auth
2015-06-29
Parent:3223a8e679db
auth/doc.go
Use an environment variable to set the JWT secret. When setting up the authd server, populate the JWT secret using a JWT_SECRET environment variable. Incidentally, we also included the subscriptions scope, for testing purposes while creating code.secondbit.org/ducky/subscriptions. We now also log the port we're listening on, listen on all interfaces (instead of just 127.0.0.1), and changed the port to 9000 instead of 8080.
| paddy@57 | 1 /* |
| paddy@57 | 2 Package auth provides an authentication service for managing user accounts and an OAuth2 provider. |
| paddy@57 | 3 |
| paddy@57 | 4 The service is an opinionated implementation of authentication using passphrases and the |
| paddy@57 | 5 code.secondbit.org/pass package to implement user credentials and accounts. Additionally, users |
| paddy@158 | 6 are permitted to login using any email address they have on record. Care is also taken to be able |
| paddy@158 | 7 to mitigate attacks that have already happened and plan ahead for the worst case scenarios. |
| paddy@57 | 8 |
| paddy@57 | 9 An OAuth2 provider is also built-in and provided, complete with client registration and management, |
| paddy@57 | 10 as well as a specification-based set of handlers for managing the issuing of grants and tokens. Token |
| paddy@57 | 11 validiity may be asserted through an API, or a proxy service is provided for stripping auth-specific |
| paddy@57 | 12 information from requests and replacing it with a trusted header containing information about the user |
| paddy@57 | 13 and client that authorized the request. |
| paddy@57 | 14 */ |
| paddy@57 | 15 package auth |