Documentation ¶
Index ¶
- type Argon2Config
- type AuthenticateParams
- type AuthenticateResponse
- type CreateParams
- type CreateResponse
- type Feedback
- type LUDSRequirements
- type MD5Config
- type MigrateParams
- type MigrateRequestHashType
- type MigrateResponse
- type PBKDF2Config
- type SHA1Config
- type ScryptConfig
- type StrengthCheckParams
- type StrengthCheckResponse
Constants ¶
This section is empty.
Variables ¶
This section is empty.
Functions ¶
This section is empty.
Types ¶
type Argon2Config ¶
type Argon2Config struct { // Salt: The salt value. Salt string `json:"salt,omitempty"` // IterationAmount: The iteration amount. IterationAmount int32 `json:"iteration_amount,omitempty"` // Memory: The memory in kibibytes. Memory int32 `json:"memory,omitempty"` // Threads: The thread value, also known as the parallelism factor. Threads int32 `json:"threads,omitempty"` // KeyLength: The key length, also known as the hash length. KeyLength int32 `json:"key_length,omitempty"` }
Argon2Config:
type AuthenticateParams ¶
type AuthenticateParams struct { // Email: The email address of the end user. Email string `json:"email,omitempty"` // Password: The password for the user. Any UTF8 character is allowed, e.g. spaces, emojis, non-English // characers, etc. Password string `json:"password,omitempty"` // SessionToken: The `session_token` associated with a User's existing Session. SessionToken string `json:"session_token,omitempty"` // SessionDurationMinutes: Set the session lifetime to be this many minutes from now. This will start a new // session if one doesn't already exist, // returning both an opaque `session_token` and `session_jwt` for this session. Remember that the // `session_jwt` will have a fixed lifetime of // five minutes regardless of the underlying session duration, and will need to be refreshed over time. // // This value must be a minimum of 5 and a maximum of 527040 minutes (366 days). // // If a `session_token` or `session_jwt` is provided then a successful authentication will continue to // extend the session this many minutes. // // If the `session_duration_minutes` parameter is not specified, a Stytch session will not be created. SessionDurationMinutes int32 `json:"session_duration_minutes,omitempty"` // SessionJWT: The `session_jwt` associated with a User's existing Session. SessionJWT string `json:"session_jwt,omitempty"` // SessionCustomClaims: Add a custom claims map to the Session being authenticated. Claims are only created // if a Session is initialized by providing a value in `session_duration_minutes`. Claims will be included // on the Session object and in the JWT. To update a key in an existing Session, supply a new value. To // delete a key, supply a null value. // // Custom claims made with reserved claims ("iss", "sub", "aud", "exp", "nbf", "iat", "jti") will be // ignored. Total custom claims size cannot exceed four kilobytes. SessionCustomClaims map[string]any `json:"session_custom_claims,omitempty"` }
AuthenticateParams: Request type for `Passwords.Authenticate`.
type AuthenticateResponse ¶
type AuthenticateResponse struct { // RequestID: Globally unique UUID that is returned with every API call. This value is important to log for // debugging purposes; we may ask for this value to help identify a specific API call when helping you // debug an issue. RequestID string `json:"request_id,omitempty"` // UserID: The unique ID of the affected User. UserID string `json:"user_id,omitempty"` // SessionToken: A secret token for a given Stytch Session. SessionToken string `json:"session_token,omitempty"` // SessionJWT: The JSON Web Token (JWT) for a given Stytch Session. SessionJWT string `json:"session_jwt,omitempty"` // User: The `user` object affected by this API call. See the // [Get user endpoint](https://stytch.com/docs/api/get-user) for complete response field details. User users.User `json:"user,omitempty"` // StatusCode: The HTTP status code of the response. Stytch follows standard HTTP response status code // patterns, e.g. 2XX values equate to success, 3XX values are redirects, 4XX are client errors, and 5XX // are server errors. StatusCode int32 `json:"status_code,omitempty"` // Session: If you initiate a Session, by including `session_duration_minutes` in your authenticate call, // you'll receive a full Session object in the response. // // See [GET sessions](https://stytch.com/docs/api/session-get) for complete response fields. // Session *sessions.Session `json:"session,omitempty"` }
AuthenticateResponse: Response type for `Passwords.Authenticate`.
type CreateParams ¶
type CreateParams struct { // Email: The email address of the end user. Email string `json:"email,omitempty"` // Password: The password for the user. Any UTF8 character is allowed, e.g. spaces, emojis, non-English // characers, etc. Password string `json:"password,omitempty"` // SessionDurationMinutes: Set the session lifetime to be this many minutes from now. This will start a new // session if one doesn't already exist, // returning both an opaque `session_token` and `session_jwt` for this session. Remember that the // `session_jwt` will have a fixed lifetime of // five minutes regardless of the underlying session duration, and will need to be refreshed over time. // // This value must be a minimum of 5 and a maximum of 527040 minutes (366 days). // // If a `session_token` or `session_jwt` is provided then a successful authentication will continue to // extend the session this many minutes. // // If the `session_duration_minutes` parameter is not specified, a Stytch session will not be created. SessionDurationMinutes int32 `json:"session_duration_minutes,omitempty"` // SessionCustomClaims: Add a custom claims map to the Session being authenticated. Claims are only created // if a Session is initialized by providing a value in `session_duration_minutes`. Claims will be included // on the Session object and in the JWT. To update a key in an existing Session, supply a new value. To // delete a key, supply a null value. // // Custom claims made with reserved claims ("iss", "sub", "aud", "exp", "nbf", "iat", "jti") will be // ignored. Total custom claims size cannot exceed four kilobytes. SessionCustomClaims map[string]any `json:"session_custom_claims,omitempty"` // TrustedMetadata: The `trusted_metadata` field contains an arbitrary JSON object of application-specific // data. See the [Metadata](https://stytch.com/docs/api/metadata) reference for complete field behavior // details. TrustedMetadata map[string]any `json:"trusted_metadata,omitempty"` // UntrustedMetadata: The `untrusted_metadata` field contains an arbitrary JSON object of // application-specific data. Untrusted metadata can be edited by end users directly via the SDK, and // **cannot be used to store critical information.** See the // [Metadata](https://stytch.com/docs/api/metadata) reference for complete field behavior details. UntrustedMetadata map[string]any `json:"untrusted_metadata,omitempty"` // Name: The name of the user. Each field in the name object is optional. Name *users.Name `json:"name,omitempty"` }
CreateParams: Request type for `Passwords.Create`.
type CreateResponse ¶
type CreateResponse struct { // RequestID: Globally unique UUID that is returned with every API call. This value is important to log for // debugging purposes; we may ask for this value to help identify a specific API call when helping you // debug an issue. RequestID string `json:"request_id,omitempty"` // UserID: The unique ID of the affected User. UserID string `json:"user_id,omitempty"` // EmailID: The unique ID of a specific email address. EmailID string `json:"email_id,omitempty"` // SessionToken: A secret token for a given Stytch Session. SessionToken string `json:"session_token,omitempty"` // SessionJWT: The JSON Web Token (JWT) for a given Stytch Session. SessionJWT string `json:"session_jwt,omitempty"` // User: The `user` object affected by this API call. See the // [Get user endpoint](https://stytch.com/docs/api/get-user) for complete response field details. User users.User `json:"user,omitempty"` // StatusCode: The HTTP status code of the response. Stytch follows standard HTTP response status code // patterns, e.g. 2XX values equate to success, 3XX values are redirects, 4XX are client errors, and 5XX // are server errors. StatusCode int32 `json:"status_code,omitempty"` // Session: If you initiate a Session, by including `session_duration_minutes` in your authenticate call, // you'll receive a full Session object in the response. // // See [GET sessions](https://stytch.com/docs/api/session-get) for complete response fields. // Session *sessions.Session `json:"session,omitempty"` }
CreateResponse: Response type for `Passwords.Create`.
