Golang OAuth 2.0

An open protocol to allow secure authorization in a simple and standard method from web, mobile and desktop applications.

Protocol Flow

     +--------+                               +---------------+
     |        |--(A)- Authorization Request ->|   Resource    |
     |        |                               |     Owner     |
     |        |<-(B)-- Authorization Grant ---|               |
     |        |                               +---------------+
     |        |
     |        |                               +---------------+
     |        |--(C)-- Authorization Grant -->| Authorization |
     | Client |                               |     Server    |
     |        |<-(D)----- Access Token -------|               |
     |        |                               +---------------+
     |        |
     |        |                               +---------------+
     |        |--(E)----- Access Token ------>|    Resource   |
     |        |                               |     Server    |
     |        |<-(F)--- Protected Resource ---|               |
     +--------+                               +---------------+

Quick Start

Download and install

go get -u -v github.com/contamobi/oauth2/...

Create file `server.go`

package main

import (
	"log"
	"net/http"

	"github.com/contamobi/oauth2/errors"
	"github.com/contamobi/oauth2/manage"
	"github.com/contamobi/oauth2/models"
	"github.com/contamobi/oauth2/server"
	"github.com/contamobi/oauth2/store"
)

func main() {
	manager := manage.NewDefaultManager()
	// token memory store
	manager.MustTokenStorage(store.NewMemoryTokenStore())

	// client memory store
	clientStore := store.NewClientStore()
	clientStore.Set("000000", &models.Client{
		ID:     "000000",
		Secret: "999999",
		Domain: "http://localhost",
	})
	manager.MapClientStorage(clientStore)

	srv := server.NewDefaultServer(manager)
	srv.SetAllowGetAccessRequest(true)
	srv.SetClientInfoHandler(server.ClientFormHandler)

	srv.SetInternalErrorHandler(func(err error) (re *errors.Response) {
		log.Println("Internal Error:", err.Error())
		return
	})

	srv.SetResponseErrorHandler(func(re *errors.Response) {
		log.Println("Response Error:", re.Error.Error())
	})

	http.HandleFunc("/authorize", func(w http.ResponseWriter, r *http.Request) {
		err := srv.HandleAuthorizeRequest(w, r)
		if err != nil {
			http.Error(w, err.Error(), http.StatusBadRequest)
		}
	})

	http.HandleFunc("/token", func(w http.ResponseWriter, r *http.Request) {
		srv.HandleTokenRequest(w, r)
	})

	log.Fatal(http.ListenAndServe(":9096", nil))
}

Build and run

go build server.go

./server

Open in your web browser

http://localhost:9096/token?grant_type=client_credentials&client_id=000000&client_secret=999999&scope=read

{
    "access_token": "J86XVRYSNFCFI233KXDL0Q",
    "expires_in": 7200,
    "scope": "read",
    "token_type": "Bearer"
}

Features

easy to use
based on the RFC 6749 implementation
token storage support TTL
support custom expiration time of the access token
support custom extension field
support custom scope

Example

A complete example of simulation authorization code model

Simulation examples of authorization code model, please check example

Storage Implements

BuntDB(The default storage)
Redis
MongoDB
DynamoDB

Name		Name	Last commit message	Last commit date
Latest commit History 141 Commits
errors		errors
example		example
generates		generates
manage		manage
models		models
server		server
store		store
.gitignore		.gitignore
.travis.yml		.travis.yml
LICENSE		LICENSE
README.md		README.md
const.go		const.go
doc.go		doc.go
generate.go		generate.go
manage.go		manage.go
model.go		model.go
store.go		store.go

License

contamobi/oauth2

Folders and files

Latest commit

History

Repository files navigation

Golang OAuth 2.0

Protocol Flow

Quick Start

Download and install

Create file server.go

Build and run

Open in your web browser

Features

Example

Storage Implements

MIT License

About

Resources

License

Stars

Watchers

Forks

Languages

Create file `server.go`