auth

Paddy 2014-09-01 Parent:1aa3a85ff853

28:75cf37088852 Go to Latest

auth/config.go.old

Rough out tokens and begin the memstore. Rough out the Token type for working with OAuth2 access and refresh tokens. Rough out the TokenStore interface that dictates how Tokens will be stored and retrieved. Write tests for the successful (in the working-as-intended sense) calls to TokenStore. Begin a Memstore type that stores data in memory. Implement the TokenStore interface for Memstore.

Download raw file
View source Diff to previous Annotate
History
1 package auth
2
3 import "time"
4
5 // AllowedAuthorizeType is a collection of allowed auth request types
6 type AllowedAuthorizeType []AuthorizeRequestType
7
8 // Exists returns true if the auth type exists in the list
9 func (t AllowedAuthorizeType) Exists(rt AuthorizeRequestType) bool {
10 for _, k := range t {
11 if k == rt {
12 return true
13 }
14 }
15 return false
16 }
17
18 // AllowedAccessType is a collection of allowed access request types
19 type AllowedAccessType []GrantType
20
21 // Exists returns true if the access type exists in the list
22 func (t AllowedAccessType) Exists(rt GrantType) bool {
23 for _, k := range t {
24 if k == rt {
25 return true
26 }
27 }
28 return false
29 }
30
31 // ServerConfig contains server configuration information
32 type ServerConfig struct {
33 // Authorization token expiration in seconds (default 5 minutes)
34 AuthorizationExpiration int32
35
36 // Access token expiration in seconds (default 1 hour)
37 AccessExpiration int32
38
39 // Token type to return
40 TokenType string
41
42 // List of allowed authorize types (only CodeAuthRT by default)
43 AllowedAuthorizeTypes AllowedAuthorizeType
44
45 // List of allowed access types (only AUTHORIZATION_CodeAuthRT by default)
46 AllowedAccessTypes AllowedAccessType
47
48 // HTTP status code to return for errors - default 200
49 // Only used if response was created from server
50 ErrorStatusCode int
51
52 // If true allows client secret also in params, else only in
53 // Authorization header - default false
54 AllowClientSecretInParams bool
55
56 // If true allows access request using GET, else only POST - default false
57 AllowGetAccessRequest bool
58
59 // The base path of documentation
60 DocumentationDomain string
61
62 SessionLength time.Duration
63 RequestIPHeader string
64 LoginRedirectDomain string
65 }
66
67 // NewServerConfig returns a new ServerConfig with default configuration
68 func NewServerConfig() ServerConfig {
69 return ServerConfig{
70 AuthorizationExpiration: 250,
71 AccessExpiration: 3600,
72 TokenType: "bearer",
73 AllowedAuthorizeTypes: AllowedAuthorizeType{CodeAuthRT},
74 AllowedAccessTypes: AllowedAccessType{AuthorizationCodeGrant},
75 ErrorStatusCode: 200,
76 AllowClientSecretInParams: false,
77 AllowGetAccessRequest: false,
78 }
79 }