security

package

v0.0.0-...-9931aa1 Latest Latest Go to latest Published: Jan 5, 2018 License: Apache-2.0 Imports: 8 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

This section is empty.

View Source

var (
	ErrUnauthorized = errors.New("unauthorized token")
)

func DecodeJwt(secret Secret, tokenString EncodedJwt) (token *jwt.Token, err error)

func GetActualRemoteHost(r *http.Request) (host string, err error)

type EncodedJwt string

func EncodeJwt(secret Secret, claims *jwt.StandardClaims) (EncodedJwt, error)

func GenJwt(secret Secret, fileId string) EncodedJwt

func GetJwt(r *http.Request) EncodedJwt

type Guard struct {
	SecretKey Secret
	// contains filtered or unexported fields
}

Guard is to ensure data access security. There are 2 ways to check access:

The white list is checked first because it is easy. Then the JWT is checked.

The Guard will also check these claims if provided: 1. "exp" Expiration Time 2. "nbf" Not Before

Generating JWT:

use HS256 to sign
optionally set "exp", "nbf" fields, in Unix time, the number of seconds elapsed since January 1, 1970 UTC.

func NewGuard(whiteList []string, secretKey string) *Guard

func (g *Guard) Secure(f func(w http.ResponseWriter, r *http.Request)) func(w http.ResponseWriter, r *http.Request)

func (g *Guard) WhiteList(f func(w http.ResponseWriter, r *http.Request)) func(w http.ResponseWriter, r *http.Request)

type Secret string