Affected by 
Documentation
¶
Index ¶
Constants ¶
This section is empty.
Variables ¶
View Source
var ( ErrUnauthenticated = status.Error(codes.Code(openfgav1.AuthErrorCode_unauthenticated), "unauthenticated") ErrMissingBearerToken = status.Error(codes.Code(openfgav1.AuthErrorCode_bearer_token_missing), "missing bearer token") )
Functions ¶
func ContextWithAuthClaims ¶
func ContextWithAuthClaims(parent context.Context, claims *AuthClaims) context.Context
ContextWithAuthClaims injects the provided AuthClaims into the parent context.
Types ¶
type AuthClaims ¶
AuthClaims contains claims that are included in OIDC standard claims. https://openid.net/specs/openid-connect-core-1_0.html#IDToken
func AuthClaimsFromContext ¶
func AuthClaimsFromContext(ctx context.Context) (*AuthClaims, bool)
AuthClaimsFromContext extracts the AuthClaims from the provided ctx (if any).
type Authenticator ¶
type Authenticator interface {
// Authenticate returns a nil error and the AuthClaims info (if available) if the subject is authenticated or a
// non-nil error with an appropriate error cause otherwise.
Authenticate(requestContext context.Context) (*AuthClaims, error)
// Close Cleans up the authenticator.
Close()
}
type NoopAuthenticator ¶
type NoopAuthenticator struct{}
func (NoopAuthenticator) Authenticate ¶
func (n NoopAuthenticator) Authenticate(requestContext context.Context) (*AuthClaims, error)
func (NoopAuthenticator) Close ¶
func (n NoopAuthenticator) Close()
type OIDCAuthenticator ¶
type OIDCAuthenticator interface {
GetConfiguration() (*OidcConfig, error)
GetKeys() (*keyfunc.JWKS, error)
}
type OidcConfig ¶
OidcConfig contains authorization server metadata. See https://datatracker.ietf.org/doc/html/rfc8414#section-2
Source Files
Directories
Click to show internal directories.
Click to hide internal directories.