+14

who-am-i/demo/index.html

··· 1 1 + <!doctype html> 2 2 + <style> 3 3 + body { 4 4 + background: #333; 5 5 + color: #ccc; 6 6 + font-family: sans-serif; 7 7 + } 8 8 + </style> 9 9 + 10 10 + <h1>hey</h1> 11 11 + 12 12 + <iframe src="http://127.0.0.1:9997/prompt" style="border: 2px solid #000; border-radius: 0.5em;" /> 13 13 + 14 14 +

+4

who-am-i/demo/serve

··· 1 1 + #!/usr/bin/env bash 2 2 + 3 3 + echo "note: you might need to access via http://127.0.0.1:8888 (not localhost) for the iframe to get its cookies" 4 4 + python3 -m http.server 8888

+9 -4

who-am-i/src/server.rs

··· 3 3 use axum::{ 4 4 Router, 5 5 extract::{FromRef, Query, State}, 6 6 - response::{Html, Redirect}, 6 6 + response::{Html, IntoResponse, Redirect}, 7 7 routing::get, 8 8 }; 9 9 - use axum_extra::extract::cookie::{Cookie, Key, SignedCookieJar}; 9 9 + use axum_extra::extract::cookie::{Cookie, Key, SameSite, SignedCookieJar}; 10 10 11 11 use serde::Deserialize; 12 12 use std::sync::Arc; ··· 55 55 } 56 56 } 57 57 58 58 - async fn prompt(jar: SignedCookieJar) -> (SignedCookieJar, Html<String>) { 58 58 + async fn prompt(jar: SignedCookieJar) -> impl IntoResponse { 59 59 let m = if let Some(did) = jar.get("did") { 60 60 format!("oh i know you: {did}") 61 61 } else { ··· 89 89 panic!("failed to do client callback"); 90 90 }; 91 91 let did = oauth_session.did().await.expect("a did to be present"); 92 92 - let jar = jar.add(Cookie::new("did", did.to_string())); 92 92 + let cookie = Cookie::build(("did", did.to_string())) 93 93 + .http_only(true) 94 94 + .secure(true) 95 95 + .same_site(SameSite::None) 96 96 + .max_age(std::time::Duration::from_secs(86_400).try_into().unwrap()); 97 97 + let jar = jar.add(cookie); 93 98 (jar, Html(format!("sup: {did:?}"))) 94 99 }

who-am-i/static/prompt-anon.html

This is a binary file and will not be displayed.