authentication

package

v0.7.1 Latest Latest Go to latest Published: Jul 20, 2016 License: Apache-2.0 Imports: 15 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/rusenask/hoverfly

README ¶

Authentication to Hoverfly

Hoverfly uses a combination of basic auth and JWT (JSON Web Tokens) to authenticate users

Authentication (currently disabled by default)

To enable admin interface authentication you can pass '-auth' flag during startup:

./hoverfly -auth

or supply environment variable:

export HoverflyAuthEnabled=true

If environment variable or flag is given to enable authentication - it will be enabled (if you set flag to 'false' but leave environment variable set to 'true', or vice versa - auth will be enabled).

Export Hoverfly secret:

export HoverflySecret=VeryVerySecret

If you skip this step - a new random secret will be generated every single time when you launch Hoverfly. This can be useful if you are deploying it in cloud but it can also be annoying if you are working with Hoverfly where it is constantly restarted.

You can also specify token expiration time (defaults to 72):

export HoverflyTokenExpiration=200

Adding users

Then, add your first admin user:

./hoverfly -v -add -username hfadmin -password hfadminpass

You can also create non-admin users by supplying 'admin' flag as follows:

./hoverfly -v -add -username hfadmin -password hfadminpass -admin false

Getting token:

curl -H "Content-Type application/json" -X POST -d '{"Username": "hoverfly", "Password": "testing"}' http://localhost:8888/token-auth

Using token:

curl -H "Authorization: Bearer eyJhbGciOiJSUzUxMiIsInR5cCI6IkpXVCJ9.eyJleHAiOjE0NTYxNTY3ODMsImlhdCI6MTQ1NTg5NzU4Mywic3ViIjoiIn0.Iu_xBKzBWlrO70kDAo5hE4lXydu3bQxDZKriYJ4exg3FfZXCqgYH9zm7SVKailIib9ESn_T4zU-2UtFT5iYhw_fzhnXtQoBn5HIhGfUb7mkx0tZh1TJBkLCv6y5ViPw5waAnFBRcygh9OdeiEqnJgzHKrxsR87EellXSdMn2M8wVIhjIhS3KiDjUwuqQl-ClBDaQGlsLZ7eC9OHrJIQXJLqW7LSwrkV3rstCZkTKrEZCdq6F4uAK0mgagTFmuyaBHDEccaivkgYDcaBb7n-Vmyh-jUnDOnwtFnrOv_myXlqqkvtezfm06MBl4PzZE6ZtEA5XADdobLfVarbvB9tFbA" http://localhost:8888/records

Documentation ¶

Index ¶

Variables
func GetDB(name string) *bolt.DB
func GetRandomName(n int) []byte
func Login(requestUser *backends.User, ab backends.Authentication, secret []byte, exp int) (int, []byte)
func Logout(req *http.Request, ab backends.Authentication, secret []byte, exp int) error
func RefreshToken(requestUser *backends.User, ab backends.Authentication, secret []byte, exp int) []byte
type AuthMiddleware
- func GetNewAuthenticationMiddleware(authBackend backends.Authentication, secretKey []byte, exp int, enabled bool) *AuthMiddleware
- func (a *AuthMiddleware) RequireTokenAuthentication(w http.ResponseWriter, req *http.Request, next http.HandlerFunc)
type Client
type JWTAuthenticationBackend
- func InitJWTAuthenticationBackend(ab backends.Authentication, secret []byte, exp int) *JWTAuthenticationBackend
type Token
- func (t *Token) Encode() ([]byte, error)
type TokenAuthentication

Constants ¶

This section is empty.

Variables ¶

View Source

var TestDB *bolt.DB

TestDB - holds connection to database during tests

Functions ¶

func GetDB ¶

func GetDB(name string) *bolt.DB

GetDB returns BoltDB instance

func GetRandomName ¶

func GetRandomName(n int) []byte

GetRandomName - provides random name for buckets. Each test case gets it's own bucket

func Login(requestUser *backends.User, ab backends.Authentication, secret []byte, exp int) (int, []byte)

func Logout ¶

func Logout(req *http.Request, ab backends.Authentication, secret []byte, exp int) error

func RefreshToken ¶

func RefreshToken(requestUser *backends.User, ab backends.Authentication, secret []byte, exp int) []byte

Types ¶

type AuthMiddleware ¶

type AuthMiddleware struct {
	AB                 backends.Authentication
	SecretKey          []byte
	JWTExpirationDelta int
	Enabled            bool
}

func GetNewAuthenticationMiddleware ¶

func GetNewAuthenticationMiddleware(authBackend backends.Authentication, secretKey []byte, exp int, enabled bool) *AuthMiddleware

func (*AuthMiddleware) RequireTokenAuthentication ¶

func (a *AuthMiddleware) RequireTokenAuthentication(w http.ResponseWriter, req *http.Request, next http.HandlerFunc)

type Client ¶

type Client struct {
	HTTPClient *http.Client
}

Client structure to be injected into functions to perform HTTP calls

type JWTAuthenticationBackend ¶

type JWTAuthenticationBackend struct {
	SecretKey          []byte
	JWTExpirationDelta int
	AuthBackend        backends.Authentication
}

func InitJWTAuthenticationBackend ¶

func InitJWTAuthenticationBackend(ab backends.Authentication, secret []byte, exp int) *JWTAuthenticationBackend

func (*JWTAuthenticationBackend) Authenticate ¶

func (backend *JWTAuthenticationBackend) Authenticate(user *backends.User) bool

func (*JWTAuthenticationBackend) GenerateToken ¶

func (backend *JWTAuthenticationBackend) GenerateToken(userUUID, username string) (string, error)

func (*JWTAuthenticationBackend) IsInBlacklist ¶

func (backend *JWTAuthenticationBackend) IsInBlacklist(token string) bool

func (*JWTAuthenticationBackend) Logout ¶

func (backend *JWTAuthenticationBackend) Logout(tokenString string, token *jwt.Token) error

type Token ¶

type Token struct {
	Token *jwt.Token
}

Token - container for jwt.Token for encoding

func (*Token) Encode ¶

func (t *Token) Encode() ([]byte, error)

type TokenAuthentication ¶

type TokenAuthentication struct {
	Token string `json:"token" form:"token"`
}

Source Files ¶

View all Source files

Directories ¶

Path	Synopsis
backends
controllers

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL