Development Documentation (main branch) - For stable release docs, see docs.rs/eidetica

AuthValidator

eidetica::auth::validation::entry

Struct AuthValidator 

Source 
pub struct AuthValidator { /* private fields */ }
Expand description

Authentication validator for validating entries and resolving auth information

Implementations§

Source§

impl AuthValidator

Source

pub fn new() -> Self

Create a new authentication validator

Source

pub async fn validate_entry( &mut self, entry: &Entry, auth_settings: &AuthSettings, instance: Option<&Instance>, ) -> Result<bool>

Validate an entry’s authentication

This method answers: “Is this entry valid?” which includes:

  1. Is the signature valid (or is unsigned allowed)?
  2. Does the signing key have permission for what this entry does?

For entries with name hints that match multiple keys, this method tries signature verification against each matching key until one succeeds.

§Returns
  • Ok(true) - Entry is valid (signature verified with sufficient permissions, or unsigned allowed)
  • Ok(false) - Entry is invalid (malformed, bad signature, insufficient permissions, etc.)
  • Err(...) - Actual error (I/O, database failures)
§Arguments
  • entry - The entry to validate
  • auth_settings - Authentication settings for key lookup
  • instance - Instance for loading delegated trees (optional for direct keys)
Source

pub async fn resolve_sig_key( &mut self, sig_key: &SigKey, auth_settings: &AuthSettings, instance: Option<&Instance>, ) -> Result<Vec<ResolvedAuth>>

Resolve authentication identifier to concrete authentication information

Returns all matching ResolvedAuth entries. For name hints that match multiple keys, all matches are returned so the caller can try signature verification against each.

§Arguments
  • sig_key - The signature key identifier to resolve
  • auth_settings - Authentication settings containing auth configuration
  • instance - Instance for loading delegated trees (required for Delegation sig_key)
Source

pub fn check_permissions( &self, resolved: &ResolvedAuth, operation: &Operation, ) -> Result<bool>

Check if a resolved authentication has sufficient permissions for an operation

Source

pub fn clear_cache(&mut self)

Clear the authentication cache

Trait Implementations§

Source§

impl Default for AuthValidator

Source§

fn default() -> Self

Returns the “default value” for a type. Read more

Auto Trait Implementations§

Blanket Implementations§

Source§

impl<T> Any for T
where T: 'static + ?Sized,

Source§

fn type_id(&self) -> TypeId

Gets the TypeId of self. Read more
Source§

impl<T> Borrow<T> for T
where T: ?Sized,

Source§

fn borrow(&self) -> &T

Immutably borrows from an owned value. Read more
Source§

impl<T> BorrowMut<T> for T
where T: ?Sized,

Source§

fn borrow_mut(&mut self) -> &mut T

Mutably borrows from an owned value. Read more
§

impl<T> CompatExt for T

§

fn compat(self) -> Compat<T>

Applies the [Compat] adapter by value. Read more
§

fn compat_ref(&self) -> Compat<&T>

Applies the [Compat] adapter by shared reference. Read more
§

fn compat_mut(&mut self) -> Compat<&mut T>

Applies the [Compat] adapter by mutable reference. Read more
Source§

impl<T> From<T> for T

Source§

fn from(t: T) -> T

Returns the argument unchanged.

§

impl<T> Instrument for T

§

fn instrument(self, span: Span) -> Instrumented<Self>

Instruments this type with the provided [Span], returning an Instrumented wrapper. Read more
§

fn in_current_span(self) -> Instrumented<Self>

Instruments this type with the current Span, returning an Instrumented wrapper. Read more
Source§

impl<T, U> Into<U> for T
where U: From<T>,

Source§

fn into(self) -> U

Calls U::from(self).

That is, this conversion is whatever the implementation of From<T> for U chooses to do.

Source§

impl<T> IntoEither for T

Source§

fn into_either(self, into_left: bool) -> Either<Self, Self>

Converts self into a Left variant of Either<Self, Self> if into_left is true. Converts self into a Right variant of Either<Self, Self> otherwise. Read more
Source§

fn into_either_with<F>(self, into_left: F) -> Either<Self, Self>
where F: FnOnce(&Self) -> bool,

Converts self into a Left variant of Either<Self, Self> if into_left(&self) returns true. Converts self into a Right variant of Either<Self, Self> otherwise. Read more
§

impl<T> Pointable for T

§

const ALIGN: usize

The alignment of pointer.
§

type Init = T

The type for initializers.
§

unsafe fn init(init: <T as Pointable>::Init) -> usize

Initializes a with the given initializer. Read more
§

unsafe fn deref<'a>(ptr: usize) -> &'a T

Dereferences the given pointer. Read more
§

unsafe fn deref_mut<'a>(ptr: usize) -> &'a mut T

Mutably dereferences the given pointer. Read more
§

unsafe fn drop(ptr: usize)

Drops the object pointed to by the given pointer. Read more
§

impl<T> PolicyExt for T
where T: ?Sized,

§

fn and<P, B, E>(self, other: P) -> And<T, P>
where T: Policy<B, E>, P: Policy<B, E>,

Create a new Policy that returns [Action::Follow] only if self and other return Action::Follow. Read more
§

fn or<P, B, E>(self, other: P) -> Or<T, P>
where T: Policy<B, E>, P: Policy<B, E>,

Create a new Policy that returns [Action::Follow] if either self or other returns Action::Follow. Read more
Source§

impl<T> Same for T

Source§

type Output = T

Should always be Self
Source§

impl<T, U> TryFrom<U> for T
where U: Into<T>,

Source§

type Error = Infallible

The type returned in the event of a conversion error.
Source§

fn try_from(value: U) -> Result<T, <T as TryFrom<U>>::Error>

Performs the conversion.
Source§

impl<T, U> TryInto<U> for T
where U: TryFrom<T>,

Source§

type Error = <U as TryFrom<T>>::Error

The type returned in the event of a conversion error.
Source§

fn try_into(self) -> Result<U, <U as TryFrom<T>>::Error>

Performs the conversion.
§

impl<V, T> VZip<V> for T
where V: MultiLane<T>,

§

fn vzip(self) -> V

§

impl<T> WithSubscriber for T

§

fn with_subscriber<S>(self, subscriber: S) -> WithDispatch<Self>
where S: Into<Dispatch>,

Attaches the provided Subscriber to this type, returning a [WithDispatch] wrapper. Read more
§

fn with_current_subscriber(self) -> WithDispatch<Self>

Attaches the current default Subscriber to this type, returning a [WithDispatch] wrapper. Read more
§

impl<M> Meta for M
where M: Default,