Skip to content

ayuspoudel/go-csrf-auth-api

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

27 Commits
alice-usage
alice-usage
 
 
db
db
 
 
randomStrings
randomStrings
 
 
server
server
 
 
.gitignore
.gitignore
 
 
customnoteshttppackage.md
customnoteshttppackage.md
 
 
go.mod
go.mod
 
 
go.sum
go.sum
 
 
main.go
main.go
 
 
readme.md
readme.md
 
 

Repository files navigation

Golang Auth API

Author: Ayush Poudel

This is a simple golang api that features RSA-signed JWT access tokens, rotating refresh tokens, CSRF protection, and HTTP-only secure cookie handling; built with net/http for maximum control and minimal attack surface.

It utilized net/http package, justinas/alice for middleware pipeline (example usage of justinas can be found in alice-usage/ at root)

Features

  • RSA-signed JWT access tokens
  • Rotating refresh tokens
  • CSRF protection
  • HTTP-only secure cookie handling
  • Middleware pipeline with justinas/alice
  • Simple HTML templates for testing
  • SQLite database for user storage
  • Bcrypt password hashing
  • Clear project structure
  • Comprehensive error handling
  • Comments and documentation for clarity
  • Easy to extend and customize
  • No external web frameworks for minimal attack surface
  • Uses Go's standard net/http package for HTTP handling
  • Modular middleware for authentication and CSRF protection
  • Simple and intuitive API design
  • Ready for production use with security best practices
  • Lightweight and efficient implementation
  • Focus on security and best practices

About

Golang authentication API featuring RSA-signed JWT access tokens, rotating refresh tokens, CSRF protection, and HTTP-only secure cookie handling; built with net/http for maximum control and minimal attack surface.

Resources

Readme
Activity

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages