security

package

v0.4.37 Latest Latest Go to latest Published: Aug 16, 2021 License: MIT Imports: 12 Imported by: 0

Details

Valid go.mod file
Redistributable license
Tagged version
Stable version
Learn more about best practices

Repository

github.com/t2wu/betterrest

Links

Open Source Insights

Documentation ¶

Index ¶

Variables
func CreateAccessToken(ident *datatypes.UUID, duration time.Duration, scope *string) (string, error)
func CreateRefreshToken(ident *datatypes.UUID, duration time.Duration, scope *string) (string, error)
func GetClaimsIfAccessTokenIsValid(tokenString string) (*jwt.MapClaims, error)
func GetClaimsIfRefreshTokenIsValid(tokenString string) (*jwt.MapClaims, error)
func GetVerifiedAuthUser(db *gorm.DB, userModel models.IModel) (models.IModel, error)
func HashAndSalt(pwd string) (string, error)
func IsSamePassword(plainPwd string, hashedPwd string) bool
func Setup(ck *CertAndKeys)
type CertAndKeys

Constants ¶

This section is empty.

Variables ¶

View Source

var ErrEmailNotFound = errors.New("email not found")

View Source

var ErrInactive = errors.New("account inactive")

View Source

var ErrNotVerified = errors.New("email not verified")

View Source

var ErrPasswordIncorrect = errors.New("password incorrect")

Functions ¶

func CreateAccessToken ¶

func CreateAccessToken(ident *datatypes.UUID, duration time.Duration, scope *string) (string, error)

CreateAccessToken creates a new JWT token

func CreateRefreshToken ¶

func CreateRefreshToken(ident *datatypes.UUID, duration time.Duration, scope *string) (string, error)

CreateRefreshToken creates a new JWT token

func GetClaimsIfAccessTokenIsValid ¶

func GetClaimsIfAccessTokenIsValid(tokenString string) (*jwt.MapClaims, error)

GetClaimsIfAccessTokenIsValid validates this token and get the ISS claim

func GetClaimsIfRefreshTokenIsValid ¶

func GetClaimsIfRefreshTokenIsValid(tokenString string) (*jwt.MapClaims, error)

GetClaimsIfRefreshTokenIsValid validates this token and get the ISS claim

func GetVerifiedAuthUser ¶ added in v0.1.36

func GetVerifiedAuthUser(db *gorm.DB, userModel models.IModel) (models.IModel, error)

GetVerifiedAuthUser authenticates the user userModel is from JSON in the HTTP body

func HashAndSalt ¶

func HashAndSalt(pwd string) (string, error)

HashAndSalt turns password into encrypted hash The salt is included in the hash

func IsSamePassword ¶

func IsSamePassword(plainPwd string, hashedPwd string) bool

IsSamePassword checks if password is the same as in the db

func Setup ¶ added in v0.1.44

func Setup(ck *CertAndKeys)

Setup loads the public and private keys fromfile

Types ¶

type CertAndKeys ¶ added in v0.1.44

type CertAndKeys struct {
	/* Access tokens */
	AccessTokenPrivKeyPath string
	AccessTokenPubKeyPath  string
	AccessTokenPemPasswd   string

	/* Refresh tokens */
	RefreshTokenPrivKeyPath string
	RefreshTokenPubKeyPath  string
	RefreshTokenPemPasswd   string
}

CertAndKeys are paths for certificates and keys for initialization

Source Files ¶

View all Source files

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL