-
Notifications
You must be signed in to change notification settings - Fork 1
/
main.go
51 lines (45 loc) · 1.3 KB
/
main.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
package main
import (
"fmt"
"io/ioutil"
"os"
"time"
jwt "github.com/dgrijalva/jwt-go"
flags "github.com/jessevdk/go-flags"
"go.uber.org/zap"
)
type cmdOpts struct {
PrivateKeyFile string `long:"private-key" description:"private key for signing JWT auth header" required:"true"`
PrivateKeyUser string `long:"private-key-user" default:"private-key-user" description:"user id which is used as Subject in JWT payload"`
MaxAge time.Duration `long:"max-age" default:"1h" description:"max-age of JWT token"`
}
func main() {
opts := cmdOpts{}
psr := flags.NewParser(&opts, flags.Default)
_, err := psr.Parse()
if err != nil {
os.Exit(1)
}
logger, _ := zap.NewProduction()
signBytes, err := ioutil.ReadFile(opts.PrivateKeyFile)
if err != nil {
logger.Fatal("", zap.Error(err))
}
signKey, err := jwt.ParseRSAPrivateKeyFromPEM(signBytes)
if err != nil {
logger.Fatal("", zap.Error(err))
}
iat := time.Now()
exp := iat.Add(opts.MaxAge)
t := jwt.NewWithClaims(jwt.GetSigningMethod("RS256"), jwt.StandardClaims{
IssuedAt: iat.Unix(),
ExpiresAt: exp.Unix(),
Issuer: "deteco-jwtgen",
Subject: opts.PrivateKeyUser,
})
tokenString, err := t.SignedString(signKey)
if err != nil {
logger.Fatal("", zap.Error(err))
}
fmt.Printf("Authorization: Bearer %s\n", tokenString)
}