GO-2024-3057: NetBird uses a static initialization vector (IV) in github.com/netbirdio/netbird

middleware

package

v0.15.3 Latest Latest Go to latest Published: Apr 12, 2023 License: BSD-3-Clause Imports: 13 Imported by: 3

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/netbirdio/netbird

Links

Open Source Insights

Documentation ¶

Index ¶

type AccessControl
- func NewAccessControl(audience, userIDClaim string, isUserAdmin IsUserAdminFunc) *AccessControl
- func (a *AccessControl) Handler(h http.Handler) http.Handler
type AuthMiddleware
- func NewAuthMiddleware(getAccountFromPAT GetAccountFromPATFunc, ...) *AuthMiddleware
type GetAccountFromPATFunc
type IsUserAdminFunc
type MarkPATUsedFunc
type ValidateAndParseTokenFunc

Constants ¶

This section is empty.

Variables ¶

This section is empty.

Functions ¶

This section is empty.

Types ¶

type AccessControl ¶ added in v0.10.4

type AccessControl struct {
	// contains filtered or unexported fields
}

AccessControl middleware to restrict to make POST/PUT/DELETE requests by admin only

func NewAccessControl ¶ added in v0.10.4

func NewAccessControl(audience, userIDClaim string, isUserAdmin IsUserAdminFunc) *AccessControl

NewAccessControl instance constructor

func (*AccessControl) Handler ¶ added in v0.10.4

func (a *AccessControl) Handler(h http.Handler) http.Handler

Handler method of the middleware which forbids all modify requests for non admin users It also adds

type AuthMiddleware ¶ added in v0.15.0

type AuthMiddleware struct {
	// contains filtered or unexported fields
}

AuthMiddleware middleware to verify personal access tokens (PAT) and JWT tokens

func NewAuthMiddleware ¶ added in v0.15.0

func NewAuthMiddleware(getAccountFromPAT GetAccountFromPATFunc, validateAndParseToken ValidateAndParseTokenFunc, markPATUsed MarkPATUsedFunc, audience string) *AuthMiddleware

NewAuthMiddleware instance constructor

func (*AuthMiddleware) CheckJWTFromRequest ¶ added in v0.15.0

func (m *AuthMiddleware) CheckJWTFromRequest(w http.ResponseWriter, r *http.Request) error

CheckJWTFromRequest checks if the JWT is valid

func (*AuthMiddleware) CheckPATFromRequest ¶ added in v0.15.0

func (m *AuthMiddleware) CheckPATFromRequest(w http.ResponseWriter, r *http.Request) error

CheckPATFromRequest checks if the PAT is valid

func (*AuthMiddleware) Handler ¶ added in v0.15.0

func (m *AuthMiddleware) Handler(h http.Handler) http.Handler

Handler method of the middleware which authenticates a user either by JWT claims or by PAT

type GetAccountFromPATFunc ¶ added in v0.15.0

type GetAccountFromPATFunc func(token string) (*server.Account, *server.User, *server.PersonalAccessToken, error)

GetAccountFromPATFunc function

type IsUserAdminFunc ¶ added in v0.6.0

type IsUserAdminFunc func(claims jwtclaims.AuthorizationClaims) (bool, error)

type MarkPATUsedFunc ¶ added in v0.15.0

type MarkPATUsedFunc func(token string) error

MarkPATUsedFunc function

type ValidateAndParseTokenFunc ¶ added in v0.15.0

type ValidateAndParseTokenFunc func(token string) (*jwt.Token, error)

ValidateAndParseTokenFunc function

Source Files ¶

View all Source files

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL