Documentation ¶
Overview ¶
Package identity contains the identity data model and low-level related functions
Index ¶
- Variables
- func Fetch(repo repository.Repo, remote string) (string, error)
- func GetUserIdentityId(repo repository.Repo) (entity.Id, error)
- func IsUserIdentitySet(repo repository.Repo) (bool, error)
- func ListLocalIds(repo repository.Repo) ([]entity.Id, error)
- func MergeAll(repo repository.ClockedRepo, remote string) <-chan entity.MergeResult
- func NewErrMultipleMatch(matching []entity.Id) *entity.ErrMultipleMatch
- func NewErrMultipleMatchIdentity(matching []entity.Id) *entity.ErrMultipleMatch
- func Pull(repo repository.ClockedRepo, remote string) error
- func Push(repo repository.Repo, remote string) (string, error)
- func ReadAllLocal(repo repository.ClockedRepo) <-chan StreamedIdentity
- func ReadAllRemote(repo repository.ClockedRepo, remote string) <-chan StreamedIdentity
- func RemoveIdentity(repo repository.ClockedRepo, id entity.Id) error
- func SetUserIdentity(repo repository.RepoConfig, identity *Identity) error
- type CachedResolver
- type Identity
- func GetUserIdentity(repo repository.Repo) (*Identity, error)
- func NewFromGitUser(repo repository.ClockedRepo) (*Identity, error)
- func NewIdentity(repo repository.RepoClock, name string, email string) (*Identity, error)
- func NewIdentityFull(repo repository.RepoClock, name string, email string, login string, ...) (*Identity, error)
- func ReadLocal(repo repository.Repo, id entity.Id) (*Identity, error)
- func ReadRemote(repo repository.Repo, remote string, id string) (*Identity, error)
- func (i *Identity) AvatarUrl() string
- func (i *Identity) Commit(repo repository.ClockedRepo) error
- func (i *Identity) CommitAsNeeded(repo repository.ClockedRepo) error
- func (i *Identity) DisplayName() string
- func (i *Identity) Email() string
- func (i *Identity) Id() entity.Id
- func (i *Identity) ImmutableMetadata() map[string]string
- func (i *Identity) IsProtected() bool
- func (i *Identity) Keys() []*Key
- func (i *Identity) LastModification() timestamp.Timestamp
- func (i *Identity) LastModificationLamports() map[string]lamport.Time
- func (i *Identity) Login() string
- func (i *Identity) MarshalJSON() ([]byte, error)
- func (i *Identity) Merge(repo repository.Repo, other *Identity) (bool, error)
- func (i *Identity) MutableMetadata() map[string]string
- func (i *Identity) Mutate(repo repository.RepoClock, f func(orig *Mutator)) error
- func (i *Identity) Name() string
- func (i *Identity) NeedCommit() bool
- func (i *Identity) SetMetadata(key string, value string)
- func (i *Identity) SigningKey(repo repository.RepoKeyring) (*Key, error)
- func (i *Identity) UnmarshalJSON(data []byte) error
- func (i *Identity) ValidKeysAtTime(clockName string, time lamport.Time) []*Key
- func (i *Identity) Validate() error
- type IdentityStub
- func (IdentityStub) AvatarUrl() string
- func (IdentityStub) DisplayName() string
- func (IdentityStub) Email() string
- func (i *IdentityStub) Id() entity.Id
- func (IdentityStub) IsProtected() bool
- func (IdentityStub) Keys() []*Key
- func (i *IdentityStub) LastModification() timestamp.Timestamp
- func (i *IdentityStub) LastModificationLamports() map[string]lamport.Time
- func (IdentityStub) Login() string
- func (i *IdentityStub) MarshalJSON() ([]byte, error)
- func (IdentityStub) Name() string
- func (i *IdentityStub) NeedCommit() bool
- func (i *IdentityStub) SigningKey(repo repository.RepoKeyring) (*Key, error)
- func (i *IdentityStub) UnmarshalJSON(data []byte) error
- func (IdentityStub) ValidKeysAtTime(_ string, _ lamport.Time) []*Key
- func (IdentityStub) Validate() error
- type Interface
- type Key
- type Mutator
- type Resolver
- type SimpleResolver
- type StreamedIdentity
- type StubResolver
Constants ¶
This section is empty.
