role_based_authentication_golang

command module

v0.0.0-...-de20da1 Latest Latest Go to latest Published: Mar 17, 2024 License: Apache-2.0 Imports: 13 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/genesisblock3301/role_based_authentication_golang

Links

Open Source Insights

README ¶

Role-Based Authentication in GoLang Application

Overview

This GoLang application implements a role-based authentication system, providing secure access control to various resources. It encompasses features like Google OAuth, JWT token authentication, and email verifications for user management.

Table Structure

The application's database schema includes the following tables:

User: Stores user information including username, email, password hash, and associated roles. Role: Contains roles with corresponding permissions.
Permission: Lists specific actions that can be performed within the application.

Authentication Methods

1. Google OAuth This application integrates with Google OAuth for seamless user authentication. Users can log in using their Google credentials, which are then used to create or update their profile in the application's database.

2. JWT Token Authentication JWT tokens are employed for secure communication between the client and the server. After successful authentication, a JWT token is generated and provided to the client, which is then included in subsequent requests for authorization.

3. Email Verification To ensure a valid email address, users receive a verification link upon registration. Clicking this link confirms the email address and activates the account.

Role-Based Access Control (RBAC)

Roles play a central role in defining what actions a user can perform within the application. Each role is associated with specific permissions, providing granular control over the features and resources accessible to users.

Project Structure:

role_based_access_boilerplate_go/
├── cmd/
│   └── main.go
├── internal/
│   ├── configurations/
│   │     ├── db/
│   │     │   └── config.go
│   │     │   └── models.go
│   ├── controller/
│   │     ├── user/
│   │     │     └── user-controller.go
│   │     ├── role/
│   │     │     └── roles-controller.go
│   │     └── router.go
│   ├── middleware/
│   │    └── auth-middleware.go
│   ├── routes/
│   │     ├── user/
│   │     │     └── user-router.go
│   │     ├── role/
│   │     │     └── roles-router.go
│   │     └── router.go
│   ├── serializers/
│   │    └── user-serializers.go
│   ├── service/
│   │     ├── user/
│   │     │     └── user-service.go
│   │     ├── role/
│   │     │     └── roles-service.go
├── test/
│   └── my_service_test.go
└── README.md

Explanation:

/cmd: Contains the main entry point for your application. /internal: Contains internal packages, including database operations and data models.

/configurations: Houses API handlers for user, role, and permission management.
/controllers:
/middlewares:
/routes:
/schemas:
/serializers:
/services
/utils: README.md: This file, providing an overview of the project.

Getting Started

Clone the repository.
Initialize the database using the provided SQL script in /scripts.
Customize the authentication methods and API handlers according to your requirements.
Run the application using go run cmd/your-app/main.go.

Creating Project:

Open project folder
Command: go mod init

Design database model & making operations:

Follow GORM orm documentation.

How JWT Token Generate:

Authenticated User login using credentials (username, password).
Verify credential of users(Username & password).
Then generate token and enter Generate token function.
Add JWT claims. For example: Authorization, exp, user_id etc.
Using these claims generate token with secret key.

How to make JWT token validation when I make call with this Token(middleware):

Firstly token parse which is provided by frontend and find exact token.
Then check token validation, if valid then move forward.
From this token, after decoding we can get userID.

How does Register email verification work:

Firstly user apply for information registration.
Then make email template with verification link and send it on behalf of system to client.
Verification link containing unique token.
Click on that link & activate this user & redirect to home page.

How generate OTP work & when we should use OTP:

Generally OTP generated after enter login credentials, here we use One time Generated password, lifetime 30 sec.

Generated OTP from gotp module.
then send this OTP code to email.
Verify OTP code to enter into another gotp module.

Documentation ¶

There is no documentation for this package.

Source Files ¶

View all Source files

main.go

Directories ¶

Path	Synopsis
backend
configurations
configurations/db
controllers
middlewares
routes
schemas
serializers
services
utils
validations
docs Package docs Code generated by swaggo/swag.	Package docs Code generated by swaggo/swag.

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL