feat: enhance application state management with cookie support

- Added cookie key to AppState for managing session cookies.
- Updated AppState initialization to derive cookie key from configuration.
- Removed session-based authentication option from cargo-generate prompts.
- Refactored JWT authentication logic to improve clarity and error handling.
- Updated password validation to align with NIST recommendations (minimum length increased).
- Removed unused session store implementation and related code.
- Improved error handling in user repository for unique constraint violations.
- Refactored OIDC service to include state management for authentication flow.
- Cleaned up dependencies in Cargo.toml and Cargo.toml.template for clarity and efficiency.

api/Cargo.toml.template

@@ -1,17 +1,15 @@
 [package]
-name = "api"
+name = "{{project_name}}"
 version = "0.1.0"
 edition = "2024"
-default-run = "api"
+default-run = "{{project_name}}"
 
 [features]
-default = ["{{database}}"{% if auth_session %}, "auth-axum-login"{% endif %}{% if auth_oidc %}, "auth-oidc"{% endif %}{% if auth_jwt %}, "auth-jwt"{% endif %}]
-sqlite = ["infra/sqlite", "tower-sessions-sqlx-store/sqlite"]
-postgres = ["infra/postgres", "tower-sessions-sqlx-store/postgres"]
-auth-axum-login = ["infra/auth-axum-login"]
+default = ["{{database}}"{% if auth_oidc %}, "auth-oidc"{% endif %}{% if auth_jwt %}, "auth-jwt"{% endif %}]
+sqlite = ["infra/sqlite"]
+postgres = ["infra/postgres"]
 auth-oidc = ["infra/auth-oidc"]
 auth-jwt = ["infra/auth-jwt"]
-auth-full = ["auth-axum-login", "auth-oidc", "auth-jwt"]
 
 [dependencies]
 k-core = { git = "https://git.gabrielkaszewski.dev/GKaszewski/k-core", features = [
@@ -19,24 +17,16 @@ k-core = { git = "https://git.gabrielkaszewski.dev/GKaszewski/k-core", features
     "db-sqlx",
     "{{database}}",
     "http",
-    "auth",
-    "sessions-db",
 ] }
 domain = { path = "../domain" }
 infra = { path = "../infra", default-features = false, features = ["{{database}}"] }
 
-#Web framework
+# Web framework
 axum = { version = "0.8.8", features = ["macros"] }
+axum-extra = { version = "0.10", features = ["cookie-private", "cookie-key-expansion"] }
 tower = "0.5.2"
 tower-http = { version = "0.6.2", features = ["cors", "trace"] }
 
-# Authentication
-# Moved to infra
-tower-sessions-sqlx-store = { version = "0.15", features = ["{{database}}"] }
-# password-auth removed
-time = "0.3"
-async-trait = "0.1.89"
-
 # Async runtime
 tokio = { version = "1.48.0", features = ["full"] }
 
@@ -44,8 +34,6 @@ tokio = { version = "1.48.0", features = ["full"] }
 serde = { version = "1.0.228", features = ["derive"] }
 serde_json = "1.0"
 
-# Validation via domain newtypes (Email, Password)
-
 # Error handling
 thiserror = "2.0.17"
 anyhow = "1.0"
@@ -56,8 +44,6 @@ uuid = { version = "1.19.0", features = ["v4", "serde"] }
 
 # Logging
 tracing = "0.1"
-tracing-subscriber = { version = "0.3.22", features = ["env-filter"] }
 
 dotenvy = "0.15.7"
-config = "0.15.19"
-tower-sessions = "0.14.0"
+time = "0.3"