technofab/jwt-authorizer
1
0
Fork 0
mirror of https://github.com/TECHNOFAB11/jwt-authorizer.git synced 2025-12-15 01:13:52 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions

docs

Browse source
This commit is contained in:
cduvray 2023-01-21 08:34:11 +01:00
parent dff56bf058
commit 141738419d
3 changed files with 41 additions and 3 deletions
Download patch file Download diff file Expand all files Collapse all files

29
jwt-authorizer/docs/README.md
View file

@ -33,4 +33,31 @@ Example:
axum::Server::bind(&"0.0.0.0:3000".parse().unwrap())
.serve(app.into_make_service()).await.expect("server failed");
# };
```
```
## ClaimsChecker
A check function (mapping deserialized claims to boolean) can be added to the authorizer.
A check failure results in a 403 (WWW-Authenticate: Bearer error="insufficient_scope") error.
Example:
```rust
use jwt_authorizer::{JwtAuthorizer};
use serde::Deserialize;
// Authorized entity, struct deserializable from JWT claims
#[derive(Debug, Deserialize, Clone)]
struct User {
sub: String,
}
let authorizer = JwtAuthorizer::new()
.from_rsa_pem("../config/jwtRS256.key.pub")
.with_check(
|claims: &User| claims.sub.contains('@') // must be an email
);
```