Movatterモバイル変換

[0]ホーム
URL:

oauth2provider

package
v2.26.0Latest Latest
Warning

This package is not in the latest version of its module.

Go to latest Published: Sep 3, 2025 License:AGPL-3.0Imports:32Imported by:0

Details

Repository

github.com/coder/coder

Links

Documentation

Index

Constants

This section is empty.

Variables

This section is empty.

Functions

funcCreateApp

func CreateApp(dbdatabase.Store, accessURL *url.URL, auditor *audit.Auditor, loggerslog.Logger)http.HandlerFunc

CreateApp returns an http.HandlerFunc that handles POST /oauth2-provider/apps

funcCreateAppSecret

func CreateAppSecret(dbdatabase.Store, auditor *audit.Auditor, loggerslog.Logger)http.HandlerFunc

CreateAppSecret returns an http.HandlerFunc that handles POST /oauth2-provider/apps/{app}/secrets

funcCreateDynamicClientRegistration

func CreateDynamicClientRegistration(dbdatabase.Store, accessURL *url.URL, auditor *audit.Auditor, loggerslog.Logger)http.HandlerFunc

CreateDynamicClientRegistration returns an http.HandlerFunc that handles POST /oauth2/register

funcDeleteApp

func DeleteApp(dbdatabase.Store, auditor *audit.Auditor, loggerslog.Logger)http.HandlerFunc

DeleteApp returns an http.HandlerFunc that handles DELETE /oauth2-provider/apps/{app}

funcDeleteAppSecret

func DeleteAppSecret(dbdatabase.Store, auditor *audit.Auditor, loggerslog.Logger)http.HandlerFunc

DeleteAppSecret returns an http.HandlerFunc that handles DELETE /oauth2-provider/apps/{app}/secrets/{secretID}

funcDeleteClientConfiguration

func DeleteClientConfiguration(dbdatabase.Store, auditor *audit.Auditor, loggerslog.Logger)http.HandlerFunc

DeleteClientConfiguration returns an http.HandlerFunc that handles DELETE /oauth2/clients/{client_id}

funcGetApp

func GetApp(accessURL *url.URL)http.HandlerFunc

GetApp returns an http.HandlerFunc that handles GET /oauth2-provider/apps/{app}

funcGetAppSecrets

func GetAppSecrets(dbdatabase.Store)http.HandlerFunc

GetAppSecrets returns an http.HandlerFunc that handles GET /oauth2-provider/apps/{app}/secrets

funcGetAuthorizationServerMetadata

func GetAuthorizationServerMetadata(accessURL *url.URL)http.HandlerFunc

GetAuthorizationServerMetadata returns an http.HandlerFunc that handles GET /.well-known/oauth-authorization-server

funcGetClientConfiguration

func GetClientConfiguration(dbdatabase.Store)http.HandlerFunc

GetClientConfiguration returns an http.HandlerFunc that handles GET /oauth2/clients/{client_id}

funcGetProtectedResourceMetadata

func GetProtectedResourceMetadata(accessURL *url.URL)http.HandlerFunc

GetProtectedResourceMetadata returns an http.HandlerFunc that handles GET /.well-known/oauth-protected-resource

funcListApps

func ListApps(dbdatabase.Store, accessURL *url.URL)http.HandlerFunc

ListApps returns an http.HandlerFunc that handles GET /oauth2-provider/apps

funcProcessAuthorize

func ProcessAuthorize(dbdatabase.Store)http.HandlerFunc

ProcessAuthorize handles POST /oauth2/authorize requests to process the user's authorization decisionand generate an authorization code.

funcRequireRegistrationAccessToken

func RequireRegistrationAccessToken(dbdatabase.Store) func(http.Handler)http.Handler

RequireRegistrationAccessToken returns middleware that validates the registration access token forRFC 7592 endpoints

funcShowAuthorizePage

func ShowAuthorizePage(accessURL *url.URL)http.HandlerFunc

ShowAuthorizePage handles GET /oauth2/authorize requests to display the HTML authorization page.

funcTokens

TokensTODO: the sessions lifetime config passed is for coder api tokens.Should there be a separate config for oauth2 tokens? They are related,but they are not the same.

funcUpdateApp

func UpdateApp(dbdatabase.Store, accessURL *url.URL, auditor *audit.Auditor, loggerslog.Logger)http.HandlerFunc

UpdateApp returns an http.HandlerFunc that handles PUT /oauth2-provider/apps/{app}

funcUpdateClientConfiguration

func UpdateClientConfiguration(dbdatabase.Store, auditor *audit.Auditor, loggerslog.Logger)http.HandlerFunc

UpdateClientConfiguration returns an http.HandlerFunc that handles PUT /oauth2/clients/{client_id}

funcVerifyPKCE

func VerifyPKCE(challenge, verifierstring)bool

VerifyPKCE verifies that the code_verifier matches the code_challengeusing the S256 method as specified inRFC 7636.

Types

typeAppSecret

type AppSecret struct {// Formatted contains the secret. This value is owned by the client, not the// server.  It is formatted to include the prefix.Formattedstring// Prefix is the ID of this secret owned by the server. When a client uses a// secret, this is the matching string to do a lookup on the hashed value.  We// cannot use the hashed value directly because the server does not store the// salt.Prefixstring// Hashed is the server stored hash(secret,salt,...). Used for verifying a// secret.Hashedstring}

funcGenerateSecret

func GenerateSecret() (AppSecret,error)

GenerateSecret generates a secret to be used as a client secret, refreshtoken, or authorization code.

Source Files

View all Source files

Directories

PathSynopsis
Package oauth2providertest provides comprehensive testing utilities for OAuth2 identity provider functionality.
Package oauth2providertest provides comprehensive testing utilities for OAuth2 identity provider functionality.

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f orF : Jump to
y orY : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic.Learn more.
[8]ページ先頭
©2009-2025 Movatter.jp