Skip to content

Intellicode/authlite

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

9 Commits
api/v1
api/v1
 
 
cmd/server
cmd/server
 
 
docs
docs
 
 
internal
internal
 
 
pkg
pkg
 
 
scripts
scripts
 
 
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
go.mod
go.mod
 
 
go.sum
go.sum
 
 

Repository files navigation

AuthLite

AuthLite is a lightweight OAuth2 provider implementation in Go. It provides a complete OAuth2 authorization server that can be used to secure your APIs and applications.

Features

  • OAuth2 authorization server implementation
  • Support for standard OAuth2 flows (authorization code, implicit, client credentials, password)
  • Authentication and session management
  • In-memory storage with interfaces for easy extension to persistent storage
  • Simple API for integration

Project Structure

The project follows the standard Go project layout:

authlite/
├── api/           # API definitions
│   └── v1/        # API version 1
├── cmd/           # Application entrypoints
│   └── server/    # OAuth2 server command
├── docs/          # Documentation
├── examples/      # Example usage
├── internal/      # Private application code
│   ├── config/    # Configuration handling
│   └── middleware/# HTTP middleware
├── pkg/           # Public library code
│   ├── auth/      # Authentication
│   ├── oauth2/    # OAuth2 implementation
│   └── storage/   # Storage interfaces
└── web/          # Web assets (templates, static files)

Getting Started

Prerequisites

  • Go 1.16 or higher

Installation

Clone the repository:

git clone https://github.com/tom/authlite.git
cd authlite

Running the server

go run cmd/server/main.go

The server will start on http://localhost:9000 by default.

Using the OAuth2 Provider

Register a client

For demonstration purposes, a test client is pre-registered with the following credentials:

  • Client ID: test_client
  • Client Secret: test_secret
  • Redirect URI: http://localhost:8080/callback

Authorization Code Flow

  1. Redirect the user to the authorization endpoint:
http://localhost:9000/oauth/authorize?client_id=test_client&redirect_uri=http://localhost:8080/callback&response_type=code&scope=read
  1. The user will be redirected to log in (use testuser/password for demo)
  2. After authorization, the user will be redirected to the specified redirect URI with an authorization code
  3. Exchange the authorization code for an access token:
curl -X POST http://localhost:9000/oauth/token \
  -d "grant_type=authorization_code" \
  -d "code=AUTHORIZATION_CODE" \
  -d "redirect_uri=http://localhost:8080/callback" \
  -d "client_id=test_client" \
  -d "client_secret=test_secret"

Using the Access Token

Use the access token to access protected resources:

curl -H "Authorization: Bearer ACCESS_TOKEN" http://localhost:9000/userinfo

Next Steps

  • Implement persistent storage backends
  • Add support for JWT tokens
  • Add OpenID Connect extensions
  • Implement additional security features (PKCE, etc.)

License

This project is licensed under the MIT License - see the LICENSE file for details.

About

No description, website, or topics provided.

Resources

Readme

License

MIT license
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages