Why Go
- Case Studies
  
  Common problems companies solve with Go
- Use Cases
  
  Stories about how and why companies use Go
- Security Policy
  
  How Go can help keep you secure by default
Learn
Docs
- Effective Go
  
  Tips for writing clear, performant, and idiomatic Go code
- Go User Manual
  
  A complete introduction to building software with Go
- Standard library
  
  Reference documentation for Go's standard library
- Release Notes
  
  Learn what's new in each Go release
Packages
Community
- Recorded Talks
  
  Videos from prior events
- Meetups
  
  Meet other local Go developers
- Conferences
  
  Learn and network with Go developers from around the world
- Go blog
  
  The Go project's official blog.
- Go project
  
  Get help and stay informed from Go
- Get connected

security

package

Go to main page

Versions in this module

v0

v0.15.1

Aug 16, 2024

v0.15.0

Jul 8, 2024

v0.14.0

Apr 24, 2024

v0.13.0

Feb 27, 2024

Changes in this version

+ const AuthMethodExternalOpenID

+ const AuthMethodExternalSaml

+ const AuthMethodPassword

+ const CompatibilityReference

+ const CompatibilityReferenceTag

+ const CsrfHeaderName

+ const CsrfParamName

+ const DetailsKeyAuthMethod

+ const DetailsKeyAuthTime

+ const DetailsKeyAuthWarning

+ const DetailsKeyMFAApplied

+ const DetailsKeySessionId

+ const ErrorCodeAccountStatus

+ const ErrorCodeAuthenticatorNotAvailable

+ const ErrorCodeBadCredentials

+ const ErrorCodeCredentialsExpired

+ const ErrorCodeInvalidCsrfToken

+ const ErrorCodeMaxAttemptsReached

+ const ErrorCodeMissingCsrfToken

+ const ErrorCodeUsernameNotFound

+ const ErrorSubTypeCodeAccessDenied

+ const ErrorSubTypeCodeAuthWarning

+ const ErrorSubTypeCodeCsrf

+ const ErrorSubTypeCodeExternalSamlAuth

+ const ErrorSubTypeCodeInsufficientAuth

+ const ErrorSubTypeCodeInternal

+ const ErrorSubTypeCodeTenantAccessDenied

+ const ErrorSubTypeCodeTenantInvalid

+ const ErrorSubTypeCodeUsernamePasswordAuth

+ const ErrorTypeCodeAccessControl

+ const ErrorTypeCodeAuthentication

+ const ErrorTypeCodeInternal

+ const ErrorTypeCodeOAuth2

+ const ErrorTypeCodeOidc

+ const ErrorTypeCodeSaml

+ const ErrorTypeCodeTenancy

+ const FeatureOrderAccess

+ const FeatureOrderAuthenticator

+ const FeatureOrderBasicAuth

+ const FeatureOrderCsrf

+ const FeatureOrderErrorHandling

+ const FeatureOrderFormLogin

+ const FeatureOrderLogout

+ const FeatureOrderOAuth2AuthorizeEndpoint

+ const FeatureOrderOAuth2ClientAuth

+ const FeatureOrderOAuth2TokenAuth

+ const FeatureOrderOAuth2TokenEndpoint

+ const FeatureOrderRequestCache

+ const FeatureOrderSamlAuthorizeEndpoint

+ const FeatureOrderSamlLogin

+ const FeatureOrderSamlLogout

+ const FeatureOrderSession

+ const HandlerOrderChangeSession

+ const HandlerOrderConcurrentSession

+ const HighestMiddlewareOrder

+ const LowestMiddlewareOrder

+ const MWOrderAccessControl

+ const MWOrderAuthPersistence

+ const MWOrderBasicAuth

+ const MWOrderCsrfHandling

+ const MWOrderErrorHandling

+ const MWOrderFormAuth

+ const MWOrderFormLogout

+ const MWOrderOAuth2AuthValidation

+ const MWOrderOAuth2Endpoints

+ const MWOrderOAuth2TokenAuth

+ const MWOrderPreAuth

+ const MWOrderSAMLMetadataRefresh

+ const MWOrderSamlAuthEndpoints

+ const MWOrderSessionHandling

+ const MaxSecurityPrecedence

+ const MinSecurityPrecedence

+ const Reserved

+ const SessionPropertiesPrefix

+ const SpecialPermissionAPIAdmin

+ const SpecialPermissionAccessAllTenant

