Skip to main content

OAuthStateStore

Struct OAuthStateStore

pub struct OAuthStateStore { /* private fields */ }

Expand description

Stores OAuth state parameters to prevent CSRF attacks on the callback.

State tokens are short-lived (10 minutes) and single-use. Backed by an OAuthStateBackend; defaults to in-memory but the runtime persists them to SQLite so they survive a restart that happens mid-OAuth-handshake.

Implementations§

impl OAuthStateStore

pub fn new() -> Self

pub fn with_backend(backend: Box<dyn OAuthStateBackend>) -> Self

pub fn create(&self, provider: &str) -> String

Generate and store a new state parameter. Returns the random state string.

pub fn validate(&self, state: &str, expected_provider: &str) -> bool

Validate and consume a state parameter. Returns true iff the state existed, has not expired, and matches expected_provider. The token is removed either way to make replay impossible.

Trait Implementations§

impl Default for OAuthStateStore

fn default() -> Self

Returns the “default value” for a type. Read more

Auto Trait Implementations§

impl Freeze for OAuthStateStore

impl !RefUnwindSafe for OAuthStateStore

impl Send for OAuthStateStore

impl Sync for OAuthStateStore

impl Unpin for OAuthStateStore

impl UnsafeUnpin for OAuthStateStore

impl !UnwindSafe for OAuthStateStore

Blanket Implementations§

impl<T> Any for T
where T: 'static + ?Sized,

fn type_id(&self) -> TypeId

Gets the TypeId of self. Read more

impl<T> Borrow<T> for T
where T: ?Sized,

fn borrow(&self) -> &T

Immutably borrows from an owned value. Read more

impl<T> BorrowMut<T> for T
where T: ?Sized,

fn borrow_mut(&mut self) -> &mut T

Mutably borrows from an owned value. Read more

impl<T> From<T> for T

fn from(t: T) -> T

Returns the argument unchanged.

impl<T, U> Into<U> for T
where U: From<T>,

fn into(self) -> U

Calls U::from(self).

That is, this conversion is whatever the implementation of From<T> for U chooses to do.

impl<T> Same for T

type Output = T

Should always be Self

impl<T, U> TryFrom<U> for T
where U: Into<T>,

type Error = Infallible

The type returned in the event of a conversion error.

fn try_from(value: U) -> Result<T, <T as TryFrom<U>>::Error>

Performs the conversion.

impl<T, U> TryInto<U> for T
where U: TryFrom<T>,

type Error = <U as TryFrom<T>>::Error

The type returned in the event of a conversion error.

fn try_into(self) -> Result<U, <U as TryFrom<T>>::Error>

Performs the conversion.

impl<V, T> VZip<V> for T
where V: MultiLane<T>,

fn vzip(self) -> V