Variables ¶
var ErrIdentityNotExist = errors.New("identity doesn't exist")
var ErrMultipleIdentitiesSet = errors.New("multiple user identities set")
var ErrNoIdentitySet = errors.New("No identity is set.\n" +
"To interact with bugs, an identity first needs to be created using " +
"\"git bug user create\"")
var ErrNonFastForwardMerge = errors.New("non fast-forward identity merge")
Functions ¶
func Fetch ¶
func Fetch(repo repository.Repo, remote string) (string, error)
Fetch retrieve updates from a remote This does not change the local identities state
func GetUserIdentityId ¶
func GetUserIdentityId(repo repository.Repo) (entity.Id, error)
func IsUserIdentitySet ¶
func IsUserIdentitySet(repo repository.Repo) (bool, error)
IsUserIdentitySet say if the user has set his identity
func ListLocalIds ¶
func ListLocalIds(repo repository.Repo) ([]entity.Id, error)
ListLocalIds list all the available local identity ids
func MergeAll ¶
func MergeAll(repo repository.ClockedRepo, remote string) <-chan entity.MergeResult
MergeAll will merge all the available remote identity
func NewErrMultipleMatch ¶
func NewErrMultipleMatch(matching []entity.Id) *entity.ErrMultipleMatch
func NewErrMultipleMatchIdentity ¶
func NewErrMultipleMatchIdentity(matching []entity.Id) *entity.ErrMultipleMatch
func Pull ¶
func Pull(repo repository.ClockedRepo, remote string) error
Pull will do a Fetch + MergeAll This function will return an error if a merge fail
func Push ¶
func Push(repo repository.Repo, remote string) (string, error)
Push update a remote with the local changes
func ReadAllLocal ¶
func ReadAllLocal(repo repository.ClockedRepo) <-chan StreamedIdentity
ReadAllLocal read and parse all local Identity
func ReadAllRemote ¶
func ReadAllRemote(repo repository.ClockedRepo, remote string) <-chan StreamedIdentity
ReadAllRemote read and parse all remote Identity for a given remote
func RemoveIdentity ¶
func RemoveIdentity(repo repository.ClockedRepo, id entity.Id) error
RemoveIdentity will remove a local identity from its entity.Id
func SetUserIdentity ¶
func SetUserIdentity(repo repository.RepoConfig, identity *Identity) error
SetUserIdentity store the user identity's id in the git config
Types ¶
type CachedResolver ¶
type CachedResolver struct {
// contains filtered or unexported fields
}
CachedResolver is a resolver ensuring that loading is done only once through another Resolver.
func NewCachedResolver ¶
func NewCachedResolver(resolver Resolver) *CachedResolver
func (*CachedResolver) ResolveIdentity ¶
func (c *CachedResolver) ResolveIdentity(id entity.Id) (Interface, error)
type Identity ¶
type Identity struct {
// contains filtered or unexported fields
}
func GetUserIdentity ¶
func GetUserIdentity(repo repository.Repo) (*Identity, error)
GetUserIdentity read the current user identity, set with a git config entry
func NewFromGitUser ¶
func NewFromGitUser(repo repository.ClockedRepo) (*Identity, error)
NewFromGitUser will query the repository for user detail and build the corresponding Identity
func NewIdentity ¶
func NewIdentityFull ¶
func ReadRemote ¶
ReadRemote load a remote Identity from the identities data available in git
func (*Identity) Commit ¶
func (i *Identity) Commit(repo repository.ClockedRepo) error
Write the identity into the Repository. In particular, this ensure that the Id is properly set.
