Expand description
API-key authentication and per-tenant resolution.
Keys are configured as raw_key:project_id pairs; the raw key is hashed
with SHA-256 at load time and never retained, so the in-memory store only
ever holds hashes. A presented Authorization: Bearer <key> header is
hashed and compared against the stored hashes in constant time.
Structs§
- Auth
Config - Resolved API-key configuration: a map of
sha256(key)hex → project id, plus whether the dev bypass is enabled.
Enums§
- Auth
- How a request resolved against the configured keys.