diff options
Diffstat (limited to 'cmd/ponzu/vendor/github.com/nilslice/jwt')
| -rw-r--r-- | cmd/ponzu/vendor/github.com/nilslice/jwt/LICENSE | 19 | ||||
| -rw-r--r-- | cmd/ponzu/vendor/github.com/nilslice/jwt/README.md | 43 | ||||
| -rw-r--r-- | cmd/ponzu/vendor/github.com/nilslice/jwt/doc.go | 40 | ||||
| -rw-r--r-- | cmd/ponzu/vendor/github.com/nilslice/jwt/jwt.go | 204 |
4 files changed, 0 insertions, 306 deletions
diff --git a/cmd/ponzu/vendor/github.com/nilslice/jwt/LICENSE b/cmd/ponzu/vendor/github.com/nilslice/jwt/LICENSE deleted file mode 100644 index f67119e..0000000 --- a/cmd/ponzu/vendor/github.com/nilslice/jwt/LICENSE +++ /dev/null @@ -1,19 +0,0 @@ -Copyright (C) 2015 Steve Manuel <stevenhmanuel@gmail.com> - -Permission is hereby granted, free of charge, to any person obtaining a copy -of this software and associated documentation files (the "Software"), to deal -in the Software without restriction, including without limitation the rights -to use, copy, modify, merge, publish, distribute, sublicense, and/or sell -copies of the Software, and to permit persons to whom the Software is -furnished to do so, subject to the following conditions: - -The above copyright notice and this permission notice shall be included in -all copies or substantial portions of the Software. - -THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR -IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, -FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE -AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER -LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, -OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN -THE SOFTWARE. diff --git a/cmd/ponzu/vendor/github.com/nilslice/jwt/README.md b/cmd/ponzu/vendor/github.com/nilslice/jwt/README.md deleted file mode 100644 index a384dd1..0000000 --- a/cmd/ponzu/vendor/github.com/nilslice/jwt/README.md +++ /dev/null @@ -1,43 +0,0 @@ -# JWT - -### Usage - $ go get github.com/nilslice/jwt - -package jwt provides methods to create and check JSON Web Tokens. It only implements HMAC 256 encryption and has a very small footprint, ideal for simple usage when authorizing clients - -```go - package main - - import ( - auth "github.com/nilslice/jwt" - "fmt" - "net/http" - "strings" - ) - - func main() { - http.HandleFunc("/auth/new", func(res http.ResponseWriter, req *http.Request) { - claims := map[string]interface{}{"exp": time.Now().Add(time.Hour * 24).Unix()} - token, err := auth.New(claims) - if err != nil { - http.Error(res, "Error", 500) - return - } - res.Header().Add("Authorization", "Bearer "+token) - - res.WriteHeader(http.StatusOK) - }) - - http.HandleFunc("/auth", func(res http.ResponseWriter, req *http.Request) { - userToken := strings.Split(req.Header.Get("Authorization"), " ")[1] - - if auth.Passes(userToken) { - fmt.Println("ok") - } else { - fmt.Println("no") - } - }) - - http.ListenAndServe(":8080", nil) - } -``` diff --git a/cmd/ponzu/vendor/github.com/nilslice/jwt/doc.go b/cmd/ponzu/vendor/github.com/nilslice/jwt/doc.go deleted file mode 100644 index aa9a5c8..0000000 --- a/cmd/ponzu/vendor/github.com/nilslice/jwt/doc.go +++ /dev/null @@ -1,40 +0,0 @@ -// Package jwt provides methods to create and check JSON Web Tokens (JWT). It only implements HMAC 256 encryption and has a very small footprint, ideal for simple usage when authorizing clients -/* - - package main - - import ( - auth "github.com/nilslice/jwt" - "fmt" - "net/http" - "strings" - "time" - ) - - func main() { - http.HandleFunc("/auth/new", func(res http.ResponseWriter, req *http.Request) { - claims := map[string]interface{}{"exp": time.Now().Add(time.Hour * 24).Unix()} - token, err := auth.New(claims) - if err != nil { - http.Error(res, "Error", 500) - return - } - res.Header().Add("Authorization", "Bearer "+token) - - res.WriteHeader(http.StatusOK) - }) - - http.HandleFunc("/auth", func(res http.ResponseWriter, req *http.Request) { - userToken := strings.Split(req.Header.Get("Authorization"), " ")[1] - - if auth.Passes(userToken) { - fmt.Println("ok") - } else { - fmt.Println("no") - } - }) - - http.ListenAndServe(":8080", nil) - } -*/ -package jwt diff --git a/cmd/ponzu/vendor/github.com/nilslice/jwt/jwt.go b/cmd/ponzu/vendor/github.com/nilslice/jwt/jwt.go deleted file mode 100644 index 6d7eaa3..0000000 --- a/cmd/ponzu/vendor/github.com/nilslice/jwt/jwt.go +++ /dev/null @@ -1,204 +0,0 @@ -package jwt - -import ( - "crypto/hmac" - "crypto/sha256" - "encoding/base64" - "encoding/json" - "errors" - "fmt" - "strings" -) - -var ( - privateKey = []byte("") - defaultHeader = header{Typ: "JWT", Alg: "HS256"} - registeredClaims = []string{"iss", "sub", "aud", "exp", "nbf", "iat", "jti"} -) - -type header struct { - Typ string `json:"typ"` - Alg string `json:"alg"` -} - -type payload map[string]interface{} - -type encoded struct { - token string -} -type decoded struct { - header string - payload string -} - -type signedDecoded struct { - decoded - signature string -} - -func newEncoded(claims map[string]interface{}) (encoded, error) { - header, err := json.Marshal(defaultHeader) - if err != nil { - return encoded{}, err - } - - for _, claim := range registeredClaims { - if _, ok := claims[claim]; !ok { - claims[claim] = nil - } - } - - payload, err := json.Marshal(claims) - if err != nil { - return encoded{}, err - } - - d := decoded{header: string(header), payload: string(payload)} - - d.encodeInternal() - signed, err := d.sign() - if err != nil { - return encoded{}, err - } - - token := signed.token() - e := encoded{token: token} - return e, nil -} - -func newDecoded(token string) (decoded, error) { - e := encoded{token: token} - d, err := e.parseToken() - if err != nil { - return d, nil - } - - return d, nil -} - -func encodeToString(src []byte) string { - return base64.RawURLEncoding.EncodeToString(src) -} - -func (d decoded) getHeader() []byte { - return []byte(d.header) -} - -func (d decoded) getPayload() []byte { - return []byte(d.payload) -} - -func (sd signedDecoded) getSignature() []byte { - return []byte(sd.signature) -} - -func (d *decoded) encodeInternal() { - d.header = encodeToString(d.getHeader()) - d.payload = encodeToString(d.getPayload()) -} - -func (d decoded) dot(internals ...string) string { - return strings.Join(internals, ".") -} - -func (d *decoded) sign() (signedDecoded, error) { - if d.header == "" || d.payload == "" { - return signedDecoded{}, errors.New("Missing header or payload on Decoded") - } - - unsigned := d.dot(d.header, d.payload) - - hash := hmac.New(sha256.New, privateKey) - _, err := hash.Write([]byte(unsigned)) - if err != nil { - return signedDecoded{}, err - } - - signed := signedDecoded{decoded: *d} - signed.signature = encodeToString(hash.Sum(nil)) - - return signed, nil -} - -func (sd signedDecoded) token() string { - return fmt.Sprintf("%s.%s.%s", sd.getHeader(), sd.getPayload(), sd.getSignature()) -} - -func (sd signedDecoded) verify(enc encoded) bool { - if sd.token() == enc.token { - return true - } - return false -} - -func (e encoded) parseToken() (decoded, error) { - parts := strings.Split(e.token, ".") - if len(parts) != 3 { - return decoded{}, errors.New("Error: incorrect # of results from string parsing") - } - - d := decoded{ - header: parts[0], - payload: parts[1], - } - - return d, nil -} - -// New returns a token (string) and error. The token is a fully qualified JWT to be sent to a client via HTTP Header or other method. Error returned will be from the newEncoded unexported function. -func New(claims map[string]interface{}) (string, error) { - enc, err := newEncoded(claims) - if err != nil { - return "", err - } - - return enc.token, nil -} - -// Passes returns a bool indicating whether a token (string) provided has been signed by our server. If true, the client is authenticated and may proceed. -func Passes(token string) bool { - dec, err := newDecoded(token) - if err != nil { - // may want to log some error here so we have visibility - // intentionally simplifying return type to bool for ease - // of use in API. Caller should only do `if auth.Passes(str) {}` - return false - } - signed, err := dec.sign() - if err != nil { - return false - } - - return signed.verify(encoded{token: token}) -} - -// GetClaims() returns a token's claims, allowing -// you to check the values to make sure they match -func GetClaims(token string) map[string]interface{} { - // decode the token - dec, err := newDecoded(token) - if err != nil { - return nil - } - - // base64 decode payload - payload, err := base64.RawURLEncoding.DecodeString(dec.payload) - if err != nil { - return nil - } - - dst := map[string]interface{}{} - err = json.Unmarshal(payload, &dst) - if err != nil { - return nil - } - - return dst - -} - -// Secret is a helper function to set the unexported privateKey variable used when signing and verifying tokens. -// Its argument is type []byte since we expect users to read this value from a file which can be excluded from source code. -func Secret(key []byte) { - privateKey = key -} |