jwtauth

package module

v1.0.1 Latest Latest Go to latest Published: Mar 31, 2023 License: MIT Imports: 7 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/aria3ppp/jwtauth

Links

Open Source Insights

README ¶

jwtauth

jwtauth handle multiple keys for jwt token signing and verification. It also support key deprecation and backward compatibility for verifying old tokens. Tokens are signed by choosing a random key that is not marked as deprecated. Deprecated keys can only verify old tokens and not sign new ones.

Documentation ¶

Index ¶

Variables
type Auth
- func New[CustomClaims any](expireSeconds int, keys ...*Key) *Auth[CustomClaims]
- func NewWithClock[CustomClaims any](clock Clock, expireSeconds int, keys ...*Key) *Auth[CustomClaims]
- func (auth *Auth[CustomClaims]) GenerateToken(customClaims *CustomClaims) (token string, expiresAt time.Time, err error)
- func (auth *Auth[CustomClaims]) ParseToken(tokenString string) (*CustomClaims, error)
type Clock
type Key
- func (key *Key) Deprecated() *Key
type TimeClock
- func (t TimeClock) Now() time.Time

Constants ¶

This section is empty.

Variables ¶

View Source

var (
	ErrInvalidKid = errors.New("invalid kid")
	ErrUnsetKid   = errors.New("unset kid")
)

Functions ¶

This section is empty.

Types ¶

type Auth ¶

type Auth[CustomClaims any] struct {
	// contains filtered or unexported fields
}

func New ¶

func New[CustomClaims any](
	expireSeconds int,
	keys ...*Key,
) *Auth[CustomClaims]

func NewWithClock ¶

func NewWithClock[CustomClaims any](
	clock Clock,
	expireSeconds int,
	keys ...*Key,
) *Auth[CustomClaims]

func (*Auth[CustomClaims]) GenerateToken ¶

func (auth *Auth[CustomClaims]) GenerateToken(
	customClaims *CustomClaims,
) (token string, expiresAt time.Time, err error)

func (*Auth[CustomClaims]) ParseToken ¶

func (auth *Auth[CustomClaims]) ParseToken(
	tokenString string,
) (*CustomClaims, error)

type Clock ¶

type Clock interface {
	Now() time.Time
}

type Key ¶

type Key struct {
	Kid           string            // jwt 'kid' header value to identify the correct key for verifying
	SigningKey    any               // key used for signing: symmetric methods have the same signing and verifying key
	VerifyingKey  any               // key used for verifying: symmetric methods have the same signing and verifying key
	SigningMethod jwt.SigningMethod // key signing method
	// contains filtered or unexported fields
}

func NewECDSAKey ¶

func NewECDSAKey(
	kid string,
	key *ecdsa.PrivateKey,
	signingMethod *jwt.SigningMethodECDSA,
) *Key

func NewHMACKey ¶

func NewHMACKey(
	kid string,
	key []byte,
	signingMethod *jwt.SigningMethodHMAC,
) *Key

func NewRSAKey ¶

func NewRSAKey(
	kid string,
	key *rsa.PrivateKey,
	signingMethod *jwt.SigningMethodRSA,
) *Key

func (*Key) Deprecated ¶

func (key *Key) Deprecated() *Key

Mark the key as deprecated. Deprecated keys are used only for verifying and not signing.

type TimeClock ¶

type TimeClock struct{}

func (TimeClock) Now ¶

func (t TimeClock) Now() time.Time

Source Files ¶

View all Source files

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL