ocrosby/auth_nexus

A monorepo to house a generic solution for OAuth 2 authentication and authorization.

AuthNexus

A monorepo to house a generic solution for OAuth 2 authentication and authorization.

Overview

OAuth 2.0

sequenceDiagram
    participant U as User
    participant C as Client
    participant A as Authorization Server
    participant R as Resource Server

    U->>C: Request access to resources
    C->>U: Redirect to Authorization Server login
    U->>A: Login and approve access
    A->>U: Authorization code
    U->>C: Redirect with authorization code
    C->>A: Exchange authorization code for access token
    A->>C: Access token
    C->>R: Request resources with access token
    R->>C: Resources

Loading

Registration

sequenceDiagram
participant U as User
participant C as Client
participant A as Authorization Server

    U->>C: Request to register
    C->>A: Initiate registration process
    A->>U: Request user details
    U->>A: Submit user details
    A->>A: Validate and create user account
    A->>U: Confirm registration success

Loading

Authentication

sequenceDiagram
participant U as User
participant C as Client
participant A as Authorization Server

    U->>C: Request to authenticate
    C->>A: Redirect user to Authorization Server
    A->>U: Request credentials
    U->>A: Submit credentials
    A->>A: Validate credentials
    A-->>U: Authentication success or failure
    alt Authentication Success
        A->>C: Redirect with access token
    else Authentication Failure
        A->>U: Show error message
    end

Loading

Authroization with JWT

sequenceDiagram
participant U as User
participant C as Client
participant A as Authorization Server
participant R as Resource Server

    U->>C: Request access to protected resource
    alt JWT exists and is valid
        C->>R: Request resource with JWT
        R->>C: Provide resource
    else JWT not present or invalid
        C->>U: Redirect to Authorization Server
        U->>A: Authenticate and request JWT
        A-->>U: Provide JWT
        U->>C: Provide JWT to Client
        C->>R: Request resource with JWT
        R->>C: Provide resource
    end

Loading

Usage

When updating a shared dependency, you can do so in it's own project directory and then run go mod tidy in each dependent project to ensure they are using the updated version.

References

• OAuth 2.0
• JWT
• OpenID Connect
• The Twelve-Factor App
• Configuration with Viper in Go
• Viper Configuration Package on GitHub
• Go Backend Clean Architecture
• Test Containers for Go
• Project Documentation
• How to use Godog for BDD development in Go
• Example Go Monorepo
• Go Project Structure Monorepo
• How to create and use a Go monorepo
• Getting started with multi-module workspaces in Go
• Get familiar with workspaces
• How I write HTTP services in Go
• Local Development of Go Applications with Testcontainers
• Logging HTTP Requests in Go
• Swagger UI