type Feedback ¶
type Feedback struct { // Warning: For `zxcvbn` validation, contains an end user consumable warning if the password is valid but // not strong enough. Warning string `json:"warning,omitempty"` // Suggestions: For `zxcvbn` validation, contains end user consumable suggestions on how to improve the // strength of the password. Suggestions []string `json:"suggestions,omitempty"` // LudsRequirements: Contains which LUDS properties are fulfilled by the password and which are missing to // convert an invalid password into a valid one. You'll use these fields to provide feedback to the user on // how to improve the password. LudsRequirements *LUDSRequirements `json:"luds_requirements,omitempty"` }
Feedback:
type LUDSRequirements ¶
type LUDSRequirements struct { // HasLowerCase: For LUDS validation, whether the password contains at least one lowercase letter. HasLowerCase bool `json:"has_lower_case,omitempty"` // HasUpperCase: For LUDS validation, whether the password contains at least one uppercase letter. HasUpperCase bool `json:"has_upper_case,omitempty"` // HasDigit: For LUDS validation, whether the password contains at least one digit. HasDigit bool `json:"has_digit,omitempty"` // HasSymbol: For LUDS validation, whether the password contains at least one symbol. Any UTF8 character // outside of a-z or A-Z may count as a valid symbol. HasSymbol bool `json:"has_symbol,omitempty"` // MissingComplexity: For LUDS validation, the number of complexity requirements that are missing from the // password. Check the complexity fields to see which requirements are missing. MissingComplexity int32 `json:"missing_complexity,omitempty"` // MissingCharacters: For LUDS validation, this is the required length of the password that you've set // minus the length of the password being checked. The user will need to add this many characters to the // password to make it valid. MissingCharacters int32 `json:"missing_characters,omitempty"` }
LUDSRequirements:
type MD5Config ¶
type MD5Config struct { // PrependSalt: The salt that should be prepended to the migrated password. PrependSalt string `json:"prepend_salt,omitempty"` // AppendSalt: The salt that should be appended to the migrated password. AppendSalt string `json:"append_salt,omitempty"` }
MD5Config:
type MigrateParams ¶
type MigrateParams struct { // Email: The email address of the end user. Email string `json:"email,omitempty"` // Hash: The password hash. For a Scrypt or PBKDF2 hash, the hash needs to be a base64 encoded string. Hash string `json:"hash,omitempty"` // HashType: The password hash used. Currently `bcrypt`, `scrypt`, `argon_2i`, `argon_2id`, `md_5`, // `sha_1`, and `pbkdf_2` are supported. HashType MigrateRequestHashType `json:"hash_type,omitempty"` // Md5Config: Optional parameters for MD-5 hash types. Md5Config *MD5Config `json:"md_5_config,omitempty"` // Argon2Config: Required parameters if the argon2 hex form, as opposed to the encoded form, is supplied. Argon2Config *Argon2Config `json:"argon_2_config,omitempty"` // Sha1Config: Optional parameters for SHA-1 hash types. Sha1Config *SHA1Config `json:"sha_1_config,omitempty"` // ScryptConfig: Required parameters if the scrypt is not provided in a // [PHC encoded form](https://github.com/P-H-C/phc-string-format/blob/master/phc-sf-spec.md#phc-string-format). ScryptConfig *ScryptConfig `json:"scrypt_config,omitempty"` // Pbkdf2Config: Required additional parameters for PBKDF2 hash keys. Pbkdf2Config *PBKDF2Config `json:"pbkdf_2_config,omitempty"` // TrustedMetadata: The `trusted_metadata` field contains an arbitrary JSON object of application-specific // data. See the [Metadata](https://stytch.com/docs/api/metadata) reference for complete field behavior // details. TrustedMetadata map[string]any `json:"trusted_metadata,omitempty"` // UntrustedMetadata: The `untrusted_metadata` field contains an arbitrary JSON object of // application-specific data. Untrusted metadata can be edited by end users directly via the SDK, and // **cannot be used to store critical information.** See the // [Metadata](https://stytch.com/docs/api/metadata) reference for complete field behavior details. UntrustedMetadata map[string]any `json:"untrusted_metadata,omitempty"` // SetEmailVerified: Whether to set the user's email as verified. This is a dangerous field. Incorrect use // may lead to users getting erroneously // deduplicated into one user object. This flag should only be set if you can attest that // the user owns the email address in question. // Access to this field is restricted. To enable it, please send us a note at // support@stytch.com. SetEmailVerified bool `json:"set_email_verified,omitempty"` // Name: The name of the user. Each field in the name object is optional. Name *users.Name `json:"name,omitempty"` }
MigrateParams: Request type for `Passwords.Migrate`.
type MigrateRequestHashType ¶
type MigrateRequestHashType string
const ( MigrateRequestHashTypeBcrypt MigrateRequestHashType = "bcrypt" MigrateRequestHashTypeMd5 MigrateRequestHashType = "md_5" MigrateRequestHashTypeArgon2i MigrateRequestHashType = "argon_2i" MigrateRequestHashTypeArgon2id MigrateRequestHashType = "argon_2id" MigrateRequestHashTypeSha1 MigrateRequestHashType = "sha_1" MigrateRequestHashTypeScrypt MigrateRequestHashType = "scrypt" MigrateRequestHashTypePhpass MigrateRequestHashType = "phpass" MigrateRequestHashTypePbkdf2 MigrateRequestHashType = "pbkdf_2" )
type MigrateResponse ¶
type MigrateResponse struct { // RequestID: Globally unique UUID that is returned with every API call. This value is important to log for // debugging purposes; we may ask for this value to help identify a specific API call when helping you // debug an issue. RequestID string `json:"request_id,omitempty"` // UserID: The unique ID of the affected User. UserID string `json:"user_id,omitempty"` // EmailID: The unique ID of a specific email address. EmailID string `json:"email_id,omitempty"` // UserCreated: In `login_or_create` endpoints, this field indicates whether or not a User was just created. UserCreated bool `json:"user_created,omitempty"` // User: The `user` object affected by this API call. See the // [Get user endpoint](https://stytch.com/docs/api/get-user) for complete response field details. User users.User `json:"user,omitempty"` // StatusCode: The HTTP status code of the response. Stytch follows standard HTTP response status code // patterns, e.g. 2XX values equate to success, 3XX values are redirects, 4XX are client errors, and 5XX // are server errors. StatusCode int32 `json:"status_code,omitempty"` }
MigrateResponse: Response type for `Passwords.Migrate`.
