authprovider

package

v0.8.5 Latest Latest Go to latest Published: May 8, 2026 License: MIT Imports: 6 Imported by: 0

Details

Valid go.mod file
Redistributable license
Tagged version
Stable version
Learn more about best practices

Repository

github.com/open-rails/authkit

Links

Open Source Insights

Documentation ¶

Index ¶

func BuiltIns() map[string]Provider
func MapFallbackEmail(root any, fallback FallbackLookup) (string, bool)
type AppleJWTSecret
type ClientSecret
- func (s ClientSecret) ResolveStatic() (string, error)
type FallbackLookup
type FieldMapping
type Identity
- func MapIdentity(root any, mapping UserMapping) (Identity, error)
type Kind
type Provider
- func BuiltIn(name string) (Provider, bool)
- func Clone(in Provider) Provider
- func (p Provider) NormalizedName() string
type UserMapping

Constants ¶

This section is empty.

Variables ¶

This section is empty.

Functions ¶

func BuiltIns ¶

func BuiltIns() map[string]Provider

func MapFallbackEmail ¶

func MapFallbackEmail(root any, fallback FallbackLookup) (string, bool)

Types ¶

type AppleJWTSecret ¶

type AppleJWTSecret struct {
	TeamID        string
	KeyID         string
	PrivateKeyPEM []byte
	PrivateKeyEnv string
	TTL           time.Duration
}

type ClientSecret ¶

type ClientSecret struct {
	Value    string
	Env      string
	Strategy string
	AppleJWT *AppleJWTSecret
}

func (ClientSecret) ResolveStatic ¶

func (s ClientSecret) ResolveStatic() (string, error)

type FallbackLookup ¶

type FallbackLookup struct {
	URL    string
	Accept string
	Array  bool
	Select map[string]any

	Email         FieldMapping
	EmailVerified FieldMapping
}

type FieldMapping ¶

type FieldMapping struct {
	Path       string
	Value      any
	Transforms []string
}

type Identity ¶

type Identity struct {
	Subject           string
	Email             string
	EmailVerified     bool
	PreferredUsername string
	DisplayName       string
}

func MapIdentity ¶

func MapIdentity(root any, mapping UserMapping) (Identity, error)

type Kind ¶

type Kind string

const (
	KindOIDC   Kind = "oidc"
	KindOAuth2 Kind = "oauth2"
)

type Provider ¶

type Provider struct {
	Name            string
	Kind            Kind
	Issuer          string
	ClientID        string
	ClientSecret    ClientSecret
	Scopes          []string
	PKCE            bool
	AuthorizeURL    string
	TokenURL        string
	UserInfoURL     string
	UserInfoAccept  string
	ExtraAuthParams map[string]string
	UserMapping     UserMapping
	EmailFallback   *FallbackLookup

	// IdentityMapper is an internal escape hatch for providers whose userinfo
	// response cannot be represented by declarative mappings.
	IdentityMapper func(any) (Identity, error)

	// SecretProvider is the internal escape hatch for callers that already
	// construct dynamic secrets in code. Config-first providers should prefer
	// ClientSecret strategies.
	SecretProvider func(context.Context) (string, error)
}

func BuiltIn ¶

func BuiltIn(name string) (Provider, bool)

func Clone ¶

func Clone(in Provider) Provider

func (Provider) NormalizedName ¶

func (p Provider) NormalizedName() string

type UserMapping ¶

type UserMapping struct {
	Subject           FieldMapping
	Email             FieldMapping
	EmailVerified     FieldMapping
	PreferredUsername FieldMapping
	DisplayName       FieldMapping
}

Source Files ¶

View all Source files

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL