identity

package
v0.0.0-...-b81969c Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Feb 18, 2026 License: GPL-3.0 Imports: 9 Imported by: 0

Documentation

Index

Constants

This section is empty.

Variables

View Source 
var (
	ErrUserNotFound        = errors.New("user not found")
	ErrGroupNotFound       = errors.New("group not found")
	ErrAuthNotFound        = errors.New("auth entry not found")
	ErrInvalidCredentials  = errors.New("invalid credentials")
	ErrAccountLocked       = errors.New("account is locked")
	ErrInvalidIdentityKind = errors.New("invalid identity kind")
	ErrNoAvailableID       = errors.New("no available id in range")
)

Common errors

Functions

func AddIdentity 

func AddIdentity(id Identity, kind string) error

AddIdentity register new identity into system config

func GetAuthType 

func GetAuthType(username string) (string, error)

GetAuthType returns the authentication type for a user

func GetNextAvailableId 

func GetNextAvailableId(kind string) (uint, error)

func HashPassword 

func HashPassword(password string) string

HashPassword creates a hash for a password

func IsAccountLocked 

func IsAccountLocked(username string) bool

IsAccountLocked checks if a user account is locked

func UpdatePassword 

func UpdatePassword(identity, oldpassword, newpassword string) error

UpdatePassword update the password

Types

type Auth 

type Auth struct {
	ID   uint   `json:"id"`
	Name string `json:"name"`
	Type string `json:"type"` // "password", "none", "locked"
	Hash string `json:"hash,omitempty"`
}

Auth represents authentication info from auth.conf

type AuthConfig 

type AuthConfig struct {
	Entries []Auth `json:"entries"`
}

AuthConfig holds all authentication entries

type Capability 

type Capability struct {
	ID   uint   `json:"id"`
	Name string `json:"name"`
}

Capability represents a Unix group mapping from capabilities.conf

func ListCapabilities 

func ListCapabilities() ([]*Capability, error)

ListCapabilities returns all capabilities in the system

func LookupCapabilityByID 

func LookupCapabilityByID(gid uint) (*Capability, error)

LookupCapabilityByID finds a capability by its numeric ID

func LookupCapabilityByName 

func LookupCapabilityByName(name string) (*Capability, error)

LookupCapabilityByName finds a capability by its name

type CapabilityConfig 

type CapabilityConfig struct {
	Capabilities []Capability `json:"capabilities"`
}

CapabilityConfig holds all capabilities (group mappings)

type Identity 

type Identity struct {
	ID           uint     `json:"id"`
	Name         string   `json:"name"`
	Capabilities []string `json:"capabilities"`
	Home         string   `json:"home,omitempty"`
	Shell        string   `json:"shell,omitempty"`
}

Identity represents a user account from identity.conf

func Authenticate 

func Authenticate(username, password string) (*Identity, error)

Authenticate verifies credentials and returns the identity

func AuthenticateByID 

func AuthenticateByID(uid uint, password string) (*Identity, error)

AuthenticateByID verifies credentials using user ID

func GetCapabilityMembers 

func GetCapabilityMembers(capName string) ([]*Identity, error)

GetCapabilityMembers returns all identities who have a capability

func ListIdentities 

func ListIdentities() ([]*Identity, error)

ListIdentities returns all identities in the system

func LookupByID 

func LookupByID(uid uint) (*Identity, error)

LookupByID finds an identity by their numeric ID

func LookupByName 

func LookupByName(name string) (*Identity, error)

LookupByName finds an identity by their username

func (*Identity) GetGroupIDs 

func (i *Identity) GetGroupIDs() []uint

GetGroupIDs returns all group IDs for the identity

func (*Identity) GetGroups 

func (i *Identity) GetGroups() ([]*Capability, error)

GetGroups returns all Unix groups for this identity

func (*Identity) HasCapability 

func (i *Identity) HasCapability(cap string) bool

HasCapability checks if an identity has a specific capability

func (*Identity) InGroup 

func (i *Identity) InGroup(groupName string) bool

InGroup checks if an identity is in a specific Unix group (via unix: capability)

type IdentityConfig 

type IdentityConfig struct {
	Identities []Identity `json:"identities"`
}

IdentityConfig holds all identities

func LoadIdentityConfig 

func LoadIdentityConfig() (*IdentityConfig, error)

LoadIdentityConfig reads and parses the identity config file

Source Files

View all Source files

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.