Skip to content

ttrtcixy/auth-sdk

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

7 Commits
README.md
README.md
 
 
README.ru.md
README.ru.md
 
 
go.mod
go.mod
 
 
grpc_client.go
grpc_client.go
 
 
http_middleware.go
http_middleware.go
 
 
validator.go
validator.go
 
 

Repository files navigation

auth-sdk

Go SDK for validating JWT access tokens through an auth gRPC service and protecting HTTP handlers with middleware.

Russian

How it works

  • AuthClient connects to the auth gRPC service and loads public RSA keys.
  • TokenValidator parses JWT access tokens, validates required claims, and checks signatures by kid.
  • Public keys are refreshed on demand with a short TTL and concurrency-safe single-flight updates.
  • AuthMiddleware() validates Authorization: Bearer <token> and injects user info into request context.

Usage

package main

import (
	"log/slog"
	"net/http"
	"os"

	authsdk "github.com/ttrtcixy/auth-sdk"
)

func main() {
	logger := slog.New(slog.NewTextHandler(os.Stdout, nil))

	client, err := authsdk.NewAuthClient(logger, &authsdk.Config{
		Host: "127.0.0.1",
		Port: "50051",
	})
	if err != nil {
		panic(err)
	}
	defer client.Close(nil)

	mux := http.NewServeMux()
	mux.Handle("/profile", client.AuthMiddleware()(http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
		user, err := client.UserInfoFromContext(r.Context())
		if err != nil {
			http.Error(w, "user not found in context", http.StatusUnauthorized)
			return
		}

		_, _ = w.Write([]byte("hello, " + user.Username))
	})))

	if err := http.ListenAndServe(":8080", mux); err != nil {
		panic(err)
	}
}

About

No description, website, or topics provided.

Resources

Readme
Activity

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages