Documentation
¶
Overview ¶
Package oauth defines the authentication layer of the application.
Index ¶
Constants ¶
This section is empty.
Variables ¶
This section is empty.
Functions ¶
This section is empty.
Types ¶
type GitHubProvider ¶
GitHubProvider is a authentication provider which uses OAuth2 from GitHub and GitHub API as identity provider.
func (*GitHubProvider) DisplayName ¶
func (p *GitHubProvider) DisplayName() string
DisplayName returns the display name of the provider.
func (*GitHubProvider) GetIdentity ¶
func (p *GitHubProvider) GetIdentity( ctx context.Context, token *oauth2.Token, ) (userID string, userName string, err error)
GetIdentity fetches the identity of the authenticated user from the GitHub API.
It returns <provider>:<user id>.
type OAuth ¶
OAuth is a service that provides HTTP handlers and middlewares used for authentication.
func (*OAuth) CallBack ¶
func (a *OAuth) CallBack() http.HandlerFunc
CallBack is the handler called after login.
It:
1. Fetches the accessToken 2. Fetches some user info and wrap them in a JWT token 3. Store the JWT token in a cookie for the browser.
func (*OAuth) Login ¶
func (a *OAuth) Login() http.HandlerFunc
Login is the handler that redirect to the authentication page of the OAuth Provider.
type OIDCClaims ¶
type OIDCClaims struct {
jwt.RegisteredClaims
Name string `json:"name"`
Email string `json:"email"`
}
OIDCClaims are the standard fields given by an OIDC provider.
type OIDCProvider ¶
OIDCProvider is a authentication provider which uses OpenID Connect.
func (*OIDCProvider) DisplayName ¶
func (p *OIDCProvider) DisplayName() string
DisplayName returns the public name of the authenticated user.
func (*OIDCProvider) GetIdentity ¶
func (p *OIDCProvider) GetIdentity( ctx context.Context, token *oauth2.Token, ) (userID string, userName string, err error)
GetIdentity fetches the identity of the authenticated user from the ID token.
It returns <provider>:<user id>.
type Provider ¶
type Provider interface {
// AuthCodeURL returns the URL of the consent page that asks for permissions.
AuthCodeURL(state string, opts ...oauth2.AuthCodeOption) string
// Exchange converts a code into an OAuth2 token.
Exchange(ctx context.Context, code string, opts ...oauth2.AuthCodeOption) (*oauth2.Token, error)
// DisplayName is the provider's name that can be displayed publicly.
DisplayName() string
GetIdentity(
ctx context.Context,
token *oauth2.Token,
) (userID string, userName string, err error)
}
Provider is the interface that defines the necessary methods of authentication providers.
type ProviderConfig ¶
type ProviderConfig struct {
Type ProviderType `yaml:"type"`
Name string `yaml:"name"`
ClientID string `yaml:"clientID"`
ClientSecret string `yaml:"clientSecret"`
Endpoint string `yaml:"endpoint"`
}
ProviderConfig is the configuration of one provider to achieve the OAuth2 flow.
type ProviderType ¶
type ProviderType string
ProviderType is a string uses the indentify edge cases in authentication.
const ( // ProviderGitHub is the type of the authentication provider that uses GitHub OAuth2. ProviderGitHub ProviderType = "github" // ProviderOIDC is the generic type of authentication provider that uses OIDC. ProviderOIDC ProviderType = "oidc" )
Source Files