369d4d5580
A new system-token-authed admin RPC: resolves user ids to display names with NO PII (email/phone), authorized by a shared system token alone (no actor). Lets internal services label "who did this" (e.g. CMS content history) without the end-user's credentials and without a vector to harvest contact info. Adds the proto messages + the AdminClient::get_users_data wrapper. |
||
|---|---|---|
| .. | ||
| src | ||
| Cargo.toml | ||
| README.md | ||
| build.rs | ||
README.md
st-peter-client (Rust)
Official Rust client for st-peter (aura-users). Stubs are generated at build
time from ../proto/st-peter-auth.proto; the ergonomic [AuthClient] wrapper
(token-verify cache, login/2FA/lookup) is layered on top, with the raw wire
surface available under st_peter_client::authpb.
let auth = st_peter_client::AuthClient::connect("http://127.0.0.1:9091").await?;
let user = auth.verify_token(&token).await?; // cached ~60s
See the repo root README for versioning and the authentication-central / authorization-local design.