CloudNebulaProject/ips
1
0
Fork 0
mirror of https://codeberg.org/Toasterson/ips.git synced 2026-04-10 13:20:42 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 1
285 commits 1 branch 0 tags 1.8 MiB
Commit graph

1 commit

Author SHA1 Message Date
Till Wegmueller
8f048f6b2a feat: Add OIDC JWT authentication middleware for pkg6depotd
Some checks are pending
Rust CI / Format (push) Waiting to run
Details
Rust CI / Clippy (push) Waiting to run
Details
Rust CI / Build (Linux) (push) Blocked by required conditions
Details
Rust CI / Build (Illumos) (push) Blocked by required conditions
Details
Rust CI / Test (push) Blocked by required conditions
Details
Rust CI / End-to-End Tests (push) Blocked by required conditions
Details
Rust CI / Documentation (push) Blocked by required conditions
Details 
Implement Bearer token validation using jsonwebtoken with JWKS caching
and automatic key rotation handling. AuthState fetches keys from the
configured OIDC provider's jwks_uri at startup and refreshes on unknown
kid. Axum middleware (require_auth) protects write routes, injecting
AuthenticatedUser into request extensions. The auth_check admin endpoint
now performs real JWT validation when oauth2 is configured.

Includes architecture plan for the full publish API with RBAC at
docs/ai/plans/2026-04-09-publish-api-oidc.md.
 2026-04-09 22:39:20 +02:00