identity

package
v0.0.0-...-ae579cc Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Aug 21, 2024 License: GPL-3.0 Imports: 19 Imported by: 0

Documentation

Overview

Package identity contains the identity data model and low-level related functions

Index

Constants

View Source 
const Namespace = "identities"

Variables

View Source 
var ClockLoader = repository.ClockLoader{
	Clocks: []string{identityEditClockName},
	Witnesser: func(repo repository.ClockedRepo) error {
		editClock, err := repo.GetOrCreateClock(identityEditClockName)
		if err != nil {
			return err
		}

		for id := range ReadAllLocalIdentities(repo) {
			if id.Err != nil {
				return id.Err
			}

			for _, ver := range id.Identity.versions {
				err = editClock.Witness(ver.time)
				if err != nil {
					return err
				}
			}
		}

		return nil
	},
}

ClockLoader is the repository.ClockLoader for the Identity entity

View Source 
var ErrIdentityNotExist = errors.New("identity doesn't exist")
View Source 
var ErrMultipleIdentitiesSet = errors.New("multiple user identities set")
View Source 
var ErrNoIdentitySet = errors.New("No identity is set.\n" +
	"To interact with bugs, an identity first needs to be created using " +
	"\"git bug user create\"")
View Source 
var ErrNonFastForwardMerge = errors.New("non fast-forward identity merge")

Functions

func AddKeyMutator 

func AddKeyMutator(key *Key) func(mutator Mutator) Mutator

func DecodeKeyFingerprint 

func DecodeKeyFingerprint(keyFingerprint string) ([20]byte, error)

DecodeKeyFingerprint decodes a 40 hex digits long fingerprint into bytes.

func EncodeKeyFingerprint 

func EncodeKeyFingerprint(fingerprint [20]byte) string

func GetUserIdentityId 

func GetUserIdentityId(repo repository.Repo) (entity.Id, error)

func IsUserIdentitySet 

func IsUserIdentitySet(repo repository.Repo) (bool, error)

IsUserIdentitySet say if the user has set his identity

func MergeAll 

func MergeAll(repo repository.ClockedRepo, remote string) <-chan entity.MergeResult

MergeAll will merge all the available remote identity

func NewErrMultipleMatch 

func NewErrMultipleMatch(matching []entity.Id) *entity.ErrMultipleMatch

func ReadAllLocalIdentities 

func ReadAllLocalIdentities(repo repository.ClockedRepo) <-chan StreamedIdentity

ReadAllLocalIdentities read and parse all local Identity

func ReadAllRemoteIdentities 

func ReadAllRemoteIdentities(repo repository.ClockedRepo, remote string) <-chan StreamedIdentity

ReadAllRemoteIdentities read and parse all remote Identity for a given remote

func RemoveKeyMutator 

func RemoveKeyMutator(fingerprint string, removedKey **Key) func(mutator Mutator) Mutator

func SetUserIdentity 

func SetUserIdentity(repo repository.RepoConfig, identity *Identity) error

SetUserIdentity store the user identity's id in the git config

Types

type Bare 

type Bare struct {
	// contains filtered or unexported fields
}

Bare is a very minimal identity, designed to be fully embedded directly along other data.

in particular, this identity is designed to be compatible with the handling of identities in the early version of git-bug. Deprecated: legacy identity for compat, might make sense to ditch entirely for simplicity but that would be a breaking change.

func NewBare 

func NewBare(name string, email string) *Bare

func NewBareFull 

func NewBareFull(name string, email string, login string, avatarUrl string) *Bare

func (*Bare) AvatarUrl 

func (i *Bare) AvatarUrl() string

AvatarUrl return the last version of the Avatar URL

func (*Bare) Commit 

func (i *Bare) Commit(repo repository.ClockedRepo) error

Write the identity into the Repository. In particular, this ensure that the Id is properly set.

func (*Bare) CommitAsNeeded 

func (i *Bare) CommitAsNeeded(repo repository.ClockedRepo) error

If needed, write the identity into the Repository. In particular, this ensure that the Id is properly set.

func (*Bare) DisplayName 

func (i *Bare) DisplayName() string

DisplayName return a non-empty string to display, representing the identity, based on the non-empty values.

func (*Bare) Email 

func (i *Bare) Email() string

Email return the last version of the email

func (*Bare) Id 

func (i *Bare) Id() entity.Id

Id return the Identity identifier

func (*Bare) IsProtected 

func (i *Bare) IsProtected() bool

IsProtected return true if the chain of git commits started to be signed. If that's the case, only signed commit with a valid key for this identity can be added.

func (*Bare) Keys 

func (i *Bare) Keys() []*Key

Keys return the last version of the valid keys

func (*Bare) LastModification 

func (i *Bare) LastModification() timestamp.Timestamp

LastModification return the timestamp at which the last version of the identity became valid.

func (*Bare) LastModificationLamport 

func (i *Bare) LastModificationLamport() lamport.Time

LastModificationLamportTime return the Lamport time at which the last version of the identity became valid.

func (*Bare) Login 

func (i *Bare) Login() string

Login return the last version of the login

func (*Bare) MarshalJSON 

func (i *Bare) MarshalJSON() ([]byte, error)

func (*Bare) Name 

func (i *Bare) Name() string

Name return the last version of the name

func (*Bare) PhabID 

func (i *Bare) PhabID() string

PhabID return the last version of the Phabricator ID

func (*Bare) UnmarshalJSON 

func (i *Bare) UnmarshalJSON(data []byte) error

func (*Bare) ValidKeysAtTime 

func (i *Bare) ValidKeysAtTime(_ lamport.Time) []*Key

ValidKeysAtTime return the set of keys valid at a given lamport time

func (*Bare) Validate 

func (i *Bare) Validate() error

Validate check if the Identity data is valid

type Identity 

type Identity struct {
	// contains filtered or unexported fields
}

func GetUserIdentity 

func GetUserIdentity(repo repository.ClockedRepo) (*Identity, error)

GetUserIdentity read the current user identity, set with a git config entry

func NewFromGitUser 

func NewFromGitUser(repo repository.Repo) (*Identity, error)

NewFromGitUser will query the repository for user detail and build the corresponding Identity

func NewIdentity 

func NewIdentity(name string, email string) *Identity

func NewIdentityFull 

func NewIdentityFull(name string, email string, login string, avatarUrl string, phabID string, giteaID int64, key *Key) *Identity

func ReadCommit 

func ReadCommit(repo repository.Repo, hash repository.Hash) (*Identity, error)

ReadCommit loads an identity data from a single commit in git

func ReadLocal 

func ReadLocal(repo repository.ClockedRepo, id entity.Id) (*Identity, error)

ReadLocal load a local Identity from the identities data available in git

func ReadRemote 

func ReadRemote(repo repository.ClockedRepo, remote string, id string) (*Identity, error)

ReadRemote load a remote Identity from the identities data available in git

func (*Identity) AvatarUrl 

func (i *Identity) AvatarUrl() string

AvatarUrl return the last version of the Avatar URL

func (*Identity) Commit 

func (i *Identity) Commit(repo repository.ClockedRepo) error

Write the identity into the Repository. In particular, this ensure that the Id is properly set.

func (*Identity) CommitAsNeeded 

func (i *Identity) CommitAsNeeded(repo repository.ClockedRepo) error

func (*Identity) DisplayName 

func (i *Identity) DisplayName() string

DisplayName return a non-empty string to display, representing the identity, based on the non-empty values.

func (*Identity) Email 

func (i *Identity) Email() string

Email return the last version of the email

func (*Identity) GiteaID 

func (i *Identity) GiteaID() int64

GiteaId return the last version of the Gitea ID

func (*Identity) Id 

func (i *Identity) Id() entity.Id

Id return the Identity identifier

func (*Identity) ImmutableMetadata 

func (i *Identity) ImmutableMetadata() map[string]string

ImmutableMetadata return all metadata for this Identity, accumulated from each Version. If multiple value are found, the first defined takes precedence.

func (*Identity) IsProtected 

func (i *Identity) IsProtected() bool

IsProtected return true if the chain of git commits started to be signed. If that's the case, only signed commit with a valid key for this identity can be added.

func (*Identity) Keys 

func (i *Identity) Keys() []*Key

Keys return the last version of the valid keys

func (*Identity) LastModification 

func (i *Identity) LastModification() timestamp.Timestamp

LastModification return the timestamp at which the last version of the identity became valid.

func (*Identity) LastModificationLamport 

func (i *Identity) LastModificationLamport() lamport.Time

LastModificationLamportTime return the Lamport time at which the last version of the identity became valid.

func (*Identity) Login 

func (i *Identity) Login() string

Login return the last version of the login

func (*Identity) MarshalJSON 

func (i *Identity) MarshalJSON() ([]byte, error)

MarshalJSON will only serialize the id

func (*Identity) Merge 

func (i *Identity) Merge(repo repository.Repo, other *Identity) (bool, error)

Merge will merge a different version of the same Identity

To make sure that an Identity history can't be altered, a strict fast-forward only policy is applied here. As an Identity should be tied to a single user, this should work in practice but it does leave a possibility that a user would edit his Identity from two different repo concurrently and push the changes in a non-centralized network of repositories. In this case, it would result in some of the repo accepting one version and some other accepting another, preventing the network in general to converge to the same result. This would create a sort of partition of the network, and manual cleaning would be required.

An alternative approach would be to have a determinist rebase:

  • any commits present in both local and remote version would be kept, never changed.
  • newer commits would be merged in a linear chain of commits, ordered based on the Lamport time

However, this approach leave the possibility, in the case of a compromised crypto keys, of forging a new version with a bogus Lamport time to be inserted before a legit version, invalidating the correct version and hijacking the Identity. There would only be a short period of time where this would be possible (before the network converge) but I'm not confident enough to implement that. I choose the strict fast-forward only approach, despite it's potential problem with two different version as mentioned above.

func (*Identity) MutableMetadata 

func (i *Identity) MutableMetadata() map[string]string

MutableMetadata return all metadata for this Identity, accumulated from each Version. If multiple value are found, the last defined takes precedence.

func (*Identity) Mutate 

func (i *Identity) Mutate(f func(orig Mutator) Mutator)

Mutate allow to create a new version of the Identity in one go

func (*Identity) Name 

func (i *Identity) Name() string

Name return the last version of the name

func (*Identity) NeedCommit 

func (i *Identity) NeedCommit() bool

func (*Identity) PhabID 

func (i *Identity) PhabID() string

PhabID return the last version of the Phabricator ID

func (*Identity) SetMetadata 

func (i *Identity) SetMetadata(key string, value string)

SetMetadata store arbitrary metadata along the last not-commit Version. If the Version has been commit to git already, a new identical version is added and will need to be commit.

func (*Identity) UnmarshalJSON 

func (i *Identity) UnmarshalJSON(data []byte) error

UnmarshalJSON will only read the id Users of this package are expected to run Load() to load the remaining data from the identities data in git.

func (*Identity) ValidKeysAtTime 

func (i *Identity) ValidKeysAtTime(time lamport.Time) []*Key

ValidKeysAtTime return the set of keys valid at a given lamport time

func (*Identity) Validate 

func (i *Identity) Validate() error

Validate check if the Identity data is valid

func (*Identity) Versions 

func (i *Identity) Versions() []*Version

type IdentityStub 

type IdentityStub struct {
	// contains filtered or unexported fields
}

IdentityStub is an almost empty Identity, holding only the id. When a normal Identity is serialized into JSON, only the id is serialized. All the other data are stored in git in a chain of commit + a ref. When this JSON is deserialized, an IdentityStub is returned instead, to be replaced later by the proper Identity, loaded from the Repo.

