22 releases (8 stable)
1.2.5 | Sep 6, 2024 |
---|---|
1.2.3 | Jun 1, 2024 |
1.2.0 | Dec 25, 2023 |
1.1.0 | Nov 11, 2023 |
0.3.1 | Nov 24, 2021 |
#143 in HTTP server
39 downloads per month
43KB
824 lines
Actix 4 compatible JWT authentication
In order to make use of this crate, you can add it to your Cargo.toml
This crate is build with actix-4.
actix-4-jwt-auth = "1.2.0"
Or when you like to use the latest as found on github:
actix-4-jwt-auth = {git = "https://github.com/spectare/actix-4-jwt-auth", branch = "main"}
Works with extractors
#[derive(Debug, PartialEq, Clone, Serialize, Deserialize)]
pub struct FoundClaims {
pub iss: String,
pub sub: String,
pub aud: String,
pub name: String,
pub email: Option<String>,
pub email_verified: Option<bool>,
}
#[get("/authenticated_user")]
async fn authenticated_user(user: AuthenticatedUser<FoundClaims>) -> String {
format!("Welcome {}!", user.claims.name)
}
Is a Actix endpoint URL that extracts the AuthenticatedUser from the JWT based Authorization Bearer header.
You can wire your application like
let authority = "https://a.valid.openid-connect.idp/".to_string();
let oidc = Oidc::new(OidcConfig::Issuer(authority.clone().into())).await.unwrap();
let biscuit_validator = OidcBiscuitValidator { options: ValidationOptions {
issuer: Validation::Validate(authority),
..ValidationOptions::default()
}
};
HttpServer::new(move || {
App::new()
.app_data(oidc.clone())
.wrap(biscuit_validator.clone())
// .wrap(OidcBiscuitValidator::default()) //without issuer verification
.service(authenticated_user),
})
.bind("0.0.0.0:8080".to_string())?
.run()
.await
This will find the token from Authorization
header value if you use Oidc::new
You can override the token lookup location (custom header or cookie) by importing TokenLookup
enum
use actix_4_jwt_auth::{Oidc, OidcConfig, TokenLookup};
If you want you use custom header:
let token_lookup = TokenLookup::Header("x-custom-auth-header".into());
or use custom cookie:
let token_lookup = TokenLookup::Cookie("x-custom-auth-cookie".into());
and pass token_lookup
as Oidc::new_with_token_lookup
's second parameter
let oidc = Oidc::new_with_token_lookup(OidcConfig::Issuer(authority.clone().into()), token_lookup).await.unwrap();
More documentation is found on docs.rs
Dependencies
~24–36MB
~714K SLoC