authelia/internal/middlewares/types.go

package middlewares

import (
	jwt "github.com/dgrijalva/jwt-go"
	"github.com/sirupsen/logrus"
	"github.com/valyala/fasthttp"

	"github.com/authelia/authelia/internal/authentication"
	"github.com/authelia/authelia/internal/authorization"
	"github.com/authelia/authelia/internal/configuration/schema"
	"github.com/authelia/authelia/internal/notification"
	"github.com/authelia/authelia/internal/regulation"
	"github.com/authelia/authelia/internal/session"
	"github.com/authelia/authelia/internal/storage"
	"github.com/authelia/authelia/internal/utils"
)

// AutheliaCtx contains all server variables related to Authelia.
type AutheliaCtx struct {
	*fasthttp.RequestCtx

	Logger        *logrus.Entry
	Providers     Providers
	Configuration schema.Configuration

	Clock utils.Clock
}

// Providers contain all provider provided to Authelia.
type Providers struct {
	Authorizer      *authorization.Authorizer
	SessionProvider *session.Provider
	Regulator       *regulation.Regulator

	UserProvider    authentication.UserProvider
	StorageProvider storage.Provider
	Notifier        notification.Notifier
}

// RequestHandler represents an Authelia request handler.
type RequestHandler = func(*AutheliaCtx)

// Middleware represent an Authelia middleware.
type Middleware = func(RequestHandler) RequestHandler

// IdentityVerificationStartArgs represent the arguments used to customize the starting phase
// of the identity verification process.
type IdentityVerificationStartArgs struct {
	// Email template needs a subject, a title and the content of the button.
	MailTitle         string
	MailButtonContent string

	// The target endpoint where to redirect the user when verification process
	// is completed successfully.
	TargetEndpoint string

	// The action claim that will be stored in the JWT token
	ActionClaim string

	// The function retrieving the identity to who the email will be sent.
	IdentityRetrieverFunc func(ctx *AutheliaCtx) (*session.Identity, error)

	// The function for checking the user in the token is valid for the current action
	IsTokenUserValidFunc func(ctx *AutheliaCtx, username string) bool
}

// IdentityVerificationFinishArgs represent the arguments used to customize the finishing phase
// of the identity verification process.
type IdentityVerificationFinishArgs struct {
	// The action claim that should be in the token to consider the action legitimate
	ActionClaim string

	// The function for checking the user in the token is valid for the current action
	IsTokenUserValidFunc func(ctx *AutheliaCtx, username string) bool
}

// IdentityVerificationClaim custom claim for specifying the action claim.
// The action can be to register a TOTP device, a U2F device or reset one's password.
type IdentityVerificationClaim struct {
	jwt.StandardClaims

	// The action this token has been crafted for.
	Action string `json:"action"`
	// The user this token has been crafted for.
	Username string `json:"username"`
}

// IdentityVerificationFinishBody type of the body received by the finish endpoint.
type IdentityVerificationFinishBody struct {
	Token string `json:"token"`
}

// OKResponse model  of a status OK response
type OKResponse struct {
	Status string      `json:"status"`
	Data   interface{} `json:"data,omitempty"`
}

// ErrorResponse model of an error response
type ErrorResponse struct {
	Status  string `json:"status"`
	Message string `json:"message"`
}
Bootstrap Go implementation of Authelia. This is going to be the v4. Expected improvements: - More reliable due to static typing. - Bump of performance. - Improvement of logging. - Authelia can be shipped as a single binary. - Will likely work on ARM architecture. 2019-04-24 21:52:08 +00:00			`package middlewares`

			`import (`
[MISC] Update durations to notation format and housekeeping (#824) * added regulation validator * made regulations find_time and ban_time values duration notation strings * added DefaultRegulationConfiguration for the validator * made session expiration and inactivity values duration notation strings * TOTP period does not need to be converted because adjustment should be discouraged * moved TOTP defaults to DefaultTOTPConfiguration and removed the consts * arranged the root config validator in configuration file order * adjusted tests for the changes * moved duration notation docs to root of configuration * added references to duration notation where applicable * project wide gofmt and goimports: * run gofmt * run goimports -local github.com/authelia/authelia -w on all files * Make jwt_secret error uniform and add tests * now at 100% coverage for internal/configuration/validator/configuration.go 2020-04-05 12:37:21 +00:00			`jwt "github.com/dgrijalva/jwt-go"`
			`"github.com/sirupsen/logrus"`
			`"github.com/valyala/fasthttp"`

Rename org from clems4ever to authelia Also fix references from config.yml to configuration.yml 2019-12-24 02:14:52 +00:00			`"github.com/authelia/authelia/internal/authentication"`
			`"github.com/authelia/authelia/internal/authorization"`
			`"github.com/authelia/authelia/internal/configuration/schema"`
			`"github.com/authelia/authelia/internal/notification"`
			`"github.com/authelia/authelia/internal/regulation"`
			`"github.com/authelia/authelia/internal/session"`
			`"github.com/authelia/authelia/internal/storage"`
Disable inactivity timeout when user checked remember me. Instead of checking the value of the cookie expiration we rely on the boolean stored in the user session to check whether inactivity timeout should be disabled. 2020-01-17 22:48:48 +00:00			`"github.com/authelia/authelia/internal/utils"`
Bootstrap Go implementation of Authelia. This is going to be the v4. Expected improvements: - More reliable due to static typing. - Bump of performance. - Improvement of logging. - Authelia can be shipped as a single binary. - Will likely work on ARM architecture. 2019-04-24 21:52:08 +00:00			`)`

			`// AutheliaCtx contains all server variables related to Authelia.`
			`type AutheliaCtx struct {`
			`*fasthttp.RequestCtx`

			`Logger *logrus.Entry`
			`Providers Providers`
			`Configuration schema.Configuration`
Disable inactivity timeout when user checked remember me. Instead of checking the value of the cookie expiration we rely on the boolean stored in the user session to check whether inactivity timeout should be disabled. 2020-01-17 22:48:48 +00:00
			`Clock utils.Clock`
Bootstrap Go implementation of Authelia. This is going to be the v4. Expected improvements: - More reliable due to static typing. - Bump of performance. - Improvement of logging. - Authelia can be shipped as a single binary. - Will likely work on ARM architecture. 2019-04-24 21:52:08 +00:00			`}`

			`// Providers contain all provider provided to Authelia.`
			`type Providers struct {`
			`Authorizer *authorization.Authorizer`
			`SessionProvider *session.Provider`
			`Regulator *regulation.Regulator`

			`UserProvider authentication.UserProvider`
			`StorageProvider storage.Provider`
			`Notifier notification.Notifier`
			`}`

			`// RequestHandler represents an Authelia request handler.`
			`type RequestHandler = func(*AutheliaCtx)`

			`// Middleware represent an Authelia middleware.`
			`type Middleware = func(RequestHandler) RequestHandler`

			`// IdentityVerificationStartArgs represent the arguments used to customize the starting phase`
			`// of the identity verification process.`
			`type IdentityVerificationStartArgs struct {`
			`// Email template needs a subject, a title and the content of the button.`
			`MailTitle string`
			`MailButtonContent string`

			`// The target endpoint where to redirect the user when verification process`
			`// is completed successfully.`
			`TargetEndpoint string`

			`// The action claim that will be stored in the JWT token`
			`ActionClaim string`

			`// The function retrieving the identity to who the email will be sent.`
			`IdentityRetrieverFunc func(ctx AutheliaCtx) (session.Identity, error)`

			`// The function for checking the user in the token is valid for the current action`
			`IsTokenUserValidFunc func(ctx *AutheliaCtx, username string) bool`
			`}`

			`// IdentityVerificationFinishArgs represent the arguments used to customize the finishing phase`
			`// of the identity verification process.`
			`type IdentityVerificationFinishArgs struct {`
			`// The action claim that should be in the token to consider the action legitimate`
			`ActionClaim string`

			`// The function for checking the user in the token is valid for the current action`
			`IsTokenUserValidFunc func(ctx *AutheliaCtx, username string) bool`
			`}`

			`// IdentityVerificationClaim custom claim for specifying the action claim.`
			`// The action can be to register a TOTP device, a U2F device or reset one's password.`
			`type IdentityVerificationClaim struct {`
			`jwt.StandardClaims`

			`// The action this token has been crafted for.`
			Action string `json:"action"`
			`// The user this token has been crafted for.`
			Username string `json:"username"`
			`}`

			`// IdentityVerificationFinishBody type of the body received by the finish endpoint.`
			`type IdentityVerificationFinishBody struct {`
			Token string `json:"token"`
			`}`

			`// OKResponse model of a status OK response`
			`type OKResponse struct {`
			Status string `json:"status"`
[FIX] Fix default redirection URL not taken into account (#600) * Remove unused mongo docker-compose file. * Default redirection URL was not taken into account. * Fix possible storage options in config template. * Remove useless checks in u2f registration endpoints. * Add default redirection url in config of duo suite. * Fix log line in response handler of 2FA methods. * Fix integration tests. Co-authored-by: Amir Zarrinkafsh <nightah@me.com> 2020-02-01 12:54:50 +00:00			Data interface{} `json:"data,omitempty"`
Bootstrap Go implementation of Authelia. This is going to be the v4. Expected improvements: - More reliable due to static typing. - Bump of performance. - Improvement of logging. - Authelia can be shipped as a single binary. - Will likely work on ARM architecture. 2019-04-24 21:52:08 +00:00			`}`

			`// ErrorResponse model of an error response`
			`type ErrorResponse struct {`
			Status string `json:"status"`
			Message string `json:"message"`
			`}`