First public release of the klauthed Rust libraries — a Spring-Boot-like toolkit for backend / auth services: typed configuration, a uniform error model, security primitives, data/discovery/web plumbing, and observability.
Install
klauthed = { version = "0.1", features = ["web", "data", "security", "observability", "postgres"] }Or depend on individual crates (klauthed-core, klauthed-security, …). 13 crates · MIT OR Apache-2.0 · MSRV 1.95.
Highlights
- Config — layered, profile-driven (env / file / Vault / Spring Cloud config server), hot-reload,
#[derive(FromConfig)], and anAppContextwiring container. - Security — Argon2id, JWT (HS/RS/ES/EdDSA), AEAD + envelope + sealed-box, MFA/TOTP + recovery codes, WebAuthn/passkeys, RBAC, OAuth2 server primitives.
- Data — SQL / Mongo / Redis / NATS / RabbitMQ / Kafka / object storage, plus outbox, idempotency, locks, rate-limiting, sagas.
- Discovery — registry abstraction with in-memory / Consul / Eureka backends and a self-registering agent.
- Web — actix-web layer: security-headers / CSRF / JWT / rate-limit middleware, health probes, OAuth2/OIDC endpoints.
- Quality —
deny(missing_docs), no-panic lints (unwrap/expect/panic/indexing), and a 9-job CI incl. OSV-Scanner and live-infra integration tests.
See CAPABILITIES.md for the full tour and CHANGELOG.md for details.