Lib.rs

Web programming
#spire #identity #workload #api #tls #jwt #rustls

spire-workload

spire workload api for rust

by Yu Ding and 2 contributors. Co-owned by Rd.

7 stable releases

1.3.1 Aug 30, 2022
1.2.0 Mar 31, 2022
1.1.4 Nov 29, 2021
1.1.2 Oct 13, 2021
1.1.1 Aug 4, 2021

#23 in #workload

Apache-2.0

83KB
2K SLoC

Spire Workload

This crate provides a number of useful APIs to help Rust programs use Spire workload API:

  • SpiffeID and SpiffeIDMatcher help parse a Spiffe ID and match against pre-defined patterns

  • init function helps a workload talk to spire agent and fetch its identity

  • make_client_config and make_server_config helps generate rustls::ClientConfig and rustls::ServerConfig respectively. These configs support hot reloading of spire provided identites and verify spiffe ID during TLS handshake.

Examples

  1. examples/dump.rs shows how to use spire-workload to dump current identities cached by spire agent

  2. examples/verify_jwt.rs shows how to verify a spire issued JWT token with spire agent.

License

Apache 2.0

Dependencies

~25–41MB
~765K SLoC