Pierre Fitness Platform MCP Server

Overview Schema Related Servers Score Discussions

auth.rs•3.4 kB

// ABOUTME: Generic authentication utilities for bearer token extraction and validation // ABOUTME: Eliminates duplication in Authorization header parsing across routes and middleware // // SPDX-License-Identifier: MIT OR Apache-2.0 // Copyright (c) 2025 Pierre Fitness Intelligence use crate::constants::key_prefixes; use crate::errors::{AppError, AppResult}; /// Extract bearer token from Authorization header string /// /// # Errors /// /// Returns an error if: /// - Authorization header doesn't start with "Bearer " /// - Token is empty after extraction and trimming /// - Header format is invalid pub fn extract_bearer_token(auth_header: &str) -> AppResult<&str> { if !auth_header.starts_with("Bearer ") { return Err(AppError::auth_invalid( "Invalid authorization header format", )); } let token = auth_header .strip_prefix("Bearer ") .ok_or_else(|| AppError::auth_invalid("Failed to extract bearer token"))? .trim(); if token.is_empty() { return Err(AppError::auth_invalid("Empty bearer token")); } Ok(token) } /// Extract bearer token and return it as owned String /// /// # Errors /// /// Returns an error if: /// - Authorization header doesn't start with "Bearer " /// - Token is empty after extraction and trimming /// - Header format is invalid pub fn extract_bearer_token_owned(auth_header: &str) -> AppResult<String> { extract_bearer_token(auth_header).map(str::to_owned) } /// Extract bearer token from optional Authorization header /// /// # Errors /// /// Returns an error if: /// - Authorization header is missing (None) /// - Header format is invalid /// - Token is empty pub fn extract_bearer_token_from_option(auth_header: Option<&str>) -> AppResult<&str> { let header = auth_header.ok_or_else(AppError::auth_required)?; extract_bearer_token(header) } /// Extract bearer token from optional Authorization header as owned String /// /// # Errors /// /// Returns an error if: /// - Authorization header is missing (None) /// - Header format is invalid /// - Token is empty pub fn extract_bearer_token_from_option_owned(auth_header: Option<&str>) -> AppResult<String> { extract_bearer_token_from_option(auth_header).map(str::to_owned) } /// Check if authorization header is in Bearer format #[must_use] pub fn is_bearer_token(auth_header: &str) -> bool { auth_header.starts_with("Bearer ") && auth_header.len() > 7 } /// Check if authorization header is likely an API key format #[must_use] pub fn is_api_key_format(auth_header: &str) -> bool { auth_header.starts_with(key_prefixes::API_KEY_LIVE) || auth_header.starts_with("sk_") } /// Determine the authorization type from header #[derive(Debug, PartialEq, Eq)] pub enum AuthType { /// Bearer token authentication (JWT or `OAuth2`) Bearer, /// API key authentication ApiKey, /// Unknown or unsupported authentication type Unknown, } /// Detects the authentication type from an authorization header /// /// Analyzes the header format to determine whether it contains a Bearer token, /// API key, or an unknown authentication scheme. #[must_use] pub fn detect_auth_type(auth_header: &str) -> AuthType { if is_bearer_token(auth_header) { AuthType::Bearer } else if is_api_key_format(auth_header) { AuthType::ApiKey } else { AuthType::Unknown } }

Loading blob content...

Latest Blog Posts

Don't Use Large Strings as Cache Keys
By punkpeye on January 11, 2026.
markdown
node-js
cache
What are Claude Skills?
By punkpeye on January 10, 2026.
mcp
skills
How to Test MCP Streamable HTTP Endpoints Using cURL
By punkpeye on January 2, 2026.
tutorial
bash

MCP directory API

We provide all the information about MCP servers via our MCP API.

curl -X GET 'https://glama.ai/api/mcp/v1/servers/jfarcand/pierre_mcp_server'

If you have feedback or need assistance with the MCP directory API, please join our Discord server

auth.rs•3.4 kB