http-auth-server

command module

v0.0.0-...-5ec3ce4 Latest Latest Go to latest Published: Apr 14, 2024 License: AGPL-3.0 Imports: 4 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

README ¶

Introduction

An opinionated HTTP Auth Server written in Go, designed to seamlessly integrate with the Nginx Mail Proxy module, providing authentication functionality for accessing mail services. With this server you can ensure only authorized users can interact with your mail server.

What do I mean by opinionated?

The server supports PostgreSQL mail account stores and the bcrypt hashing algorithm only. This is due to the fact that I've written this application for my personal use in the first place but also owed to the fact that I want to keep the codebase as light as possible.

This has some major advantages:

easy maintainability
overall higher security by having less external dependencies but also less code that can break or leak information
better performance by using a specialized postgres library that allows connection pooling as compared to the much simper database/sql library on its own

At the same time it's less useful for some folks.

Anyways, feel free to open an issue with a feature request if you're missing something and we can talk about the possibility of implementation.

And as a last resort you can always fork ;-)

Badges

Coverage

Features

Support for PostgreSQL datbases that hold the mail server user store
Support for the bcrypt password hashing algorithm
Logging of invalid authentication attempts to implement easy rate limiting with tools like Fail2Ban
Container images to easily deploy and update the auth server

How to do ...?

Take a look at the Wiki (coming soon) for instructions on building, running and integrating the application.

Image signing

Published container images are signed, as well as the signature of the distroless base image is being verified during build.

You can confirm the authenticity of the image after pulling it with this sigstore public key:

-----BEGIN PUBLIC KEY-----
MFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAEODjAHajAM/VWVR8JniY6AO+2kmPB
DFC+ba67y0T/5uRtfc1M+D6GKlXn4s3BgjfM0goVlfA5sEc1J2kAGoOm+w==
-----END PUBLIC KEY-----

License

This software is licensed under the AGPLv3.

Documentation ¶

There is no documentation for this package.

Source Files ¶

View all Source files

main.go

Directories ¶

Path	Synopsis
internal Package internal implements the HTTP authentication server that is designed to interact with the NGINX Mail Proxy module.	Package internal implements the HTTP authentication server that is designed to interact with the NGINX Mail Proxy module.

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL