auth
auth/config.go
Enable terminating sessions through the API. Add a terminateSession method to the sessionStore that sets the Active property of the Session to false. Create a Context.TerminateSession wrapper for the terminateSession method on the sessionStore. Add a Sessions property to our response type so we can return a []Session in API responses. Use the URL-safe encoding when base64 encoding our session ID and CSRFToken, so the ID can be passed in the URL and so our encodings are consistent. Add a TerminateSessionHandler function that will extract a Session ID from the request URL, authenticate the user, check that the authenticated user owns the session in question, and terminate the session. Add implementations for our new terminateSession method for the memstore and postgres types. Test both the memstore and postgres implementation of our terminateSession helper in session_test.go.
| paddy@96 | 1 package auth |
| paddy@96 | 2 |
| paddy@96 | 3 import ( |
| paddy@96 | 4 "errors" |
| paddy@96 | 5 "html/template" |
| paddy@101 | 6 "log" |
| paddy@96 | 7 ) |
| paddy@96 | 8 |
| paddy@96 | 9 var ( |
| paddy@96 | 10 // ErrInvalidLoginURI is returned when a Context is instantiated with a Config object that specifies a LoginURI that can't be parsed as a URL. |
| paddy@96 | 11 ErrInvalidLoginURI = errors.New("invalid login URI") |
| paddy@102 | 12 // ErrConfigNotInitialized is returned when a Context is instantiated with a Config object that hasn't had its Init function called. |
| paddy@102 | 13 ErrConfigNotInitialized = errors.New("config not initialized") |
| paddy@96 | 14 ) |
| paddy@96 | 15 |
| paddy@96 | 16 // Config holds the configuration values necessary to run a server. A Config |
| paddy@96 | 17 // instance is the only way to instantiate a Context variable. |
| paddy@96 | 18 type Config struct { |
| paddy@96 | 19 ClientStore clientStore |
| paddy@96 | 20 AuthCodeStore authorizationCodeStore |
| paddy@96 | 21 ProfileStore profileStore |
| paddy@96 | 22 TokenStore tokenStore |
| paddy@96 | 23 SessionStore sessionStore |
| paddy@134 | 24 ScopeStore scopeStore |
| paddy@96 | 25 Template *template.Template |
| paddy@96 | 26 LoginURI string |
| paddy@96 | 27 iterations int |
| paddy@132 | 28 secureCookie bool |
| paddy@96 | 29 } |
| paddy@101 | 30 |
| paddy@102 | 31 // Init is a function that preps the Config object to be used for Context creation, setting variables |
| paddy@102 | 32 // that are determined at the beginning of program execution. |
| paddy@101 | 33 func (c *Config) Init() error { |
| paddy@101 | 34 scheme, ok := passphraseSchemes[CurPassphraseScheme] |
| paddy@101 | 35 if !ok { |
| paddy@101 | 36 return ErrInvalidPassphraseScheme |
| paddy@101 | 37 } |
| paddy@101 | 38 var err error |
| paddy@101 | 39 c.iterations, err = scheme.calculateIterations() |
| paddy@101 | 40 if err != nil { |
| paddy@101 | 41 return err |
| paddy@101 | 42 } |
| paddy@101 | 43 log.Printf("Generating passphrases with %d iterations...\n", c.iterations) |
| paddy@101 | 44 return nil |
| paddy@101 | 45 } |