No description

Find a file

Uwe Schuster 495c8ddbb9 v0.2.0: IAuthBackend/IAuthPolicy/IRuntimeConfig seams + AuthInterceptor port Ports the fewo-webapp AuthInterceptor + requireAdmin onto three abstract interfaces so consumer apps plug in their own user store, public paths, and runtime config without forking: auth/AuthPrincipal.hpp library-owned {id, username, role} value auth/IAuthBackend.hpp resolveBy{Session,ApiKey,Cert}, hasActiveUsers, deleteExpiredSessions auth/IAuthPolicy.hpp isPublicPath, adminRoles, readonlyRoles, setupModeActive (defaults: admin/readonly, no public paths, setup off) auth/IRuntimeConfig.hpp bindAddress, isLoopback auth/AuthInterceptor.hpp intercept() running the same 6-step ladder as fewo's original (public → setup → cert DN → session/API key → CSRF → readonly) auth/RequireRole.hpp requireUser + requireAdmin helpers reading bundle data (config-driven role sets, not hard-coded 'admin') TokenHasher is passed in so the library doesn't prescribe SHA-256 vs. whatever. Bundle keys match fewo's existing controllers so the consumer migration in #418 is a straightforward adapter swap. Smoke-compiled against oatpp 1.3.0 headers. Closes fewo-webapp#413 Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>		2026-04-21 21:48:43 +02:00
cmake	v0.1.0: initial clean-lift from fewo-webapp	2026-04-21 21:42:53 +02:00
docs	v0.1.0: initial clean-lift from fewo-webapp	2026-04-21 21:42:53 +02:00
include/oatpp-authkit	v0.2.0: IAuthBackend/IAuthPolicy/IRuntimeConfig seams + AuthInterceptor port	2026-04-21 21:48:43 +02:00
.gitignore	v0.1.0: initial clean-lift from fewo-webapp	2026-04-21 21:42:53 +02:00
CMakeLists.txt	v0.2.0: IAuthBackend/IAuthPolicy/IRuntimeConfig seams + AuthInterceptor port	2026-04-21 21:48:43 +02:00
README.md	v0.1.0: initial clean-lift from fewo-webapp	2026-04-21 21:42:53 +02:00

README.md

oatpp-authkit

Header-only C++ library distilled from fewo-webapp's hardened auth / security stack. Header-only, oatpp 1.3+, C++17.

What's in v0.1 (the clean-lift set)

Header	Purpose
`interceptor/SecurityHeadersInterceptor.hpp`	CSP, X-Frame-Options, X-Content-Type-Options, Referrer-Policy, Permissions-Policy. Strict defaults.
`interceptor/BodySizeLimitInterceptor.hpp`	Reject request bodies above a configurable limit with 413 before they hit your handlers.
`handler/JsonErrorHandler.hpp`	Normalises thrown exceptions into `{status, message}` JSON so controllers never leak raw HTML error pages.
`util/RateLimiter.hpp`	In-memory token-bucket keyed on an arbitrary string (typically the client IP from `clientIpTrusted`).
`util/TokenExtract.hpp`	`extractToken` (Cookie/Bearer), `isValidIp` (IPv4/IPv6 via `inet_pton`), `clientIpTrusted` (loopback-gated XFF).
`startup/RequireEncryptionKey.hpp`	`requireEncryptionKey(envVarName, encryptionEnabled, allowPlaintext)` — refuse startup without a symmetric key unless a dev flag overrides.

Consume via CMake

# FetchContent (pin to a tag):
include(FetchContent)
FetchContent_Declare(oatpp-authkit
    GIT_REPOSITORY https://git.uwe-schuster.info/uwe.admin/oatpp-authkit.git
    GIT_TAG v0.1.0)
FetchContent_MakeAvailable(oatpp-authkit)

target_link_libraries(app PRIVATE oatpp::authkit)

Or after cmake --install:

find_package(oatpp-authkit 0.1 REQUIRED)
target_link_libraries(app PRIVATE oatpp::authkit)

Roadmap

v0.2 — AuthInterceptor + requireAdmin ported onto three seams (IAuthBackend, IAuthPolicy, IRuntimeConfig) so consumers plug in their own user store, public-path list, and admin role set without forking the interceptor.
Later — session cookie helpers, API-key rotation, re-encryption migration.

See docs/security-baseline.md for language-neutral CSP / rate-limit / body-size constants that non-C++ consumers can re-implement directly.