Documentation
¶
Index ¶
- Constants
- func RequireAuth(next http.Handler) http.Handler
- type AuthContext
- type AuthHandler
- type AuthHandlerInterface
- type AuthMiddleware
- type AuthResponse
- type AuthorizeRequest
- type CallbackRequest
- type Claims
- type ClientType
- type JWTService
- type OIDCProvider
- type OIDCServiceProvider
- type TokenResponse
Constants ¶
View Source
const (
AuthContextKey contextKey = "auth_context"
)
Variables ¶
This section is empty.
Functions ¶
Types ¶
type AuthContext ¶
type AuthContext struct {
SessionState *session.State
ClientType ClientType
IsValid bool
}
func GetAuthContext ¶
func GetAuthContext(ctx context.Context) *AuthContext
type AuthHandler ¶
type AuthHandler struct {
// contains filtered or unexported fields
}
func NewAuthHandler ¶
func NewAuthHandler(oidc OIDCProvider, jwtService *JWTService, cookieSigningKey, cookieEncryptionKey []byte) *AuthHandler
func (*AuthHandler) HandleAuthorize ¶
func (ah *AuthHandler) HandleAuthorize(w http.ResponseWriter, r *http.Request)
func (*AuthHandler) HandleCallback ¶
func (ah *AuthHandler) HandleCallback(w http.ResponseWriter, r *http.Request)
type AuthHandlerInterface ¶
type AuthHandlerInterface interface {
HandleAuthorize(w http.ResponseWriter, r *http.Request)
HandleCallback(w http.ResponseWriter, r *http.Request)
}
type AuthMiddleware ¶
type AuthMiddleware struct {
// contains filtered or unexported fields
}
func NewAuthMiddleware ¶
func NewAuthMiddleware(jwtService *JWTService, cookieSigningKey, cookieEncryptionKey []byte) *AuthMiddleware
func (*AuthMiddleware) AuthenticateRequest ¶
func (am *AuthMiddleware) AuthenticateRequest(next http.Handler) http.Handler
type AuthResponse ¶
type AuthorizeRequest ¶
type AuthorizeRequest struct {
RedirectURL string `json:"redirect_url" form:"redirect_url"`
ClientSideRedirectURL string `json:"client_side_redirect_url" form:"client_side_redirect_url"`
SessionID string `json:"session_id" form:"session_id"`
ClusterID string `json:"cluster_id" form:"cluster_id"`
ClientType ClientType `json:"client_type" form:"client_type"`
}
type CallbackRequest ¶
type ClientType ¶
type ClientType string
const ( ClientTypeUI ClientType = "ui" ClientTypeCLI ClientType = "cli" )
type JWTService ¶
type JWTService struct {
// contains filtered or unexported fields
}
func NewJWTService ¶
func NewJWTService(issuer string) (*JWTService, error)
func (*JWTService) GenerateToken ¶
func (*JWTService) GetPublicKey ¶
func (js *JWTService) GetPublicKey() *rsa.PublicKey
func (*JWTService) ValidateToken ¶
func (js *JWTService) ValidateToken(tokenString string) (*Claims, error)
type OIDCProvider ¶
type OIDCProvider interface {
GetOIDCProvider(ctx context.Context) (*OIDCServiceProvider, error)
}
type OIDCServiceProvider ¶
type OIDCServiceProvider struct {
// contains filtered or unexported fields
}
func NewOIDCServiceProvider ¶
func NewOIDCServiceProvider(ctx context.Context, clientID, clientSecret, redirectURI, issuerURL string) (*OIDCServiceProvider, error)
func (*OIDCServiceProvider) GetTLSConfig ¶
func (o *OIDCServiceProvider) GetTLSConfig() *tls.Config
func (*OIDCServiceProvider) OIDCProviderConfig ¶
func (o *OIDCServiceProvider) OIDCProviderConfig(scopes []string) *oauth2.Config
type TokenResponse ¶
type TokenResponse struct {
AccessToken string `json:"access_token"`
TokenType string `json:"token_type"`
ExpiresIn int64 `json:"expires_in"`
ExpiresAt time.Time `json:"expires_at"`
Scope string `json:"scope,omitempty"`
RefreshToken string `json:"refresh_token,omitempty"`
ClusterID string `json:"cluster_id,omitempty"`
}
Source Files
Click to show internal directories.
Click to hide internal directories.