credential

Module: credential

Modules

provider - CredentialInjector providers

Structs

NullCredentialInjector - No-op injector that always returns empty credentials.

Enums

CredentialInjectionError - Errors that can occur during credential injection.

Traits

CredentialInjector - Resolve and inject connector-specific credentials for an outbound request.

firma_sidecar::credential::CredentialInjectionError

Enum

Errors that can occur during credential injection.

Variants:

UnknownConnector{ connector_id: String } - Connector ID does not map to a known credential source.
FetchFailed{ connector_id: String, reason: String } - Credential fetch failed (vault unreachable, secret expired, etc.).

Traits: Error

Trait Implementations:

Debug
- fn fmt(self: &Self, f: & mut $crate::fmt::Formatter) -> $crate::fmt::Result
Display
- fn fmt(self: &Self, __formatter: & mut ::core::fmt::Formatter) -> ::core::fmt::Result

firma_sidecar::credential::CredentialInjector

Trait

Resolve and inject connector-specific credentials for an outbound request.

Called after enforcement passes. Implementations look up the credential source for connector_id, fetch the secret material, and return headers to attach to the outbound request. The original [ExecutionEnvelope] is never mutated — injected headers are returned as a separate value.

Methods:

inject: Inject credentials for the given connector and target.

firma_sidecar::credential::NullCredentialInjector

Struct

No-op injector that always returns empty credentials.

Used when no credential configuration is provided, and in tests that exercise enforcement logic without credential injection.

Unit Struct