid + implicit flows add the at_hash / c_hash binding inputs via with_access_token_for_at_hash and with_authorization_code_for_c_hash.

Implementations§

impl IssueConfig

pub fn id_token( issuer: impl Into<String>, audience: impl Into<String>, kid: impl Into<String>, nonce: Nonce, ) -> Self

Build the canonical id_token config: JWT typ (the OIDC Core canonical id-token type, distinct from access tokens’ RFC 9068 at+jwt), id cat (M29-mirror profile-routing claim — see engine::check_id_token_cat), single-audience array, and the RP-supplied Nonce. Multi-aud tokens add audiences via with_audiences.

pub fn with_audiences(self, audiences: Vec<String>) -> Self

Replace the audience list. Engine emits the array form when audiences.len() > 1, single string when length is 1 (RFC 9068 §3 — also valid for OIDC Core which silently delegates to JWT rules). Empty audience list is a logic error — the engine refuses to emit such a token at issuance time.

pub fn with_access_token_for_at_hash( self, access_token: impl Into<String>, ) -> Self

Bind the issued id_token to a specific access_token via M67 at_hash emission. The engine will compute BASE64URL(SHA-256(access_token)[..16]) and embed it as the at_hash claim. Required when the same response carries both the id_token and the access_token; not called for pure code flow.

pub fn with_authorization_code_for_c_hash(self, code: impl Into<String>) -> Self

Bind the issued id_token to a specific authorization_code via M68 c_hash emission. The engine will compute BASE64URL(SHA-256(code)[..16]) and embed it as the c_hash claim. Required for hybrid flow responses; not called for implicit-only.

Trait Implementations§

impl Clone for IssueConfig

fn clone(&self) -> IssueConfig

Returns a duplicate of the value. Read more

1.0.0 (const: unstable) · Source§

fn clone_from(&mut self, source: &Self)

Performs copy-assignment from source. Read more

impl Debug for IssueConfig

fn fmt(&self, f: &mut Formatter<'_>) -> Result

Formats the value using the given formatter. Read more

Auto Trait Implementations§

impl Freeze for IssueConfig

impl RefUnwindSafe for IssueConfig

impl Send for IssueConfig

impl Sync for IssueConfig

impl Unpin for IssueConfig

impl UnsafeUnpin for IssueConfig

impl UnwindSafe for IssueConfig

Blanket Implementations§

impl<T> Any for T
where T: 'static + ?Sized,

fn type_id(&self) -> TypeId

Gets the TypeId of self. Read more

impl<T> Borrow<T> for T
where T: ?Sized,

fn borrow(&self) -> &T

Immutably borrows from an owned value. Read more

impl<T> BorrowMut<T> for T
where T: ?Sized,

fn borrow_mut(&mut self) -> &mut T

Mutably borrows from an owned value. Read more

impl<T> CloneToUninit for T
where T: Clone,

unsafe fn clone_to_uninit(&self, dest: *mut u8)

🔬This is a nightly-only experimental API. (clone_to_uninit)

Performs copy-assignment from self to dest. Read more

impl<T> From<T> for T

fn from(t: T) -> T

Returns the argument unchanged.

impl<T> Instrument for T

fn instrument(self, span: Span) -> Instrumented<Self>

Instruments this type with the provided Span, returning an Instrumented wrapper. Read more

fn in_current_span(self) -> Instrumented<Self>

Instruments this type with the current Span, returning an Instrumented wrapper. Read more

impl<T, U> Into<U> for T
where U: From<T>,

fn into(self) -> U

Calls U::from(self).

That is, this conversion is whatever the implementation of From<T> for U chooses to do.

impl<T> Same for T

type Output = T

Should always be Self

impl<T> ToOwned for T
where T: Clone,

type Owned = T

The resulting type after obtaining ownership.

fn to_owned(&self) -> T

Creates owned data from borrowed data, usually by cloning. Read more

fn clone_into(&self, target: &mut T)

Uses borrowed data to replace owned data, usually by cloning. Read more

impl<T, U> TryFrom<U> for T
where U: Into<T>,

type Error = Infallible

The type returned in the event of a conversion error.

fn try_from(value: U) -> Result<T, <T as TryFrom<U>>::Error>

Performs the conversion.

impl<T, U> TryInto<U> for T
where U: TryFrom<T>,

type Error = <U as TryFrom<T>>::Error

The type returned in the event of a conversion error.

fn try_into(self) -> Result<U, <U as TryFrom<T>>::Error>

Performs the conversion.

impl<V, T> VZip<V> for T
where V: MultiLane<T>,

fn vzip(self) -> V

impl<T> WithSubscriber for T

fn with_subscriber<S>(self, subscriber: S) -> WithDispatch<Self>
where S: Into<Dispatch>,

Attaches the provided Subscriber to this type, returning a WithDispatch wrapper. Read more

fn with_current_subscriber(self) -> WithDispatch<Self>

Attaches the current default Subscriber to this type, returning a WithDispatch wrapper. Read more