rusttls_jwt_authorizer/
lib.rs1#![doc = include_str!("../docs/README.md")]
2
3use axum::{async_trait, extract::FromRequestParts, http::request::Parts};
4use jsonwebtoken::TokenData;
5use serde::de::DeserializeOwned;
6
7pub use self::error::AuthError;
8pub use authorizer::{Authorizer, IntoLayer};
9pub use builder::{AuthorizerBuilder, JwtAuthorizer};
10pub use claims::{NumericDate, OneOrArray, RegisteredClaims};
11pub use jwks::key_store_manager::{Refresh, RefreshStrategy};
12pub use validation::Validation;
13
14pub mod authorizer;
15pub mod builder;
16pub mod claims;
17pub mod error;
18pub mod jwks;
19pub mod layer;
20mod oidc;
21pub mod validation;
22
23#[derive(Debug, Clone, Copy, Default)]
25pub struct JwtClaims<T>(pub T);
26
27#[async_trait]
28impl<T, S> FromRequestParts<S> for JwtClaims<T>
29where
30 T: DeserializeOwned + Send + Sync + Clone + 'static,
31 S: Send + Sync,
32{
33 type Rejection = AuthError;
34
35 async fn from_request_parts(parts: &mut Parts, _: &S) -> Result<Self, Self::Rejection> {
36 if let Some(claims) = parts.extensions.get::<TokenData<T>>() {
37 Ok(JwtClaims(claims.claims.clone()))
38 } else {
39 Err(AuthError::NoAuthorizerLayer())
40 }
41 }
42}