3 stable releases

2.0.1	Jan 25, 2026
2.0.0	Jan 22, 2026
1.0.0	Dec 7, 2025

#1063 in Asynchronous

MIT license

290KB
4K SLoC

Oxidite Web Framework

A modern, high-performance web framework for Rust, inspired by FastAPI, Express.js, and Laravel.

Built with ❤️ by Meshack Bahati Ouma

🚀 What is Oxidite?

Oxidite is a batteries-included web framework that combines Rust's performance with developer-friendly APIs. It provides a complete ecosystem for building scalable web applications, from REST APIs to fullstack server-side rendered apps.

✨ Key Features

⚡ High Performance: Built on hyper and tokio for blazing speed
🗄️ Advanced ORM: Complete database layer with relationships, soft deletes, validation
🛠️ Powerful CLI: Scaffolding, migrations, hot-reload dev server, code generators
🔋 Batteries Included: RBAC/PBAC, API Keys, Queues, Caching, Email, Storage
🔐 Enterprise Security: Password hashing, JWT, OAuth2, 2FA, rate limiting
🎨 Template Engine: Jinja2-style templates with inheritance and auto-escaping
🔄 Real-time: WebSockets and Redis pub/sub support
📝 Type-Safe: Strong typing for requests, responses, and database queries
📊 Auto-Documentation: OpenAPI/Swagger UI generation
🔧 Enhanced Extractors: Form, Cookies, Body extractors for comprehensive request handling
📈 API Versioning: Support for URL, header, and query parameter versioning
🐛 Comprehensive Error Handling: Specific HTTP status codes and detailed error messages

Status: See STATUS.md for detailed feature completeness

📦 Installation

Install the Oxidite CLI tool to get started:

# Install from source (recommended for development)
cargo install --path ../oxidite-cli

# Or install from crates.io (when published)
cargo install oxidite-cli

🚀 Getting Started

Quick Start

Create a new Oxidite project in seconds:

oxidite new my-app

Then run your application:

# Navigate to your project
cd my-app

# Start the development server
oxidite dev

Your application will be available at http://127.0.0.1:8080.

Hello World Example

Here's a simple "Hello World" example:

use oxidite::prelude::*;

async fn hello(_req: OxiditeRequest) -> Result<OxiditeResponse> {
    Ok(response::text("Hello, Oxidite!"))
}

#[tokio::main]
async fn main() -> Result<()> {
    let mut app = Router::new();
    
    app.get("/", hello);
    
    Server::new(app)
        .listen("127.0.0.1:3000".parse().unwrap())
        .await
}

Using Extractors

Oxidite provides powerful type-safe extractors for handling different types of requests:

use oxidite::prelude::*;
use serde::Deserialize;

#[derive(Deserialize)]
struct CreateUser {
    name: String,
    email: String,
}

// Handle JSON requests
async fn create_user(Json(payload): Json<CreateUser>) -> Result<OxiditeResponse> {
    // payload contains deserialized JSON data
    Ok(response::json(serde_json::json!({
        "message": "User created successfully",
        "user": payload
    })))
}

// Handle form data
async fn create_user_form(Form(payload): Form<CreateUser>) -> Result<OxiditeResponse> {
    // payload contains deserialized form data
    Ok(response::json(serde_json::json!({
        "message": "User created from form",
        "user": payload
    })))
}

// Handle query parameters
async fn search_users(Query(params): Query<CreateUser>) -> Result<OxiditeResponse> {
    // params contains deserialized query parameters
    Ok(response::json(serde_json::json!({
        "message": "Search results",
        "query": params
    })))
}

// Handle path parameters
#[derive(Deserialize)]
struct UserId {
    id: u32,
}

async fn get_user(Path(params): Path<UserId>) -> Result<OxiditeResponse> {
    // params.id contains the path parameter
    Ok(response::json(serde_json::json!({
        "id": params.id,
        "name": "Sample User"
    })))
}

// Access cookies
async fn get_cookies(Cookies(cookies): Cookies) -> Result<OxiditeResponse> {
    // cookies is a HashMap<String, String> containing request cookies
    Ok(response::json(serde_json::json!(cookies)))
}

// Access raw body
async fn handle_raw_body(Body(body): Body) -> Result<OxiditeResponse> {
    // body is a String containing the raw request body
    Ok(response::text(format!("Received {} characters", body.len())))
}

🛠️ Core Concepts

Routers and Handlers

Oxidite uses a clean routing system with async handlers:

use oxidite::prelude::*;

async fn home(_req: OxiditeRequest) -> Result<OxiditeResponse> {
    Ok(response::html("<h1>Welcome to Oxidite!</h1>"))
}

async fn api_handler(_req: OxiditeRequest) -> Result<OxiditeResponse> {
    Ok(response::json(serde_json::json!({
        "message": "Hello from API"
    })))
}

