example

command

v1.0.0 Latest Latest Go to latest Published: Apr 25, 2019 License: MIT Imports: 12 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/ProtocolONE/authone-jwt-verifier-golang

Links

Open Source Insights

README ¶

Demo application for authorization

The application demonstrates basic authorization scenarios and environment settings.

Prerequisites

You will need an auth1 and ORY Hydra authorization server to operate.

Download Hydra and edit docker-compose.yml if necessary. The main thing you may need to do is to change the value of the environment variables in it:

OAUTH2_ISSUER_URL - endpoint address on public hydra URL
OAUTH2_LOGIN_URL - endpoint address for user login and password request (project auth1)
OAUTH2_CONSENT_URL - endpoint address to request user scopes (project auth1)

If you want Hydra to work on non-standard ports (4444 for public requests and 4445 for administrative requests), change them in the ports section.

Also note that the endpoints of Hydra requests are also listed in the configuration file config.yaml of the auth1 project, located in the etc directory.

Usage

The first step is to create the space, application and user in the auth1 project. To do this, use the API requests described in the project specification at /spec/openapi.yaml. You can also use the queries prepared for the Postman application, which are located in the /spec/postman_collection file.

Create space using /api/space (Postman: Management > Space > Create space). Using the space identifier, create an application by executing a request to /api/app (Postman: Management > Application > Create application). At creation of the application in a field auth_redirect_urls specify an end point of your application which will validate the received code from a server of authorisation (for this demonstration application the address http://127.0.0.1:1323/auth/callback is used).

The response received after creating the application will contain a secret key that should be used for authorization, for example:

{
   "id": "5c5bfc434c1efd4fb8e2d266",
   "space_id": "5c1bbe564c1efd4428629bdd",
   "name": "Test2",
   "description": "Initial application",
   "is_active": true,
   "auth_secret": "ejJu8SLQnt5Bx2DiqZSIoQbWCPK5eIeYNyjGQLsL7ZwAeipZMY1W6BnsJOBZGVpC",
   "auth_redirect_urls": [
       "http://127.0.0.1:1323/auth/callback"
   ]
}

Use the resulting id, auth_secret and auth_redirect_urls to configure your test application.

conf := jwtverifier.Config{
    ClientID:     "",
    ClientSecret: "",
    Scopes:       []string{"openid", "offline"},
    RedirectURL:  "http://127.0.0.1:1323/auth/callback",
    Issuer:   "http://localhost:8080",
}

Issuer is the domain where ProtocolOne authorization server is located (without a slash at the end of the line, this is important). Change the domain name and port, if necessary.

Almost everything's ready.)

The only thing left to do is to create a user by sending a request to auth1 api at /signup (Postman: SignUp > SignUp), and then open the main page of the test application and click on the Auth me link.

After successful authentication, the user will be returned to http://127.0.0.1:1323/auth/callback and in the application console you will see the authentication tokens that can be used further in the application as you wish.

Documentation ¶

There is no documentation for this package.

Source Files ¶

View all Source files

main.go

Directories ¶

Path	Synopsis
nocache

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL