mbess/minauthator
1
0
Fork 0
Code Issues Pull requests Projects 1 Releases Packages Activity Actions

chore: upgrade some packages

Browse source
This commit is contained in:
Matthieu Bessat 2025-06-24 19:06:46 +02:00
parent 073a5ac512
commit 61d4cc3978
4 changed files with 905 additions and 446 deletions
Download patch file Download diff file Expand all files Collapse all files

1310
Cargo.lock generated
View file

File diff suppressed because it is too large Load diff

8
TODO.md
View file

@ -62,3 +62,11 @@
- [ ] implement docker secrets. https://docs.docker.com/engine/swarm/secrets/
- [ ] Find a minimal OpenID client implementation like Listmonk but a little bit more mature
- [x] Add `iat` field to id_token claims. Even though the iat field is not required in the spec,
most OIDC client require its use for security reason, to not accept a token before a certain date.
It make it clear that the token must not be retro-active.
- [ ] Add `picture` claim in `id_token`
> URL of the End-User's profile picture. This URL MUST refer to an image file (for example, a PNG, JPEG, or GIF image file), rather than to a Web page containing an image. Note that this URL SHOULD specifically reference a profile photo of the End-User suitable for displaying when describing the End-User, rather than an arbitrary photo taken by the End-User.

31
lib/http_server/Cargo.toml
View file

@ -19,23 +19,8 @@ fully_pub = { workspace = true }
tokio = { workspace = true }
# Web
axum = { version = "0.7.7", features = ["json", "multipart"] }
axum-extra = { version = "0.9.4", features = ["cookie"] }
axum-template = { version = "2.4.0", features = ["minijinja"] }
axum_typed_multipart = "0.13.1"
minijinja = { version = "2.1", features = ["builtins"] }
# to make work the static assets server
tower-http = { version = "0.6.1", features = ["fs"] }
minijinja-embed = "2.3.1"
axum-macros = "0.4.2"
jsonwebtoken = "9.3.0"
time = "0.3.36"
serde = { workspace = true }
serde_json = { workspace = true }
serde_urlencoded = "0.7.1"
chrono = { workspace = true }
argh = { workspace = true }
@ -44,6 +29,22 @@ sqlx = { workspace = true }
uuid = { workspace = true }
url = { workspace = true }
# Web
axum = { version = "0.8.4", features = ["json", "multipart"] }
axum-extra = { version = "0.10.0", features = ["cookie"] }
axum-template = { version = "2.4.0", features = ["minijinja"] }
axum_typed_multipart = "0.16.2"
# to make work the static assets server
tower-http = { version = "0.6.1", features = ["fs", "trace"] }
# template engine
minijinja = { version = "2.1", features = ["builtins"] }
minijinja-embed = "2.3.1"
axum-macros = "0.4.2"
jsonwebtoken = "9.3.0"
time = "0.3.36"
serde_urlencoded = "0.7.1"
# To work with key pair
pem = "3.0.4"

2
lib/http_server/src/router.rs
View file

@ -48,7 +48,7 @@ pub fn build_router(server_config: &ServerConfig, app_state: AppState) -> Router
.route("/api/user", get(api::read_user::read_user_basic))
.layer(middleware::from_fn_with_state(app_state.clone(), app_auth::enforce_jwt_auth_middleware))
.route("/api", get(api::index::get_index))
.route("/api/user-assets/:asset_id", get(api::public_assets::get_user_asset));
.route("/api/user-assets/{asset_id}", get(api::public_assets::get_user_asset));
let well_known_routes = Router::new()
.route("/.well-known/openid-configuration", get(api::openid::well_known::get_well_known_openid_configuration))