2020-02-03 11:16:02 +03:00
|
|
|
package auth
|
|
|
|
|
|
2020-03-09 20:16:31 +03:00
|
|
|
import (
|
|
|
|
|
"time"
|
|
|
|
|
|
|
|
|
|
"github.com/micro/go-micro/v2/auth/provider"
|
|
|
|
|
)
|
2020-03-07 14:06:57 +03:00
|
|
|
|
2020-02-03 11:16:02 +03:00
|
|
|
type Options struct {
|
2020-02-26 01:15:44 +03:00
|
|
|
// Token is an auth token
|
|
|
|
|
Token string
|
|
|
|
|
// Public key base64 encoded
|
|
|
|
|
PublicKey string
|
|
|
|
|
// Private key base64 encoded
|
|
|
|
|
PrivateKey string
|
|
|
|
|
// Endpoints to exclude
|
|
|
|
|
Exclude []string
|
2020-03-07 14:06:57 +03:00
|
|
|
// Provider is an auth provider
|
|
|
|
|
Provider provider.Provider
|
|
|
|
|
// LoginURL is the relative url path where a user can login
|
|
|
|
|
LoginURL string
|
2020-02-03 11:16:02 +03:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
type Option func(o *Options)
|
|
|
|
|
|
2020-02-26 01:15:44 +03:00
|
|
|
// Exclude ecludes a set of endpoints from authorization
|
|
|
|
|
func Exclude(e ...string) Option {
|
2020-02-10 11:26:28 +03:00
|
|
|
return func(o *Options) {
|
2020-02-26 01:15:44 +03:00
|
|
|
o.Exclude = e
|
2020-02-10 11:26:28 +03:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2020-02-03 11:16:02 +03:00
|
|
|
// PublicKey is the JWT public key
|
|
|
|
|
func PublicKey(key string) Option {
|
|
|
|
|
return func(o *Options) {
|
2020-02-26 01:15:44 +03:00
|
|
|
o.PublicKey = key
|
2020-02-03 11:16:02 +03:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// PrivateKey is the JWT private key
|
|
|
|
|
func PrivateKey(key string) Option {
|
|
|
|
|
return func(o *Options) {
|
2020-02-26 01:15:44 +03:00
|
|
|
o.PrivateKey = key
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Token sets an auth token
|
|
|
|
|
func Token(t string) Option {
|
|
|
|
|
return func(o *Options) {
|
|
|
|
|
o.Token = t
|
2020-02-03 11:16:02 +03:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2020-03-07 14:06:57 +03:00
|
|
|
// Provider set the auth provider
|
|
|
|
|
func Provider(p provider.Provider) Option {
|
|
|
|
|
return func(o *Options) {
|
|
|
|
|
o.Provider = p
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// LoginURL sets the auth LoginURL
|
|
|
|
|
func LoginURL(url string) Option {
|
|
|
|
|
return func(o *Options) {
|
|
|
|
|
o.LoginURL = url
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2020-02-03 11:16:02 +03:00
|
|
|
type GenerateOptions struct {
|
2020-02-26 01:15:44 +03:00
|
|
|
// Metadata associated with the account
|
2020-02-03 11:16:02 +03:00
|
|
|
Metadata map[string]string
|
2020-02-26 01:15:44 +03:00
|
|
|
// Roles/scopes associated with the account
|
|
|
|
|
Roles []*Role
|
2020-03-09 20:16:31 +03:00
|
|
|
//Expiry of the token
|
|
|
|
|
Expiry time.Time
|
2020-02-03 11:16:02 +03:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
type GenerateOption func(o *GenerateOptions)
|
|
|
|
|
|
|
|
|
|
// Metadata for the generated account
|
|
|
|
|
func Metadata(md map[string]string) func(o *GenerateOptions) {
|
|
|
|
|
return func(o *GenerateOptions) {
|
|
|
|
|
o.Metadata = md
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Roles for the generated account
|
|
|
|
|
func Roles(rs []*Role) func(o *GenerateOptions) {
|
|
|
|
|
return func(o *GenerateOptions) {
|
|
|
|
|
o.Roles = rs
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2020-03-09 20:16:31 +03:00
|
|
|
// Expiry for the generated account's token expires
|
|
|
|
|
func Expiry(ex time.Time) func(o *GenerateOptions) {
|
|
|
|
|
return func(o *GenerateOptions) {
|
|
|
|
|
o.Expiry = ex
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2020-02-03 11:16:02 +03:00
|
|
|
// NewGenerateOptions from a slice of options
|
|
|
|
|
func NewGenerateOptions(opts ...GenerateOption) GenerateOptions {
|
|
|
|
|
var options GenerateOptions
|
|
|
|
|
for _, o := range opts {
|
|
|
|
|
o(&options)
|
|
|
|
|
}
|
2020-03-09 20:16:31 +03:00
|
|
|
//set defualt expiry of token
|
|
|
|
|
if options.Expiry.IsZero() {
|
|
|
|
|
options.Expiry = time.Now().Add(time.Hour * 24)
|
|
|
|
|
}
|
2020-02-03 11:16:02 +03:00
|
|
|
return options
|
|
|
|
|
}
|