#[tokio::main]
async fn main() -> Result<()> {
    let mut router = Router::new();
    
    // Basic routes
    router.get("/", home);
    router.get("/api", api_handler);
    
    // Routes with parameters
    router.get("/users/:id", get_user);
    router.post("/users", create_user);
    router.put("/users/:id", update_user);
    router.delete("/users/:id", delete_user);
    
    Server::new(router)
        .listen("127.0.0.1:3000".parse().unwrap())
        .await
}

Request Handling

Oxidite provides several extractors to handle different types of requests:

Json: Extracts and deserializes JSON from request body
Form: Extracts and deserializes form data
Query: Extracts and deserializes query parameters
Path: Extracts and deserializes path parameters
Cookies: Extracts cookies as HashMap
Body: Extracts raw request body as String
State: Extracts application state from request extensions

API Versioning

Oxidite supports multiple API versioning strategies:

use oxidite::prelude::*;

// URL-based versioning
async fn api_v1_handler(_req: OxiditeRequest) -> Result<OxiditeResponse> {
    Ok(response::json(serde_json::json!({
        "version": "1.0",
        "data": "API v1 response"
    })))
}

async fn api_v2_handler(_req: OxiditeRequest) -> Result<OxiditeResponse> {
    Ok(response::json(serde_json::json!({
        "version": "2.0",
        "data": "API v2 response",
        "enhanced": true
    })))
}

// Version-specific routes
router.get("/api/v1/users", api_v1_handler);
router.get("/api/v2/users", api_v2_handler);

Error Handling

Oxidite provides comprehensive error handling with appropriate HTTP status codes:

use oxidite::prelude::*;

async fn protected_route(_req: OxiditeRequest) -> Result<OxiditeResponse> {
    // Simulate a forbidden request
    Err(OxiditeError::Forbidden("Access denied".to_string()))
}

async fn conflict_route(_req: OxiditeRequest) -> Result<OxiditeResponse> {
    // Simulate a conflict error
    Err(OxiditeError::Conflict("Resource conflict".to_string()))
}

async fn validation_route(Json(data): Json<MyData>) -> Result<OxiditeResponse> {
    // Validate the data
    if data.is_valid() {
        Ok(response::json(serde_json::json!("Valid")))
    } else {
        Err(OxiditeError::Validation("Invalid data".to_string()))
    }
}

📚 Documentation

Complete documentation is available in the docs/ directory:

Getting Started - Your first Oxidite application
Core Concepts - Fundamental architecture and concepts
API Documentation - Complete API reference
Framework Features - Framework features and capabilities
Added Features - Recently added features and improvements
Database Guide - ORM and database operations
Authentication Guide - Authentication and authorization
Templating Guide - Server-side rendering
Middleware Guide - Adding functionality with middleware
CLI Tools - Command-line interface

🏗️ Architecture

Oxidite is composed of modular crates that can be used independently:

Crate	Description
`oxidite`	Main crate with prelude and convenience exports
`oxidite-core`	Core HTTP server, routing, and extractors
`oxidite-db`	Database ORM with migrations and relationships
`oxidite-auth`	Authentication and authorization
`oxidite-template`	Template engine for server-side rendering
`oxidite-middleware`	Common middleware implementations
`oxidite-cli`	Command-line tools for project management
`oxidite-config`	Configuration management
`oxidite-cache`	Caching utilities
`oxidite-queue`	Background job processing
`oxidite-realtime`	Real-time features (WebSockets, SSE)
`oxidite-mail`	Email sending capabilities
`oxidite-storage`	File storage (local and S3)
`oxidite-openapi`	OpenAPI/Swagger integration
`oxidite-macros`	Procedural macros
`oxidite-security`	Security utilities
`oxidite-testing`	Testing utilities
`oxidite-utils`	Common utilities

🧪 Testing

Oxidite provides comprehensive testing utilities:

use oxidite::prelude::*;
use oxidite_testing::TestClient;

#[cfg(test)]
mod tests {
    use super::*;
    use tokio;
    
    #[tokio::test]
    async fn test_hello_endpoint() {
        let mut router = Router::new();
        router.get("/", hello);
        
        let client = TestClient::new(router);
        let response = client.get("/").send().await;
        
        assert_eq!(response.status(), 200);
        assert_eq!(response.text().await, "Hello, Oxidite!");
    }
}

🚀 Deployment

Deploy your Oxidite application with any Rust-compatible hosting provider:

# Build for release
cargo build --release

# Run the application
./target/release/my-app

For containerized deployment:

FROM rust:latest
WORKDIR /app
COPY . .
RUN cargo build --release
CMD ["./target/release/my-app"]

🤝 Contributing

Contributions are welcome! Please read our Contributing Guide.

📄 License

MIT License - see LICENSE for details.

Dependencies

~56–81MB
~1.5M SLoC