auth

package

v0.3.3 Latest Latest Go to latest Published: Apr 26, 2020 License: GPL-3.0 Imports: 12 Imported by: 7

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Package auth handles various authentication methods for the metadata server.

View Source

const DefaultLoginTokenValidity = 24 * time.Hour

This section is empty.

func ContextWithUserID(ctx context.Context, userID uint) context.Context

ContextWithUserID returns a context with the given user ID

func CreateMetadataJWT(user *db.User, validFor time.Duration) (string, error)

CreateMetadataJWT returns a string login JWT. TODO Maran: Consider setting the jti if we want to increase security.

func CreateStreamingJWT(userID uint, fileLocator string) (string, error)

CreateStreamingJWT creates a new JWT that will give permission to stream certain media for a certain timespan.

func CreateUserHandler(w http.ResponseWriter, r *http.Request)

CreateUserHandler handles the creation of users, either via invite code or the first admin user.

func MiddleWare(h http.Handler) http.Handler

MiddleWare checks for user authentication and prevents unauthorised access to the API.

func ReadyForSetup(w http.ResponseWriter, r *http.Request)

ReadyForSetup checks whether the metadata has been through it's initial setup If this returns true a user can be created without an invite code.

func UserAdmin(ctx context.Context) (bool, bool)

UserAdmin checks whether the JWT is authorised as admin.

func UserHandler(w http.ResponseWriter, r *http.Request)

UserHandler handles logging in existing users and returning a JWT.

func UserID(ctx context.Context) (uint, bool)

UserID extracts user id from context.

type StreamingClaims struct {
	UserID   uint
	FilePath string
	jwt.StandardClaims
}

StreamingClaims is a custom JWT that allows filesystem access to files for a certain timespan.

func ValidateStreamingJWT(tokenStr string) (*StreamingClaims, error)

ValidateStreamingJWT validates whether a JWT is still valid and allows access to the requested file.

type UserClaims struct {
	Username string `json:"username"`
	UserID   uint   `json:"user_id"`
	Admin    bool   `json:"admin"`
	jwt.StandardClaims
}

UserClaims defines our custom JWT.