README
¶
simpauth
Go HTTP user authentication library with cookie-based session storage.
Features
- Simple API with minimal configuration
- Cookie-based session with HttpOnly (serialized with msgp for compact size)
- Multiple token sources: Header, Cookie, URL param
- Auto refresh when nearing expiration
- Context integration for user propagation
- Works with standard
net/httpand Fiber
Install
go get github.com/liut/simpauth
Usage
import auth "github.com/liut/simpauth"
// Create authorizer
authorizer := auth.New(
auth.WithCookie("_user", "/", "example.net"), // cookie name, path, domain
auth.WithMaxAge(3600), // max age in seconds
auth.WithRefresh(), // auto refresh
)
// Login
func login(w http.ResponseWriter, r *http.Request) {
user := &auth.User{
UID: "user123",
Name: "John",
}
user.Refresh()
authorizer.Signin(user, w)
}
// Protected handler
func welcome(w http.ResponseWriter, r *http.Request) {
user, ok := auth.UserFromContext(r.Context())
if !ok {
http.Error(w, "Unauthorized", 401)
return
}
fmt.Fprintf(w, "Welcome, %s", user.Name)
}
// Apply middleware
handler := authorizer.Middleware()(http.HandlerFunc(welcome))
Token Sources
Checked in order:
Authorization: Bearer <token>header- Cookie
- URL parameter
?token=<token>
Options
WithCookie(name, path, domain)- Configure cookieWithMaxAge(seconds)- Session lifetime, default 3600sWithRefresh()- Auto refresh when nearing expirationWithURI(redirectURL)- Redirect URL when unauthorized
Sign Out
authorizer.Signout(w)
Convert Custom User Types
Implement IUser interface and use ToUser():
type IUser interface {
GetOID() string
GetUID() string
GetName() string
GetAvatar() string
}
authUser := auth.ToUser(myUser)
Documentation
¶
Index ¶
- Constants
- Variables
- func ContextWithUser(ctx context.Context, user IUser) context.Context
- func Middleware(opts ...OptFunc) func(next http.Handler) http.Handler
- func Signin(user Encoder, w http.ResponseWriter) error
- func Signout(w http.ResponseWriter)
- func TokenFrom(args ...any) string
- func WithRedirect(uri string) func(next http.Handler) http.Handler
- type Authorizer
- type Cookier
- type Encoder
- type FormValuer
- type Getter
- type IUser
- type Names
- type OptFunc
- type User
- func (u *User) Decode(s string) (err error)
- func (u User) Encode() (s string, err error)
- func (u User) GetAvatar() string
- func (u User) GetName() string
- func (u User) GetOID() string
- func (u User) GetUID() string
- func (u *User) IsExpired() bool
- func (u *User) IsExpiredWith(lifetime int64) bool
- func (z *User) MarshalMsg(b []byte) (o []byte, err error)
- func (z *User) Msgsize() (s int)
- func (u *User) NeedRefresh() bool
- func (u *User) NeedRefreshWith(lifetime int64) bool
- func (u *User) Refresh()
- func (user *User) Signin(w http.ResponseWriter) error
- func (z *User) UnmarshalMsg(bts []byte) (o []byte, err error)
Constants ¶
View Source
const (
UserKey ctxKey = iota
)
consts
Variables ¶
View Source
var ( DefaultLifetime int64 = 3600 Guest = &User{} )
vars
View Source
var (
ErrNoTokenInRequest = errors.New("no token present in request")
)
vars
Functions ¶
func ContextWithUser ¶ added in v0.1.1
ContextWithUser ...
func Middleware ¶ added in v0.1.0
Middleware ...
func Signin ¶
func Signin(user Encoder, w http.ResponseWriter) error
Signin write user encoded string into cookie, Deprecated
Types ¶
type Authorizer ¶ added in v0.1.4
type Authorizer interface {
Middleware() func(next http.Handler) http.Handler
MiddlewareWordy(redir bool) func(next http.Handler) http.Handler
UserFromRequest(r *http.Request) (user *User, err error)
TokenFromRequest(r *http.Request) (s string, err error)
TokenFrom(args ...any) string
Cooking(value string) *http.Cookie
Signin(user Encoder, w http.ResponseWriter) error
Signout(w http.ResponseWriter)
With(opts ...OptFunc)
}
Authorizer ...
func NewOption ¶ added in v0.1.1
func NewOption(opts ...OptFunc) Authorizer
NewOption ..., Deprecated: use New()
type FormValuer ¶ added in v0.1.3
FormValuer ex: http.Request
type IUser ¶ added in v0.1.16
type IUser interface {
GetOID() string
GetUID() string // uid
GetName() string // nickname
GetAvatar() string
}
IUser ...
type Names ¶
type Names []string
Names ...
func (Names) MarshalMsg ¶
MarshalMsg implements msgp.Marshaler
type OptFunc ¶ added in v0.1.0
type OptFunc func(opt *option)
OptFunc ...
func WithCookie ¶ added in v0.1.4
WithCookie set cookie 1-3 options: name, path, domain, see also http.Cookie
func WithHeader ¶ added in v0.1.17
func WithMaxAge ¶ added in v0.1.4
WithMaxAge set cookie max age: >= 0, default 3600, see also http.Cookie
func WithRefresh ¶ added in v0.1.0
func WithRefresh() OptFunc
WithRefresh The option with auto refresh
type User ¶
type User struct {
OID string `json:"oid,omitzero" msg:"i"` // pk id, objectID, see define in andvari
UID string `json:"uid" msg:"u"` // username, login name
Name string `json:"name" msg:"n"` // nickname, realname, display name
Avatar string `json:"avatar,omitzero" msg:"a"`
LastHit int64 `json:"hit,omitzero" msg:"h"`
TeamID int64 `json:"tid,omitzero" msg:"t"`
Roles Names `json:"roles,omitzero" msg:"r"`
Watchings Names `json:"watching,omitzero" msg:"w"`
}
User 在线用户
func UserFromRequest ¶
UserFromRequest get user from cookie, Deprecated
func (*User) IsExpiredWith ¶ added in v0.1.16
IsExpiredWith checks if the user is expired with given lifetime in seconds.
func (*User) MarshalMsg ¶
MarshalMsg implements msgp.Marshaler
func (*User) Msgsize ¶
Msgsize returns an upper bound estimate of the number of bytes occupied by the serialized message
func (*User) NeedRefresh ¶
NeedRefresh checks if the user needs refresh.
func (*User) NeedRefreshWith ¶ added in v0.1.16
NeedRefreshWith checks if the user needs refresh with given lifetime in seconds.
Source Files
Click to show internal directories.
Click to hide internal directories.