xsrf

package

v0.0.0-...-b4b3d51 Latest Latest Go to latest Published: Jun 13, 2017 License: BSD-3-Clause Imports: 4 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/sermodigital/crypto

Links

Open Source Insights

Documentation ¶

Overview ¶

Package xsrf provides simple routines for creating and retrieving XSRF tokens with the Angular framework.

Index ¶

Constants
func Cookie(t tokens.AuthToken) *http.Cookie
func FromHeader(h http.Header) (t tokens.AuthToken, err error)
func FromRequest(r *http.Request) (t tokens.AuthToken, err error)
func Hash(t tokens.AuthToken) []byte

Constants ¶

View Source

const CookieName = "XSRF-TOKEN"

CookieName is the name of the cookie angular checks to determine whether it should send an "X-XSRF-TOKEN" header.

Variables ¶

This section is empty.

Functions ¶

func Cookie(t tokens.AuthToken) *http.Cookie

Cookie returns an http.Cookie with the Name and Value fields set.

func FromHeader ¶

func FromHeader(h http.Header) (t tokens.AuthToken, err error)

FromHeader fetches the Token from the X-XSRF-TOKEN header, if it exists.

func FromRequest ¶

func FromRequest(r *http.Request) (t tokens.AuthToken, err error)

FromRequest fetches the Token from the X-XSRF-TOKEN header, if it exists.

func Hash ¶

func Hash(t tokens.AuthToken) []byte

Hash returns the SHAKE-256 hash of the token. Hash should be used when storing the XSRF token on the backend and comparisons should be done in constant-time function, using a function like those found in crypto/subtle.

Types ¶