Skip to main content

Identity

rustio_admin::auth

Struct Identity 

Source 
pub struct Identity {
    pub user_id: i64,
    pub email: String,
    pub role: Role,
    pub is_active: bool,
    pub is_demo: bool,
    pub demo_label: Option<String>,
    pub must_change_password: bool,
    pub mfa_enabled: bool,
    pub trust_level: SessionTrust,
}
Expand description

The identity attached to a request by the auth middleware. Kept cheap to clone because we pass it into handler bodies.

Fields§

§user_id: i64§email: String§role: Role§is_active: bool§is_demo: bool

Whether this user was seeded by a demo-fixture flow. Drives the red banner in the admin UI; remains FALSE for users created via the normal create_user path.

§demo_label: Option<String>§must_change_password: bool

Mirrors the rustio_users.must_change_password column added in R1’s recovery migration. When TRUE, R2’s login_guard (commit #13) redirects every authenticated request to /admin/must-change-password until the user completes the forced rotation, except for a small whitelist (/admin/must-change-password, /admin/logout, /admin/account/sessions). R1 emissions don’t read this field; this commit only loads it from the SQL paths so commits #9 / #13 can act on it.

§mfa_enabled: bool

Mirrors the rustio_users.mfa_enabled column added in R3’s MFA migration (commit #1). When TRUE, the login flow (commit #16) redirects to /admin/mfa/verify after successful password verification, and R3’s login_guard extension (commit #18) restricts non-MFA-verified sessions to a small whitelist (/admin/mfa/verify, /admin/logout, /admin/account/sessions). Pre-R3 sessions and users who have not enrolled get FALSE and bypass the challenge entirely — pre-R3 framework behaviour.

§trust_level: SessionTrust

The active session’s trust level (authenticated / elevated / mfa_verified). R3’s login_guard (commit #18) reads this together with mfa_enabled to gate the pending-MFA state: an MFA-enrolled user whose current session has trust_level != mfa_verified (i.e. just signed in, hasn’t yet completed /admin/mfa/verify) is restricted to a tiny whitelist until they finish the second-factor challenge. Pre-R3 sessions default to SessionTrust::Authenticated from the schema’s column default — no migration data change.

Implementations§

Source§

impl Identity

Source

pub fn is_admin(&self) -> bool

Administrator-or-higher (Administrator, Developer).

Source

pub fn can_access_admin(&self) -> bool

Anyone allowed into the admin panel (Staff and above).

Trait Implementations§

Source§

impl Clone for Identity

Source§

fn clone(&self) -> Identity

Returns a duplicate of the value. Read more
1.0.0 (const: unstable) · Source§

fn clone_from(&mut self, source: &Self)

Performs copy-assignment from source. Read more
Source§

impl Debug for Identity

Source§

fn fmt(&self, f: &mut Formatter<'_>) -> Result

Formats the value using the given formatter. Read more

Auto Trait Implementations§

Blanket Implementations§

Source§

impl<T> Any for T
where T: 'static + ?Sized,

Source§

fn type_id(&self) -> TypeId

Gets the TypeId of self. Read more
Source§

impl<T> Borrow<T> for T
where T: ?Sized,

Source§

fn borrow(&self) -> &T

Immutably borrows from an owned value. Read more
Source§

impl<T> BorrowMut<T> for T
where T: ?Sized,

Source§

fn borrow_mut(&mut self) -> &mut T

Mutably borrows from an owned value. Read more
Source§

impl<T> CloneToUninit for T
where T: Clone,

Source§

unsafe fn clone_to_uninit(&self, dest: *mut u8)

🔬This is a nightly-only experimental API. (clone_to_uninit)
Performs copy-assignment from self to dest. Read more
Source§

impl<T> From<T> for T

Source§

fn from(t: T) -> T

Returns the argument unchanged.

Source§

impl<T> Instrument for T

Source§

fn instrument(self, span: Span) -> Instrumented<Self>

Instruments this type with the provided Span, returning an Instrumented wrapper. Read more
Source§

fn in_current_span(self) -> Instrumented<Self>

Instruments this type with the current Span, returning an Instrumented wrapper. Read more
Source§

impl<T, U> Into<U> for T
where U: From<T>,

Source§

fn into(self) -> U

Calls U::from(self).

That is, this conversion is whatever the implementation of From<T> for U chooses to do.

Source§

impl<T> IntoEither for T

Source§

fn into_either(self, into_left: bool) -> Either<Self, Self>

Converts self into a Left variant of Either<Self, Self> if into_left is true. Converts self into a Right variant of Either<Self, Self> otherwise. Read more
Source§

fn into_either_with<F>(self, into_left: F) -> Either<Self, Self>
where F: FnOnce(&Self) -> bool,

Converts self into a Left variant of Either<Self, Self> if into_left(&self) returns true. Converts self into a Right variant of Either<Self, Self> otherwise. Read more
Source§

impl<T> Same for T

Source§

type Output = T

Should always be Self
Source§

impl<T> ToOwned for T
where T: Clone,

Source§

type Owned = T

The resulting type after obtaining ownership.
Source§

fn to_owned(&self) -> T

Creates owned data from borrowed data, usually by cloning. Read more
Source§

fn clone_into(&self, target: &mut T)

Uses borrowed data to replace owned data, usually by cloning. Read more
Source§

impl<T, U> TryFrom<U> for T
where U: Into<T>,

Source§

type Error = Infallible

The type returned in the event of a conversion error.
Source§

fn try_from(value: U) -> Result<T, <T as TryFrom<U>>::Error>

Performs the conversion.
Source§

impl<T, U> TryInto<U> for T
where U: TryFrom<T>,

Source§

type Error = <U as TryFrom<T>>::Error

The type returned in the event of a conversion error.
Source§

fn try_into(self) -> Result<U, <U as TryFrom<T>>::Error>

Performs the conversion.
Source§

impl<V, T> VZip<V> for T
where V: MultiLane<T>,

Source§

fn vzip(self) -> V

Source§

impl<T> WithSubscriber for T

Source§

fn with_subscriber<S>(self, subscriber: S) -> WithDispatch<Self>
where S: Into<Dispatch>,

Attaches the provided Subscriber to this type, returning a WithDispatch wrapper. Read more
Source§

fn with_current_subscriber(self) -> WithDispatch<Self>

Attaches the current default Subscriber to this type, returning a WithDispatch wrapper. Read more