Lib.rs

Network programming
#jwt #validation #cloudflare #token #applications #signing #claim

rust-cfzt-validator

A library crate for validation of Cloudflare Zero Trust JWTs

Owned by jacobneiltaylor.

6 releases (breaking)

new 0.5.0 Mar 17, 2025
0.4.0 Mar 17, 2025
0.3.1 Dec 19, 2024
0.2.0 Dec 15, 2024
0.1.0 Jun 11, 2024

#959 in Network programming

Download history 1/week @ 2024-12-04 102/week @ 2024-12-11 287/week @ 2024-12-18 21/week @ 2025-01-08 1/week @ 2025-02-05 1/week @ 2025-02-12 1/week @ 2025-02-19 8/week @ 2025-02-26 194/week @ 2025-03-12

203 downloads per month

MIT license

40KB
867 lines

rust-cfzt-validator

This crate provides the basic machinery required to build apps that can integrate with Cloudflare Zero Trust by validating and inspecting Application Token JWTs.

Specifically, this crate provides the following:

  • Parsing/retrieval of signing keys from the Cloudflare Zero Trust API
  • Lazy construction and caching of the jsonwebtoken::DecodingKey structs derived fromt the signing keys
  • Configurable validation of Application Tokens for one or multiple Zero Trust teams
  • Optional convenience struct for validated claims
  • Support for periodic refreshes of the Cloudflare Zero Trust signing keys

By design, this crate does not provide the following:

  • Machinery for retrieving the User Identity data associated with a token.
  • Opinionated patterns for integration into async runtimes

Dependencies

~3–12MB
~154K SLoC