external

package

v1.1.6 Latest Latest Go to latest Published: Apr 5, 2016 License: Apache-2.0 Imports: 11 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/jimmidyson/origin

Documentation ¶

Overview ¶

Package external implements an OAuth flow with an external identity provider

Index ¶

type Handler
- func NewExternalOAuthRedirector(provider Provider, state State, redirectURL string, ...) (*Handler, error)
- func (h *Handler) AuthenticationRedirect(w http.ResponseWriter, req *http.Request) error
- func (h *Handler) ServeHTTP(w http.ResponseWriter, req *http.Request)
type Provider
type RedirectorState
- func CSRFRedirectingState(csrf csrf.CSRF) RedirectorState
type State

Constants ¶

This section is empty.

Variables ¶

This section is empty.

Functions ¶

This section is empty.

Types ¶

type Handler ¶

type Handler struct {
	// contains filtered or unexported fields
}

Handler exposes an external oauth provider flow (including the call back) as an oauth.handlers.AuthenticationHandler to allow our internal oauth server to use an external oauth provider for authentication

func NewExternalOAuthRedirector ¶ added in v0.2.1

func NewExternalOAuthRedirector(provider Provider, state State, redirectURL string, success handlers.AuthenticationSuccessHandler, errorHandler handlers.AuthenticationErrorHandler, mapper authapi.UserIdentityMapper) (*Handler, error)

func (*Handler) AuthenticationRedirect ¶ added in v0.2.1

func (h *Handler) AuthenticationRedirect(w http.ResponseWriter, req *http.Request) error

AuthenticationRedirect implements oauth.handlers.RedirectAuthHandler

func (*Handler) ServeHTTP ¶

func (h *Handler) ServeHTTP(w http.ResponseWriter, req *http.Request)

ServeHTTP handles the callback request in response to an external oauth flow

type Provider ¶

type Provider interface {
	// NewConfig returns a client information that allows a standard oauth client to communicate with external oauth
	NewConfig() (*osincli.ClientConfig, error)
	// GetTransport returns the transport to use for server-to-server calls. If nil is returned, http.DefaultTransport is used.
	GetTransport() (http.RoundTripper, error)
	// AddCustomParameters allows an external oauth provider to provide parameters that are extension to the spec.  Some providers require this.
	AddCustomParameters(*osincli.AuthorizeRequest)
	// GetUserIdentity takes the external oauth token information this and returns the user identity, isAuthenticated, and error
	GetUserIdentity(*osincli.AccessData) (authapi.UserIdentityInfo, bool, error)
}

Provider encapsulates the URLs, configuration, any custom authorize request parameters, and the method for transforming an access token into an identity, for an external OAuth provider.

type RedirectorState ¶ added in v0.4.4

type RedirectorState interface {
	State
	handlers.AuthenticationSuccessHandler
	handlers.AuthenticationErrorHandler
}

RedirectorState combines state generation/verification with redirections on authentication success and error

func CSRFRedirectingState ¶ added in v0.4.4

func CSRFRedirectingState(csrf csrf.CSRF) RedirectorState

type State ¶

type State interface {
	Generate(w http.ResponseWriter, req *http.Request) (string, error)
	Check(state string, req *http.Request) (bool, error)
}

State handles generating and verifying the state parameter round-tripped to an external OAuth flow. Examples: CSRF protection, post authentication redirection

Source Files ¶

View all Source files

Directories ¶

Path	Synopsis
github
gitlab
google
openid

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL