Skip to main content

SessionRenewer

webgates_sessions::services

Struct SessionRenewer 

Source 
pub struct SessionRenewer<R, A, G, H> { /* private fields */ }
Expand description

Renews existing sessions using refresh-token rotation.

Use this service when a client presents a refresh token and you need to decide whether renewal is needed, coordinate leases, rotate token state, and produce replacement tokens.

§Examples

use webgates_sessions::config::SessionConfig;
use webgates_sessions::services::SessionRenewer;
use webgates_sessions::tokens::{
    OpaqueRefreshTokenGenerator, RefreshTokenLength, Sha256RefreshTokenHasher,
    TokenPairIssuer, AuthToken, AuthTokenIssuer,
};
use webgates_sessions::session::Session;

#[derive(Debug, Clone, Copy)]
struct NoopIssuer;

impl AuthTokenIssuer<Session> for NoopIssuer {
    type Error = webgates_sessions::errors::TokenError;
    fn issue_auth_token(
        &self,
        s: &Session,
    ) -> impl std::future::Future<Output = Result<AuthToken, Self::Error>> + Send {
        std::future::ready(AuthToken::new(format!("auth-{}", s.subject_id)))
    }
}


let length = RefreshTokenLength::new(64).unwrap();
let token_pair_issuer = TokenPairIssuer::new(
    NoopIssuer,
    OpaqueRefreshTokenGenerator::new(length),
    Sha256RefreshTokenHasher,
);

let renewer = SessionRenewer::new(
    SessionConfig::default(),
    Noop,
    token_pair_issuer,
)
.unwrap();

Implementations§

Source§

impl<R, A, G, H> SessionRenewer<R, A, G, H>

Source

pub fn new( config: SessionConfig, repository: R, token_pair_issuer: TokenPairIssuer<A, G, H>, ) -> ConfigResult<Self>

Creates a new session renewer.

§Errors

Returns a configuration error when config is internally inconsistent.

Source§

impl<R, A, G, H> SessionRenewer<R, A, G, H>
where R: SessionRepository, A: AuthTokenIssuer<Session>, G: RefreshTokenGenerator, H: RefreshTokenHasher,

Source

pub async fn renew_session( &self, auth_token_state: AuthTokenState, requirement: RenewalRequirement, refresh_token: &RefreshTokenPlaintext, now: SystemTime, ) -> Result<RenewalOutcome>

Attempts to renew a session using the presented refresh token.

Valid auth tokens that are not yet near expiry short-circuit to RenewalOutcome::NotNeeded without touching persistence.

§Errors

Returns a session error when hashing, repository access, token issuance, or family revocation fails.

Trait Implementations§

Source§

impl<R: Clone, A: Clone, G: Clone, H: Clone> Clone for SessionRenewer<R, A, G, H>

Source§

fn clone(&self) -> SessionRenewer<R, A, G, H>

Returns a duplicate of the value. Read more
1.0.0 (const: unstable) · Source§

fn clone_from(&mut self, source: &Self)

Performs copy-assignment from source. Read more
Source§

impl<R: Debug, A: Debug, G: Debug, H: Debug> Debug for SessionRenewer<R, A, G, H>

Source§

fn fmt(&self, f: &mut Formatter<'_>) -> Result

Formats the value using the given formatter. Read more

Auto Trait Implementations§

§

impl<R, A, G, H> Freeze for SessionRenewer<R, A, G, H>
where R: Freeze, A: Freeze, G: Freeze, H: Freeze,

§

impl<R, A, G, H> RefUnwindSafe for SessionRenewer<R, A, G, H>
where R: RefUnwindSafe, A: RefUnwindSafe, G: RefUnwindSafe, H: RefUnwindSafe,

§

impl<R, A, G, H> Send for SessionRenewer<R, A, G, H>
where R: Send, A: Send, G: Send, H: Send,

§

impl<R, A, G, H> Sync for SessionRenewer<R, A, G, H>
where R: Sync, A: Sync, G: Sync, H: Sync,

