Documentation ¶
Overview ¶
Package middleware contains:
- CORS - Application firewall - Pongo2 template engine - JWT - Sentry logger - Two-factor auth validator
Index ¶
- func CORS(cp []CORSPolicy) gin.HandlerFunc
- func ConvertContext(thing interface{}) pongo2.Context
- func Firewall(listType string, ipList string) gin.HandlerFunc
- func GetJWT(customClaims MyCustomClaims, tokenType string) (string, string, error)
- func InitSentry(sentryDsn string, v ...string) (*sentry.Hook, error)
- func JWT() gin.HandlerFunc
- func Pongo2(baseDirectory string) gin.HandlerFunc
- func RefreshJWT() gin.HandlerFunc
- func ResetFirewallState()
- func SentryCapture(sentryDsn string, v ...string) gin.HandlerFunc
- func StringFromContext(c *gin.Context, input string) string
- func TwoFA(keywordOn, keywordOff, keywordVerified string) gin.HandlerFunc
- func ValidateAccessJWT(token *jwt.Token) (interface{}, error)
- func ValidateECDSA(token *jwt.Token) (interface{}, error)
- func ValidateHMACAccess(token *jwt.Token) (interface{}, error)
- func ValidateHMACRefresh(token *jwt.Token) (interface{}, error)
- func ValidateRSA(token *jwt.Token) (interface{}, error)
- func ValidateRefreshJWT(token *jwt.Token) (interface{}, error)
- type CORSPolicy
- type JWTClaims
- type JWTParameters
- type JWTPayload
- type MyCustomClaims
Constants ¶
This section is empty.
Variables ¶
This section is empty.
Functions ¶
func ConvertContext ¶
func ConvertContext(thing interface{}) pongo2.Context
ConvertContext function converts the input map to a pongo2.Context type and preserves the key-value pairs
func Firewall ¶
func Firewall(listType string, ipList string) gin.HandlerFunc
Firewall - whitelist/blacklist IPs
func GetJWT ¶
func GetJWT(customClaims MyCustomClaims, tokenType string) (string, string, error)
GetJWT - issue new tokens
func InitSentry ¶
InitSentry - initialize sentry for middleware or separate goroutines
required parameter (1st parameter): sentryDsn
optional parameter (2nd parameter): environment (development or production)
optional parameter (3rd parameter): release version or git commit number
optional parameter (4th parameter): enableTracing (yes or no)
optional parameter (5th parameter): tracesSampleRate (0.0 - 1.0)
func Pongo2 ¶
func Pongo2(baseDirectory string) gin.HandlerFunc
Pongo2 uses the Pongo2 template library https://github.com/flosch/pongo2 to render templates
Example: baseDirectory = "templates/"
func ResetFirewallState ¶
func ResetFirewallState()
ResetFirewallState - helper function to reset firewall package-level variables
func SentryCapture ¶
func SentryCapture(sentryDsn string, v ...string) gin.HandlerFunc
SentryCapture - sentry middleware to capture errors and forward to sentry.io
required parameter (1st parameter): sentryDsn
optional parameter (2nd parameter): environment (development or production)
optional parameter (3rd parameter): release version or git commit number
optional parameter (4th parameter): enableTracing (yes or no)
optional parameter (5th parameter): tracesSampleRate (0.0 - 1.0)
func StringFromContext ¶
StringFromContext function retrieves the value from the context and returns it as a string
func TwoFA ¶
func TwoFA(keywordOn, keywordOff, keywordVerified string) gin.HandlerFunc
TwoFA validates 2-FA status from JWT before forwarding the request to the controller
func ValidateAccessJWT ¶
func ValidateAccessJWT(token *jwt.Token) (interface{}, error)
ValidateAccessJWT - verify the access JWT's signature, and validate its claims
func ValidateECDSA ¶
func ValidateECDSA(token *jwt.Token) (interface{}, error)
ValidateECDSA - validate elliptic curve digital signature algorithm based token
func ValidateHMACAccess ¶
func ValidateHMACAccess(token *jwt.Token) (interface{}, error)
ValidateHMACAccess - validate hash based access token
func ValidateHMACRefresh ¶
func ValidateHMACRefresh(token *jwt.Token) (interface{}, error)
ValidateHMACRefresh - validate hash based refresh token
func ValidateRSA ¶
func ValidateRSA(token *jwt.Token) (interface{}, error)
ValidateRSA - validate Rivest–Shamir–Adleman cryptosystem based token
func ValidateRefreshJWT ¶
func ValidateRefreshJWT(token *jwt.Token) (interface{}, error)
ValidateRefreshJWT - verify the refresh JWT's signature, and validate its claims
Types ¶
type CORSPolicy ¶
CORSPolicy struct to handle all policies
type JWTParameters ¶
type JWTParameters struct { Algorithm string AccessKey []byte AccessKeyTTL int RefreshKey []byte RefreshKeyTTL int PrivKeyECDSA *ecdsa.PrivateKey PubKeyECDSA *ecdsa.PublicKey PrivKeyRSA *rsa.PrivateKey PubKeyRSA *rsa.PublicKey Audience string Issuer string AccNbf int RefNbf int Subject string }
JWTParameters - params to configure JWT
var JWTParams JWTParameters
JWTParams - exported variables
type JWTPayload ¶
type JWTPayload struct { AccessJWT string `json:"accessJWT,omitempty"` RefreshJWT string `json:"refreshJWT,omitempty"` TwoAuth string `json:"twoFA,omitempty"` RecoveryKey string `json:"recoveryKey,omitempty"` }
JWTPayload ...
type MyCustomClaims ¶
type MyCustomClaims struct { AuthID uint64 `json:"authID,omitempty"` Email string `json:"email,omitempty"` Role string `json:"role,omitempty"` Scope string `json:"scope,omitempty"` TwoFA string `json:"twoFA,omitempty"` SiteLan string `json:"siteLan,omitempty"` Custom1 string `json:"custom1,omitempty"` Custom2 string `json:"custom2,omitempty"` }
MyCustomClaims ...