authelia/internal/handlers/const.go

package handlers

// TOTPRegistrationAction is the string representation of the action for which the token has been produced.
const TOTPRegistrationAction = "RegisterTOTPDevice"

// U2FRegistrationAction is the string representation of the action for which the token has been produced.
const U2FRegistrationAction = "RegisterU2FDevice"

// ResetPasswordAction is the string representation of the action for which the token has been produced.
const ResetPasswordAction = "ResetPassword"

const authPrefix = "Basic "

// AuthorizationHeader is the basic-auth HTTP header Authelia utilises.
const AuthorizationHeader = "Proxy-Authorization"
const remoteUserHeader = "Remote-User"
const remoteGroupsHeader = "Remote-Groups"

var protoHostSeparator = []byte("://")

const (
	// Forbidden means the user is forbidden the access to a resource.
	Forbidden authorizationMatching = iota
	// NotAuthorized means the user can access the resource with more permissions.
	NotAuthorized authorizationMatching = iota
	// Authorized means the user is authorized given her current permissions.
	Authorized authorizationMatching = iota
)

const operationFailedMessage = "Operation failed."
const authenticationFailedMessage = "Authentication failed. Check your credentials."
const userBannedMessage = "Please retry in a few minutes."
const unableToRegisterOneTimePasswordMessage = "Unable to set up one-time passwords." //nolint:gosec
const unableToRegisterSecurityKeyMessage = "Unable to register your security key."
const unableToResetPasswordMessage = "Unable to reset your password."
const mfaValidationFailedMessage = "Authentication failed, please retry later."

const testInactivity = "10"
const testRedirectionURL = "http://redirection.local"
const testResultAllow = "allow"
const testUsername = "john"

const movingAverageWindow = 10
const msMinimumDelay1FA = float64(250)
const msMaximumRandomDelay = int64(85)
Bootstrap Go implementation of Authelia. This is going to be the v4. Expected improvements: - More reliable due to static typing. - Bump of performance. - Improvement of logging. - Authelia can be shipped as a single binary. - Will likely work on ARM architecture. 2019-04-24 21:52:08 +00:00			`package handlers`

			`// TOTPRegistrationAction is the string representation of the action for which the token has been produced.`
			`const TOTPRegistrationAction = "RegisterTOTPDevice"`

			`// U2FRegistrationAction is the string representation of the action for which the token has been produced.`
			`const U2FRegistrationAction = "RegisterU2FDevice"`

			`// ResetPasswordAction is the string representation of the action for which the token has been produced.`
			`const ResetPasswordAction = "ResetPassword"`

			`const authPrefix = "Basic "`

[MISC] Implement golint recommendations (#885) Co-authored-by: Clément Michaud <clement.michaud34@gmail.com> 2020-04-20 21:03:38 +00:00			`// AuthorizationHeader is the basic-auth HTTP header Authelia utilises.`
[MISC] Improve documentation around headers used by verify endpoint. (#620) * Explicit document missing X-Forwarded-Proto and X-Fowarded-Host headers. * Add the name of the authorization header in error messages. * Add error and debug logs about X-Original-URL header. * Add error log when not able to parse target URL in verify endpoint. * Fix unit tests. 2020-02-06 02:24:25 +00:00			`const AuthorizationHeader = "Proxy-Authorization"`
Bootstrap Go implementation of Authelia. This is going to be the v4. Expected improvements: - More reliable due to static typing. - Bump of performance. - Improvement of logging. - Authelia can be shipped as a single binary. - Will likely work on ARM architecture. 2019-04-24 21:52:08 +00:00			`const remoteUserHeader = "Remote-User"`
			`const remoteGroupsHeader = "Remote-Groups"`

			`var protoHostSeparator = []byte("://")`

			`const (`
[MISC] Implement golint recommendations (#885) Co-authored-by: Clément Michaud <clement.michaud34@gmail.com> 2020-04-20 21:03:38 +00:00			`// Forbidden means the user is forbidden the access to a resource.`
Bootstrap Go implementation of Authelia. This is going to be the v4. Expected improvements: - More reliable due to static typing. - Bump of performance. - Improvement of logging. - Authelia can be shipped as a single binary. - Will likely work on ARM architecture. 2019-04-24 21:52:08 +00:00			`Forbidden authorizationMatching = iota`
			`// NotAuthorized means the user can access the resource with more permissions.`
			`NotAuthorized authorizationMatching = iota`
			`// Authorized means the user is authorized given her current permissions.`
			`Authorized authorizationMatching = iota`
			`)`

			`const operationFailedMessage = "Operation failed."`
			`const authenticationFailedMessage = "Authentication failed. Check your credentials."`
			`const userBannedMessage = "Please retry in a few minutes."`
[BUGFIX] Password hashing schema map mismatch with docs (#852) * add a nolint for gosec 'possibly hardcoded password' that was incorrect * make all parameters consistent * update the docs for the correct key name 'password' instead of 'password_options' or 'password_hashing' * reword some of the docs * apply suggestions from code review Co-Authored-By: Amir Zarrinkafsh <nightah@me.com> 2020-04-11 03:54:18 +00:00			`const unableToRegisterOneTimePasswordMessage = "Unable to set up one-time passwords." //nolint:gosec`
Bootstrap Go implementation of Authelia. This is going to be the v4. Expected improvements: - More reliable due to static typing. - Bump of performance. - Improvement of logging. - Authelia can be shipped as a single binary. - Will likely work on ARM architecture. 2019-04-24 21:52:08 +00:00			`const unableToRegisterSecurityKeyMessage = "Unable to register your security key."`
			`const unableToResetPasswordMessage = "Unable to reset your password."`
			`const mfaValidationFailedMessage = "Authentication failed, please retry later."`
[CI] Add goconst linter (#961) * [CI] Add goconst linter * Implement goconst recommendations * Rename defaultPolicy to denyPolicy * Change order for test constants Co-authored-by: Clément Michaud <clement.michaud34@gmail.com> 2020-05-02 16:20:40 +00:00
			`const testInactivity = "10"`
			`const testRedirectionURL = "http://redirection.local"`
			`const testResultAllow = "allow"`
			`const testUsername = "john"`
[FEATURE] Delay 1FA Authentication (#993) * adaptively delay 1FA by the actual execution time of authentication * should grow and shrink over time as successful attempts are made * uses the average of the last 10 successful attempts to calculate * starts at an average of 1000ms * minimum is 250ms * a random delay is added to the largest of avg or minimum * the random delay is between 0ms and 85ms * bump LDAP suite to 80s timeout * bump regulation scenario to 45s * add mutex locking * amend logging * add docs * add tests Co-authored-by: Clément Michaud <clement.michaud34@gmail.com> 2020-05-20 22:03:15 +00:00
			`const movingAverageWindow = 10`
			`const msMinimumDelay1FA = float64(250)`
			`const msMaximumRandomDelay = int64(85)`