Crate rauthy_client

Minimal and safe by default client library for the Rauthy project.

You can of course use any generic OIDC client with Rauthy. However, the idea of this crate is to provide the simplest possible production ready setup, with the least amount of overhead and secure default values, if you only use Rauthy anyway.

You can find examples for actix-web, axum or a fully generic framework / application in the Examples directory.

Features

• actix-web will enable actix-web specific extractors and api
• axum will enable axum specific extractors and api

Modules

• cookie_state
  Handles the encrypted OIDC state cookie for the login flow
• handler
  The api which need to be called from your endpoints
• oidc_config
  The Rauthy OIDC config
• principal
  The authenticated Principal, extracted from valid JWT tokens
• provider
  Rauthy / OIDC provider config and setup
• rauthy_error
• token_set
  Provides everything necessary to extract and validate JWT token claims

Macros

• validate_jwt

Structs

• RootCertificate
  Represents a server X509 certificate.

Enums

• DangerAcceptInvalidCerts
• RauthyHttpsOnly

Functions

• extract_token_claims
  Extracts the claims from a given token into the given struct. CAUTION: Does not validate the token!
• generate_pkce_challenge
  Generates a secure random pkce s256 challenge and returns (verifier, challenge)
• init
  The init function must be called exactly once during your app start up before(!) the OidcProvider::setup_*() function. It will initialize variables, clients, cache, and validate the OIDC configuration.
• init_with
  This function must be called exactly once during your app start up before(!) the OidcProvider::setup_*() function. It will initialize variables, clients, cache, and validate the OIDC configuration.
• secure_random
  Generates a secure random alphanumeric value with the given length.