Documentation
¶
Index ¶
- Constants
- Variables
- func EnableTestMode()
- func GetToken(zones []string) (t *token.Token, err error)
- func GetTokenAmount(zones []string) (regular, fallback int)
- func SaveNewAuthToken(deviceID string, resp *http.Response) error
- func TokenIssuerIsFailing() bool
- func UpdateAccount(_ context.Context, task *modules.Task) error
- func VerifyRawToken(data []byte) (granted terminal.Permission, err error)
- func VerifyToken(t *token.Token) (granted terminal.Permission, err error)
- type AuthTokenRecord
- type AuthorizeOp
- type UserRecord
Constants ¶
const ( AccountServer = "https://api.account.safing.io" LoginPath = "/api/v1/authenticate" UserProfilePath = "/api/v1/user/profile" TokenRequestSetupPath = "/api/v1/token/request/setup" //nolint:gosec TokenRequestIssuePath = "/api/v1/token/request/issue" //nolint:gosec HealthCheckPath = "/api/v1/health" )
Client URLs.
const OpTypeAccessCodeAuth = "auth"
OpTypeAccessCodeAuth is the type ID of the auth operation.
Variables ¶
var ( ErrDeviceIsLocked = errors.New("device is locked") ErrDeviceLimitReached = errors.New("device limit reached") ErrFallbackNotAvailable = errors.New("fallback tokens not available, token issuer is online") ErrInvalidCredentials = errors.New("invalid credentials") ErrMayNotUseSPN = errors.New("may not use SPN") ErrNotLoggedIn = errors.New("not logged in") )
Errors.
var ( // ExpandAndConnectZones are the zones that grant access to the expand and // connect operations. ExpandAndConnectZones = []string{"pblind1", "alpha2", "fallback1"} )
Functions ¶
func EnableTestMode ¶ added in v0.3.0
func EnableTestMode()
EnableTestMode enables the test mode, leading the access module to only register a test zone. This should not be used to test the access module itself.
func GetTokenAmount ¶ added in v0.3.8
GetTokenAmount returns the amount of tokens for the given zone.
func SaveNewAuthToken ¶ added in v0.3.8
SaveNewAuthToken saves a new auth token to the database.
func TokenIssuerIsFailing ¶ added in v0.3.8
func TokenIssuerIsFailing() bool
TokenIssuerIsFailing returns whether token issuing is currently failing.
func UpdateAccount ¶ added in v0.3.8
UpdateAccount updates the user account and fetches new tokens, if needed.
func VerifyRawToken ¶ added in v0.3.8
func VerifyRawToken(data []byte) (granted terminal.Permission, err error)
VerifyRawToken verifies a raw token.
func VerifyToken ¶ added in v0.3.8
func VerifyToken(t *token.Token) (granted terminal.Permission, err error)
VerifyToken verifies a token.
Types ¶
type AuthTokenRecord ¶ added in v0.3.8
AuthTokenRecord holds an authentication token.
func GetAuthToken ¶ added in v0.3.8
func GetAuthToken() (*AuthTokenRecord, error)
GetAuthToken returns the current auth token.
func (*AuthTokenRecord) GetToken ¶ added in v0.3.8
func (authToken *AuthTokenRecord) GetToken() *account.AuthToken
GetToken returns the token from the record.
func (*AuthTokenRecord) Save ¶ added in v0.3.8
func (authToken *AuthTokenRecord) Save() error
Save saves the auth token to the database.
type AuthorizeOp ¶ added in v0.3.0
type AuthorizeOp struct {
terminal.OpBaseRequest
}
AuthorizeOp is used to authorize a session.
func AuthorizeToTerminal ¶ added in v0.3.0
func AuthorizeToTerminal(t terminal.OpTerminal) (*AuthorizeOp, *terminal.Error)
AuthorizeToTerminal starts an authorization operation.
func (*AuthorizeOp) Type ¶ added in v0.3.0
func (op *AuthorizeOp) Type() string
Type returns the type ID.
type UserRecord ¶ added in v0.3.8
type UserRecord struct {
record.Base
sync.Mutex
*account.User
MayUseSPN bool
LoggedInAt *time.Time
}
UserRecord holds a SPN user account.
func GetUser ¶ added in v0.3.8
func GetUser() (*UserRecord, error)
GetUser returns the current user account.
func (*UserRecord) IsLoggedIn ¶ added in v0.3.8
func (user *UserRecord) IsLoggedIn() bool
IsLoggedIn returns whether a User is currently logged in.
func (*UserRecord) MayUseTheSPN ¶ added in v0.3.8
func (user *UserRecord) MayUseTheSPN() bool
MayUseTheSPN returns whether the currently logged in User may use the SPN.
Source Files
Directories