style(gateway): apply cargo fmt formatting

pilartomas · claude · pilartomas · commit 9555b5682396 · 2026-04-09T12:25:38.000+02:00
Co-Authored-By: Claude Opus 4.6 (1M context) &lt;noreply@anthropic.com&gt;
diff --git a/apps/gateway/src/auth.rs b/apps/gateway/src/auth.rs
@@ -96,8 +96,7 @@ impl FromRequestParts<GatewayState> for AuthUser {
         }
 
         // Fall back to session auth (OIDC JWT, NextAuth cookie, or local mode)
-        let user_id =
-            validate_request(pool, &parts.headers, state.jwks.as_ref()).await?;
+        let user_id = validate_request(pool, &parts.headers, state.jwks.as_ref()).await?;
 
         // Resolve account from membership
         let account_id = db::find_account_id_by_user(pool, &user_id)
@@ -199,10 +198,7 @@ async fn validate_oauth(
 async fn try_bearer_jwt(headers: &HeaderMap, jwks: Option<&JwksManager>) -> Option<String> {
     let jwks = jwks?;
 
-    let auth_header = headers
-        .get(hyper::header::AUTHORIZATION)?
-        .to_str()
-        .ok()?;
+    let auth_header = headers.get(hyper::header::AUTHORIZATION)?.to_str().ok()?;
 
     let token = auth_header
         .strip_prefix("Bearer ")
@@ -223,10 +219,7 @@ async fn try_bearer_jwt(headers: &HeaderMap, jwks: Option<&JwksManager>) -> Opti
 }
 
 /// Validate a NextAuth session cookie (HS256 JWT signed with NEXTAUTH_SECRET).
-async fn validate_nextauth_cookie(
-    pool: &PgPool,
-    headers: &HeaderMap,
-) -> Result<String, AuthError> {
+async fn validate_nextauth_cookie(pool: &PgPool, headers: &HeaderMap) -> Result<String, AuthError> {
     let cookie_header = headers
         .get(hyper::header::COOKIE)
         .and_then(|v| v.to_str().ok())
diff --git a/apps/gateway/src/jwks.rs b/apps/gateway/src/jwks.rs
@@ -142,11 +142,10 @@ impl JwksManager {
         self.maybe_refresh().await;
 
         let cache = self.cache.read().await;
-        self.try_decode(token, kid, &cache.keys)?
-            .ok_or_else(|| {
-                warn!(kid = ?kid, "JWT kid not found in JWKS after refresh");
-                AuthError("invalid token".to_string())
-            })
+        self.try_decode(token, kid, &cache.keys)?.ok_or_else(|| {
+            warn!(kid = ?kid, "JWT kid not found in JWKS after refresh");
+            AuthError("invalid token".to_string())
+        })
     }
 
     /// Try to decode the token using the cached keys.
