atproto/oauth/resource

DPoP-authenticated resource requests: wraps a transport so every request carries Authorization: DPoP <token> and a proof bound to its method, URL, and access-token hash, with the server-nonce retry. Token refresh is the caller’s job (it owns session persistence); this module only signs.

Values

pub fn client(
  base: xrpc.Client,
  access_token access_token: String,
  dpop_key dpop_key: gose.Key(String),
) -> xrpc.Client

A client that signs every request against the given DPoP-bound access token.

Search Document