permissionsql

package module

v2.1.1 Latest Latest Go to latest Published: Jun 25, 2023 License: BSD-3-Clause Imports: 13 Imported by: 1

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/xyproto/permissionsql

Links

Open Source Insights

Documentation ¶

Overview ¶

Package permissionsql provides a way to keeping track of users, login states and permissions.

Index ¶

Constants
Variables
func PermissionDenied(w http.ResponseWriter, req *http.Request)
func ValidUsernamePassword(username, password string) error
type Permissions
type UserState

Constants ¶

View Source

const (
	// Version number. Stable API within major version numbers.
	Version = 2.1
)

Variables ¶

View Source

var (
	ErrCookieGetUsername        = errors.New("Could not retrieve the username from browser cookie")
	ErrCookieEmptyUsername      = errors.New("Can't set cookie for empty username")
	ErrCookieUserMissing        = errors.New("Can't store cookie for non-existsing user")
	ErrOutOfConfirmationCodes   = errors.New("Too many generated confirmation codes are not unique")
	ErrAllUsersConfirmedAlready = errors.New("All existing users are already confirmed")
	ErrConfirmationCodeExpired  = errors.New("The confirmation code is no longer valid")
	ErrMissingUserAtConfirm     = errors.New("The user that is to be confirmed no longer exists")
	ErrInvalidCharacters        = errors.New("Only letters, numbers and underscore are allowed in usernames")
	ErrUsernameAsPassword       = errors.New("Username and password must be different, try another password")
)

Functions ¶

func PermissionDenied ¶

func PermissionDenied(w http.ResponseWriter, req *http.Request)

The default "permission denied" http handler.

func ValidUsernamePassword ¶

func ValidUsernamePassword(username, password string) error

Check that the given username and password are different. Also check if the chosen username only contains letters, numbers and/or underscore. Use the "CorrectPassword" function for checking if the password is correct.

Types ¶

type Permissions ¶

type Permissions struct {
	// contains filtered or unexported fields
}

The structure that keeps track of the permissions for various path prefixes

func New ¶

func New() (*Permissions, error)

Initialize a Permissions struct with all the default settings. This will also connect to the database host at port 3306.

func NewPermissions ¶

func NewPermissions(state *UserState) *Permissions

Initialize a Permissions struct with the given UserState and a few default paths for admin/user/public path prefixes.

func NewWithConf ¶

func NewWithConf(connectionString string) (*Permissions, error)

Initialize a Permissions struct with a database connection string

func NewWithDSN ¶

func NewWithDSN(connectionString string, database_name string) (*Permissions, error)

Initialize a Permissions struct with a dsn

func (*Permissions) AddAdminPath ¶

func (perm *Permissions) AddAdminPath(prefix string)

Add an url path prefix that is a page for the logged in administrators

func (*Permissions) AddPublicPath ¶

func (perm *Permissions) AddPublicPath(prefix string)

Add an url path prefix that is a public page

func (*Permissions) AddUserPath ¶

func (perm *Permissions) AddUserPath(prefix string)

Add an url path prefix that is a page for the logged in users

func (*Permissions) Clear ¶

func (perm *Permissions) Clear()

Set everything to public

func (*Permissions) DenyFunction ¶

func (perm *Permissions) DenyFunction() http.HandlerFunc

Get the current http.HandlerFunc for when permissions are denied

func (*Permissions) Rejected ¶

func (perm *Permissions) Rejected(w http.ResponseWriter, req *http.Request) bool

Check if a given request should be rejected.

func (*Permissions) ServeHTTP ¶

func (perm *Permissions) ServeHTTP(w http.ResponseWriter, req *http.Request, next http.HandlerFunc)

Middleware handler (compatible with Negroni)

func (*Permissions) SetAdminPath ¶

func (perm *Permissions) SetAdminPath(pathPrefixes []string)

Set all url path prefixes that are for the logged in administrator pages

func (*Permissions) SetDenyFunction ¶

func (perm *Permissions) SetDenyFunction(f http.HandlerFunc)

Specify the http.HandlerFunc for when the permissions are denied

func (*Permissions) SetPublicPath ¶

func (perm *Permissions) SetPublicPath(pathPrefixes []string)

Set all url path prefixes that are for the public pages

func (*Permissions) SetUserPath ¶

func (perm *Permissions) SetUserPath(pathPrefixes []string)

Set all url path prefixes that are for the logged in user pages

func (*Permissions) UserState ¶

func (perm *Permissions) UserState() pinterface.IUserState

Retrieve the UserState struct

type UserState ¶

type UserState struct {
	// contains filtered or unexported fields
}

func NewUserState ¶

func NewUserState(connectionString string, randomseed bool) (*UserState, error)

Create a new *UserState that can be used for managing users. connectionString may be on the form "username:password@host:port/database". If randomseed is true, the random number generator will be seeded after generating the cookie secret (true is a good default value).

func NewUserStateSimple ¶

func NewUserStateSimple() (*UserState, error)

Create a new *UserState that can be used for managing users. The random number generator will be seeded after generating the cookie secret. A Host* for the local MariaDB/MySQL server will be created.

func NewUserStateWithDSN ¶

func NewUserStateWithDSN(connectionString string, database_name string, randomseed bool) (*UserState, error)

Create a new *UserState that can be used for managing users. connectionString may be on the form "username:password@host:port/database". If randomseed is true, the random number generator will be seeded after generating the cookie secret (true is a good default value).

func (*UserState) AddUnconfirmed ¶

func (state *UserState) AddUnconfirmed(username, confirmationCode string)

Add a user that is registered but not confirmed.

func (*UserState) AddUser ¶

func (state *UserState) AddUser(username, password, email string)

Creates a user and hashes the password, does not check for rights. The given data must be valid.

func (*UserState) AdminRights ¶

func (state *UserState) AdminRights(req *http.Request) bool

Check if the current user is logged in and has administrator rights.

func (*UserState) AllUnconfirmedUsernames ¶

func (state *UserState) AllUnconfirmedUsernames() ([]string, error)

Get all registered users that are not yet confirmed.

func (*UserState) AllUsernames ¶

func (state *UserState) AllUsernames() ([]string, error)

Get a list of all usernames.

func (*UserState) AlreadyHasConfirmationCode ¶

func (state *UserState) AlreadyHasConfirmationCode(confirmationCode string) bool

Goes through all the confirmationCodes of all the unconfirmed users and checks if this confirmationCode already is in use.

func (*UserState) BooleanField ¶

func (state *UserState) BooleanField(username, fieldname string) bool

Return the boolean value for a given username and fieldname. If the user or field is missing, false will be returned. Useful for states where it makes sense that the returned value is not true unless everything is in order.

func (*UserState) ClearCookie ¶

func (state *UserState) ClearCookie(w http.ResponseWriter)

Try to clear the user cookie by setting it to expired. Some browsers *may* be configured to keep cookies even after this.

func (*UserState) Close ¶

func (state *UserState) Close()

Close the connection to the database host

func (*UserState) Confirm ¶

func (state *UserState) Confirm(username string)

Remove the username from the list of unconfirmed users and mark the user as confirmed.

func (*UserState) ConfirmUserByConfirmationCode ¶

func (state *UserState) ConfirmUserByConfirmationCode(confirmationcode string) error

Take a confirmation code and mark the corresponding unconfirmed user as confirmed.

func (*UserState) ConfirmationCode ¶

func (state *UserState) ConfirmationCode(username string) (string, error)

Get the confirmation code for a specific user.

func (*UserState) CookieSecret ¶

func (state *UserState) CookieSecret() string

CookieSecret returns the current cookie secret

func (*UserState) CookieTimeout ¶

func (state *UserState) CookieTimeout(username string) int64

Get how long a login cookie should last, in seconds.

func (*UserState) CorrectPassword ¶

func (state *UserState) CorrectPassword(username, password string) bool

Check if a password is correct. username is needed because it is part of the hash.

func (*UserState) Creator ¶

func (state *UserState) Creator() pinterface.ICreator

Return a struct for creating datastructures

func (*UserState) Email ¶

func (state *UserState) Email(username string) (string, error)

Get the email for the given username.

func (*UserState) FindUserByConfirmationCode ¶

func (state *UserState) FindUserByConfirmationCode(confirmationcode string) (string, error)

Given a unique confirmation code, find the corresponding username.

func (*UserState) GenerateUniqueConfirmationCode ¶

func (state *UserState) GenerateUniqueConfirmationCode() (string, error)

Generate a unique confirmation code that can be used for confirming users.

func (*UserState) HasUser ¶

func (state *UserState) HasUser(username string) bool

Check if the given username exists.

