💾 Archived View for godocs.io › golang.org › x › oauth2 › authhandler captured on 2024-02-05 at 10:30:36. Gemini links have been rewritten to link to archived content

View Raw

More Information

⬅️ Previous capture (2023-12-28)

➡️ Next capture (2024-03-21)

🚧 View Differences

-=-=-=-=-=-=-

package authhandler - golang.org/x/oauth2/authhandler - godocs.io

import "golang.org/x/oauth2/authhandler"

Package authhandler implements a TokenSource to support "three-legged OAuth 2.0" via a custom AuthorizationHandler.

Functions

func TokenSource

func TokenSource(ctx context.Context, config *oauth2.Config, state string, authHandler AuthorizationHandler) oauth2.TokenSource

TokenSource returns an oauth2.TokenSource that fetches access tokens using 3-legged-OAuth flow.

The provided context.Context is used for oauth2 Exchange operation.

The provided oauth2.Config should be a full configuration containing AuthURL, TokenURL, and Scope.

An environment-specific AuthorizationHandler is used to obtain user consent.

Per the OAuth protocol, a unique "state" string should be specified here. This token source will verify that the "state" is identical in the request and response before exchanging the auth code for OAuth token to prevent CSRF attacks.

func TokenSourceWithPKCE

func TokenSourceWithPKCE(ctx context.Context, config *oauth2.Config, state string, authHandler AuthorizationHandler, pkce *PKCEParams) oauth2.TokenSource

TokenSourceWithPKCE is an enhanced version of TokenSource with PKCE support.

The pkce parameter supports PKCE flow, which uses code challenge and code verifier to prevent CSRF attacks. A unique code challenge and code verifier should be generated by the caller at runtime. See https://www.oauth.com/oauth2-servers/pkce/ for more info.

Types

type AuthorizationHandler

type AuthorizationHandler func(authCodeURL string) (code string, state string, err error)

AuthorizationHandler is a 3-legged-OAuth helper that prompts the user for OAuth consent at the specified auth code URL and returns an auth code and state upon approval.

type PKCEParams

type PKCEParams struct {
	Challenge       string // The unpadded, base64-url-encoded string of the encrypted code verifier.
	ChallengeMethod string // The encryption method (ex. S256).
	Verifier        string // The original, non-encrypted secret.
}

PKCEParams holds parameters to support PKCE.

Details

Version: v0.16.0 (latest)

• Published: Jan 8, 2024

Platform: linux/amd64

Imports: 3 packages

• Last checked: 5 hours ago

Refresh now

Back to home

Search