func (IdentityStub) AvatarUrl 

func (IdentityStub) AvatarUrl() string

func (IdentityStub) Commit 

func (IdentityStub) Commit(repo repository.ClockedRepo) error

func (*IdentityStub) CommitAsNeeded 

func (i *IdentityStub) CommitAsNeeded(repo repository.ClockedRepo) error

func (IdentityStub) DisplayName 

func (IdentityStub) DisplayName() string

func (IdentityStub) Email 

func (IdentityStub) Email() string

func (IdentityStub) GiteaID 

func (IdentityStub) GiteaID() string

func (*IdentityStub) Id 

func (i *IdentityStub) Id() entity.Id

Id return the Identity identifier

func (IdentityStub) IsProtected 

func (IdentityStub) IsProtected() bool

func (IdentityStub) Keys 

func (IdentityStub) Keys() []*Key

func (*IdentityStub) LastModification 

func (i *IdentityStub) LastModification() timestamp.Timestamp

func (*IdentityStub) LastModificationLamport 

func (i *IdentityStub) LastModificationLamport() lamport.Time

func (IdentityStub) Login 

func (IdentityStub) Login() string

func (*IdentityStub) MarshalJSON 

func (i *IdentityStub) MarshalJSON() ([]byte, error)

func (IdentityStub) Name 

func (IdentityStub) Name() string

func (IdentityStub) PhabID 

func (IdentityStub) PhabID() string

func (*IdentityStub) UnmarshalJSON 

func (i *IdentityStub) UnmarshalJSON(data []byte) error

func (IdentityStub) ValidKeysAtTime 

func (IdentityStub) ValidKeysAtTime(_ lamport.Time) []*Key

func (IdentityStub) Validate 

func (IdentityStub) Validate() error

type Interface 

type Interface interface {
	// Id return the Identity identifier
	Id() entity.Id

	// Name return the last version of the name
	// Can be empty.
	Name() string

	// Email return the last version of the email
	// Can be empty.
	Email() string

	// Login return the last version of the login
	// Can be empty.
	// Warning: this login can be defined when importing from a bridge but should *not* be
	// used to identify an identity as multiple bridge with different login can map to the same
	// identity. Use the metadata system for that usage instead.
	Login() string

	// AvatarUrl return the last version of the Avatar URL
	// Can be empty.
	AvatarUrl() string

	// PhabID return the last version of the Phabricator ID
	// Can be empty.
	PhabID() string

	// Keys return the last version of the valid keys
	// Can be empty.
	Keys() []*Key

	// ValidKeysAtTime return the set of keys valid at a given lamport time
	// Can be empty.
	ValidKeysAtTime(time lamport.Time) []*Key

	// DisplayName return a non-empty string to display, representing the
	// identity, based on the non-empty values.
	DisplayName() string

	// Validate check if the Identity data is valid
	Validate() error

	// Write the identity into the Repository. In particular, this ensure that
	// the Id is properly set.
	Commit(repo repository.ClockedRepo) error

	// If needed, write the identity into the Repository. In particular, this
	// ensure that the Id is properly set.
	CommitAsNeeded(repo repository.ClockedRepo) error

	// IsProtected return true if the chain of git commits started to be signed.
	// If that's the case, only signed commit with a valid key for this identity can be added.
	IsProtected() bool

	// LastModificationLamportTime return the Lamport time at which the last version of the identity became valid.
	LastModificationLamport() lamport.Time

	// LastModification return the timestamp at which the last version of the identity became valid.
	LastModification() timestamp.Timestamp
}

func UnmarshalJSON 

func UnmarshalJSON(raw json.RawMessage) (Interface, error)

Custom unmarshaling function to allow package user to delegate the decoding of an Identity and distinguish between an Identity and a Bare.

If the given message has a "id" field, it's considered being a proper Identity.

type Key 

type Key struct {
	// contains filtered or unexported fields
}

Key hold a cryptographic public key

func NewKeyFromArmored 

func NewKeyFromArmored(armoredPGPKey string) (*Key, error)

func (Key) Armored 

func (k Key) Armored() string

func (*Key) Clone 

func (k *Key) Clone() *Key

func (Key) CreationTime 

func (k Key) CreationTime() time.Time

func (Key) Fingerprint 

func (k Key) Fingerprint() string

func (*Key) MarshalJSON 

func (k *Key) MarshalJSON() ([]byte, error)

func (*Key) PublicKey 

func (k *Key) PublicKey() *packet.PublicKey

func (*Key) UnmarshalJSON 

func (k *Key) UnmarshalJSON(data []byte) error

func (*Key) Validate 

func (k *Key) Validate() error

type Mutator 

type Mutator struct {
	Name      string
	Login     string
	Email     string
	AvatarUrl string
	PhabID    string
	GiteaID   int64
	Keys      []*Key
}

type Resolver 

type Resolver interface {
	ResolveIdentity(id entity.Id) (Interface, error)
}

Resolver define the interface of an Identity resolver, able to load an identity from, for example, a repo or a cache.

type SimpleResolver 

type SimpleResolver struct {
	// contains filtered or unexported fields
}

DefaultResolver is a Resolver loading Identities directly from a Repo

func NewSimpleResolver 

func NewSimpleResolver(repo repository.ClockedRepo) *SimpleResolver

func (*SimpleResolver) ResolveIdentity 

func (r *SimpleResolver) ResolveIdentity(id entity.Id) (Interface, error)

type StreamedIdentity 

type StreamedIdentity struct {
	Identity *Identity
	Err      error
}

type Version 

type Version struct {
	// contains filtered or unexported fields
}

Version is a complete set of information about an Identity at a point in time.

func (*Version) AllMetadata 

func (v *Version) AllMetadata() map[string]string

AllMetadata return all metadata for this Version

func (*Version) Clone 

func (v *Version) Clone() *Version

Make a deep copy

func (*Version) CommitHash 

func (v *Version) CommitHash() repository.Hash

func (*Version) GetMetadata 

func (v *Version) GetMetadata(key string) (string, bool)

GetMetadata retrieve arbitrary metadata about the Version

func (*Version) Keys 

func (v *Version) Keys() []*Key

func (*Version) MarshalJSON 

func (v *Version) MarshalJSON() ([]byte, error)

func (*Version) SetMetadata 

func (v *Version) SetMetadata(key string, value string)

SetMetadata store arbitrary metadata about a version or an Identity in general If the Version has been commit to git already, it won't be overwritten.

func (*Version) Time 

func (v *Version) Time() lamport.Time

func (*Version) UnmarshalJSON 

func (v *Version) UnmarshalJSON(data []byte) error

func (*Version) Validate 

func (v *Version) Validate() error

func (*Version) Write 

func (v *Version) Write(repo repository.Repo) (repository.Hash, error)

Write will serialize and store the Version as a git blob and return its hash

type VersionJSON 

type VersionJSON struct {
	// Additional field to version the data
	FormatVersion uint `json:"version"`

	Time      lamport.Time      `json:"time"`
	UnixTime  int64             `json:"unix_time"`
	Name      string            `json:"name,omitempty"`
	Email     string            `json:"email,omitempty"`
	Login     string            `json:"login,omitempty"`
	AvatarUrl string            `json:"avatar_url,omitempty"`
	PhabID    string            `json:"phab_id,omitempty"`
	GiteaID   int64             `json:"gitea_id,omitempty"`
	Keys      []*Key            `json:"pub_keys,omitempty"`
	Nonce     []byte            `json:"nonce,omitempty"`
	Metadata  map[string]string `json:"metadata,omitempty"`
}

Source Files

View all Source files

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.