auth

Documentation

Index

• Constants
• func CheckPassword(saved []byte, check []byte) bool
• func PasswordHash(password []byte) ([]byte, error)
• type Claims
• type Token
  • func NewToken(secret []byte, validFor int) *Token
  • func (t *Token) Generate() (string, error)
  • func (t *Token) Parse(in string) error

Constants

const (
	ErrorBase64Decode       = "Base64DecodeFailed"
	ErrorJSONEncode         = "JSONEncodeFailed"
	ErrorJWTHeaderDecode    = "JWTHeaderDecodeFailed"
	ErrorJWTHeader          = "JWTHeaderInvalid"
	ErrorJWTClaimsDecode    = "JWTClaimsDecodeFailed"
	ErrorJWTClaims          = "JWTClaimsrInvalid"
	ErrorJWTTokenFormat     = "JWTFormatInvalid"
	ErrorJWTALGInvalid      = "JWTAlgInvalid"
	ErrorJWTSigntureInvalid = "JWTSignatureInvalid"
	ErrorJWTTokenExpired    = "JWTTokenExpired"

	AlgHS256 = "HS256"
	TypeJWT  = "JWT"
)

const (
	ErrorPasswordHash = "PasswordHashFailed"
)

Functions

func CheckPassword

func CheckPassword(saved []byte, check []byte) bool

CheckPassword checks the provided password against the stored password It extracts the salt from the front of the stored value, then adds it to the password and re-computes the hash

func PasswordHash

func PasswordHash(password []byte) ([]byte, error)

PasswordHash generates a hex encoded sha1 hash of the password with crypt/rand salt The returned []byte contans the salt followed by the sha1 sum The function will only error if the install's secure random generator is not working

Types

type Claims

type Claims struct {
	Subject    string `json:"sub"`
	Expiration int    `json:"exp"`
	Issued     int    `json:"iat"`
}

Claims holds the claims to be included in the payload of the JWT

type Token

type Token struct {
	Secret   []byte
	ValidFor int
	Claims   *Claims
	// contains filtered or unexported fields
}

func NewToken

func NewToken(secret []byte, validFor int) *Token

func (*Token) Generate

func (t *Token) Generate() (string, error)

func (*Token) Parse

func (t *Token) Parse(in string) error

Parse takes a token string and validates it