internal/

Details

Valid go.mod file
Redistributable license
Tagged version
Stable version
Learn more about best practices

Repository

Links

Open Source Insights

Directories ¶

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL

Path	Synopsis
audit Package audit writes Cypra's append-only audit stream.	Package audit writes Cypra's append-only audit stream.
auth Package auth contains Phase 3 authorization scaffolding.	Package auth contains Phase 3 authorization scaffolding.
backupcodes Package backupcodes implements one-time recovery codes for users and instance admins.	Package backupcodes implements one-time recovery codes for users and instance admins.
invite Package invite implements tenant and instance-admin invitation flows.	Package invite implements tenant and instance-admin invitation flows.
magiclink Package magiclink implements magic-link token issuance and consumption.	Package magiclink implements magic-link token issuance and consumption.
password Package password implements password credentials and reset tokens.	Package password implements password credentials and reset tokens.
totp Package totp implements TOTP enrollment and verification.	Package totp implements TOTP enrollment and verification.
upstream Package upstream defines the Provider abstraction used by the social-SSO system and exposes a process-wide registry of registered providers.	Package upstream defines the Provider abstraction used by the social-SSO system and exposes a process-wide registry of registered providers.
upstream/apple Package apple implements the Sign-in-with-Apple social provider.	Package apple implements the Sign-in-with-Apple social provider.
upstream/discord Package discord implements the Discord social provider.	Package discord implements the Discord social provider.
upstream/github Package github implements the GitHub social provider.	Package github implements the GitHub social provider.
upstream/google Package google implements the Google upstream OAuth state and nonce checks.	Package google implements the Google upstream OAuth state and nonce checks.
upstream/microsoft Package microsoft implements the Microsoft (Azure AD / Entra) social provider.	Package microsoft implements the Microsoft (Azure AD / Entra) social provider.
upstream/oidcgeneric Package oidcgeneric implements a single-instance OIDC client used by Enterprise SSO connections.	Package oidcgeneric implements a single-instance OIDC client used by Enterprise SSO connections.
upstream/providers Package providers imports every social-SSO provider package so that their init() functions register them in the upstream registry.	Package providers imports every social-SSO provider package so that their init() functions register them in the upstream registry.
webauthn Package webauthn runs passkey ceremonies with per-tenant RP IDs.	Package webauthn runs passkey ceremonies with per-tenant RP IDs.
webauthn2fa Package webauthn2fa provides a WebAuthn-backed second-factor seam.	Package webauthn2fa provides a WebAuthn-backed second-factor seam.
authpolicy Package authpolicy holds the per-tenant policy structs that govern auth provider behavior (password complexity, magic-link TTL, signup eligibility, allowed Google domains, etc.) and the helpers that load them from the tenant_auth_methods.config JSONB column.	Package authpolicy holds the per-tenant policy structs that govern auth provider behavior (password complexity, magic-link TTL, signup eligibility, allowed Google domains, etc.) and the helpers that load them from the tenant_auth_methods.config JSONB column.
bootstrap Package bootstrap implements first-boot setup-token handling.	Package bootstrap implements first-boot setup-token handling.
botmitigation Package botmitigation verifies bot-challenge tokens before auth flows.	Package botmitigation verifies bot-challenge tokens before auth flows.
crypto Package crypto contains Cypra's password hashing and envelope encryption primitives.	Package crypto contains Cypra's password hashing and envelope encryption primitives.
db Package db contains Cypra's tenant-scoped database boundary.	Package db contains Cypra's tenant-scoped database boundary.
fuzz Package fuzz contains the reusable tenant-isolation fuzzer harness that later phases use to enroll HTTP handlers.	Package fuzz contains the reusable tenant-isolation fuzzer harness that later phases use to enroll HTTP handlers.
dbtest Package dbtest provides Postgres-backed integration-test helpers.	Package dbtest provides Postgres-backed integration-test helpers.
email Package email sends transactional email through pluggable backends.	Package email sends transactional email through pluggable backends.
hostedlogin Package hostedlogin renders server-owned authentication pages.	Package hostedlogin renders server-owned authentication pages.
httpserver Package httpserver wires the Cypra HTTP surface.	Package httpserver wires the Cypra HTTP surface.
logging Package logging provides structured logging helpers.	Package logging provides structured logging helpers.
migrate Package migrate applies Cypra SQL migrations.	Package migrate applies Cypra SQL migrations.
models Package models defines GORM structs that mirror the SQL schema.	Package models defines GORM structs that mirror the SQL schema.
observability Package observability contains small OpenTelemetry helpers shared by runtime paths.	Package observability contains small OpenTelemetry helpers shared by runtime paths.
oidc Package oidc contains OIDC provider primitives.	Package oidc contains OIDC provider primitives.
pat Package pat manages personal access tokens.	Package pat manages personal access tokens.
ratelimit Package ratelimit implements Postgres-backed token buckets.	Package ratelimit implements Postgres-backed token buckets.
sessions Package sessions manages Cypra access and refresh sessions.	Package sessions manages Cypra access and refresh sessions.
storage Package storage abstracts binary object storage.	Package storage abstracts binary object storage.
localdisk Package localdisk stores objects on local disk and signs proxy URLs.	Package localdisk stores objects on local disk and signs proxy URLs.
openstore Package openstore wires the storage backends from configuration.	Package openstore wires the storage backends from configuration.
s3compat Package s3compat stores objects in S3-compatible backends and presigns reads.	Package s3compat stores objects in S3-compatible backends and presigns reads.