type PBKDF2Config ¶
type PBKDF2Config struct { // Salt: The salt value, which should be in a base64 encoded string form. Salt string `json:"salt,omitempty"` // IterationAmount: The iteration amount. IterationAmount int32 `json:"iteration_amount,omitempty"` // KeyLength: The key length, also known as the hash length. KeyLength int32 `json:"key_length,omitempty"` }
PBKDF2Config:
type SHA1Config ¶
type SHA1Config struct { // PrependSalt: The salt that should be prepended to the migrated password. PrependSalt string `json:"prepend_salt,omitempty"` // AppendSalt: The salt that should be appended to the migrated password. AppendSalt string `json:"append_salt,omitempty"` }
SHA1Config:
type ScryptConfig ¶
type ScryptConfig struct { // Salt: The salt value, which should be in a base64 encoded string form. Salt string `json:"salt,omitempty"` // NParameter: The N value, also known as the iterations count. It must be a power of two greater than 1 // and less than 262,145. // If your application's N parameter is larger than 262,144, please reach out to // [support@stytch.com](mailto:support@stytch.com) NParameter int32 `json:"n_parameter,omitempty"` // RParameter: The r parameter, also known as the block size. RParameter int32 `json:"r_parameter,omitempty"` // PParameter: The p parameter, also known as the parallelism factor. PParameter int32 `json:"p_parameter,omitempty"` // KeyLength: The key length, also known as the hash length. KeyLength int32 `json:"key_length,omitempty"` }
ScryptConfig:
type StrengthCheckParams ¶
type StrengthCheckParams struct { // Password: The password for the user. Any UTF8 character is allowed, e.g. spaces, emojis, non-English // characers, etc. Password string `json:"password,omitempty"` // Email: The email address of the end user. Email string `json:"email,omitempty"` }
StrengthCheckParams: Request type for `Passwords.StrengthCheck`.
type StrengthCheckResponse ¶
type StrengthCheckResponse struct { // RequestID: Globally unique UUID that is returned with every API call. This value is important to log for // debugging purposes; we may ask for this value to help identify a specific API call when helping you // debug an issue. RequestID string `json:"request_id,omitempty"` // ValidPassword: Returns `true` if the password passes our password validation. We offer two validation // options, [zxcvbn](https://stytch.com/docs/passwords#strength-requirements) is the default option which // offers a high level of sophistication. We also offer // [LUDS](https://stytch.com/docs/passwords#strength-requirements). If an email address is included in the // call we also require that the password hasn't been compromised using built-in breach detection powered // by [HaveIBeenPwned](https://haveibeenpwned.com/). ValidPassword bool `json:"valid_password,omitempty"` // Score: The score of the password determined by [zxcvbn](https://github.com/dropbox/zxcvbn). Values will // be between 1 and 4, a 3 or greater is required to pass validation. Score int32 `json:"score,omitempty"` // BreachedPassword: Returns `true` if the password has been breached. Powered by // [HaveIBeenPwned](https://haveibeenpwned.com/). BreachedPassword bool `json:"breached_password,omitempty"` // StrengthPolicy: The strength policy type enforced, either `zxcvbn` or `luds`. StrengthPolicy string `json:"strength_policy,omitempty"` // BreachDetectionOnCreate: Will return `true` if breach detection will be evaluated. By default this // option is enabled. This option can be disabled by contacting // [support@stytch.com](mailto:support@stytch.com?subject=Password%20strength%20configuration). If this // value is `false` then `breached_password` will always be `false` as well. BreachDetectionOnCreate bool `json:"breach_detection_on_create,omitempty"` // StatusCode: The HTTP status code of the response. Stytch follows standard HTTP response status code // patterns, e.g. 2XX values equate to success, 3XX values are redirects, 4XX are client errors, and 5XX // are server errors. StatusCode int32 `json:"status_code,omitempty"` // Feedback for how to improve the password's strength [HaveIBeenPwned](https://haveibeenpwned.com/). Feedback *Feedback `json:"feedback,omitempty"` }
StrengthCheckResponse: Response type for `Passwords.StrengthCheck`.
Click to show internal directories.
Click to hide internal directories.