Documentation
¶
Index ¶
- func AgentJWTMiddleware(db *gorm.DB, publicKey *rsa.PublicKey) echo.MiddlewareFunc
- func AgentJWTOrPublicMiddleware(db *gorm.DB, publicKey *rsa.PublicKey, allowPublic bool) echo.MiddlewareFunc
- func JWTMiddleware(publicKey *rsa.PublicKey) echo.MiddlewareFunc
- func OptionalUserOrAgentJWTMiddleware(db *gorm.DB, publicKey *rsa.PublicKey, allowPublic bool) echo.MiddlewareFunc
- func RequireAdminGroups(db *gorm.DB, cfg *config.Config, logger *zap.SugaredLogger) echo.MiddlewareFunc
- type AgentAuthContext
- type Validator
Constants ¶
This section is empty.
Variables ¶
This section is empty.
Functions ¶
func AgentJWTMiddleware ¶ added in v0.13.0
func JWTMiddleware ¶
func JWTMiddleware(publicKey *rsa.PublicKey) echo.MiddlewareFunc
JWTMiddleware returns an Echo middleware function that verifies JWT tokens using the provided RSA public key.
func OptionalUserOrAgentJWTMiddleware ¶
func OptionalUserOrAgentJWTMiddleware(db *gorm.DB, publicKey *rsa.PublicKey, allowPublic bool) echo.MiddlewareFunc
OptionalUserOrAgentJWTMiddleware accepts authenticated user JWTs, authenticated agent JWTs, or unauthenticated public requests when allowPublic is true.
func RequireAdminGroups ¶ added in v0.5.0
func RequireAdminGroups(db *gorm.DB, cfg *config.Config, logger *zap.SugaredLogger) echo.MiddlewareFunc
RequireAdminGroups enforces that SSO-authenticated users belong to the provider's configured admin groups. Password-based logins bypass this middleware (treated as super admins).
Types ¶
type AgentAuthContext ¶
type AgentAuthContext struct {
Claims *authn.AgentClaims
Agent *relational.Agent
Key *relational.AgentServiceAccountKey
}
Source Files
Click to show internal directories.
Click to hide internal directories.