Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Update auth-helper libs and improve lib usability #50

Merged
merged 4 commits into from
Jun 20, 2022
Merged

Update auth-helper libs and improve lib usability #50

merged 4 commits into from
Jun 20, 2022

Conversation

DaughterOfMars
Copy link

Currently, the auth-helper crate does not expose enough of the underlying jsonwebtoken lib (it should just re-export, as it is meant to be used in place of jsonwebtoken), and some of the functionality is too restrictive. The ClaimsBuilder pattern is entirely unnecessary, and it is more useful to simply have full access to the Claims fields. Similarly, the JsonWebToken should expose the inner string.

Additionally, I have added a sealed trait (BuildValidation) to allow builder-lite functionality for the Validation struct, and accept that struct rather than a restrictive set of claims in the JsonWebToken::validate method.

jwt.validate(
    Validation::default()
        .with_issuer("issuer")
        .with_audience("audience")
        .with_subject("subject")
        .validate_nbf(true),
    b"secret"
)

Furthermore, I have removed the possibility for a panic when creating Claims due to SystemTime::duration_since, as the appropriate way to handle that is simply to default the duration (not that it should be possible for this to fail).

Lastly, prior to the changes there was no way to avoid validating the Subject field. However, this should be optional (as with the other fields), particularly because stateless interactions do not allow servers to maintain this information or validate it.

Alex6323
Alex6323 reviewed Jun 9, 2022
View reviewed changes
auth-helper/Cargo.toml Show resolved Hide resolved
auth-helper/src/jwt.rs Outdated Show resolved Hide resolved
auth-helper/src/jwt.rs Outdated Show resolved Hide resolved
auth-helper/src/jwt.rs Show resolved Hide resolved
auth-helper/src/jwt.rs Outdated Show resolved Hide resolved
Return an error if the system time is before the UNIX epoch. Add some…
a42fc71 
… more helper fns to claims. Fix issued at field in error.
Alex6323
Alex6323 previously approved these changes Jun 9, 2022
View reviewed changes
@thibault-martinez thibault-martinez merged commit 1e9e258 into iotaledger:main Jun 20, 2022
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@thibault-martinez thibault-martinez thibault-martinez approved these changes

@grtlr grtlr Awaiting requested review from grtlr

@Alex6323 Alex6323 Awaiting requested review from Alex6323

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
4 participants
@DaughterOfMars @thibault-martinez @grtlr @Alex6323