I know it's not a documented use case, but it works and somehow returns 404 error instead of 403.

.service(
    web::scope("/admin")
        .service(index)
        .service(users)
        .guard(PermissionGuard::new(ROLE_ADMIN.to_string()))
);

Was checked on v3.0.0-beta.1

Description:

I've looked at actix-identity middleware and I think that arc and refcell is not needed. I might be wrong, I'm still learning, but all tests have passed. And what the attache was for? Do you use it elsewhere?

Checklist:

• [ ] Tests for the changes have been added (for bug fixes / features);
• [ ] Docs have been added / updated (for bug fixes / features).
• [ ] This PR has been added to CHANGELOG.md (to [Unreleased] section);

Thank you for the amazing package! This is more of a question than an issue.

I've been following the jwt-httpauth example:

let auth = HttpAuthentication::bearer(validator);
App::new().service(create_token).service(
    web::scope("/api")
        .wrap(auth)
        .service(permission_secured)
        .service(manager_secured),
)

The unguarded create_token handler is outside the /api scope. The problem arises when you want to nest the unguarded route inside /api:

App::new()
    .service(
        web::scope("/api/v1")
            .wrap(HttpAuthentication::bearer(validator))
            .service(
                web::scope("/reservations")
                    .configure(reservations_controllers::secured_routes),
            ),
    )
    .service(
        web::scope("/api/v1")
            .service(web::scope("/auth").configure(auth_controller::routes)),
    )
    .app_data(data.clone())

Here, the first route works, but the second one returns 401. Adding regexp {regex:$|/.*?} on the second scope doesn't work either.

Is there a way to achieve this? (Other than wrapping the handlers individually)

When I try to use "actix-web-grants" I get the following error:

error[E0437]: type Config is not a member of trait FromRequest --> C:\Users\myuser.cargo\registry\src\github.com-1ecc6299db9ec823\actix-web-grants-3.0.0-beta.3\src\permissions\mod.rs:92:5

What could be the reason to get this error?

As far as I can tell, the only way to get a hold of a ServiceRequest's inner HttpRequest is through into_parts, which takes self and parts_mut, which takes &mut self. Since actix-web-grants hands you a &ServiceRequest, this HttpRequest is therefore inaccessible, limiting the usefulness.

Description:

Make ?-operator and early returning work as expected in functions with the #[has_permissions("foo")] attribute. This simply wraps the function body in a closure with an async block whis is immediately called and awaited. I believe that probably makes this a breaking change?

It should probably be noted that I have never played with the implementation of proc macros before...

Checklist:

• [x] Tests for the changes have been added (for bug fixes / features);
• [ ] Docs have been added / updated (for bug fixes / features).
• [ ] This PR has been added to CHANGELOG.md (to [Unreleased] section);

Closes #3

Description: migrating to newest actix-web

Checklist:

• [x] Tests for the changes have been added (for bug fixes / features);
• [x] Docs have been added / updated (for bug fixes / features).
• [x] This PR has been added to CHANGELOG.md (to [Unreleased] section);

Hello, first of all thanks for your nice and simple to use crate!

Is it possible, to check the login user name in a route? I have only seen that AuthDetails has only a permissions value.

I ask because I would like to implement a function that a user can change his credentials, but for that I have to be sure, that the user can only change his own ones, and not from other users.

After trying to update to beta.14, I get the following error. The second one looks like a quick fix. Not so sure about the first one.

error[E0599]: no method named `extensions` found for reference `&RequestHead` in the current scope
  --> /home/.cargo/git/checkouts/actix-web-grants-fc366f5a984b4e1f/f2f9964/src/guards.rs:44:14
   |
44 |             .extensions()
   |              ^^^^^^^^^^ method not found in `&RequestHead`

error[E0599]: no method named `extensions` found for struct `HttpRequest` in the current scope
  --> /home/.cargo/git/checkouts/actix-web-grants-fc366f5a984b4e1f/f2f9964/src/permissions/mod.rs:97:17
   |
97 |             req.extensions()
   |                 ^^^^^^^^^^ method not found in `HttpRequest`
   |
  ::: /home/.cargo/registry/src/github.com-1ecc6299db9ec823/actix-http-3.0.0-beta.15/src/http_message.rs:29:8
   |
29 |     fn extensions(&self) -> Ref<'_, Extensions>;
   |        ---------- the method is available for `HttpRequest` here
   |
   = help: items from traits can only be used if the trait is in scope
help: the following trait is implemented but not in scope; perhaps add a `use` for it:
   |
16 | use actix_web::HttpMessage;

I have reverted to an old Cargo.lock file which I'll stay with for now.

Hi there, seems that the old exaple does not compile due to mismatch return types, specifically here: https://github.com/DDtKey/actix-web-grants/blob/92d97c9bebb4b42beff62e829ca6b3e64edbb75b/examples/jwt-httpauth/src/main.rs#L50

Description:

Checklist:

• [ ] Tests for the changes have been added (for bug fixes / features);
• [ ] Docs have been added / updated (for bug fixes / features).
• [ ] This PR has been added to CHANGELOG.md (to [Unreleased] section);

Hi,

Is it possible to use an enum value in the has_permissions attribute at all? I understand that what i have below is not valid syntax but want to understand if something like this is possible?

from:

#[has_permissions("CanRead")]

to:

#[has_permissions(Permissions::CanRead.to_string())]