sso

package module

v0.7.0 Latest Latest Go to latest Published: Oct 10, 2023 License: BSD-3-Clause Imports: 19 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/sbinet/cern-sso

Links

Open Source Insights

README ¶

cern-sso

cern-sso provides tools to authenticate with CERN's Single Sign-On (SSO) machinery.

License

cern-sso is released under the BSD-3 license.

Documentation ¶

Index ¶

Constants
type Client
- func Login(url string, opts ...Option) (*Client, error)
- func NewClient(login string, opts ...Option) (*Client, error)
type Option

Examples ¶

Login

Constants ¶

View Source

const (
	DefaultAuthServer = "auth.cern.ch" // Default authentication server name.
)

Variables ¶

This section is empty.

Functions ¶

This section is empty.

Types ¶

type Client ¶

type Client struct {
	// contains filtered or unexported fields
}

Client is a Single Sign-On client.

func Login(url string, opts ...Option) (*Client, error)

Login simulates a browser session to log in with the provided URL, using the SPNEGO protocol.

Example ¶

package main

import (
	"fmt"
	"log"

	sso "github.com/sbinet/cern-sso"
)

func main() {
	const url = "https://openstack.cern.ch"

	cli, err := sso.Login(url)
	if err != nil {
		log.Fatalf("could not log into %q: %+v", url, err)
	}
	defer cli.Close()

	for _, c := range cli.Cookies() {
		scheme := "http"
		if c.Secure {
			scheme = "https"
		}
		fmt.Printf("%-20s %s\n", c.Name+":", scheme+"://"+c.Domain+c.Path)
	}
}

Output:

func NewClient ¶

func NewClient(login string, opts ...Option) (*Client, error)

NewClient creates a new SSO client that will authenticate with the provided login page. The returned client is not yet authenticated: one should use the Login method to do so.

func (*Client) Close ¶

func (cli *Client) Close() error

func (*Client) Cookies ¶

func (cli *Client) Cookies() []*http.Cookie

func (cli *Client) Login() error

Login attempts to login with the client login page.

func (*Client) Valid ¶

func (cli *Client) Valid() (exp time.Time, ok bool)

Valid returns whether the Keycloak cookie is valid, and its expiration date.

type Option ¶

type Option func(opt *Client) error

func WithAuthServer ¶

func WithAuthServer(srv string) Option

WithAuthServer configures the authentication to use the passed authentication server name.

ex:

"auth.cern.ch"

func WithClient ¶

func WithClient(cli *http.Client) Option

WithClient configures the authentication to use the passed HTTP client.

func WithCookieExpiration ¶ added in v0.4.0

func WithCookieExpiration(exp time.Duration) Option

WithCookieExpiration configures the default expiration for the SSO cookie.

func WithKrb5 ¶

func WithKrb5(cli *krb5cli.Client) Option

WithKrb5 configures the authentication to user the provided kerberos5 client.

func WithLogger ¶

func WithLogger(msg *log.Logger) Option

WithLogger configures the authentication to use the passed logger.

Source Files ¶

View all Source files

Directories ¶

Path	Synopsis
cert Package cert provides an easy way to add CERN certificates to a Go application.	Package cert provides an easy way to add CERN certificates to a Go application.
cmd
auth-cern-sso Command auth-cern-sso authenticates with a CERN SSO protected site URL and stores cookies in a file, in the Netscape NTTP Cookie File format.	Command auth-cern-sso authenticates with a CERN SSO protected site URL and stores cookies in a file, in the Netscape NTTP Cookie File format.

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL