Go guardian
Go-Guardian is a golang library that provides a simple, clean, and idiomatic way to create powerful modern API and web authentication.
Go-Guardian is a golang library that provides a simple, clean, and idiomatic way to create powerful modern API and web authentication. The project is written primarily in Go, distributed under the MIT License license, first published in 2020. Key topics include: 2fa, auth, authentication, authenticator, bearer-tokens.
| :exclamation: Cache package has been moved to libcache repository |
|---|
Go-Guardian
Go-Guardian is a golang library that provides a simple, clean, and idiomatic way to create powerful modern API and web authentication.
Overview
Go-Guardian sole purpose is to authenticate requests, which it does through an extensible set of authentication methods known as strategies.<br>
Go-Guardian does not mount routes or assume any particular database schema, which maximizes flexibility and allows decisions to be made by the developer.<br>
The API is simple: you provide go-guardian a request to authenticate, and go-guardian invoke strategies to authenticate end-user request.<br>
Strategies provide callbacks for controlling what occurs when authentication should succeeds or fails.
Installing
Using go-guardian is easy. First, use go get to install the latest version of the library.
shgo get github.com/shaj13/go-guardian/v2
Next, include go-guardian in your application:
goimport "github.com/shaj13/go-guardian/v2"
Why Go-Guardian?
When building a modern application, you don't want to implement authentication module from scratch;<br>
you want to focus on building awesome software. go-guardian is here to help with that.
Here are a few bullet point reasons you might like to try it out:
- provides simple, clean, and idiomatic API.
- provides top trends and traditional authentication methods.
- provides two-factor authentication and one-time password as defined in RFC-4226 and RFC-6238
- provides a mechanism to customize strategies, even enables writing a custom strategy
Strategies
JWT, Opaque, and oauth2 packages provide early access to advanced or experimental
functionality to get community feedback. Their APIs and functionality may be subject to
breaking changes in future releases.
- JWT
- Opaque(server-side consistent tokens)
- Oauth2-JWT
- Oauth2-Introspection
- Oauth2-OpenID-userinfo
- OpenID-IDToken
- kubernetes (Token Review)
- 2FA
- Certificate-Based
- Bearer-Token
- Static-Token
- LDAP
- Basic
- Digest
- Union
Examples
Examples are available on GoDoc or Examples Folder.
Documentation
API docs are available on GoDoc.
Contributing
- Fork it
- Download your fork to your PC (
git clone https://github.com/your_username/go-guardian && cd go-guardian) - Create your feature branch (
git checkout -b my-new-feature) - Make changes and add them (
git add .) - Commit your changes (
git commit -m 'Add some feature') - Push to the branch (
git push origin my-new-feature) - Create new pull request
License
Go-Guardian is released under the MIT license. See LICENSE
Contributors
Showing top 6 contributors by commit count.
Related Repositories
tailscale/tailscale
The easiest, most secure way to use WireGuard and 2FA.
authelia/authelia
The Single Sign-On Multi-Factor portal for web apps, now OpenID Certified™
ente/ente
💚 End-to-end encrypted cloud for everything.
zitadel/zitadel
ZITADEL - Identity infrastructure, simplified for you.
beemdevelopment/Aegis
A free, secure and open source app for Android to manage your 2-step verification tokens.
teamhanko/hanko
Modern authentication, on your terms. Open source alternative to Auth0, Clerk, WorkOS, Stytch.