auth

package

v0.5.0 Latest Latest Go to latest Published: Dec 23, 2022 License: Apache-2.0, Apache-2.0 Imports: 11 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/cectc/dbpack

Links

Open Source Insights

Documentation ¶

Index ¶

Constants
func CheckScrambledPassword(salt, hpwd, auth []byte) bool
func CheckShaPassword(pwhash []byte, password string) (bool, error)
func DecodePassword(pwd string) ([]byte, error)
func EncodePassword(pwd string) string
func NewSha2Password(pwd string) string
func Sha1Hash(bs []byte) []byte
type RoleIdentity
- func (role *RoleIdentity) Restore(ctx *format.RestoreCtx) error
- func (role *RoleIdentity) String() string
type UserIdentity

Constants ¶

View Source

const (
	MIXCHARS             = 32
	SALT_LENGTH          = 20
	ITERATION_MULTIPLIER = 1000
)

Variables ¶

This section is empty.

Functions ¶

func CheckScrambledPassword ¶

func CheckScrambledPassword(salt, hpwd, auth []byte) bool

CheckScrambledPassword check scrambled password received from client. The new authentication is performed in following manner:

SERVER:  public_seed=create_random_string()
         send(public_seed)
CLIENT:  recv(public_seed)
         hash_stage1=sha1("password")
         hash_stage2=sha1(hash_stage1)
         reply=xor(hash_stage1, sha1(public_seed,hash_stage2)
         // this three steps are done in scramble()
         send(reply)
SERVER:  recv(reply)
         hash_stage1=xor(reply, sha1(public_seed,hash_stage2))
         candidate_hash2=sha1(hash_stage1)
         check(candidate_hash2==hash_stage2)
         // this three steps are done in check_scramble()

func CheckShaPassword ¶

func CheckShaPassword(pwhash []byte, password string) (bool, error)

Checks if a MySQL style caching_sha2 authentication string matches a password

func DecodePassword ¶

func DecodePassword(pwd string) ([]byte, error)

DecodePassword converts hex string password without prefix '*' to byte array.

func EncodePassword ¶

func EncodePassword(pwd string) string

EncodePassword converts plaintext password to hashed hex string.

func NewSha2Password ¶

func NewSha2Password(pwd string) string

func Sha1Hash ¶

func Sha1Hash(bs []byte) []byte

Sha1Hash is an util function to calculate sha1 hash.

Types ¶

type RoleIdentity ¶

type RoleIdentity struct {
	Username string
	Hostname string
}

func (*RoleIdentity) Restore ¶

func (role *RoleIdentity) Restore(ctx *format.RestoreCtx) error

func (*RoleIdentity) String ¶

func (role *RoleIdentity) String() string

String converts UserIdentity to the format user@host.

type UserIdentity ¶

type UserIdentity struct {
	Username     string
	Hostname     string
	CurrentUser  bool
	AuthUsername string // Username matched in privileges system
	AuthHostname string // Match in privs system (i.e. could be a wildcard)
}

UserIdentity represents username and hostname.

func (*UserIdentity) AuthIdentityString ¶

func (user *UserIdentity) AuthIdentityString() string

AuthIdentityString returns matched identity in user@host format

func (*UserIdentity) Restore ¶

func (user *UserIdentity) Restore(ctx *format.RestoreCtx) error

Restore implements Node interface.

func (*UserIdentity) String ¶

func (user *UserIdentity) String() string

String converts UserIdentity to the format user@host.

Source Files ¶

View all Source files

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL