go/authboss
1
0
Fork 0
mirror of https://github.com/volatiletech/authboss.git synced 2024-11-28 08:58:38 +02:00
Code Issues Releases Activity

Import path fixes

Browse Source
This commit is contained in:
Aaron L 2017-07-30 19:39:33 -07:00
parent a92fb4d069
commit 2b5c85ee16
20 changed files with 73 additions and 73 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
CHANGELOG.md
View File

@ -13,5 +13,5 @@ the type in the attribute map matches what's in the struct before assignment.
## 2015-04-01 Refactor for Multi-tenancy
This breaking change allows multiple sites running off the same code base to each use different configurations of Authboss. To migrate
your code simply use authboss.New() to get an instance of Authboss and all the old things that used to be in the authboss package are
now there. See [this commit to the sample](https://github.com/go-authboss/authboss-sample/commit/eea55fc3b03855d4e9fb63577d72ce8ff0cd4079)
now there. See [this commit to the sample](https://github.com/volatiletech/authboss-sample/commit/eea55fc3b03855d4e9fb63577d72ce8ff0cd4079)
to see precisely how to make these changes.

82
README.md
View File

@ -3,7 +3,7 @@
Authboss
========
[![GoDoc](https://godoc.org/github.com/go-authboss/authboss?status.svg)](https://godoc.org/github.com/go-authboss/authboss) [![Build Status](https://circleci.com/gh/go-authboss/authboss.svg?style=shield&circle-token=:circle-token)](https://circleci.com/gh/go-authboss/authboss) [![Coverage Status](https://coveralls.io/repos/go-authboss/authboss/badge.svg?branch=master)](https://coveralls.io/r/go-authboss/authboss?branch=master) [![Gitter](https://badges.gitter.im/Join%20Chat.svg)](https://gitter.im/go-authboss/authboss?utm_source=badge&utm_medium=badge&utm_campaign=pr-badge)
[![GoDoc](https://godoc.org/github.com/volatiletech/authboss?status.svg)](https://godoc.org/github.com/volatiletech/authboss) [![Build Status](https://circleci.com/gh/go-authboss/authboss.svg?style=shield&circle-token=:circle-token)](https://circleci.com/gh/go-authboss/authboss) [![Coverage Status](https://coveralls.io/repos/go-authboss/authboss/badge.svg?branch=master)](https://coveralls.io/r/go-authboss/authboss?branch=master) [![Gitter](https://badges.gitter.im/Join%20Chat.svg)](https://gitter.im/go-authboss/authboss?utm_source=badge&utm_medium=badge&utm_campaign=pr-badge)
Authboss is a modular authentication system for the web. It tries to remove as much boilerplate and "hard things" as possible so that
each time you start a new web project in Go, you can plug it in, configure, and start building your app without having to build an
@ -39,13 +39,13 @@ use them in your app.
Name | Import Path | Description
---------------|-----------------------------------------------------------------------------------------------------|------------
Auth | [github.com/go-authboss/authboss/auth](https://github.com/go-authboss/authboss/tree/master/auth) | Provides database password authentication for users.
Confirm | [github.com/go-authboss/authboss/confirm](https://github.com/go-authboss/authboss/tree/master/confirm) | Sends an e-mail verification before allowing users to log in.
Lock | [github.com/go-authboss/authboss/lock](https://github.com/go-authboss/authboss/tree/master/lock) | Locks user accounts after N authentication failures in M time.
OAuth2 | [github.com/go-authboss/authboss/oauth2](https://github.com/go-authboss/authboss/tree/master/oauth2) | Provides oauth2 authentication for users.
Recover | [github.com/go-authboss/authboss/recover](https://github.com/go-authboss/authboss/tree/master/recover) | Allows for password resets via e-mail.
Register | [github.com/go-authboss/authboss/register](https://github.com/go-authboss/authboss/tree/master/register) | User-initiated account creation.
Remember | [github.com/go-authboss/authboss/remember](https://github.com/go-authboss/authboss/tree/master/remember) | Persisting login sessions past session cookie expiry.
Auth | [github.com/volatiletech/authboss/auth](https://github.com/volatiletech/authboss/tree/master/auth) | Provides database password authentication for users.
Confirm | [github.com/volatiletech/authboss/confirm](https://github.com/volatiletech/authboss/tree/master/confirm) | Sends an e-mail verification before allowing users to log in.
Lock | [github.com/volatiletech/authboss/lock](https://github.com/volatiletech/authboss/tree/master/lock) | Locks user accounts after N authentication failures in M time.
OAuth2 | [github.com/volatiletech/authboss/oauth2](https://github.com/volatiletech/authboss/tree/master/oauth2) | Provides oauth2 authentication for users.
Recover | [github.com/volatiletech/authboss/recover](https://github.com/volatiletech/authboss/tree/master/recover) | Allows for password resets via e-mail.
Register | [github.com/volatiletech/authboss/register](https://github.com/volatiletech/authboss/tree/master/register) | User-initiated account creation.
Remember | [github.com/volatiletech/authboss/remember](https://github.com/volatiletech/authboss/tree/master/remember) | Persisting login sessions past session cookie expiry.
Getting Started
===============
@ -53,10 +53,10 @@ Getting Started
Install the library and import it:
```
go get github.com/go-authboss/authboss
go get github.com/volatiletech/authboss
```
After that a good place to start in any Authboss implementation is the [configuration struct](http://godoc.org/github.com/go-authboss/authboss#Config).
After that a good place to start in any Authboss implementation is the [configuration struct](http://godoc.org/github.com/volatiletech/authboss#Config).
There are many defaults setup for you but there are some elements that must be provided.
to find out what is configurable view the documentation linked to above, each struct element
is documented.
@ -114,7 +114,7 @@ Once you've got this code set up, it's time to implement the use cases you care
<a name="how_to"></a>How To
============================
There is a full implementation of authboss at: https://github.com/go-authboss/authboss-sample
There is a full implementation of authboss at: https://github.com/volatiletech/authboss-sample
This sample implements a blog with all of the modules with exception that it doesn't use the expiry middleware
since it conflicts with the remember module.
@ -141,7 +141,7 @@ user struct, nil | The user is logged in.
Because on password reset various cleanings need to happen (for example Remember Me tokens
should all be deleted) setting the user's password yourself is not a good idea.
Authboss has the [UpdatePassword](http://godoc.org/github.com/go-authboss/authboss#Authboss.UpdatePassword) method for you to use. Please consult it's documentation
Authboss has the [UpdatePassword](http://godoc.org/github.com/volatiletech/authboss#Authboss.UpdatePassword) method for you to use. Please consult it's documentation
for a thorough explanation of each parameter and usage.
```go
@ -166,7 +166,7 @@ if err != nil {
## <a name="auth"></a>User Authentication via Password
**Requirements:**
- Auth module ([github.com/go-authboss/authboss/auth](https://github.com/go-authboss/authboss/tree/master/auth))
- Auth module ([github.com/volatiletech/authboss/auth](https://github.com/volatiletech/authboss/tree/master/auth))
- [Storer](#storers)
- [Session Storer](#client_storers)
- [Views](#views)
@ -183,7 +183,7 @@ Another link is created for a logout. Simply link/redirect the user to this page
## <a name="oauth2"></a> User Authentication via OAuth2
**Requirements:**
- OAuth2 module ([github.com/go-authboss/authboss/oauth2](https://github.com/go-authboss/authboss/tree/master/oauth2))
- OAuth2 module ([github.com/volatiletech/authboss/oauth2](https://github.com/volatiletech/authboss/tree/master/oauth2))
- [OAuth2Storer](#storers)
- OAuth2Providers
- [Session and Cookie Storers](#client_storers)
@ -198,7 +198,7 @@ Another link is created for a logout. Simply link/redirect the user to this page
**How it works:** Routes are registered for each oauth2 provider you specify in the OAuth2Providers configuration.
You redirect the user to one of these initial routes (/mount_path/oauth2/providername) and the oauth2 module
will ensure the user logs in and receives a token. It then calls the Callback you specify in your OAuth2Provider
inside the config, this is responsible for returning various information, please see the docs for [OAuth2Provider](http://godoc.org/github.com/go-authboss/authboss#OAuth2Provider).
inside the config, this is responsible for returning various information, please see the docs for [OAuth2Provider](http://godoc.org/github.com/volatiletech/authboss#OAuth2Provider).
Once the callback is complete, the user is saved in the database, and logged in using the session.
Please note that in order to redirect to specific URLs or have the user use the remember module for oauth2 logins you must pass
@ -215,12 +215,12 @@ uri := `/authboss_mount_path/oauth2/google?` + params.Encode()
```
**Examples:**
- [OAuth2Providers](https://github.com/go-authboss/authboss-sample/blob/master/blog.go#L57)
- [Writing a custom OAuth2Provider Callback](https://github.com/go-authboss/authboss/blob/master/oauth2/providers.go#L29)
- [OAuth2Providers](https://github.com/volatiletech/authboss-sample/blob/master/blog.go#L57)
- [Writing a custom OAuth2Provider Callback](https://github.com/volatiletech/authboss/blob/master/oauth2/providers.go#L29)
## <a name="register"></a> User Registration
**Requirements:**
- Register module ([github.com/go-authboss/authboss/register](https://github.com/go-authboss/authboss/tree/master/register))
- Register module ([github.com/volatiletech/authboss/register](https://github.com/volatiletech/authboss/tree/master/register))
- [RegisterStorer](#storers)
- [Session Storer](#client_storers)
- [Views](#views)
@ -239,8 +239,8 @@ See also: [Validation](#validation)
## <a name="confirm"></a> Confirming Registrations
**Requirements:**
- Register module ([github.com/go-authboss/authboss/register](https://github.com/go-authboss/authboss/tree/master/register))
- Confirm module ([github.com/go-authboss/authboss/confirm](https://github.com/go-authboss/authboss/tree/master/confirm))
- Register module ([github.com/volatiletech/authboss/register](https://github.com/volatiletech/authboss/tree/master/register))
- Confirm module ([github.com/volatiletech/authboss/confirm](https://github.com/volatiletech/authboss/tree/master/confirm))
- [RegisterStorer](#storers)
- [Session and Cookie Storers](#client_storers)
- [Views](#views)
@ -255,7 +255,7 @@ provided in the e-mail and their account becomes confirmed, they will automatica
## <a name="recover"></a> Password Recovery
**Requirements:**
- Recover module ([github.com/go-authboss/authboss/recover](https://github.com/go-authboss/authboss/tree/master/recover))
- Recover module ([github.com/volatiletech/authboss/recover](https://github.com/volatiletech/authboss/tree/master/recover))
- [RecoverStorer](#storers)
- [Session Storer](#client_storers)
- [Views](#views)
@ -271,7 +271,7 @@ their new password is stored, they are logged in and redirected to the RecoverOK
## <a name="remember"></a> Remember Me (persistent login)
**Requirements:**
- Remember module ([github.com/go-authboss/authboss/remember](https://github.com/go-authboss/authboss/tree/master/remember))
- Remember module ([github.com/volatiletech/authboss/remember](https://github.com/volatiletech/authboss/tree/master/remember))
- [RememberStorer](#storers)
- [Session and Cookie Storers](#client_storers)
@ -299,7 +299,7 @@ to pages with sensitive information if this value is true in the session, and fo
## <a name="lock"></a> Locking Accounts for Authentication Failures
**Requirements:**
- Lock module ([github.com/go-authboss/authboss/lock](https://github.com/go-authboss/authboss/tree/master/lock))
- Lock module ([github.com/volatiletech/authboss/lock](https://github.com/volatiletech/authboss/tree/master/lock))
- [Storer](#storers)
**Storage Requirements:**
@ -314,7 +314,7 @@ locked for the configured LockDuration. After this duration the user will be abl
## <a name="expire"></a> Expiring Inactive User Sessions
**Requirements:**
- [ExpireMiddleware](http://godoc.org/github.com/go-authboss/authboss#Authboss.ExpireMiddleware)
- [ExpireMiddleware](http://godoc.org/github.com/volatiletech/authboss#Authboss.ExpireMiddleware)
- [Session Storer](#client_storers)
**How it works:** A middleware is installed into the stack. This middleware uses the session to log the last action time of the user.
@ -329,7 +329,7 @@ http.ListenAndServe(":8080", ab.ExpireMiddleware(mux)) // Install the middleware
**Field validation:** Validation is achieved through the use of policies. These policies are in the configuration. They can be added for any field.
Any type can be used for validation that implements the Validator interface. Authboss supplies a quite flexible field validator called
[Rules](http://godoc.org/github.com/go-authboss/authboss#Rules) that you can use instead of writing your own. Validation errors are reported and
[Rules](http://godoc.org/github.com/volatiletech/authboss#Rules) that you can use instead of writing your own. Validation errors are reported and
handled all in the same way, and the view decides how to display these to the user. See the examples or the authboss default view files to see
how to display errors.
@ -377,18 +377,18 @@ There are three parts to storage: Storer interfaces, User Struct, Binding/Unbind
#### Storer Interfaces
- [Storer](http://godoc.org/github.com/go-authboss/authboss#Storer)
- [OAuth2Storer](http://godoc.org/github.com/go-authboss/authboss#OAuth2Storer)
- [ConfirmStorer](http://godoc.org/gopkg.in/confirm/authboss.v1#ConfirmStorer)
- [RecoverStorer](http://godoc.org/gopkg.in/recover/authboss.v1#RecoverStorer)
- [RegisterStorer](http://godoc.org/gopkg.in/register/authboss.v1#RegisterStorer)
- [RememberStorer](http://godoc.org/gopkg.in/remember/authboss.v1#RememberStorer)
- [Storer](http://godoc.org/github.com/volatiletech/authboss#Storer)
- [OAuth2Storer](http://godoc.org/github.com/volatiletech/authboss#OAuth2Storer)
- [ConfirmStorer](http://godoc.org/github.com/volatiletech/confirm#ConfirmStorer)
- [RecoverStorer](http://godoc.org/github.com/volatiletech/recover#RecoverStorer)
- [RegisterStorer](http://godoc.org/github.com/volatiletech/register#RegisterStorer)
- [RememberStorer](http://godoc.org/github.com/volatiletech/remember#RememberStorer)
Each of the store interfaces provides some amount of functionality to a module. Without the appropriate storer type the module cannot function.
Most of these interfaces simply do look ups on the user based on different field. Some of them like the RememberStorer are more special in their
functionality.
You can see an example here: [Blog Storer](https://github.com/go-authboss/authboss-sample/blob/master/storer.go).
You can see an example here: [Blog Storer](https://github.com/volatiletech/authboss-sample/blob/master/storer.go).
This storer implements all 6 of the Storer Interfaces. If you don't use as many modules as the blog, you don't need to implement all of these methods.
Most of the methods return an (interface{}, error), the interface{} user struct that is described below. In cases where the queries produce no values (ie no user found),
@ -420,7 +420,7 @@ extract it's data into authboss.Attributes, which is used for all authboss opera
#### Examples
- [Storer & OAuth2Storer combined](https://github.com/go-authboss/authboss-sample/blob/master/storer.go)
- [Storer & OAuth2Storer combined](https://github.com/volatiletech/authboss-sample/blob/master/storer.go)
## <a name="client_storers"></a> Implementing Client Storers
@ -436,8 +436,8 @@ Keep in mind that these need not be only cookie-based, any storage medium that c
can be used. You could insert a redis backend here if you like that approach better than just cookies.
**Examples:**
- [Session Storer](https://github.com/go-authboss/authboss-sample/blob/master/session_storer.go)
- [Cookie Storer](https://github.com/go-authboss/authboss-sample/blob/master/cookie_storer.go)
- [Session Storer](https://github.com/volatiletech/authboss-sample/blob/master/session_storer.go)
- [Cookie Storer](https://github.com/volatiletech/authboss-sample/blob/master/cookie_storer.go)
## <a name="views"></a> Views
The view system in Authboss uses Go templates with the concepts of layout/views to render HTML to the user. It uses the authboss.HTMLData type
@ -482,11 +482,11 @@ Confirmation Email (txt) | confirm_email.txt.tpl
Recover Email (html) | recover_email.html.tpl
Recover Email (txt) | recover_email.txt.tpl
[Example Layout Configuration](https://github.com/go-authboss/authboss-sample/blob/master/blog.go#L47)
[Example Layout Configuration](https://github.com/volatiletech/authboss-sample/blob/master/blog.go#L47)
**Example Overriden Templates:**
- [Layout](https://github.com/go-authboss/authboss-sample/blob/master/views/layout.html.tpl)
- [Login](https://github.com/go-authboss/authboss-sample/blob/master/ab_views/login.html.tpl)
- [Recover](https://github.com/go-authboss/authboss-sample/blob/master/ab_views/recover.html.tpl)
- [Recover New Password](https://github.com/go-authboss/authboss-sample/blob/master/ab_views/recover_complete.html.tpl)
- [Register](https://github.com/go-authboss/authboss-sample/blob/master/ab_views/register.html.tpl)
- [Layout](https://github.com/volatiletech/authboss-sample/blob/master/views/layout.html.tpl)
- [Login](https://github.com/volatiletech/authboss-sample/blob/master/ab_views/login.html.tpl)
- [Recover](https://github.com/volatiletech/authboss-sample/blob/master/ab_views/recover.html.tpl)
- [Recover New Password](https://github.com/volatiletech/authboss-sample/blob/master/ab_views/recover_complete.html.tpl)
- [Register](https://github.com/volatiletech/authboss-sample/blob/master/ab_views/register.html.tpl)

4
auth/auth.go
View File

@ -7,8 +7,8 @@ import (
"github.com/pkg/errors"
"github.com/go-authboss/authboss"
"github.com/go-authboss/authboss/internal/response"
"github.com/volatiletech/authboss"
"github.com/volatiletech/authboss/internal/response"
"golang.org/x/crypto/bcrypt"
)

4
auth/auth_test.go
View File

@ -11,8 +11,8 @@ import (
"github.com/pkg/errors"
"github.com/go-authboss/authboss"
"github.com/go-authboss/authboss/internal/mocks"
"github.com/volatiletech/authboss"
"github.com/volatiletech/authboss/internal/mocks"
)
func testSetup() (a *Auth, s *mocks.MockStorer) {

4
confirm/confirm.go
View File

@ -13,8 +13,8 @@ import (
"github.com/pkg/errors"
"github.com/go-authboss/authboss"
"github.com/go-authboss/authboss/internal/response"
"github.com/volatiletech/authboss"
"github.com/volatiletech/authboss/internal/response"
)
// Storer and FormValue constants

4
confirm/confirm_test.go
View File

@ -13,8 +13,8 @@ import (
"github.com/pkg/errors"
"github.com/go-authboss/authboss"
"github.com/go-authboss/authboss/internal/mocks"
"github.com/volatiletech/authboss"
"github.com/volatiletech/authboss/internal/mocks"
)
func setup() *Confirm {

2
internal/mocks/mocks.go
View File

@ -11,7 +11,7 @@ import (
"github.com/pkg/errors"
"github.com/go-authboss/authboss"
"github.com/volatiletech/authboss"
)
// MockUser represents all possible fields a authboss User may have

4
internal/response/response_test.go
View File

@ -9,8 +9,8 @@ import (
"path/filepath"
"testing"
"github.com/go-authboss/authboss"
"github.com/go-authboss/authboss/internal/mocks"
"github.com/volatiletech/authboss"
"github.com/volatiletech/authboss/internal/mocks"
)
var testViewTemplate = template.Must(template.New("").Parse(`{{.external}} {{.fun}} {{.flash_success}} {{.flash_error}} {{.xsrfName}} {{.xsrfToken}}`))

2
lock/lock.go
View File

@ -6,7 +6,7 @@ import (
"github.com/pkg/errors"
"github.com/go-authboss/authboss"
"github.com/volatiletech/authboss"
)
// Storage key constants

4
lock/lock_test.go
View File

@ -4,8 +4,8 @@ import (
"testing"
"time"
"github.com/go-authboss/authboss"
"github.com/go-authboss/authboss/internal/mocks"
"github.com/volatiletech/authboss"
"github.com/volatiletech/authboss/internal/mocks"
)
func TestStorage(t *testing.T) {

4
oauth2/oauth2.go
View File

@ -13,8 +13,8 @@ import (
"github.com/pkg/errors"
"github.com/go-authboss/authboss"
"github.com/go-authboss/authboss/internal/response"
"github.com/volatiletech/authboss"
"github.com/volatiletech/authboss/internal/response"
"golang.org/x/oauth2"
)

4
oauth2/oauth2_test.go
View File

@ -11,8 +11,8 @@ import (
"testing"
"time"
"github.com/go-authboss/authboss"
"github.com/go-authboss/authboss/internal/mocks"
"github.com/volatiletech/authboss"
"github.com/volatiletech/authboss/internal/mocks"
"golang.org/x/oauth2"
"golang.org/x/oauth2/facebook"
"golang.org/x/oauth2/google"

2
oauth2/providers.go
View File

@ -5,7 +5,7 @@ import (
"encoding/json"
"net/http"
"github.com/go-authboss/authboss"
"github.com/volatiletech/authboss"
"golang.org/x/oauth2"
)

2
oauth2/providers_test.go
View File

@ -8,7 +8,7 @@ import (
"testing"
"time"
"github.com/go-authboss/authboss"
"github.com/volatiletech/authboss"
"golang.org/x/oauth2"
)

4
recover/recover.go
View File

@ -13,8 +13,8 @@ import (
"github.com/pkg/errors"
"github.com/go-authboss/authboss"
"github.com/go-authboss/authboss/internal/response"
"github.com/volatiletech/authboss"
"github.com/volatiletech/authboss/internal/response"
"golang.org/x/crypto/bcrypt"
)

4
recover/recover_test.go
View File

@ -12,8 +12,8 @@ import (
"testing"
"time"
"github.com/go-authboss/authboss"
"github.com/go-authboss/authboss/internal/mocks"
"github.com/volatiletech/authboss"
"github.com/volatiletech/authboss/internal/mocks"
)
const (

4
register/register.go
View File

@ -6,8 +6,8 @@ import (
"github.com/pkg/errors"
"github.com/go-authboss/authboss"
"github.com/go-authboss/authboss/internal/response"
"github.com/volatiletech/authboss"
"github.com/volatiletech/authboss/internal/response"
"golang.org/x/crypto/bcrypt"
)

4
register/register_test.go
View File

@ -9,8 +9,8 @@ import (
"strings"
"testing"
"github.com/go-authboss/authboss"
"github.com/go-authboss/authboss/internal/mocks"
"github.com/volatiletech/authboss"
"github.com/volatiletech/authboss/internal/mocks"
)
func setup() *Register {

2
remember/remember.go
View File

@ -10,7 +10,7 @@ import (
"github.com/pkg/errors"
"github.com/go-authboss/authboss"
"github.com/volatiletech/authboss"
)
const (

4
remember/remember_test.go
View File

@ -5,8 +5,8 @@ import (
"net/http"
"testing"
"github.com/go-authboss/authboss"
"github.com/go-authboss/authboss/internal/mocks"
"github.com/volatiletech/authboss"
"github.com/volatiletech/authboss/internal/mocks"
)
func TestInitialize(t *testing.T) {