func (*Identity) CommitAsNeeded ¶
func (i *Identity) CommitAsNeeded(repo repository.ClockedRepo) error
func (*Identity) DisplayName ¶
DisplayName return a non-empty string to display, representing the identity, based on the non-empty values.
func (*Identity) ImmutableMetadata ¶
ImmutableMetadata return all metadata for this Identity, accumulated from each version. If multiple value are found, the first defined takes precedence.
func (*Identity) IsProtected ¶
IsProtected return true if the chain of git commits started to be signed. If that's the case, only signed commit with a valid key for this identity can be added.
func (*Identity) LastModification ¶
LastModification return the timestamp at which the last version of the identity became valid.
func (*Identity) LastModificationLamports ¶
LastModificationLamports return the lamport times at which the last version of the identity became valid.
func (*Identity) MarshalJSON ¶
MarshalJSON will only serialize the id
func (*Identity) Merge ¶
Merge will merge a different version of the same Identity
To make sure that an Identity history can't be altered, a strict fast-forward only policy is applied here. As an Identity should be tied to a single user, this should work in practice but it does leave a possibility that a user would edit his Identity from two different repo concurrently and push the changes in a non-centralized network of repositories. In this case, it would result in some of the repo accepting one version and some other accepting another, preventing the network in general to converge to the same result. This would create a sort of partition of the network, and manual cleaning would be required.
An alternative approach would be to have a determinist rebase:
- any commits present in both local and remote version would be kept, never changed.
- newer commits would be merged in a linear chain of commits, ordered based on the Lamport time
However, this approach leave the possibility, in the case of a compromised crypto keys, of forging a new version with a bogus Lamport time to be inserted before a legit version, invalidating the correct version and hijacking the Identity. There would only be a short period of time where this would be possible (before the network converge) but I'm not confident enough to implement that. I choose the strict fast-forward only approach, despite it's potential problem with two different version as mentioned above.
func (*Identity) MutableMetadata ¶
MutableMetadata return all metadata for this Identity, accumulated from each version. If multiple value are found, the last defined takes precedence.
func (*Identity) Mutate ¶
func (i *Identity) Mutate(repo repository.RepoClock, f func(orig *Mutator)) error
Mutate allow to create a new version of the Identity in one go
func (*Identity) NeedCommit ¶
func (*Identity) SetMetadata ¶
SetMetadata store arbitrary metadata along the last not-commit version. If the version has been commit to git already, a new identical version is added and will need to be commit.
func (*Identity) SigningKey ¶
func (i *Identity) SigningKey(repo repository.RepoKeyring) (*Key, error)
SigningKey return the key that should be used to sign new messages. If no key is available, return nil.
func (*Identity) UnmarshalJSON ¶
UnmarshalJSON will only read the id Users of this package are expected to run Load() to load the remaining data from the identities data in git.
func (*Identity) ValidKeysAtTime ¶
ValidKeysAtTime return the set of keys valid at a given lamport time
type IdentityStub ¶
type IdentityStub struct {
// contains filtered or unexported fields
}
IdentityStub is an almost empty Identity, holding only the id. When a normal Identity is serialized into JSON, only the id is serialized. All the other data are stored in git in a chain of commit + a ref. When this JSON is deserialized, an IdentityStub is returned instead, to be replaced later by the proper Identity, loaded from the Repo.
