first implementation

2025-12-09 22:55:17 +01:00 · 2023-11-03 19:42:54 +01:00 · 2023-11-03 19:42:54 +01:00 · aa05cf6bde
commit aa05cf6bde
parent 1b3973064b
7 changed files with 720 additions and 8 deletions
--- a/src/error.rs
+++ b/src/error.rs
@ -0,0 +1,100 @@
+use axum_core::{response::IntoResponse, BoxError};
+use http::{
+    uri::{InvalidUri, InvalidUriParts},
+    StatusCode,
+};
+use openidconnect::{core::CoreErrorResponseType, StandardErrorResponse};
+use thiserror::Error;
+
+#[derive(Debug, Error)]
+pub enum ExtractorError {
+    #[error("unauthorized")]
+    Unauthorized,
+}
+
+#[derive(Debug, Error)]
+pub enum MiddlewareError {
+    #[error("access token hash invalid")]
+    AccessTokenHashInvalid,
+
+    #[error("csrf token invalid")]
+    CsrfTokenInvalid,
+
+    #[error("id token missing")]
+    IdTokenMissing,
+
+    #[error("signing: {0:?}")]
+    Signing(#[from] openidconnect::SigningError),
+
+    #[error("claims verification: {0:?}")]
+    ClaimsVerification(#[from] openidconnect::ClaimsVerificationError),
+
+    #[error("url parsing: {0:?}")]
+    UrlParsing(#[from] openidconnect::url::ParseError),
+
+    #[error("uri parsing: {0:?}")]
+    UriParsing(#[from] InvalidUri),
+
+    #[error("uri parts parsing: {0:?}")]
+    UriPartsParsing(#[from] InvalidUriParts),
+
+    #[error("request token: {0:?}")]
+    RequestToken(
+        #[from]
+        openidconnect::RequestTokenError<
+            openidconnect::reqwest::Error<reqwest::Error>,
+            StandardErrorResponse<CoreErrorResponseType>,
+        >,
+    ),
+
+    #[error("session error: {0:?}")]
+    Session(#[from] tower_sessions::session::Error),
+
+    #[error("session not found")]
+    SessionNotFound,
+
+    #[error("next middleware")]
+    NextMiddleware(#[from] BoxError),
+
+    #[error("auth middleware not found")]
+    AuthMiddlewareNotFound,
+}
+
+#[derive(Debug, Error)]
+pub enum Error {
+    #[error("url parsing: {0:?}")]
+    UrlParsing(#[from] openidconnect::url::ParseError),
+
+    #[error("discovery: {0:?}")]
+    Discovery(#[from] openidconnect::DiscoveryError<openidconnect::reqwest::Error<reqwest::Error>>),
+
+    #[error("extractor: {0:?}")]
+    Extractor(#[from] ExtractorError),
+
+    #[error("extractor: {0:?}")]
+    Middleware(#[from] MiddlewareError),
+}
+
+impl IntoResponse for ExtractorError {
+    fn into_response(self) -> axum_core::response::Response {
+        (StatusCode::UNAUTHORIZED, "unauthorized").into_response()
+    }
+}
+
+impl IntoResponse for Error {
+    fn into_response(self) -> axum_core::response::Response {
+        dbg!(&self);
+        match self {
+            _ => (StatusCode::INTERNAL_SERVER_ERROR, "internal server error").into_response(),
+        }
+    }
+}
+
+impl IntoResponse for MiddlewareError {
+    fn into_response(self) -> axum_core::response::Response {
+        dbg!(&self);
+        match self {
+            _ => (StatusCode::INTERNAL_SERVER_ERROR, "internal server error").into_response(),
+        }
+    }
+}