§

impl<R, A, G, H> Unpin for SessionRenewer<R, A, G, H>
where R: Unpin, A: Unpin, G: Unpin, H: Unpin,

§

impl<R, A, G, H> UnsafeUnpin for SessionRenewer<R, A, G, H>
where R: UnsafeUnpin, A: UnsafeUnpin, G: UnsafeUnpin, H: UnsafeUnpin,

§

impl<R, A, G, H> UnwindSafe for SessionRenewer<R, A, G, H>
where R: UnwindSafe, A: UnwindSafe, G: UnwindSafe, H: UnwindSafe,

Blanket Implementations§

Source§

impl<T> Any for T
where T: 'static + ?Sized,

Source§

fn type_id(&self) -> TypeId

Gets the TypeId of self. Read more
Source§

impl<T> Borrow<T> for T
where T: ?Sized,

Source§

fn borrow(&self) -> &T

Immutably borrows from an owned value. Read more
Source§

impl<T> BorrowMut<T> for T
where T: ?Sized,

Source§

fn borrow_mut(&mut self) -> &mut T

Mutably borrows from an owned value. Read more
Source§

impl<T> CloneToUninit for T
where T: Clone,

Source§

unsafe fn clone_to_uninit(&self, dest: *mut u8)

🔬This is a nightly-only experimental API. (clone_to_uninit)
Performs copy-assignment from self to dest. Read more
Source§

impl<T> From<T> for T

Source§

fn from(t: T) -> T

Returns the argument unchanged.

Source§

impl<T> Instrument for T

Source§

fn instrument(self, span: Span) -> Instrumented<Self>

Instruments this type with the provided Span, returning an Instrumented wrapper. Read more
Source§

fn in_current_span(self) -> Instrumented<Self>

Instruments this type with the current Span, returning an Instrumented wrapper. Read more
Source§

impl<T, U> Into<U> for T
where U: From<T>,

Source§

fn into(self) -> U

Calls U::from(self).

That is, this conversion is whatever the implementation of From<T> for U chooses to do.

Source§

impl<T> PolicyExt for T
where T: ?Sized,

Source§

fn and<P, B, E>(self, other: P) -> And<T, P>
where T: Policy<B, E>, P: Policy<B, E>,

Create a new Policy that returns Action::Follow only if self and other return Action::Follow. Read more
Source§

fn or<P, B, E>(self, other: P) -> Or<T, P>
where T: Policy<B, E>, P: Policy<B, E>,

Create a new Policy that returns Action::Follow if either self or other returns Action::Follow. Read more
Source§

impl<T> Same for T

Source§

type Output = T

Should always be Self
Source§

impl<T> ToOwned for T
where T: Clone,

Source§

type Owned = T

The resulting type after obtaining ownership.
Source§

fn to_owned(&self) -> T

Creates owned data from borrowed data, usually by cloning. Read more
Source§

fn clone_into(&self, target: &mut T)

Uses borrowed data to replace owned data, usually by cloning. Read more
Source§

impl<T, U> TryFrom<U> for T
where U: Into<T>,

Source§

type Error = Infallible

The type returned in the event of a conversion error.
Source§

fn try_from(value: U) -> Result<T, <T as TryFrom<U>>::Error>

Performs the conversion.
Source§

impl<T, U> TryInto<U> for T
where U: TryFrom<T>,

Source§

type Error = <U as TryFrom<T>>::Error

The type returned in the event of a conversion error.
Source§

fn try_into(self) -> Result<U, <U as TryFrom<T>>::Error>

Performs the conversion.
Source§

impl<V, T> VZip<V> for T
where V: MultiLane<T>,

Source§

fn vzip(self) -> V

Source§

impl<T> WithSubscriber for T

Source§

fn with_subscriber<S>(self, subscriber: S) -> WithDispatch<Self>
where S: Into<Dispatch>,

Attaches the provided Subscriber to this type, returning a WithDispatch wrapper. Read more
Source§

fn with_current_subscriber(self) -> WithDispatch<Self>

Attaches the current default Subscriber to this type, returning a WithDispatch wrapper. Read more