Skip to main content

VerificationStrategies

rust_mcp_extra::token_verifier

Enum VerificationStrategies 

Source 
pub enum VerificationStrategies {
    Introspection {
        introspection_uri: String,
        client_id: String,
        client_secret: String,
        use_basic_auth: bool,
        extra_params: Option<Vec<(&'static str, &'static str)>>,
    },
    JWKs {
        jwks_uri: String,
    },
    UserInfo {
        userinfo_uri: String,
    },
}
Expand description

Supported OAuth token verification strategies.

Each variant represents a different method for validating access tokens, depending on what the authorization server exposes or what your application requires.

Variants§

§

Introspection

Verifies tokens by calling the authorization server’s introspection endpoint, as defined in RFC 7662.

This method allows the resource server to validate opaque or JWT tokens by sending them to the introspection URI along with its client credentials.

Fields

§introspection_uri: String

The OAuth introspection endpoint.

§client_id: String

Client identifier used to authenticate the introspection request.

§client_secret: String

Client secret used to authenticate the introspection request.

§use_basic_auth: bool

Indicates whether the OAuth2 client should use HTTP Basic Authentication when calling the token introspection endpoint. if false: client_id and client_secret will be sent in the POST body instead of using Basic Authentication

§extra_params: Option<Vec<(&'static str, &'static str)>>

Optional key-value pairs to include as additional parameters in the body of the token introspection request. Example : (“token_type_hint”, “access_token”)

§

JWKs

Verifies JWT access tokens using the authorization server’s JSON Web Key Set (JWKS) endpoint.

This strategy allows fully offline signature validation after retrieving the key set, making it efficient for high-throughput services.

Fields

§jwks_uri: String

The JWKS endpoint URL used to retrieve signing keys.

§

UserInfo

Verifies tokens by querying the OpenID Connect UserInfo endpoint.

This strategy is typically used when token validity is tied to the user’s profile information or when the resource server relies on OIDC user data for validation.

Fields

§userinfo_uri: String

Auto Trait Implementations§

Blanket Implementations§

Source§

impl<T> Any for T
where T: 'static + ?Sized,

Source§

fn type_id(&self) -> TypeId

Gets the TypeId of self. Read more
Source§

impl<T> Borrow<T> for T
where T: ?Sized,

Source§

fn borrow(&self) -> &T

Immutably borrows from an owned value. Read more
Source§

impl<T> BorrowMut<T> for T
where T: ?Sized,

Source§

fn borrow_mut(&mut self) -> &mut T

Mutably borrows from an owned value. Read more
Source§

impl<T> From<T> for T

Source§

fn from(t: T) -> T

Returns the argument unchanged.

Source§

impl<T> Instrument for T

Source§

fn instrument(self, span: Span) -> Instrumented<Self>

Instruments this type with the provided Span, returning an Instrumented wrapper. Read more
Source§

fn in_current_span(self) -> Instrumented<Self>

Instruments this type with the current Span, returning an Instrumented wrapper. Read more
Source§

impl<T, U> Into<U> for T
where U: From<T>,

Source§

fn into(self) -> U

Calls U::from(self).

That is, this conversion is whatever the implementation of From<T> for U chooses to do.

Source§

impl<T> PolicyExt for T
where T: ?Sized,

Source§

fn and<P, B, E>(self, other: P) -> And<T, P>
where T: Policy<B, E>, P: Policy<B, E>,

Create a new Policy that returns Action::Follow only if self and other return Action::Follow. Read more
Source§

fn or<P, B, E>(self, other: P) -> Or<T, P>
where T: Policy<B, E>, P: Policy<B, E>,

Create a new Policy that returns Action::Follow if either self or other returns Action::Follow. Read more
Source§

impl<T, U> TryFrom<U> for T
where U: Into<T>,

Source§

type Error = Infallible

The type returned in the event of a conversion error.
Source§

fn try_from(value: U) -> Result<T, <T as TryFrom<U>>::Error>

Performs the conversion.
Source§

impl<T, U> TryInto<U> for T
where U: TryFrom<T>,

Source§

type Error = <U as TryFrom<T>>::Error

The type returned in the event of a conversion error.
Source§

fn try_into(self) -> Result<U, <U as TryFrom<T>>::Error>

Performs the conversion.
Source§

impl<V, T> VZip<V> for T
where V: MultiLane<T>,

Source§

fn vzip(self) -> V

Source§

impl<T> WithSubscriber for T

Source§

fn with_subscriber<S>(self, subscriber: S) -> WithDispatch<Self>
where S: Into<Dispatch>,

Attaches the provided Subscriber to this type, returning a WithDispatch wrapper. Read more
Source§

fn with_current_subscriber(self) -> WithDispatch<Self>

Attaches the current default Subscriber to this type, returning a WithDispatch wrapper. Read more