auth

package

v0.0.0-...-b0d25e1 Latest Latest Go to latest Published: Oct 30, 2023 License: Apache-2.0 Imports: 4 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/aakso/ssh-inscribe

Links

Open Source Insights

Documentation ¶

Index ¶

Constants
func MakeCertificates(key ssh.PublicKey, actx *AuthContext, validBefore time.Time, ...) []*ssh.Certificate
type AuthContext
type Authenticator
type Authorizer
type Credentials
type FederatedAuthenticator

Constants ¶

View Source

const (
	CredentialUserPassword = "user_password"
	CredentialPin          = "pin"
	CredentialFederated    = "federated"

	MetaAuditID           = "audit_id"
	MetaFederationAuthURL = "federation_auth_url"
)

View Source

const (
	StatusPending int = iota
	StatusCompleted
)

Variables ¶

This section is empty.

Functions ¶

func MakeCertificates ¶

func MakeCertificates(key ssh.PublicKey, actx *AuthContext, validBefore time.Time, maxPrincipalsPerCert int) []*ssh.Certificate

Types ¶

type AuthContext ¶

type AuthContext struct {
	Parent           *AuthContext
	Status           int
	SubjectName      string
	Principals       []string
	RemovePrincipals []string
	CriticalOptions  map[string]string
	Extensions       map[string]string
	Authenticator    string
	Authorizer       string
	AuthMeta         map[string]interface{}
}

func (*AuthContext) GetAuthMeta ¶

func (ac *AuthContext) GetAuthMeta() map[string]interface{}

func (*AuthContext) GetAuthenticators ¶

func (ac *AuthContext) GetAuthenticators() []string

func (*AuthContext) GetAuthorizers ¶

func (ac *AuthContext) GetAuthorizers() []string

func (*AuthContext) GetCriticalOptions ¶

func (ac *AuthContext) GetCriticalOptions() map[string]string

func (*AuthContext) GetExtensions ¶

func (ac *AuthContext) GetExtensions() map[string]string

func (*AuthContext) GetMetaString ¶

func (ac *AuthContext) GetMetaString(k string) string

func (*AuthContext) GetParent ¶

func (ac *AuthContext) GetParent() *AuthContext

func (*AuthContext) GetPrincipals ¶

func (ac *AuthContext) GetPrincipals() []string

func (*AuthContext) GetSubjectName ¶

func (ac *AuthContext) GetSubjectName() string

func (*AuthContext) IsValid ¶

func (ac *AuthContext) IsValid() bool

Verify the whole auth context chain

func (*AuthContext) Len ¶

func (ac *AuthContext) Len() int

The length of the auth context chain

type Authenticator ¶

type Authenticator interface {
	Authenticate(parentctx *AuthContext, creds *Credentials) (newctx *AuthContext, success bool)
	Type() string
	Name() string
	Realm() string
	CredentialType() string
}

type Authorizer ¶

type Authorizer interface {
	Authorize(parentctx *AuthContext) (newctx *AuthContext, success bool)
	Name() string
	Description() string
}

type Credentials ¶

type Credentials struct {
	UserIdentifier string `json:"userIdentifier"`
	Secret         []byte
	Meta           map[string]interface{}
}

type FederatedAuthenticator ¶

type FederatedAuthenticator interface {
	Authenticator
	FederationCallback(data interface{}) error
}

For OAuth2 type authenticators

Source Files ¶

View all Source files

Directories ¶

Path	Synopsis
authz
authzfilter
backend
all
authfile
authldap
authmock
authoidc

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL