mfa

package

v1.12.4 Latest Latest Go to latest Published: Dec 13, 2022 License: AGPL-3.0 Imports: 14 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/kian99/candid

Links

Open Source Insights

Documentation ¶

Overview ¶

Package mfa contains implementation of a handler for multi-factor authentication with WebAuthn.

Index ¶

Constants
type Authenticator
- func NewAuthenticator(id, name, origin string) (*Authenticator, error)
type LoginState

Constants ¶

View Source

const CookieName = "candid-login-mfa"

CookieName holds the name of the multi-factor authentication cookie.

View Source

const CookiePath = "/login/mfa"

CookiePath is the path to associate with the cookie storing the current multi-factor authentication state.

View Source

const StateName = "mfa-state"

StateName holds the name of the form field containing the multi-factor authentication state.

Variables ¶

This section is empty.

Functions ¶

This section is empty.

Types ¶

type Authenticator ¶

type Authenticator struct {
	// Params holds the parameters passed to the identity provider.
	Params idp.InitParams
	// Authenticator holds the webauthn authenticator.
	Authenticator *webauthn.WebAuthn
}

Authenticator implements methods needed for mfa.

func NewAuthenticator ¶

func NewAuthenticator(id, name, origin string) (*Authenticator, error)

NewAuthenticator returns a new multi-factor authenticator.

func (*Authenticator) Handle ¶

func (a *Authenticator) Handle(ctx context.Context, w http.ResponseWriter, req *http.Request)

Handle servers incoming http requests.

func (*Authenticator) HasMFACredentials ¶

func (a *Authenticator) HasMFACredentials(ctx context.Context, providerID string) (bool, error)

HasMFACredentials returns true, if the user with the specified providerID has any registered MFA credentials.

func (*Authenticator) Init ¶

func (a *Authenticator) Init(params idp.InitParams)

Init sets the initial paramaters for the authenticator.

func (*Authenticator) SetMFAStateProviderID ¶

func (a *Authenticator) SetMFAStateProviderID(w http.ResponseWriter, providerID string) (string, error)

SetMFAStateProviderID sets the provider id in the mfa login state cookie.

type LoginState ¶

type LoginState struct {
	// ProviderID holds the provider ID of the user that entered the
	// correct username-password combination.
	ProviderID string
	// RegistrationSessionData holds data associated with the
	// ongoing mfa security device registration process.
	RegistrationSessionData string
	// LoginSessionData holds data associated with the
	// ongoing mfa login process.
	LoginSessionData string
	// ValidCredentialID holds the ID of the presented
	// valid credential.
	ValidCredentialID []byte
}

LoginState holds the state of the current multi-factor authentication login process.

Source Files ¶

View all Source files

webauthn.go

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL