Expand description
ClientAuthorizer trait for incoming client authorization.
The reflector delegates the accept/reject decision for every new
client link to a pluggable ClientAuthorizer. Implementors can
consult bans, quotas, whitelists, or any other policy before
letting a client into the fan-out pool.
The default AllowAllAuthorizer accepts every request with
read-write access and is intended for tests and local bring-up.
Structs§
- Allow
AllAuthorizer - Authorizer that accepts every link with
AccessPolicy::ReadWrite. - Deny
AllAuthorizer - Authorizer that rejects every link with
RejectReason::Banned. - Link
Attempt - One link attempt observed by the reflector.
- Read
Only Authorizer - Authorizer that accepts every link with
AccessPolicy::ReadOnly.
Enums§
- Access
Policy - Access policy granted to an accepted client.
- Reject
Reason - Why a link attempt was rejected.
Traits§
- Client
Authorizer - Decision boundary for accepting / rejecting a new client link.