authorization

package

v0.0.0-...-0d805c2 Latest Latest Go to latest Published: Jun 10, 2020 License: BSD-2-Clause Imports: 11 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

This section is empty.

This section is empty.

func CSRFProtector(allowedOrigins []string) func(http.Handler) http.Handler

CSRFProtector adds a CSRF protection middleware to the chain if the program is not running in development mode.

func CSRFTokenHeader(w http.ResponseWriter, r *http.Request)

CSRFTokenHeader writes masked CSRF token in a HTTP response header.

func ServerAuthorizer(tc *tls.Config, allowedOrigins []string) func(http.Handler) http.Handler

ServerAuthorizer uses two models to authorize incoming requests:

if the request comes from a trusted client authenticated using mutual TLS, it is authorized.
if the request comes from a web browser (directly or via a single-page application), it is authorized only if it meets CORS middleware prerequisites (which depend on the development mode setting and the configuration of the application).
if none of the above methods authorized the request, it is denied.

This section is empty.