+ const SpecialPermissionSwitchTenant

+ const SpecialPermissionSwitchUser

+ const SpecialTenantIdWildcard

+ const StateAnonymous

+ const StateAuthenticated

+ const StatePrincipalKnown

+ const TimeoutPropertiesPrefix

+ const WSSharedKeyCompositeAccessDeniedHandler

+ const WSSharedKeyCompositeAuthErrorHandler

+ const WSSharedKeyCompositeAuthSuccessHandler

+ const WSSharedKeyRequestPreProcessors

+ const WSSharedKeySessionStore

+ var CompatibilityDiscoveryCustomizer = compatibilityDiscoveryCustomizer

+ var ErrorInvalidTenantId = NewCodedError(ErrorSubTypeCodeTenantInvalid, "Invalid tenant Id")

+ var ErrorSubTypeAccessDenied = NewErrorSubType(ErrorSubTypeCodeAccessDenied, errors.New("error sub-type: access denied"))

+ var ErrorSubTypeAuthWarning = NewErrorSubType(ErrorSubTypeCodeAuthWarning, errors.New("error sub-type: auth warning"))

+ var ErrorSubTypeCsrf = NewErrorSubType(ErrorSubTypeCodeCsrf, errors.New("error sub-type: csrf"))

+ var ErrorSubTypeExternalSamlAuth = NewErrorSubType(ErrorSubTypeCodeExternalSamlAuth, errors.New("error sub-type: external saml"))

+ var ErrorSubTypeInsufficientAuth = NewErrorSubType(ErrorSubTypeCodeInsufficientAuth, ...)

+ var ErrorSubTypeInternalError = NewErrorSubType(ErrorSubTypeCodeInternal, errors.New("error sub-type: internal"))

+ var ErrorSubTypeUsernamePasswordAuth = NewErrorSubType(ErrorSubTypeCodeUsernamePasswordAuth, errors.New("error sub-type: internal"))

+ var ErrorTenantAccessDenied = NewCodedError(ErrorSubTypeCodeTenantAccessDenied, "No Access to the tenant")

+ var ErrorTypeAccessControl = NewErrorType(ErrorTypeCodeAccessControl, errors.New("error type: access control"))

+ var ErrorTypeAuthentication = NewErrorType(ErrorTypeCodeAuthentication, errors.New("error type: authentication"))

+ var ErrorTypeInternal = NewErrorType(ErrorTypeCodeInternal, errors.New("error type: internal"))

+ var ErrorTypeOidc = NewErrorType(ErrorTypeCodeOidc, errors.New("error type: oidc"))

+ var ErrorTypeSaml = NewErrorType(ErrorTypeCodeSaml, errors.New("error type: saml"))

+ var ErrorTypeSecurity = NewErrorCategory(Reserved, errors.New("error type: security"))

+ var Module = &bootstrap.Module

+ func Clear(ctx context.Context) error

+ func DetermineAuthenticationTime(_ context.Context, userAuth Authentication) (authTime time.Time)

+ func GetUsername(userAuth Authentication) (string, error)

+ func GobRegister()

+ func HasAccessToTenant(ctx context.Context, tenantId string) bool

+ func HasErrorAccessingTenant(ctx context.Context, tenantId string) error

+ func HasPermissions(auth Authentication, permissions ...string) bool

+ func IsBeingAuthenticated(from, to Authentication) bool

+ func IsBeingUnAuthenticated(from, to Authentication) bool

+ func IsFullyAuthenticated(auth Authentication) bool

+ func IsResponseWritten(rw http.ResponseWriter) bool

+ func IsTenantValid(ctx context.Context, tenantId string) bool

+ func MustClear(ctx context.Context)

+ func MustSet(ctx context.Context, auth Authentication)

+ func NewAccessControlError(value interface{}, causes ...interface{}) error

+ func NewAccessDeniedError(value interface{}, causes ...interface{}) error

+ func NewAccountStatusError(value interface{}, causes ...interface{}) error

+ func NewAuthenticationError(value interface{}, causes ...interface{}) error

+ func NewAuthenticationWarningError(value interface{}, causes ...interface{}) error

+ func NewAuthenticatorNotAvailableError(value interface{}, causes ...interface{}) error

+ func NewBadCredentialsError(value interface{}, causes ...interface{}) error

+ func NewCredentialsExpiredError(value interface{}, causes ...interface{}) error

+ func NewErrorSubType(code int64, e error) error

+ func NewErrorType(code int64, e error) error

+ func NewExternalSamlAuthenticationError(value interface{}, causes ...interface{}) error

+ func NewInsufficientAuthError(value interface{}, causes ...interface{}) error

+ func NewInternalAuthenticationError(value interface{}, causes ...interface{}) error

+ func NewInternalError(text string, causes ...interface{}) error

+ func NewInvalidCsrfTokenError(value interface{}, causes ...interface{}) error

+ func NewMaxAttemptsReachedError(value interface{}, causes ...interface{}) error

+ func NewMissingCsrfTokenError(value interface{}, causes ...interface{}) error

+ func NewUsernameNotFoundError(value interface{}, causes ...interface{}) error

+ func NoopHandlerFunc() gin.HandlerFunc

+ func Set(ctx context.Context, auth Authentication) error

+ func Use()

+ func WriteError(ctx context.Context, r *http.Request, rw http.ResponseWriter, code int, ...)

+ func WriteErrorAsHtml(ctx context.Context, rw http.ResponseWriter, code int, err error)

+ func WriteErrorAsJson(ctx context.Context, rw http.ResponseWriter, code int, err error)

+ type AccessDeniedHandler interface

+ HandleAccessDenied func(context.Context, *http.Request, http.ResponseWriter, error)

+ type Account interface

+ CacheableCopy func() Account

+ Credentials func() interface{}

+ Disabled func() bool

+ ID func() interface{}

+ Locked func() bool

+ Permissions func() []string

+ Type func() AccountType

+ UseMFA func() bool

+ Username func() string

+ type AccountFinalizeOption struct

+ Tenant *Tenant

+ type AccountFinalizeOptions func(option *AccountFinalizeOption)

+ func FinalizeWithTenant(tenant *Tenant) AccountFinalizeOptions

+ type AccountFinalizer interface

+ Finalize func(ctx context.Context, account Account, options ...AccountFinalizeOptions) (Account, error)

+ type AccountHistory interface

+ GracefulAuthCount func() int

+ LastLoginTime func() time.Time

+ LockoutTime func() time.Time

+ LoginFailures func() []time.Time

+ PwdChangedTime func() time.Time

+ SerialFailedAttempts func() int

+ type AccountLockingRule interface

+ LockoutDuration func() time.Duration

+ LockoutEnabled func() bool

+ LockoutFailuresInterval func() time.Duration

+ LockoutFailuresLimit func() int

+ LockoutPolicyName func() string

+ type AccountMetadata interface

+ CurrencyCode func() string

+ Email func() string

+ FirstName func() string

+ LastName func() string

+ LocaleCode func() string

+ RoleNames func() []string

+ Value func(key string) interface{}

+ type AccountPwdAgingRule interface

+ GracefulAuthLimit func() int

+ PwdAgingPolicyName func() string

+ PwdAgingRuleEnforced func() bool

+ PwdExpiryWarningPeriod func() time.Duration

+ PwdMaxAge func() time.Duration

+ type AccountStore interface

+ LoadAccountById func(ctx context.Context, id interface{}) (Account, error)

+ LoadAccountByUsername func(ctx context.Context, username string) (Account, error)

+ LoadLockingRules func(ctx context.Context, acct Account) (AccountLockingRule, error)

+ LoadPwdAgingRules func(ctx context.Context, acct Account) (AccountPwdAgingRule, error)

+ Save func(ctx context.Context, acct Account) error

+ type AccountTenancy interface

+ DefaultDesignatedTenantId func() string

+ DesignatedTenantIds func() []string

+ TenantId func() string

+ type AccountType int

+ const AccountTypeApp

+ const AccountTypeDefault

+ const AccountTypeFederated

+ const AccountTypeSystem

+ const AccountTypeUnknown

+ func ParseAccountType(value interface{}) AccountType

+ func (t AccountType) String() string

+ type AccountUpdater interface

+ IncrementGracefulAuthCount func()

+ LockAccount func()

+ RecordFailure func(failureTime time.Time, limit int)

+ RecordSuccess func(loginTime time.Time)

+ ResetFailedAttempts func()

+ ResetGracefulAuthCount func()

+ UnlockAccount func()

+ type AcctDetails struct

+ Credentials interface{}

+ DefaultDesignatedTenantId string

+ DesignatedTenantIds []string

+ Disabled bool

+ GracefulAuthCount int

+ ID string

+ LastLoginTime time.Time

+ Locked bool

+ LockoutTime time.Time

+ LoginFailures []time.Time

+ Permissions []string

+ PolicyName string

+ PwdChangedTime time.Time

+ SerialFailedAttempts int

+ TenantId string

+ Type AccountType

+ UseMFA bool

+ Username string

+ type AcctLockingRule struct

+ Enabled bool

+ FailuresInterval time.Duration

+ FailuresLimit int

+ LockoutDuration time.Duration

+ Name string

+ type AcctMetadata struct

+ CurrencyCode string

+ Email string

+ Extra map[string]interface{}

+ FirstName string

+ LastName string

+ LocaleCode string

+ RoleNames []string

+ type AcctPasswordPolicy struct

+ Enabled bool

+ ExpiryWarningPeriod time.Duration

+ GracefulAuthLimit int

+ MaxAge time.Duration

+ Name string

+ type AnonymousAuthentication struct

+ func (_ *AnonymousAuthentication) Permissions() Permissions

+ func (_ *AnonymousAuthentication) State() AuthenticationState

+ func (aa *AnonymousAuthentication) Details() interface{}

+ func (aa *AnonymousAuthentication) Principal() interface{}

+ type AnonymousAuthenticator struct

+ func (a *AnonymousAuthenticator) Authenticate(_ context.Context, candidate Candidate) (auth Authentication, err error)

+ type AnonymousCandidate map[string]interface

+ func (_ AnonymousCandidate) Credentials() interface{}

+ func (ac AnonymousCandidate) Details() interface{}

+ func (ac AnonymousCandidate) Principal() interface{}

+ type Authentication interface

+ Details func() interface{}

+ Permissions func() Permissions

+ Principal func() interface{}

+ State func() AuthenticationState

+ func Get(ctx context.Context) Authentication

+ type AuthenticationDetails interface

+ AuthenticationTime func() time.Time

+ ExpiryTime func() time.Time

+ IssueTime func() time.Time

+ Permissions func() utils.StringSet

+ Roles func() utils.StringSet

+ type AuthenticationEntryPoint interface

+ Commence func(context.Context, *http.Request, http.ResponseWriter, error)

+ type AuthenticationErrorHandler interface

+ HandleAuthenticationError func(context.Context, *http.Request, http.ResponseWriter, error)

+ type AuthenticationState int

+ type AuthenticationSuccessHandler interface

+ HandleAuthenticationSuccess func(c context.Context, r *http.Request, rw http.ResponseWriter, ...)

+ type Authenticator interface

+ Authenticate func(context.Context, Candidate) (Authentication, error)

+ func NewAuthenticator(authenticators ...Authenticator) Authenticator

+ type AuthenticatorBuilder interface

+ Build func(context.Context) (Authenticator, error)

+ type AutoCreateUserDetails interface

+ GetAttributeMapping func() map[string]string

+ GetElevatedUserRoleNames func() []string

+ GetEmailWhiteList func() []string

+ GetRegularUserRoleNames func() []string

+ IsEnabled func() bool

+ type Candidate interface

+ Credentials func() interface{}

+ Details func() interface{}

+ Principal func() interface{}

+ type CodedError struct

+ func NewCodedError(code int64, e interface{}, causes ...interface{}) *CodedError

+ func NewErrorCategory(code int64, e error) *CodedError

+ type CompositeAccessDeniedHandler struct

+ func NewAccessDeniedHandler(handlers ...AccessDeniedHandler) *CompositeAccessDeniedHandler

+ func (h *CompositeAccessDeniedHandler) Add(handler AccessDeniedHandler) *CompositeAccessDeniedHandler

+ func (h *CompositeAccessDeniedHandler) HandleAccessDenied(c context.Context, r *http.Request, rw http.ResponseWriter, err error)

+ func (h *CompositeAccessDeniedHandler) Handlers() []AccessDeniedHandler

+ func (h *CompositeAccessDeniedHandler) Merge(composite *CompositeAccessDeniedHandler) *CompositeAccessDeniedHandler

+ func (h *CompositeAccessDeniedHandler) Size() int

+ type CompositeAuthenticationErrorHandler struct

+ func NewAuthenticationErrorHandler(handlers ...AuthenticationErrorHandler) *CompositeAuthenticationErrorHandler

+ func (h *CompositeAuthenticationErrorHandler) Add(handler AuthenticationErrorHandler) *CompositeAuthenticationErrorHandler

+ func (h *CompositeAuthenticationErrorHandler) HandleAuthenticationError(c context.Context, r *http.Request, rw http.ResponseWriter, err error)

+ func (h *CompositeAuthenticationErrorHandler) Handlers() []AuthenticationErrorHandler

+ func (h *CompositeAuthenticationErrorHandler) Merge(composite *CompositeAuthenticationErrorHandler) *CompositeAuthenticationErrorHandler

+ func (h *CompositeAuthenticationErrorHandler) Size() int

+ type CompositeAuthenticationSuccessHandler struct

+ func NewAuthenticationSuccessHandler(handlers ...AuthenticationSuccessHandler) *CompositeAuthenticationSuccessHandler

+ func (h *CompositeAuthenticationSuccessHandler) Add(handler AuthenticationSuccessHandler) *CompositeAuthenticationSuccessHandler

+ func (h *CompositeAuthenticationSuccessHandler) HandleAuthenticationSuccess(c context.Context, r *http.Request, rw http.ResponseWriter, ...)

+ func (h *CompositeAuthenticationSuccessHandler) Handlers() []AuthenticationSuccessHandler

+ func (h *CompositeAuthenticationSuccessHandler) Merge(composite *CompositeAuthenticationSuccessHandler) *CompositeAuthenticationSuccessHandler

+ type CompositeAuthenticator struct

+ func (a *CompositeAuthenticator) Add(authenticator Authenticator) *CompositeAuthenticator

+ func (a *CompositeAuthenticator) Authenticate(ctx context.Context, candidate Candidate) (auth Authentication, err error)

+ func (a *CompositeAuthenticator) Authenticators() []Authenticator

+ func (a *CompositeAuthenticator) Merge(composite *CompositeAuthenticator) *CompositeAuthenticator

+ type CompositeAuthenticatorBuilder struct

+ func NewAuthenticatorBuilder() *CompositeAuthenticatorBuilder

+ func (b *CompositeAuthenticatorBuilder) Build(c context.Context) (Authenticator, error)

+ type CompositeErrorHandler struct

+ func NewErrorHandler(handlers ...ErrorHandler) *CompositeErrorHandler

+ func (h *CompositeErrorHandler) Add(handler ErrorHandler) *CompositeErrorHandler

+ func (h *CompositeErrorHandler) HandleError(c context.Context, r *http.Request, rw http.ResponseWriter, err error)

+ func (h *CompositeErrorHandler) Merge(composite *CompositeErrorHandler) *CompositeErrorHandler

+ func (h *CompositeErrorHandler) Size() int

+ type Configurer interface

+ Configure func(WebSecurity)

+ type ConfigurerFunc func(ws WebSecurity)

+ func (f ConfigurerFunc) Configure(ws WebSecurity)

+ type ContextDetails interface

+ type ContextDetailsStore interface

+ ContextDetailsExists func(ctx context.Context, key interface{}) bool

+ ReadContextDetails func(ctx context.Context, key interface{}) (ContextDetails, error)

+ RemoveContextDetails func(ctx context.Context, key interface{}) error

+ SaveContextDetails func(ctx context.Context, key interface{}, details ContextDetails) error

+ type CookieProperties struct

+ Domain string

+ HttpOnly bool

+ MaxAge int

+ Path string

+ SameSiteString string

+ Secure bool

+ func (cp CookieProperties) SameSite() http.SameSite

+ type DefaultAccessDeniedHandler struct

+ func (h *DefaultAccessDeniedHandler) HandleAccessDenied(ctx context.Context, r *http.Request, rw http.ResponseWriter, err error)

+ type DefaultAccount struct

+ func NewUsernamePasswordAccount(details *AcctDetails) *DefaultAccount

+ func (a *DefaultAccount) CacheableCopy() Account

+ func (a *DefaultAccount) Credentials() interface{}

+ func (a *DefaultAccount) CurrencyCode() string

+ func (a *DefaultAccount) DefaultDesignatedTenantId() string

+ func (a *DefaultAccount) DesignatedTenantIds() []string

+ func (a *DefaultAccount) Disabled() bool

+ func (a *DefaultAccount) Email() string

+ func (a *DefaultAccount) FirstName() string

+ func (a *DefaultAccount) GracefulAuthCount() int

+ func (a *DefaultAccount) GracefulAuthLimit() int

+ func (a *DefaultAccount) ID() interface{}

+ func (a *DefaultAccount) IncrementGracefulAuthCount()

+ func (a *DefaultAccount) LastLoginTime() time.Time

+ func (a *DefaultAccount) LastName() string

+ func (a *DefaultAccount) LocaleCode() string

+ func (a *DefaultAccount) LockAccount()

+ func (a *DefaultAccount) Locked() bool

+ func (a *DefaultAccount) LockoutDuration() time.Duration

+ func (a *DefaultAccount) LockoutEnabled() bool

+ func (a *DefaultAccount) LockoutFailuresInterval() time.Duration

+ func (a *DefaultAccount) LockoutFailuresLimit() int

+ func (a *DefaultAccount) LockoutPolicyName() string

+ func (a *DefaultAccount) LockoutTime() time.Time

+ func (a *DefaultAccount) LoginFailures() []time.Time

+ func (a *DefaultAccount) Permissions() []string

+ func (a *DefaultAccount) PwdAgingPolicyName() string

+ func (a *DefaultAccount) PwdAgingRuleEnforced() bool

+ func (a *DefaultAccount) PwdChangedTime() time.Time

+ func (a *DefaultAccount) PwdExpiryWarningPeriod() time.Duration

+ func (a *DefaultAccount) PwdMaxAge() time.Duration

+ func (a *DefaultAccount) RecordFailure(failureTime time.Time, limit int)

+ func (a *DefaultAccount) RecordSuccess(loginTime time.Time)

+ func (a *DefaultAccount) ResetFailedAttempts()

+ func (a *DefaultAccount) ResetGracefulAuthCount()

+ func (a *DefaultAccount) RoleNames() []string

+ func (a *DefaultAccount) SerialFailedAttempts() int

+ func (a *DefaultAccount) TenantId() string

+ func (a *DefaultAccount) Type() AccountType

+ func (a *DefaultAccount) UnlockAccount()

+ func (a *DefaultAccount) UseMFA() bool

+ func (a *DefaultAccount) Username() string

+ func (a *DefaultAccount) Value(key string) interface{}

+ type DefaultAuthenticationErrorHandler struct

+ func (h *DefaultAuthenticationErrorHandler) HandleAuthenticationError(ctx context.Context, r *http.Request, rw http.ResponseWriter, err error)

+ type DefaultErrorHandler struct

+ func (h *DefaultErrorHandler) HandleError(ctx context.Context, r *http.Request, rw http.ResponseWriter, err error)

+ type DefaultIssuer struct

+ func NewIssuer(opts ...func(*DefaultIssuerDetails)) *DefaultIssuer

+ func (i DefaultIssuer) BuildUrl(options ...UrlBuilderOptions) (*url.URL, error)

+ func (i DefaultIssuer) ContextPath() string

+ func (i DefaultIssuer) Domain() string

+ func (i DefaultIssuer) Identifier() string

+ func (i DefaultIssuer) IsSecured() bool

+ func (i DefaultIssuer) LevelOfAssurance(level int) string

+ func (i DefaultIssuer) Port() int

+ func (i DefaultIssuer) Protocol() string

+ type DefaultIssuerDetails struct

+ ContextPath string

+ Domain string

+ IncludePort bool

+ Port int

+ Protocol string

+ type EmptyAuthentication string

+ func (EmptyAuthentication) Details() interface{}

+ func (EmptyAuthentication) Permissions() Permissions

+ func (EmptyAuthentication) Principal() interface{}

+ func (EmptyAuthentication) State() AuthenticationState

+ type ErrorHandler interface

+ HandleError func(context.Context, *http.Request, http.ResponseWriter, error)

+ type Feature interface

+ Identifier func() FeatureIdentifier

+ type FeatureConfigurer interface

+ Apply func(Feature, WebSecurity) error

+ type FeatureIdentifier interface

+ func FeatureId(id string, order int) FeatureIdentifier

+ func PriorityFeatureId(id string, order int) FeatureIdentifier

+ func SimpleFeatureId(id string) FeatureIdentifier

+ type FeatureModifier interface

+ Disable func(Feature)

