oauth

package
v0.0.0-...-c4f7e29 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Apr 26, 2024 License: Apache-2.0 Imports: 27 Imported by: 0

Documentation

Index

Constants

This section is empty.

Variables

View Source 
var AppSessionTokenAPIRequestSchema = validation.NewSimpleSchema(`
	{
		"type": "object",
		"additionalProperties": false,
		"properties": {
			"refresh_token": { "type": "string" }
		},
		"required": ["refresh_token"]
	}
`)
View Source 
var AppSessionTokenAPIResponseSchema = validation.NewSimpleSchema(`
	{
		"type": "object",
		"properties": {
			"app_session_token": { "type": "string" },
			"expire_at": { "type": "string" }
		},
		"required": ["app_session_token", "expire_at"]
	}
`)
View Source 
var ChallengeAPIRequestSchema = validation.NewSimpleSchema(`
	{
		"type": "object",
		"additionalProperties": false,
		"properties": {
			"purpose": { "type": "string" }
		},
		"required": ["purpose"]
	}
`)
View Source 
var ChallengeAPIResponseSchema = validation.NewSimpleSchema(`
	{
		"type": "object",
		"properties": {
			"token": { "type": "string" },
			"expire_at": { "type": "string" }
		},
		"required": ["token", "expire_at"]
	}
`)
View Source 
var DependencySet = wire.NewSet(
	NewAuthorizeHandlerLogger,
	wire.Struct(new(AuthorizeHandler), "*"),
	NewConsentHandlerLogger,
	wire.Struct(new(ConsentHandler), "*"),
	NewTokenHandlerLogger,
	wire.Struct(new(TokenHandler), "*"),
	NewRevokeHandlerLogger,
	wire.Struct(new(RevokeHandler), "*"),
	wire.Struct(new(MetadataHandler), "*"),
	NewJWKSHandlerLogger,
	wire.Struct(new(JWKSHandler), "*"),
	NewUserInfoHandlerLogger,
	wire.Struct(new(UserInfoHandler), "*"),
	NewEndSessionHandlerLogger,
	wire.Struct(new(EndSessionHandler), "*"),
	wire.Struct(new(ChallengeHandler), "*"),
	wire.Struct(new(AppSessionTokenHandler), "*"),
	wire.Struct(new(ProxyRedirectHandler), "*"),
)
View Source 
var InvalidGrant = apierrors.Forbidden.WithReason("InvalidGrant")

Functions

func ConfigureAppSessionTokenRoute 

func ConfigureAppSessionTokenRoute(route httproute.Route) httproute.Route

func ConfigureAuthorizeRoute 

func ConfigureAuthorizeRoute(route httproute.Route) httproute.Route

func ConfigureChallengeRoute 

func ConfigureChallengeRoute(route httproute.Route) httproute.Route

func ConfigureConsentRoute 

func ConfigureConsentRoute(route httproute.Route) httproute.Route

func ConfigureEndSessionRoute 

func ConfigureEndSessionRoute(route httproute.Route) httproute.Route

func ConfigureJWKSRoute 

func ConfigureJWKSRoute(route httproute.Route) httproute.Route

func ConfigureOAuthMetadataRoute 

func ConfigureOAuthMetadataRoute(route httproute.Route) httproute.Route

func ConfigureOIDCMetadataRoute 

func ConfigureOIDCMetadataRoute(route httproute.Route) httproute.Route

func ConfigureProxyRedirectRoute 

func ConfigureProxyRedirectRoute(route httproute.Route) httproute.Route

func ConfigureRevokeRoute 

func ConfigureRevokeRoute(route httproute.Route) httproute.Route

func ConfigureTokenRoute 

func ConfigureTokenRoute(route httproute.Route) httproute.Route

func ConfigureUserInfoRoute 

func ConfigureUserInfoRoute(route httproute.Route) httproute.Route

Types

type AppSessionTokenHandler 

type AppSessionTokenHandler struct {
	Database         *appdb.Handle
	JSON             JSONResponseWriter
	AppSessionTokens AppSessionTokenIssuer
}

func (*AppSessionTokenHandler) Handle 

func (h *AppSessionTokenHandler) Handle(resp http.ResponseWriter, req *http.Request) (*AppSessionTokenResponse, error)

func (*AppSessionTokenHandler) ServeHTTP 

func (h *AppSessionTokenHandler) ServeHTTP(resp http.ResponseWriter, req *http.Request)

type AppSessionTokenIssuer 

type AppSessionTokenIssuer interface {
	IssueAppSessionToken(refreshToken string) (string, *oauth.AppSessionToken, error)
}

type AppSessionTokenRequest 

type AppSessionTokenRequest struct {
	RefreshToken string `json:"refresh_token"`
}

type AppSessionTokenResponse 

type AppSessionTokenResponse struct {
	AppSessionToken string    `json:"app_session_token"`
	ExpireAt        time.Time `json:"expire_at"`
}

type AuthorizeHandler 

type AuthorizeHandler struct {
	Logger       AuthorizeHandlerLogger
	Database     *appdb.Handle
	AuthzHandler ProtocolAuthorizeHandler
}

func (*AuthorizeHandler) ServeHTTP 

func (h *AuthorizeHandler) ServeHTTP(rw http.ResponseWriter, r *http.Request)

type AuthorizeHandlerLogger 

type AuthorizeHandlerLogger struct{ *log.Logger }

func NewAuthorizeHandlerLogger 

func NewAuthorizeHandlerLogger(lf *log.Factory) AuthorizeHandlerLogger

type ChallengeHandler 

type ChallengeHandler struct {
	Database   *appdb.Handle
	Challenges ChallengeProvider
	JSON       JSONResponseWriter
}

@Operation POST /challenge - Obtain new challenge 

Obtain a new challenge for challenge-based OAuth authentication.
Challenges can be used once only.

@Tag User

@RequestBody
	Describe purpose of the challenge.
	@JSONSchema {OAuthChallengeRequest}

@Response 200
	Created challenge information.
	@JSONSchema {OAuthChallengeResponse}

func (*ChallengeHandler) Handle 

func (h *ChallengeHandler) Handle(resp http.ResponseWriter, req *http.Request) (*ChallengeResponse, error)

func (*ChallengeHandler) ServeHTTP 

func (h *ChallengeHandler) ServeHTTP(resp http.ResponseWriter, req *http.Request)

type ChallengeProvider 

type ChallengeProvider interface {
	Create(purpose challenge.Purpose) (*challenge.Challenge, error)
}

type ChallengeRequest 

type ChallengeRequest struct {
	Purpose challenge.Purpose `json:"purpose"`
}

func (*ChallengeRequest) Validate 

func (p *ChallengeRequest) Validate(ctx *validation.Context)

type ChallengeResponse 

type ChallengeResponse struct {
	Token    string    `json:"token"`
	ExpireAt time.Time `json:"expire_at"`
}

type ConsentHandler 

type ConsentHandler struct {
	Logger        ConsentHandlerLogger
	Database      *appdb.Handle
	Handler       ProtocolConsentHandler
	BaseViewModel *viewmodels.BaseViewModeler
	Renderer      Renderer
	Identities    ProtocolIdentityService
	Users         ConsentUserService
}

func (*ConsentHandler) ServeHTTP 

func (h *ConsentHandler) ServeHTTP(rw http.ResponseWriter, r *http.Request)

type ConsentHandlerLogger 

type ConsentHandlerLogger struct{ *log.Logger }

func NewConsentHandlerLogger 

func NewConsentHandlerLogger(lf *log.Factory) ConsentHandlerLogger

type ConsentUserService 

type ConsentUserService interface {
	Get(userID string, role accesscontrol.Role) (*model.User, error)
}

type ConsentViewModel 

type ConsentViewModel struct {
	ClientName               string
	ClientPolicyURI          string
	ClientTOSURI             string
	IsRequestingFullUserInfo bool
	IdentityDisplayName      string
	UserProfile              webapp.UserProfile
}

type EndSessionHandler 

type EndSessionHandler struct {
	Logger            EndSessionHandlerLogger
	Database          *appdb.Handle
	EndSessionHandler ProtocolEndSessionHandler
}

func (*EndSessionHandler) ServeHTTP 

func (h *EndSessionHandler) ServeHTTP(rw http.ResponseWriter, r *http.Request)

type EndSessionHandlerLogger 

type EndSessionHandlerLogger struct{ *log.Logger }

func NewEndSessionHandlerLogger 

func NewEndSessionHandlerLogger(lf *log.Factory) EndSessionHandlerLogger

type JSONResponseWriter 

type JSONResponseWriter interface {
	WriteResponse(rw http.ResponseWriter, resp *api.Response)
}

type JWKSHandler 

type JWKSHandler struct {
	Logger JWKSHandlerLogger
	JWKS   JWSSource
}

func (*JWKSHandler) ServeHTTP 

func (h *JWKSHandler) ServeHTTP(rw http.ResponseWriter, r *http.Request)

type JWKSHandlerLogger 

type JWKSHandlerLogger struct{ *log.Logger }

func NewJWKSHandlerLogger 

func NewJWKSHandlerLogger(lf *log.Factory) JWKSHandlerLogger

type JWSSource 

type JWSSource interface {
	GetPublicKeySet() (jwk.Set, error)
}

type MetadataHandler 

type MetadataHandler struct {
	Providers []MetadataProvider
}

func (*MetadataHandler) ServeHTTP 

func (h *MetadataHandler) ServeHTTP(rw http.ResponseWriter, r *http.Request)

type MetadataProvider 

type MetadataProvider interface {
	PopulateMetadata(meta map[string]interface{})
}

type OAuthClientResolver 

type OAuthClientResolver interface {
	ResolveClient(clientID string) *config.OAuthClientConfig
}

type ProtocolAuthorizeHandler 

type ProtocolAuthorizeHandler interface {
	Handle(r protocol.AuthorizationRequest) httputil.Result
}

type ProtocolConsentHandler 

type ProtocolConsentHandler interface {
	HandleConsentWithoutUserConsent(req *http.Request) (httputil.Result, *oauthhandler.ConsentRequired)
	HandleConsentWithUserConsent(req *http.Request) httputil.Result
	HandleConsentWithUserCancel(req *http.Request) httputil.Result
}

type ProtocolEndSessionHandler 

type ProtocolEndSessionHandler interface {
	Handle(session.Session, protocol.EndSessionRequest, *http.Request, http.ResponseWriter) error
}

type ProtocolIdentityService 

type ProtocolIdentityService interface {
	ListByUser(userID string) ([]*identity.Info, error)
}

type ProtocolProxyRedirectHandler 

type ProtocolProxyRedirectHandler interface {
	Validate(redirectURIWithQuery string) error
}

type ProtocolRevokeHandler 

type ProtocolRevokeHandler interface {
	Handle(r protocol.RevokeRequest) error
}

type ProtocolTokenHandler 

type ProtocolTokenHandler interface {
	Handle(rw http.ResponseWriter, req *http.Request, r protocol.TokenRequest) httputil.Result
}

type ProtocolUserInfoProvider 

type ProtocolUserInfoProvider interface {
	GetUserInfo(userID string, clientLike *oauth.ClientLike) (map[string]interface{}, error)
}

type ProxyRedirectHandler 

type ProxyRedirectHandler struct {
	ProxyRedirectHandler ProtocolProxyRedirectHandler
}

func (*ProxyRedirectHandler) ServeHTTP 

func (h *ProxyRedirectHandler) ServeHTTP(rw http.ResponseWriter, r *http.Request)

type Renderer 

type Renderer interface {
	RenderHTML(w http.ResponseWriter, r *http.Request, tpl *template.HTML, data interface{})
}

type RevokeHandler 

type RevokeHandler struct {
	Logger        RevokeHandlerLogger
	Database      *appdb.Handle
	RevokeHandler ProtocolRevokeHandler
}

func (*RevokeHandler) ServeHTTP 

func (h *RevokeHandler) ServeHTTP(rw http.ResponseWriter, r *http.Request)

type RevokeHandlerLogger 

type RevokeHandlerLogger struct{ *log.Logger }

func NewRevokeHandlerLogger 

func NewRevokeHandlerLogger(lf *log.Factory) RevokeHandlerLogger

type TokenHandler 

type TokenHandler struct {
	Logger       TokenHandlerLogger
	Database     *appdb.Handle
	TokenHandler ProtocolTokenHandler
}

func (*TokenHandler) ServeHTTP 

func (h *TokenHandler) ServeHTTP(rw http.ResponseWriter, r *http.Request)

type TokenHandlerLogger 

type TokenHandlerLogger struct{ *log.Logger }

func NewTokenHandlerLogger 

func NewTokenHandlerLogger(lf *log.Factory) TokenHandlerLogger

type UserInfoHandler 

type UserInfoHandler struct {
	Logger              UserInfoHandlerLogger
	Database            *appdb.Handle
	UserInfoProvider    ProtocolUserInfoProvider
	OAuth               *config.OAuthConfig
	OAuthClientResolver OAuthClientResolver
}

func (*UserInfoHandler) ServeHTTP 

func (h *UserInfoHandler) ServeHTTP(rw http.ResponseWriter, r *http.Request)

type UserInfoHandlerLogger 

type UserInfoHandlerLogger struct{ *log.Logger }

func NewUserInfoHandlerLogger 

func NewUserInfoHandlerLogger(lf *log.Factory) UserInfoHandlerLogger

Source Files

View all Source files

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.