Define Token Statement
The define_token statement is used to define a token in SurrealDB. Tokens are used for authentication and authorization purposes, allowing users or applications to access protected resources. This documentation provides an overview of the syntax and usage of the define_token statement.
Table of Contents
Syntax
The basic syntax of the define_token statement is as follows:
#![allow(unused)] fn main() { define_token(token_name: Token) .on_namespace() .type_(token_type: TokenType) .value(token_value: &str) define_token(token_name: Token) .on_database() .type_(token_type: TokenType) .value(token_value: &str) define_token(token_name: Token) .on_scope(scope_name: Scope) .type_(token_type: TokenType) .value(token_value: &str) }
token_name: The name of the token to define.token_type: The type of the token, specified using theTokenTypeenum.token_value: The value or secret associated with the token.
The define_token statement supports the following options:
on_namespace(): Specifies that the token should be defined on the namespace level.on_database(): Specifies that the token should be defined on the database level.on_scope(scope_name): Specifies that the token should be defined on a specific scope.
Examples
Define Token on Namespace
To define a token on the namespace level, you can use the following code:
#![allow(unused)] fn main() { let statement = define_token("oyelowo_token") .on_namespace() .type_(TokenType::PS512) .value("abrakradabra"); }
In the example above, the define_token statement defines a token named "oyelowo_token" on the namespace level. The token type is set to TokenType::PS512 and the value is set to "abrakradabra".
This will generate the following SQL statement:
DEFINE TOKEN oyelowo_token ON NAMESPACE TYPE PS512 VALUE 'abrakradabra';
Define Token on Database
To define a token on the database level, you can use the following code:
#![allow(unused)] fn main() { let statement = define_token("oyelowo_token") .on_database() .type_(TokenType::HS512) .value("anaksunamun"); }
In the example above, the define_token statement defines a token named "oyelowo_token" on the database level. The token type is set to TokenType::HS512 and the value is set to "anaksunamun".
This will generate the following SQL statement:
DEFINE TOKEN oyelowo_token ON DATABASE TYPE HS512 VALUE 'anaksunamun';
Define Token on Scope
To define a token on a specific scope, you can use the following code:
#![allow(unused)] fn main() { let statement = define_token("oyelowo_token") .on_scope("planet") .type_(TokenType::EDDSA) .value("abcde"); }
In the example above, the define_token statement defines a token named "oyelowo_token" on the scope "planet". The token type is set to TokenType::EDDSA and the value is set to "abcde".
This will generate the following SQL
statement:
DEFINE TOKEN oyelowo_token ON SCOPE planet TYPE EDDSA VALUE 'abcde';
Token Types
The TokenType enum represents the available token types in SurrealDB. Each token type corresponds to a specific algorithm or cryptographic scheme used for token generation and validation. The following token types are available:
EDDSA: EdDSA (Edwards-curve Digital Signature Algorithm)ES256: ECDSA using P-256 and SHA-256ES384: ECDSA using P-384 and SHA-384ES512: ECDSA using P-521 and SHA-512HS256: HMAC using SHA-256HS384: HMAC using SHA-384HS512: HMAC using SHA-512PS256: RSASSA-PSS using SHA-256 and MGF1 with SHA-256PS384: RSASSA-PSS using SHA-384 and MGF1 with SHA-384PS512: RSASSA-PSS using SHA-512 and MGF1 with SHA-512RS256: RSASSA-PKCS1-v1_5 using SHA-256RS384: RSASSA-PKCS1-v1_5 using SHA-384RS512: RSASSA-PKCS1-v1_5 using SHA-512
You can specify the desired token type when using the define_token statement by providing the corresponding TokenType enum variant.
You have now learned how to define tokens using the define_token statement. Tokens are essential for authentication and authorization in SurrealDB, allowing you to secure your data and control access to resources.