googleauth

package

v0.0.0-...-5a547ea Latest Latest Go to latest Published: Jul 12, 2018 License: MIT Imports: 10 Imported by: 1

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/WindomZ/go-develop-kit

Links

Open Source Insights

README ¶

googleauth

Base on dgryski/dgoogauth

Documentation ¶

Overview ¶

The one-time password algorithms supported by Google Authenticator This package supports the HMAC-Based One-time Password (HOTP) algorithm specified in RFC 4226 and the Time-based One-time Password (TOTP) algorithm specified in RFC 6238.

Index ¶

Constants
Variables
func ComputeCode(secret string, value int64) int
func GenerateRandomSecret(size int, encodeToBase32 bool) string
func ValidSecret(secret string, size int, encodeToBase32 bool) bool
type OTPConfig

Constants ¶

View Source

const (
	DefaultWindowSize         = 3
	DefaultRandomSecretLength = 100 // Default random secret length
)

Variables ¶

View Source

var ErrInvalidCode = errors.New("invalid code")

ErrInvalidCode indicate the supplied one-time code was not valid

Functions ¶

func ComputeCode ¶

func ComputeCode(secret string, value int64) int

ComputeCode computes the response code for a 64-bit challenge 'value' using the secret 'secret'. To avoid breaking compatibility with the previous API, it returns an invalid code (-1) when an error occurs, but does not silently ignore them (it forces a mismatch so the code will be rejected).

func GenerateRandomSecret ¶

func GenerateRandomSecret(size int, encodeToBase32 bool) string

func ValidSecret ¶

func ValidSecret(secret string, size int, encodeToBase32 bool) bool

Types ¶

type OTPConfig ¶

type OTPConfig struct {
	Secret        string // 80-bit base32 encoded string of the user's secret
	WindowSize    int    // valid range: technically 0..100 or so, but beyond 3-5 is probably bad security
	HotpCounter   int    // the current otp counter.  0 if the user uses time-based codes instead.
	DisallowReuse []int  // timestamps in the current window unavailable for re-use
	ScratchCodes  []int  // an array of 8-digit numeric codes that can be used to log in
	UTC           bool   // use UTC for the timestamp instead of local time
}

OTPConfig is a one-time-password configuration. This object will be modified by calls to Authenticate and should be saved to ensure the codes are in fact only used once.

func (*OTPConfig) Authenticate ¶

func (c *OTPConfig) Authenticate(password string) (bool, error)

Authenticate a one-time-password against the given OTPConfig Returns true/false if the authentication was successful. Returns error if the password is incorrectly formatted (not a zero-padded 6 or non-zero-padded 8 digit number).

func (*OTPConfig) ProvisionURI ¶

func (c *OTPConfig) ProvisionURI(user string) string

ProvisionURI generates a URI that can be turned into a QR code to configure a Google Authenticator mobile app.

func (*OTPConfig) ProvisionURIWithIssuer ¶

func (c *OTPConfig) ProvisionURIWithIssuer(user, issuer string) string

ProvisionURIWithIssuer generates a URI that can be turned into a QR code to configure a Google Authenticator mobile app. It respects the recommendations on how to avoid conflicting accounts.

See https://code.google.com/p/google-authenticator/wiki/ConflictingAccounts

Source Files ¶

View all Source files

Directories ¶

Path	Synopsis
otp

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL