auth

package

v0.1.0 Latest Latest Go to latest Published: Jun 16, 2026 License: MIT Imports: 14 Imported by: 0

Details

Valid go.mod file
Redistributable license
Tagged version
Stable version
Learn more about best practices

Repository

github.com/aristorinjuang/lesstruct

Links

Open Source Insights

Documentation ¶

Index ¶

Variables
func GeneratePassword(length int) (string, error)
func HashPassword(password string) (string, error)
func NeedsRehash(hashedPassword string) bool
func ValidateEmail(email string) error
func ValidatePassword(password string) error
func VerifyPassword(hashedPassword, password string) error
type Claims
type JWTManager
- func NewJWTManager(secretKey string) *JWTManager
- func (j *JWTManager) GenerateToken(userID, username, role string) (string, error)
- func (j *JWTManager) ValidateToken(tokenString string) (*Claims, error)

Constants ¶

This section is empty.

Variables ¶

View Source

var (
	ErrEmailInvalid = errors.New("please enter a valid email address")
)

View Source

var (
	ErrPasswordInvalid = errors.New("password must be at least 12 characters with mixed case, numbers, and special characters")
)

Functions ¶

func GeneratePassword ¶

func GeneratePassword(length int) (string, error)

GeneratePassword generates a cryptographically secure random password using crypto/rand. The length must be >= 12. If 0 is passed, defaults to 16.

func HashPassword ¶

func HashPassword(password string) (string, error)

HashPassword generates an Argon2id hash from a plain text password using PHC string format

func NeedsRehash ¶

func NeedsRehash(hashedPassword string) bool

NeedsRehash returns true if the hash uses an outdated algorithm or parameters and should be re-hashed with the current recommended settings.

func ValidateEmail ¶

func ValidateEmail(email string) error

ValidateEmail checks if an email address has a valid format Note: SQL injection is mitigated by using parameterized queries in the repository layer (#10)

func ValidatePassword ¶

func ValidatePassword(password string) error

ValidatePassword checks if a password meets security criteria

func VerifyPassword ¶

func VerifyPassword(hashedPassword, password string) error

VerifyPassword compares a plain text password with a stored hash. It supports both Argon2id (PHC format) and bcrypt hashes for backward compatibility.

Types ¶

type Claims ¶

type Claims struct {
	UserID   string `json:"user_id"`
	Username string `json:"username"`
	Role     string `json:"role"`
	jwt.RegisteredClaims
}

Claims represents JWT claims structure

type JWTManager ¶

type JWTManager struct {
	// contains filtered or unexported fields
}

JWTManager handles JWT token generation and validation

func NewJWTManager ¶

func NewJWTManager(secretKey string) *JWTManager

NewJWTManager creates a new JWT manager

func (*JWTManager) GenerateToken ¶

func (j *JWTManager) GenerateToken(userID, username, role string) (string, error)

GenerateToken creates a new JWT token for a user

func (*JWTManager) ValidateToken ¶

func (j *JWTManager) ValidateToken(tokenString string) (*Claims, error)

ValidateToken validates a JWT token and returns the claims

Source Files ¶

View all Source files

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL