medallion/examples/custom_headers.rs

use medallion::{DefaultPayload, DefaultToken, Header};
use serde::{Deserialize, Serialize};

#[derive(Default, Serialize, Deserialize, PartialEq, Debug)]
struct Custom {
    // useful if you want a None to not appear in the serialized JSON
    #[serde(skip_serializing_if = "Option::is_none")]
    kid: Option<String>,
    typ: String,
}

fn new_token(sub: &str, password: &str) -> Option<String> {
    // dummy auth, in a real application using something like openidconnect, this would be some
    // specific authentication scheme that takes place first then the JWT is generated as part of
    // sucess and signed with the provider's private key so other services can validate trust for
    // the claims in the token
    if password != "password" {
        return None;
    }

    let header = Header {
        // customer headers generally are about the token itself, like here describing the type of
        // token, as opposed to claims which are about the authenticated user or some output of
        // the authentication process
        headers: Some(Custom {
            typ: "JWT".into(),
            ..Custom::default()
        }),
        ..Default::default()
    };
    let payload = DefaultPayload {
        sub: Some(sub.into()),
        ..DefaultPayload::default()
    };
    let token = DefaultToken::new(header, payload);

    token.sign(b"secret_key").ok()
}

fn login(token: &str) -> Option<String> {
    let token = DefaultToken::<Custom>::parse(token).unwrap();

    if token.verify(b"secret_key").unwrap() {
        Some(token.payload.sub.unwrap())
    } else {
        None
    }
}

fn main() {
    let token = new_token("Random User", "password").unwrap();

    let logged_in_user = login(&*token).unwrap();

    assert_eq!(logged_in_user, "Random User");
}
Clean up examples 2018-11-18 15:46:19 +00:00			`use medallion::{DefaultPayload, DefaultToken, Header};`
Migrated to anyhow and chrono from failure and time crates. 2020-06-22 15:52:53 +00:00			`use serde::{Deserialize, Serialize};`
Refactor header claims (#1) Simplify customization, bump to 2.0.0. 2017-03-07 19:03:24 +00:00
			`#[derive(Default, Serialize, Deserialize, PartialEq, Debug)]`
			`struct Custom {`
			`// useful if you want a None to not appear in the serialized JSON`
			`#[serde(skip_serializing_if = "Option::is_none")]`
			`kid: Option<String>,`
			`typ: String,`
			`}`

			`fn new_token(sub: &str, password: &str) -> Option<String> {`
Update to serde 1.0 (#4) * Try updating service to 1.0 * Strip bounds from structs * Clean bounds from Default impl * Remove pem files, clean up some documentation * Add badges, categories 2017-08-10 13:39:35 +00:00			`// dummy auth, in a real application using something like openidconnect, this would be some`
			`// specific authentication scheme that takes place first then the JWT is generated as part of`
			`// sucess and signed with the provider's private key so other services can validate trust for`
			`// the claims in the token`
Refactor header claims (#1) Simplify customization, bump to 2.0.0. 2017-03-07 19:03:24 +00:00			`if password != "password" {`
			`return None;`
			`}`

			`let header = Header {`
Update to serde 1.0 (#4) * Try updating service to 1.0 * Strip bounds from structs * Clean bounds from Default impl * Remove pem files, clean up some documentation * Add badges, categories 2017-08-10 13:39:35 +00:00			`// customer headers generally are about the token itself, like here describing the type of`
			`// token, as opposed to claims which are about the authenticated user or some output of`
			`// the authentication process`
Clean up examples 2018-11-18 15:46:19 +00:00			`headers: Some(Custom {`
			`typ: "JWT".into(),`
			`..Custom::default()`
			`}),`
Refactor header claims (#1) Simplify customization, bump to 2.0.0. 2017-03-07 19:03:24 +00:00			`..Default::default()`
			`};`
Clean up examples 2018-11-18 15:46:19 +00:00			`let payload = DefaultPayload {`
			`sub: Some(sub.into()),`
			`..DefaultPayload::default()`
			`};`
Refactor header claims (#1) Simplify customization, bump to 2.0.0. 2017-03-07 19:03:24 +00:00			`let token = DefaultToken::new(header, payload);`

			`token.sign(b"secret_key").ok()`
			`}`

			`fn login(token: &str) -> Option<String> {`
			`let token = DefaultToken::<Custom>::parse(token).unwrap();`

			`if token.verify(b"secret_key").unwrap() {`
			`Some(token.payload.sub.unwrap())`
			`} else {`
			`None`
			`}`
			`}`

			`fn main() {`
			`let token = new_token("Random User", "password").unwrap();`

			`let logged_in_user = login(&*token).unwrap();`

			`assert_eq!(logged_in_user, "Random User");`
			`}`