This lib is used to store Json Web Key Set from your authentication provider. It stores in an internal Cache fetched JWKS and automatically refresh them after a given time.
Add to your Cargo.toml
```toml
[dependencies] jwksclientrs = "0.1.1" ```
```rust // Put in your application context or wherever this can live long enough use jwksclientrs::source::WebSource; use jwksclientrs::JwksClient;
// here you must join your BASE_AUTH0_URL env var with .well-known/jwks.json or whatever is the jwks url
let url: reqwest::Url = todo!();
let timeout: std::time::Duration = todo!();
// You can define a different source too using JwksSource trait
let source: WebSource = WebSource::builder()
.withtimeout(timeout)
.withconnect_timeout(timeout)
.build(url);
let client: JwksClient = JwksClient::new(source);
// Store your client in your application context or whatever // ..
// Get jwk by kid use jwksclientrs::{JsonWebKey, JwksClientError};
let kid: String = todo!();
let result: Result
It is possible to decode your token validating it has been signed by one of your authentication provider JWKS.
```rust
struct Claims { aud: String, }
let client: JwksClient = todo!();
// Here's the token. Remember to remove "Bearer " from your token in case it is present
let token: &str = todo!();
// The audience the token were released for.
let audience: &str = todo!();
let result: Result
To run the example:
- Export the KID env variable (take if from your tenant well known jwks)
- Export the BASE_AUTH0_URL (something like http://{your-tenant}.eu.auth0.com)
- Run in shell cargo run --bin get_jwks