func (*UserState) HashPassword ¶

func (state *UserState) HashPassword(username, password string) string

Hash the password (takes a username as well, it can be used for salting).

func (*UserState) Host ¶

func (state *UserState) Host() pinterface.IHost

Get the database host

func (*UserState) IsAdmin ¶

func (state *UserState) IsAdmin(username string) bool

Check if the given username is an administrator.

func (*UserState) IsConfirmed ¶

func (state *UserState) IsConfirmed(username string) bool

Check if the given username is confirmed.

func (*UserState) IsLoggedIn ¶

func (state *UserState) IsLoggedIn(username string) bool

Checks if the given username is logged in.

func (state *UserState) Login(w http.ResponseWriter, username string) error

Convenience function for logging a user in and storing the username in a cookie. Returns an error if the cookie could not be set.

func (*UserState) Logout ¶

func (state *UserState) Logout(username string)

Convenience function for logging a user out.

func (*UserState) MarkConfirmed ¶

func (state *UserState) MarkConfirmed(username string)

Mark a user as confirmed.

func (*UserState) PasswordAlgo ¶

func (state *UserState) PasswordAlgo() string

PasswordAlgo returns the current password hashing algorithm.

func (*UserState) PasswordHash ¶

func (state *UserState) PasswordHash(username string) (string, error)

Get the password hash for the given username.

func (*UserState) RemoveAdminStatus ¶

func (state *UserState) RemoveAdminStatus(username string)

Mark user as a regular user.

func (*UserState) RemoveUnconfirmed ¶

func (state *UserState) RemoveUnconfirmed(username string)

Remove a user that is registered but not confirmed.

func (*UserState) RemoveUser ¶

func (state *UserState) RemoveUser(username string)

Remove user and login status.

func (*UserState) SetAdminStatus ¶

func (state *UserState) SetAdminStatus(username string)

Mark user as an administrator.

func (*UserState) SetBooleanField ¶

func (state *UserState) SetBooleanField(username, fieldname string, val bool)

Store a boolean value for the given username and custom fieldname.

func (*UserState) SetCookieSecret ¶

func (state *UserState) SetCookieSecret(cookieSecret string)

SetCookieSecret sets the current cookie secret

func (*UserState) SetCookieTimeout ¶

func (state *UserState) SetCookieTimeout(cookieTime int64)

Set how long a login cookie should last, in seconds.

func (*UserState) SetLoggedIn ¶

func (state *UserState) SetLoggedIn(username string)

Mark the user as logged in. Use the Login function instead, unless cookies are not involved.

func (*UserState) SetLoggedOut ¶

func (state *UserState) SetLoggedOut(username string)

Mark the user as logged out.

func (*UserState) SetMinimumConfirmationCodeLength ¶

func (state *UserState) SetMinimumConfirmationCodeLength(length int)

Set the minimum length of the user confirmation code. The default is 20.

func (*UserState) SetPassword ¶

func (state *UserState) SetPassword(username, password string)

SetPassword sets/changes the password for a user. Does not take a password hash, will hash the password string.

func (*UserState) SetPasswordAlgo ¶

func (state *UserState) SetPasswordAlgo(algorithm string) error

Set the password hashing algorithm that should be used. The default is "bcrypt+". Possible values are:

bcrypt  -> Store and check passwords with the bcrypt hash.
sha256  -> Store and check passwords with the sha256 hash.
bcrypt+ -> Store passwords with bcrypt, but check with both
           bcrypt and sha256, for backwards compatibility
           with old passwords that has been stored as sha256.

func (*UserState) SetUsernameCookie ¶

func (state *UserState) SetUsernameCookie(w http.ResponseWriter, username string) error

Store the given username in a cookie in the browser, if possible. The user must exist.

func (*UserState) UserRights ¶

func (state *UserState) UserRights(req *http.Request) bool

Check if the current user is logged in and has user rights.

func (*UserState) Username ¶

func (state *UserState) Username(req *http.Request) string

Convenience function that will return a username (from the browser cookie) or an empty string.

func (*UserState) UsernameCookie ¶

func (state *UserState) UsernameCookie(req *http.Request) (string, error)

Retrieve the username that is stored in a cookie in the browser, if available.

func (*UserState) Users ¶

func (state *UserState) Users() pinterface.IHashMap

Get the users HashMap.

Source Files ¶

View all Source files

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL