Return an identity, rather than the parts of an identity, when validating an identity token.

This is a small refactoring that's been possible for a while, and we only just noticed.
author: Owen Jacobson <owen@grimoire.ca> 2025-08-24 16:00:45 -0400
committer: Owen Jacobson <owen@grimoire.ca> 2025-08-25 22:42:49 -0400
commit: 6c65e97e49d1d56380aa7d71abb0394b08ff60ca (patch)
tree: fddb2511233a89c43ac9e4d45ba37bd333dd11e5 /src/token/extract/identity.rs
parent: 5bc9dc01618421596d65a7046e46559a872c6693 (diff)
1 files changed, 7 insertions, 5 deletions
diff --git a/src/token/extract/identity.rs b/src/token/extract/identity.rs
index d1c0334..4d076d7 100644
--- a/src/token/extract/identity.rs
+++ b/src/token/extract/identity.rs
@@ -30,11 +30,13 @@ impl FromRequestParts<App> for Identity {
         let secret = cookie.secret().ok_or(LoginError::Unauthorized)?;
 
         let app = State::<App>::from_request_parts(parts, state).await?;
-        match app.tokens().validate(&secret, &used_at).await {
-            Ok((token, user)) => Ok(Identity { token, user }),
-            Err(ValidateError::InvalidToken) => Err(LoginError::Unauthorized),
-            Err(other) => Err(other.into()),
-        }
+        app.tokens()
+            .validate(&secret, &used_at)
+            .await
+            .map_err(|err| match err {
+                ValidateError::InvalidToken => LoginError::Unauthorized,
+                other => other.into(),
+            })
     }
 }
author	Owen Jacobson <owen@grimoire.ca>	2025-08-24 16:00:45 -0400
committer	Owen Jacobson <owen@grimoire.ca>	2025-08-25 22:42:49 -0400
commit	6c65e97e49d1d56380aa7d71abb0394b08ff60ca (patch)
tree	fddb2511233a89c43ac9e4d45ba37bd333dd11e5 /src/token/extract/identity.rs
parent	5bc9dc01618421596d65a7046e46559a872c6693 (diff)