Data

Tools

Indexes

Applications

Experiments

Awesome

An open API service indexing awesome lists of open source software.

https://github.com/n10ty/authless

Registration/authentication ready-to-use library for Go
https://github.com/n10ty/authless

authentication gin-gonic go gorilla-mux registration

Last synced: 2 months ago
JSON representation

Registration/authentication ready-to-use library for Go

Awesome Lists containing this project

README 

          
# Authless - easy setup user authentication lib 



This library provide user login/registration feature based

on cookie JWT token with multiple storage support. 



* Registration

* Login

* JWT token via cookie

* XSRF protection

* Out of the box HTML templates read to use

* Or use it only as a backend with your own frontend

* Confirmation token

* Multiple router supports (Gin, standard, etc.)

* Multiple storage supports (Mysql, Postgres, config, "create your own", ...)



## Fast start

With Gin ([Routers](#Routers)):

``` go

func main() {

	configPath := "./default.yml"

	auth, err := authless.NewGinAuth(configPath)

	if err != nil {

		log.Println(err)

		return

	}

	auth.SetTokenSender(func(email, token string) error {

		fmt.Println("TOKEN SEND", token)

		return nil

	})



	router := gin.Default()

	auth.InitServiceRoutes(router)



	router.GET("/ping", func(c *gin.Context) {

		c.String(200, "pong")

	})



	router.Handle("GET", "/private", auth.AuthRequired(func(c *gin.Context) {

		c.String(200, "private")

	}))



	router.GET("/public", func(c *gin.Context) {

		c.String(200, "public")

	})

	log.Fatal(http.ListenAndServe(":8080", router))

}

```



## Config

You can create config object in code:

```go

config := &authless.Config{

    Host:               "example.com", // this will used for activation/forget-password links

    Secret:             "d123",

    DisableXSRF:        true,

    TokenDuration:      time.Minute,

    CookieDuration:     time.Minute,

    Storage:            storage.Config{

        Type:            "mysql",   // mysql, const (setup by config), postgres, inmemory

        Host:            "localhost",

        Port:            3306,

        Username:        "user",

        Password:        "pass",

        Dbname:          "myusers",

    },

    Type:               authless.AuthTypeTemplate, // 'template' or 'api'

    LogLevel:           "debug", // debug, info, warning, error

    TemplatePath:       "", // path to template folder

    Validator:          nil,

}

```



or parse it from yaml:

```go

path := "./default.yml"

conf, err := authless.ReadConfig(path)

```



**Caveat: yaml parser property names are case-insensitive**



## HTML templates



There are ready to use html login/registration forms. To use it

copy `template` folder to your project root.



![Image](/login-form.png)



## Routers



### Gin

We recommend to use [Gin](https://github.com/gin-gonic/gin) as main router.

To create new `auth`:

```go

auth, err := authless.NewGorillaAuth(conf)

```



To add service routes:

```go

router := gin.Default()

auth.InitServiceRoutes(router)

```



If you need to restrict unauthorized access to route wrap handler with `AuthRequired`:

```go

router.Handle("GET", "/private", auth.AuthRequired(func(c *gin.Context) {

    c.String(200, "private")

}))

```



Don't forget to setup _password change_ and _password forget_:

```go

auth.SetActivationTokenSenderFunc(func(email, token string) error {

    fmt.Println("TOKEN SEND", token)

    return nil

})

auth.SetChangePasswordRequestFunc(func(email, token string) error {

    fmt.Println("TOKEN SEND", token)

    return nil

})

```



### Gorilla mux

Adapter for [Gorilla router](https://github.com/gorilla/mux)

Use it in the same way as Gin, except creating:

```go

auth, err := authless.NewGorillaAuth(conf)

```



## API Routes



### Login

Call GET ```/auth/login?email=test@example.com&passwd=xyz```

or send POST form

```json

{

    "email": "test@example.com",

    "password": "xyz"

}

```



### Logout

Call GET `/auth/logout` to remove cookie and blacklist token (see todo)



### Register

Send POST form ```/auth/register```

```json

{

    "email": "test@example.com",

    "password": "xyz"

}

```

to create new user. Created user is not active and unable to login.



#### Send activation token



Use `ActivateAccountFunc = func(email, url, token string) error` to send token during registration



Example:

```go

auth, _ := authless.NewGinAuth(configPath)

client := NewMailerClient(somekey)

auth.SetActivationTokenSenderFunc(func(email, activateUrl, token string) error {

    //make user go to activateUrl to activate accoung

    return client.SendEmail(email, token)

})

```



### Activate

Call GET ```/auth/activate?token=mytoken```

to activate account to able account to login



### Forget password

To send change password send POST form to ```/auth/forget-password```:



    {

        "email": "test@example.com",

    }

This will generate new token and execute `ChangePasswordRequestFunc`



#### Send change password token

Use:



`type ChangePasswordRequestFunc = func(email, token string) error`



Example:

```go

auth, _ := authless.NewGinAuth(configPath)

client := NewMailerClient(somekey)

auth.SetChangePasswordRequestFunc(func(email, url, token string) error {

    return client.SendChangePassword

})

```



### Change password

To change password send POST form to `/auth/change-password`



    {

        "email": "test@example.com",

        "token": "TOKEN", //TOKEN sent by ChangePasswordRequestFunc

        "password": "newpassword",

    }



## HTML Routes

To override page:

* create your own html page

* insert _Vars_ into your template. Under _Var_ message or error text will be displayed

* rename html and put under _Template path_

* template will be available under _Path_



List of available routes:



#### Login

Path: `/login` \

Template path: `template/login_form.html` \

Vars: `{{.error}}`



#### Logout

Path: `/logout` \

Template path: -



#### Registration form

Path: `/register` \

Template path: `template/registration_form.html` \

Vars: `{{.error}}`



#### Registration success page

Path: `/register/result` \

Template path: `template/registration_form.html` \

Vars: `{{.message}}`



#### Activate result

Path: `/activate/result` \

Template: `template/activation_result.html` \

Vars: `{{.error}}` `{{.message}}`



#### Forget password form

Description: display form for password remind

Path: `/forget-password` \

Template: `template/forget_password_form.html` \

Vars: `{{.error}}`



#### Forget password result page

Description: page to show after successfully remind password submission  

Path: `/forget-password/result` \

Template: `template/forget_password_result.html` \

Vars: `{{.error}}` `{{.message}}`



#### Change password form

Description: display change password form  

Path: `/change-password` \

Template: `template/change_password_form.html` \

Vars: `{{.error}}`



#### Change password result page

Description: page to show after successfully change password submission

Path: `/change-password/result` \

Template: `template/change_password_result.html` \

Vars: `{{.error}}` `{{.message}}`



-----------------------------------



## Todo:



- [x] Add tests

- [x] Add gorilla http router

- [x] Add default http router

- [x] Forget password mux

- [x] Forget password gorilla

- [x] Get rid of /r/

- [x] Add global auth.GetUser method

- [x] Fully get rid of authz package

- [ ] Load default html template

- [ ] Validate html present

- [x] Finish README

- [ ] Add postgres

- [ ] Validate config

- [ ] Pass full url to forget pass/validate acc functions

- [ ] Blacklist of expired tokens (after logout token invalid)

- [ ] Get rid of error message in query ?error=bad request

- [x] Routes as const

- [ ] Min config to start: storage only

- [ ] Check successurl

- [ ] Add "Activate password" callback

- [ ] Audit log