actix-web-grants

Extension for actix-web to validate user authorities.

Apache 2.0 or MIT licensed

To check user access to specific services, you can use built-in proc-macro, AuthorityGuard or manual.

The library can also be integrated with third-party solutions (like [actix-web-httpauth]).

Example of `proc-macro` way protection

```rust use actixwebgrants::procmacro::{hasauthorities};

[get("/admin")]

[hasauthorities("ROLEADMIN")]

async fn macrosecured() -> HttpResponse { HttpResponse::Ok().body("ADMINRESPONSE") } ```

Example of `Guard` way protection

```rust use actixwebgrants::{AuthorityGuard, GrantsMiddleware};

App::new() .wrap(GrantsMiddleware::fnextractor(extract)) .service(web::resource("/admin") .to(|| async { HttpResponse::Ok().finish() }) .guard(AuthorityGuard::new("ROLEADMIN".to_string()))) ```

Example of manual way protection

```rust use actixwebgrants::authorities::{AuthDetails, AuthoritiesCheck};

async fn manualsecure(details: AuthDetails) -> HttpResponse { if details.hasauthority(ROLEADMIN) { return HttpResponse::Ok().body("ADMINRESPONSE"); } HttpResponse::Ok().body("OTHER_RESPONSE") } ```

You can find more [examples] in the git repository folder and [documentation].