func (IdentityStub) AvatarUrl ¶
func (IdentityStub) AvatarUrl() string
func (IdentityStub) DisplayName ¶
func (IdentityStub) DisplayName() string
func (IdentityStub) Email ¶
func (IdentityStub) Email() string
func (IdentityStub) IsProtected ¶
func (IdentityStub) IsProtected() bool
func (IdentityStub) Keys ¶
func (IdentityStub) Keys() []*Key
func (*IdentityStub) LastModification ¶
func (i *IdentityStub) LastModification() timestamp.Timestamp
func (*IdentityStub) LastModificationLamports ¶
func (i *IdentityStub) LastModificationLamports() map[string]lamport.Time
func (IdentityStub) Login ¶
func (IdentityStub) Login() string
func (*IdentityStub) MarshalJSON ¶
func (i *IdentityStub) MarshalJSON() ([]byte, error)
func (IdentityStub) Name ¶
func (IdentityStub) Name() string
func (*IdentityStub) NeedCommit ¶
func (i *IdentityStub) NeedCommit() bool
func (*IdentityStub) SigningKey ¶
func (i *IdentityStub) SigningKey(repo repository.RepoKeyring) (*Key, error)
func (*IdentityStub) UnmarshalJSON ¶
func (i *IdentityStub) UnmarshalJSON(data []byte) error
func (IdentityStub) ValidKeysAtTime ¶
func (IdentityStub) ValidKeysAtTime(_ string, _ lamport.Time) []*Key
func (IdentityStub) Validate ¶
func (IdentityStub) Validate() error
type Interface ¶
type Interface interface { entity.Interface // Name return the last version of the name // Can be empty. Name() string // DisplayName return a non-empty string to display, representing the // identity, based on the non-empty values. DisplayName() string // Email return the last version of the email // Can be empty. Email() string // Login return the last version of the login // Can be empty. // Warning: this login can be defined when importing from a bridge but should *not* be // used to identify an identity as multiple bridge with different login can map to the same // identity. Use the metadata system for that usage instead. Login() string // AvatarUrl return the last version of the Avatar URL // Can be empty. AvatarUrl() string // Keys return the last version of the valid keys // Can be empty. Keys() []*Key // SigningKey return the key that should be used to sign new messages. If no key is available, return nil. SigningKey(repo repository.RepoKeyring) (*Key, error) // ValidKeysAtTime return the set of keys valid at a given lamport time for a given clock of another entity // Can be empty. ValidKeysAtTime(clockName string, time lamport.Time) []*Key // LastModification return the timestamp at which the last version of the identity became valid. LastModification() timestamp.Timestamp // LastModificationLamports return the lamport times at which the last version of the identity became valid. LastModificationLamports() map[string]lamport.Time // IsProtected return true if the chain of git commits started to be signed. // If that's the case, only signed commit with a valid key for this identity can be added. IsProtected() bool // Validate check if the Identity data is valid Validate() error // Indicate that the in-memory state changed and need to be commit in the repository NeedCommit() bool }
func UnmarshalJSON ¶
func UnmarshalJSON(raw json.RawMessage) (Interface, error)
Custom unmarshaling function to allow package user to delegate the decoding of an Identity and distinguish between an Identity and a Bare.
If the given message has a "id" field, it's considered being a proper Identity.
type Key ¶
type Key struct {
// contains filtered or unexported fields
}
func GenerateKey ¶
func GenerateKey() *Key
GenerateKey generate a keypair (public+private) The type and configuration of the key is determined by the default value in go's OpenPGP.
func (*Key) MarshalJSON ¶
func (*Key) Private ¶
func (k *Key) Private() *packet.PrivateKey
func (*Key) UnmarshalJSON ¶
type Resolver ¶
Resolver define the interface of an Identity resolver, able to load an identity from, for example, a repo or a cache.
type SimpleResolver ¶
type SimpleResolver struct {
// contains filtered or unexported fields
}
SimpleResolver is a Resolver loading Identities directly from a Repo
func NewSimpleResolver ¶
func NewSimpleResolver(repo repository.Repo) *SimpleResolver
func (*SimpleResolver) ResolveIdentity ¶
func (r *SimpleResolver) ResolveIdentity(id entity.Id) (Interface, error)
type StreamedIdentity ¶
type StubResolver ¶
type StubResolver struct{}
StubResolver is a Resolver that doesn't load anything, only returning IdentityStub instances
func NewStubResolver ¶
func NewStubResolver() *StubResolver
func (*StubResolver) ResolveIdentity ¶
func (s *StubResolver) ResolveIdentity(id entity.Id) (Interface, error)