Skip to content

swiftcoder/auth_for_warp

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

7 Commits
.github/workflows
.github/workflows
 
 
examples
examples
 
 
src
src
 
 
tests
tests
 
 
.gitignore
.gitignore
 
 
Cargo.toml
Cargo.toml
 
 
README.md
README.md
 
 

Repository files navigation

Action Status Crates.io Docs.rs

auth_for_warp

A proof-of-concept for a simple and reusable auth module that can be plugged into any warp-based server application.

Passwords are salted and hashed using argon2. On successful login, a JSON Web Token is generated using jsonwebtoken and returned to the client. A warp filter is provided to authenticate subsequent requests against that token via bearer authentication.

Some limitiations (certainly not an exhaustive list):

  • TLS is necessary to avoid leaking passwords on the wire (no PAKE).
  • Only supports username + password (no OAuth, no TOTP, etc).
  • All credential storage is left up to the application.
  • User ID allocation probably ought to be left up to the application.
  • Only handles authentication, supporting authorization will need some design work.

About

Simple username/password auth plugin for warp

Topics

rust authentication warp

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages
pFad - Phonifier reborn

Pfad - The Proxy pFad of © 2024 Garber Painting. All rights reserved.

Note: This service is not intended for secure transactions such as banking, social media, email, or purchasing. Use at your own risk. We assume no liability whatsoever for broken pages.


Alternative Proxies:

Alternative Proxy

pFad Proxy

pFad v3 Proxy

pFad v4 Proxy