authz

package

v0.0.0-...-f708e36 Latest Latest Go to latest Published: Dec 7, 2016 License: Apache-2.0 Imports: 7 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/pasinskim/useradm

Links

Open Source Insights

Documentation ¶

Overview ¶

Licensed under the Apache License, Version 2.0 (the "License");
you may not use this file except in compliance with the License.
You may obtain a copy of the License at

    http://www.apache.org/licenses/LICENSE-2.0

Unless required by applicable law or agreed to in writing, software
distributed under the License is distributed on an "AS IS" BASIS,
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
See the License for the specific language governing permissions and
limitations under the License.

Licensed under the Apache License, Version 2.0 (the "License");
you may not use this file except in compliance with the License.
You may obtain a copy of the License at

    http://www.apache.org/licenses/LICENSE-2.0

Unless required by applicable law or agreed to in writing, software
distributed under the License is distributed on an "AS IS" BASIS,
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
See the License for the specific language governing permissions and
limitations under the License.

Index ¶

Variables
type Authorizer
type AuthzMiddleware
- func (mw *AuthzMiddleware) MiddlewareFunc(h rest.HandlerFunc) rest.HandlerFunc
type ResourceExtractor

Constants ¶

This section is empty.

Variables ¶

View Source

var (
	ErrAuthzUnauthorized = errors.New("unauthorized")
	ErrAuthzNoAuthHeader = errors.New("missing or invalid auth header")
	ErrAuthzTokenInvalid = errors.New("invalid jwt")
)

Functions ¶

This section is empty.

Types ¶

type Authorizer ¶

type Authorizer interface {
	// Authorize checks if the given user (identified by token) has permissions to an action on a resource.
	// returns:
	// nil if authorization is granted
	// ErrAuthzUnauthorized otherwise
	// ErrAuthzTokenInvalid if can't parse token
	Authorize(token, resource, action string) error
	WithLog(l *log.Logger) Authorizer
}

Authorizer defines the interface for checking the permissions of a given user(token) vs an action on a resource.

type AuthzMiddleware ¶

type AuthzMiddleware struct {
	Authz   Authorizer
	ResFunc ResourceExtractor
}

AuthzMiddleware checks the authorization on a given request. It retrieves the requested resource and action, and delegates the authz check to an Authorizer.

func (*AuthzMiddleware) MiddlewareFunc ¶

func (mw *AuthzMiddleware) MiddlewareFunc(h rest.HandlerFunc) rest.HandlerFunc

MiddlewareFunc makes AuthzMiddleware implement the Middleware interface.

type ResourceExtractor ¶

type ResourceExtractor func(r *rest.Request) (string, error)

ResourceExtractor extract resource IDs from requests.

Source Files ¶

View all Source files

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL