Add a module for IndieAuth bearer token auth

require_token() uses a token endpoint URI and an HTTP client to query
the token endpoint and return a User object if the user was
authorized, or rejecting with IndieAuthError if not. It is recommended
to use recover() and catch the IndieAuthError at the application level
to show a "not authorized" error message to the user.

This function is more intended for API consumption, but is general
enough to permit using in other scenarios.

TODO: make a variant that returns Option<User> instead of rejecting

0 files changed, 0 insertions, 0 deletions