mbess/minauthator
1
0
Fork 0
Code Issues Pull requests Projects 1 Releases Packages Activity Actions

chore: upgrade packages

Browse source
This commit is contained in:
Matthieu Bessat 2025-06-24 18:56:45 +02:00
parent 073a5ac512
commit 3c3917b79d
4 changed files with 986 additions and 438 deletions
Download patch file Download diff file Expand all files Collapse all files

1402
Cargo.lock generated
View file

File diff suppressed because it is too large Load diff

4
TODO.md
View file

@ -62,3 +62,7 @@
- [ ] implement docker secrets. https://docs.docker.com/engine/swarm/secrets/ - [ ] implement docker secrets. https://docs.docker.com/engine/swarm/secrets/
- [ ] Find a minimal OpenID client implementation like Listmonk but a little bit more mature - [ ] Find a minimal OpenID client implementation like Listmonk but a little bit more mature
- [x] Add `iat` field to id_token claims. Even though the iat field is not required in the spec,
most OIDC client require its use for security reason, to not accept a token before a certain date.
It make it clear that the token must not be retro-active.

16
lib/http_server/Cargo.toml
View file

@ -20,15 +20,16 @@ fully_pub = { workspace = true }
tokio = { workspace = true } tokio = { workspace = true }
# Web # Web
axum = { version = "0.7.7", features = ["json", "multipart"] } axum = { version = "0.8.4", features = ["json", "multipart"] }
axum-extra = { version = "0.9.4", features = ["cookie"] } axum-extra = { version = "0.10.0", features = ["cookie"] }
axum-template = { version = "2.4.0", features = ["minijinja"] } axum-template = { version = "2.4.0", features = ["minijinja"] }
axum_typed_multipart = "0.13.1" axum_typed_multipart = "0.16.2"
minijinja = { version = "2.1", features = ["builtins"] }
# to make work the static assets server # to make work the static assets server
tower-http = { version = "0.6.1", features = ["fs"] } tower-http = { version = "0.6.1", features = ["fs", "trace"] }
# template engine
minijinja = { version = "2.1", features = ["builtins"] }
minijinja-embed = "2.3.1" minijinja-embed = "2.3.1"
axum-macros = "0.4.2" axum-macros = "0.4.2"
jsonwebtoken = "9.3.0" jsonwebtoken = "9.3.0"
time = "0.3.36" time = "0.3.36"
@ -47,6 +48,9 @@ url = { workspace = true }
# To work with key pair # To work with key pair
pem = "3.0.4" pem = "3.0.4"
tracing = "0.1"
tracing-subscriber = "0.3"
[dependencies.jsonwebkey-convert-repaired] [dependencies.jsonwebkey-convert-repaired]
git = "https://forge.lefuturiste.fr/rust-libs/jsonwebkey-rs-repaired.git" git = "https://forge.lefuturiste.fr/rust-libs/jsonwebkey-rs-repaired.git"
branch = "master" branch = "master"

2
lib/http_server/src/router.rs
View file

@ -48,7 +48,7 @@ pub fn build_router(server_config: &ServerConfig, app_state: AppState) -> Router
.route("/api/user", get(api::read_user::read_user_basic)) .route("/api/user", get(api::read_user::read_user_basic))
.layer(middleware::from_fn_with_state(app_state.clone(), app_auth::enforce_jwt_auth_middleware)) .layer(middleware::from_fn_with_state(app_state.clone(), app_auth::enforce_jwt_auth_middleware))
.route("/api", get(api::index::get_index)) .route("/api", get(api::index::get_index))
.route("/api/user-assets/:asset_id", get(api::public_assets::get_user_asset)); .route("/api/user-assets/{asset_id}", get(api::public_assets::get_user_asset));
let well_known_routes = Router::new() let well_known_routes = Router::new()
.route("/.well-known/openid-configuration", get(api::openid::well_known::get_well_known_openid_configuration)) .route("/.well-known/openid-configuration", get(api::openid::well_known::get_well_known_openid_configuration))