MultiAuthProvider

micromegas::auth::multi

Struct MultiAuthProvider 

Source 
pub struct MultiAuthProvider { /* private fields */ }
Expand description

Multi-provider authentication that tries providers in order until one succeeds.

This provider allows supporting multiple authentication methods simultaneously and enables adding custom enterprise authentication providers. Providers are tried in the order they were added via with_provider().

Provider order matters for authentication precedence - the first successful match wins. Typically, you want faster providers (like API key) before slower ones (like OIDC JWT validation).

§Example

use micromegas_auth::api_key::{ApiKeyAuthProvider, parse_key_ring};
use micromegas_auth::oidc::{OidcAuthProvider, OidcConfig, OidcIssuer};
use micromegas_auth::multi::MultiAuthProvider;
use std::sync::Arc;

// Set up API key provider
let keyring = parse_key_ring(r#"[{"name": "test", "key": "secret"}]"#)?;
let api_key_provider = Arc::new(ApiKeyAuthProvider::new(keyring));

// Set up OIDC provider
let oidc_config = OidcConfig {
    issuers: vec![OidcIssuer {
        issuer: "https://accounts.google.com".to_string(),
        audience: "your-app.apps.googleusercontent.com".to_string(),
    }],
    jwks_refresh_interval_secs: 3600,
    token_cache_size: 1000,
    token_cache_ttl_secs: 300,
};
let oidc_provider = Arc::new(OidcAuthProvider::new(oidc_config).await?);

// Create multi-provider with builder pattern
let multi = MultiAuthProvider::new()
    .with_provider(api_key_provider)
    .with_provider(oidc_provider);
// .with_provider(Arc::new(MyEnterpriseAuthProvider::new())); // Custom provider!

Implementations§

Source§

impl MultiAuthProvider

Source

pub fn new() -> MultiAuthProvider

Creates a new empty MultiAuthProvider.

Source

pub fn with_provider(self, provider: Arc<dyn AuthProvider>) -> MultiAuthProvider

Adds a provider to the authentication chain.

Providers are tried in the order they are added. Returns self for chaining.

Source

pub fn is_empty(&self) -> bool

Returns true if no providers are configured.

Trait Implementations§

Source§

impl AuthProvider for MultiAuthProvider

Source§

fn validate_request<'life0, 'life1, 'async_trait>( &'life0 self, parts: &'life1 dyn RequestParts, ) -> Pin<Box<dyn Future<Output = Result<AuthContext, Error>> + Send + 'async_trait>>
where 'life0: 'async_trait, 'life1: 'async_trait, MultiAuthProvider: 'async_trait,

Validate a request and return authentication context

Auto Trait Implementations§

Blanket Implementations§

Source§

impl<T> Any for T
where T: 'static + ?Sized,

Source§

fn type_id(&self) -> TypeId

Gets the TypeId of self. Read more
Source§

impl<T> Borrow<T> for T
where T: ?Sized,

Source§

fn borrow(&self) -> &T

Immutably borrows from an owned value. Read more
Source§

impl<T> BorrowMut<T> for T
where T: ?Sized,

Source§

fn borrow_mut(&mut self) -> &mut T

Mutably borrows from an owned value. Read more
Source§

impl<T> From<T> for T

Source§

fn from(t: T) -> T

Returns the argument unchanged.

§

impl<T> Instrument for T

§

fn instrument(self, span: Span) -> Instrumented<Self>

Instruments this type with the provided [Span], returning an Instrumented wrapper. Read more
§

fn in_current_span(self) -> Instrumented<Self>

Instruments this type with the current Span, returning an Instrumented wrapper. Read more
Source§

impl<T, U> Into<U> for T
where U: From<T>,

Source§

fn into(self) -> U

Calls U::from(self).

That is, this conversion is whatever the implementation of From<T> for U chooses to do.

Source§

impl<T> IntoEither for T

Source§

fn into_either(self, into_left: bool) -> Either<Self, Self>

Converts self into a Left variant of Either<Self, Self> if into_left is true. Converts self into a Right variant of Either<Self, Self> otherwise. Read more
Source§

fn into_either_with<F>(self, into_left: F) -> Either<Self, Self>
where F: FnOnce(&Self) -> bool,

Converts self into a Left variant of Either<Self, Self> if into_left(&self) returns true. Converts self into a Right variant of Either<Self, Self> otherwise. Read more
§

impl<T> IntoRequest<T> for T

§

fn into_request(self) -> Request<T>

Wrap the input message T in a tonic::Request
§

impl<L> LayerExt<L> for L

§

fn named_layer<S>(&self, service: S) -> Layered<<L as Layer<S>>::Service, S>
where L: Layer<S>,

Applies the layer to a service and wraps it in [Layered].
§

impl<T> Pointable for T

§

const ALIGN: usize

The alignment of pointer.
§

type Init = T

The type for initializers.
§

unsafe fn init(init: <T as Pointable>::Init) -> usize

Initializes a with the given initializer. Read more
§

unsafe fn deref<'a>(ptr: usize) -> &'a T

Dereferences the given pointer. Read more
§

unsafe fn deref_mut<'a>(ptr: usize) -> &'a mut T

Mutably dereferences the given pointer. Read more
§

unsafe fn drop(ptr: usize)

Drops the object pointed to by the given pointer. Read more
§

impl<T> PolicyExt for T
where T: ?Sized,

§

fn and<P, B, E>(self, other: P) -> And<T, P>
where T: Policy<B, E>, P: Policy<B, E>,

Create a new Policy that returns [Action::Follow] only if self and other return Action::Follow. Read more
§

fn or<P, B, E>(self, other: P) -> Or<T, P>
where T: Policy<B, E>, P: Policy<B, E>,

Create a new Policy that returns [Action::Follow] if either self or other returns Action::Follow. Read more
Source§

impl<T> Same for T

Source§

type Output = T

Should always be Self
Source§

impl<T, U> TryFrom<U> for T
where U: Into<T>,

Source§

type Error = Infallible

The type returned in the event of a conversion error.
Source§

fn try_from(value: U) -> Result<T, <T as TryFrom<U>>::Error>

Performs the conversion.
Source§

impl<T, U> TryInto<U> for T
where U: TryFrom<T>,

Source§

type Error = <U as TryFrom<T>>::Error

The type returned in the event of a conversion error.
Source§

fn try_into(self) -> Result<U, <U as TryFrom<T>>::Error>

Performs the conversion.
§

impl<V, T> VZip<V> for T
where V: MultiLane<T>,

§

fn vzip(self) -> V

§

impl<T> WithSubscriber for T

§

fn with_subscriber<S>(self, subscriber: S) -> WithDispatch<Self>
where S: Into<Dispatch>,

Attaches the provided Subscriber to this type, returning a [WithDispatch] wrapper. Read more
§

fn with_current_subscriber(self) -> WithDispatch<Self>

Attaches the current default Subscriber to this type, returning a [WithDispatch] wrapper. Read more