Skip to main content

Module oauth

Module oauth 

Source

Re-exportsยง

pub use self::providers::ProviderId;
pub use self::server::Server;
pub use self::sessions::CODE_VERIFIER_LENGTH;
pub use self::sessions::SESSION_ID_LENGTH;
pub use self::sessions::Session;
pub use self::sessions::SessionId;
pub use self::token_response::TokenResponse;
pub use self::user_info::UserInfo;

Modulesยง

providers
server
sessions
token_response
user_info

Structsยง

Provider
Service

Constantsยง

DEVICE_RC_BURST ๐Ÿ”’
DEVICE_RC_PER_SECOND ๐Ÿ”’
Always-on throttle for the RFC 8628 device user-code endpoints. The user_code is low-entropy by design (ยง6.1), so ยง5.1 requires bounding guesses regardless of the optional oidc_rc_* knobs; the burst stays generous for the one code a real user enters.
RATELIMIT_MAP_CAP ๐Ÿ”’
Cap on the rate-limit table; fully refilled buckets are pruned past it.

Functionsยง

check_bucket ๐Ÿ”’
identity_issuer ๐Ÿ”’
Issuer string used as input to the identity hash. Pinned per-brand for providers whose published issuer has changed under us, so existing account associations survive the change.
unique_id
Generate a unique-id string determined by the combination of Provider and Session instances.
unique_id_iss
Generate a unique-id string determined by the combination of issuer_url and Session instance.
unique_id_iss_parts ๐Ÿ”’
unique_id_iss_sub
Generate a unique-id string determined by the issuer_url and the sub strings directly.
unique_id_parts ๐Ÿ”’
unique_id_sub
Generate a unique-id string determined by the combination of Provider instance and sub string.
unique_id_sub_parts ๐Ÿ”’

Type Aliasesยง

Ratelimiter ๐Ÿ”’
Per-client-IP token-bucket table: last-refill instant and remaining tokens.