+ Enable func(Feature) Feature

+ type FeatureRegistrar interface

+ FindFeature func(featureId FeatureIdentifier) FeatureConfigurer

+ RegisterFeature func(featureId FeatureIdentifier, featureConfigurer FeatureConfigurer)

+ type FederatedAccountStore interface

+ LoadAccountByExternalId func(ctx context.Context, externalIdName string, externalIdValue string, ...) (Account, error)

+ type GlobalSettingReader interface

+ Read func(ctx context.Context, key string, dest interface{}) error

+ type Initializer interface

+ Initialize func(ctx context.Context, lc fx.Lifecycle, registrar *web.Registrar) error

+ type Issuer interface

+ BuildUrl func(...UrlBuilderOptions) (*url.URL, error)

+ ContextPath func() string

+ Domain func() string

+ Identifier func() string

+ IsSecured func() bool

+ LevelOfAssurance func(level int) string

+ Port func() int

+ Protocol func() string

+ type KeyValueDetails interface

+ Value func(string) (interface{}, bool)

+ Values func() map[string]interface{}

+ type MiddlewareTemplate *middleware.MappingBuilder

+ type Permissions map[string]interface

+ func (p Permissions) Has(permission string) bool

+ type Provider struct

+ Description string

+ DisplayName string

+ Email string

+ Id string

+ LocaleCode string

+ Name string

+ NotificationType string

+ type ProviderDetails interface

+ ProviderDescription func() string

+ ProviderDisplayName func() string

+ ProviderEmail func() string

+ ProviderId func() string

+ ProviderName func() string

+ ProviderNotificationType func() string

+ type ProviderStore interface

+ LoadProviderById func(ctx context.Context, id string) (*Provider, error)

+ type ProxiedUserDetails interface

+ OriginalUsername func() string

+ Proxied func() bool

+ type Registrar interface

+ Register func(...Configurer)

+ type SessionProperties struct

+ AbsoluteTimeout utils.Duration

+ Cookie CookieProperties

+ DbIndex int

+ IdleTimeout utils.Duration

+ MaxConcurrentSession int

+ func BindSessionProperties(ctx *bootstrap.ApplicationContext) SessionProperties

+ func NewSessionProperties() *SessionProperties

+ type SimpleMappingTemplate *mapping.MappingBuilder

+ type Tenant struct

+ CurrencyCode string

+ Description string

+ DisplayName string

+ ExternalId string

+ Id string

+ LocaleCode string

+ ProviderId string

+ Suspended bool

+ type TenantDetails interface

+ TenantExternalId func() string

+ TenantId func() string

+ TenantSuspended func() bool

+ type TenantStore interface

+ LoadTenantByExternalId func(ctx context.Context, name string) (*Tenant, error)

+ LoadTenantById func(ctx context.Context, id string) (*Tenant, error)

+ type TimeoutSupportProperties struct

+ DbIndex int

+ func BindTimeoutSupportProperties(ctx *bootstrap.ApplicationContext) TimeoutSupportProperties

+ func NewTimeoutSupportProperties() *TimeoutSupportProperties

+ type UrlBuilderOption struct

+ FQDN string

+ Path string

+ type UrlBuilderOptions func(opt *UrlBuilderOption)

+ type UserDetails interface

+ AccountType func() AccountType

+ AssignedTenantIds func() utils.StringSet

+ CurrencyCode func() string

+ Email func() string

+ FirstName func() string

+ LastName func() string

+ LocaleCode func() string

+ UserId func() string

+ Username func() string

+ type WebSecurity interface

+ Add func(...interface{}) WebSecurity

+ AddShared func(key string, value interface{}) error

+ AndCondition func(mwcm web.RequestMatcher) WebSecurity

+ Authenticator func() Authenticator

+ Condition func(mwcm web.RequestMatcher) WebSecurity

+ Context func() context.Context

+ Features func() []Feature

+ Remove func(...interface{}) WebSecurity

+ Route func(web.RouteMatcher) WebSecurity

+ Shared func(key string) interface{}

+ With func(f Feature) WebSecurity

+ type WebSecurityMappingBuilder interface

+ Build func() []web.Mapping

+ type WebSecurityReader interface

+ GetCondition func() web.RequestMatcher

+ GetHandlers func() []interface{}

+ GetRoute func() web.RouteMatcher