Safe Haskell | None |
---|---|
Language | Haskell2010 |
Synopsis
- data XsrfCookieSettings = XsrfCookieSettings {}
- data CookieSettings = CookieSettings {
- cookieIsSecure :: !IsSecure
- cookieMaxAge :: !(Maybe DiffTime)
- cookieExpires :: !(Maybe UTCTime)
- cookiePath :: !(Maybe ByteString)
- cookieDomain :: !(Maybe ByteString)
- cookieSameSite :: !SameSite
- sessionCookieName :: !ByteString
- cookieXsrfSetting :: !(Maybe XsrfCookieSettings)
- data JWTSettings = JWTSettings {
- signingKey :: JWK
- jwtAlg :: Maybe Alg
- validationKeys :: JWKSet
- audienceMatches :: StringOrURI -> IsMatch
- data SameSite
- data IsPasswordCorrect
- data IsMatch
- defaultJWTSettings :: JWK -> JWTSettings
- defaultCookieSettings :: CookieSettings
- defaultXsrfCookieSettings :: XsrfCookieSettings
- jwtSettingsToJwtValidationSettings :: JWTSettings -> JWTValidationSettings
- data IsSecure
Documentation
data XsrfCookieSettings Source #
The policies to use when generating and verifying XSRF cookies
XsrfCookieSettings | |
|
Instances
data CookieSettings Source #
The policies to use when generating cookies.
If *both* cookieMaxAge
and cookieExpires
are Nothing
, browsers will
treat the cookie as a *session cookie*. These will be deleted when the
browser is closed.
Note that having the setting Secure
may cause testing failures if you are
not testing over HTTPS.
CookieSettings | |
|
Instances
data JWTSettings Source #
JWTSettings
are used to generate cookies, and to verify JWTs.
JWTSettings | |
|
Instances
Generic JWTSettings Source # | |
Defined in Servant.Auth.Server.Internal.ConfigTypes type Rep JWTSettings :: Type -> Type # from :: JWTSettings -> Rep JWTSettings x # to :: Rep JWTSettings x -> JWTSettings # | |
type Rep JWTSettings Source # | |
Defined in Servant.Auth.Server.Internal.ConfigTypes type Rep JWTSettings = D1 (MetaData "JWTSettings" "Servant.Auth.Server.Internal.ConfigTypes" "servant-auth-server-0.4.6.0-8RJj0uWcvJV2ZGFUGTeUUQ" False) (C1 (MetaCons "JWTSettings" PrefixI True) ((S1 (MetaSel (Just "signingKey") NoSourceUnpackedness NoSourceStrictness DecidedLazy) (Rec0 JWK) :*: S1 (MetaSel (Just "jwtAlg") NoSourceUnpackedness NoSourceStrictness DecidedLazy) (Rec0 (Maybe Alg))) :*: (S1 (MetaSel (Just "validationKeys") NoSourceUnpackedness NoSourceStrictness DecidedLazy) (Rec0 JWKSet) :*: S1 (MetaSel (Just "audienceMatches") NoSourceUnpackedness NoSourceStrictness DecidedLazy) (Rec0 (StringOrURI -> IsMatch))))) |
Instances
Eq SameSite Source # | |
Ord SameSite Source # | |
Defined in Servant.Auth.Server.Internal.ConfigTypes | |
Read SameSite Source # | |
Show SameSite Source # | |
Generic SameSite Source # | |
type Rep SameSite Source # | |
Defined in Servant.Auth.Server.Internal.ConfigTypes type Rep SameSite = D1 (MetaData "SameSite" "Servant.Auth.Server.Internal.ConfigTypes" "servant-auth-server-0.4.6.0-8RJj0uWcvJV2ZGFUGTeUUQ" False) (C1 (MetaCons "AnySite" PrefixI False) (U1 :: Type -> Type) :+: (C1 (MetaCons "SameSiteStrict" PrefixI False) (U1 :: Type -> Type) :+: C1 (MetaCons "SameSiteLax" PrefixI False) (U1 :: Type -> Type))) |
data IsPasswordCorrect Source #
Instances
defaultJWTSettings :: JWK -> JWTSettings Source #
A JWTSettings
where the audience always matches.
Was this request made over an SSL connection?
Note that this value will not tell you if the client originally
made this request over SSL, but rather whether the current
connection is SSL. The distinction lies with reverse proxies.
In many cases, the client will connect to a load balancer over SSL,
but connect to the WAI handler without SSL. In such a case,
the handlers would get NotSecure
, but from a user perspective,
there is a secure connection.
Secure | the connection to the server is secure (HTTPS) |
NotSecure | the connection to the server is not secure (HTTP) |
Instances
Eq IsSecure | |
Ord IsSecure | |
Defined in Servant.API.IsSecure | |
Read IsSecure | |
Show IsSecure | |
Generic IsSecure | |
HasLink sub => HasLink (IsSecure :> sub :: Type) | |
HasServer api context => HasServer (IsSecure :> api :: Type) context | |
Defined in Servant.Server.Internal | |
type Rep IsSecure | |
type MkLink (IsSecure :> sub :: Type) a | |
type ServerT (IsSecure :> api :: Type) m | |