4 releases
Uses new Rust 2024
| new 0.1.3 | May 11, 2025 |
|---|---|
| 0.1.2 | May 10, 2025 |
| 0.1.1 | May 9, 2025 |
| 0.1.0 | May 9, 2025 |
#414 in Authentication
66 downloads per month
46KB
792 lines
OIDCRS
Full Spec Compliant OIDC Library.
Work in Progress. Please, don't use it in production.
cargo add oidcrs
Examples
The Authorization Code Flow.
- Client prepares an Authentication Request containing the desired request parameters.
- Client sends the request to the Authorization Server.
- Authorization Server Authenticates the End-User.
- Authorization Server obtains End-User Consent/Authorization.
- Authorization Server sends the End-User back to the Client with an Authorization Code.
- Client requests a response using the Authorization Code at the Token Endpoint.
- Client receives a response that contains an ID Token and Access Token in the response body.
- Client validates the ID token and retrieves the End-User's Subject Identifier.
let oidc_uri = "https://_/.well-known/openid-configuration";
let client = AuthorizationCodeFlowClient::new(oidc_uri)
.with_scope(AuthenticationRequestScope::Profile)
.with_scope(AuthenticationRequestScope::Email)
.with_scope(AuthenticationRequestScope::Unchecked("api://_/.default"));
let authorization_endpoint = client.build_authorization_endpoint().await?;
// redirect the user to the `authorization_endpoint` the first time
let authorization_code = client.extract_authorization_code(&returned_url)?;
let authorization_tokens = client.fetch_authorization_tokens(&authorization_code).await?;
println!("{:?}", authorization_tokens.id_token);
println!("{:?}", authorization_tokens.access_token);
RFCs
Dependencies
~6–18MB
~236K SLoC