ChannelAccessTokenFromRequest reads and returns signed JWT from request.

ChannelAuthorizerMiddleware calls an undelying http.Handler once and only there is a valid JWT provided in Authorization header.

NewOneTimeTokenAuthenticator returns an instance of *OneTimeTokenAuthenticator that uses src as a token source.

ParseChannelAccessTokenClaims verifies and parses signed JWT string and returns encoded JWTChannelClaims.

StoreChannelAccessToken writes tokenString into Auth= cookie expiring in expTime.

TokenAuthenticationMiddleware wraps an http.Handler and checks if the request contains token parameter which value can be authenticated by given authenticator.

ChannelAccessTokenExpirationPeriod is the default channel access expiration period.

DefaultTokenLength is the default length for IssueToken.

None is TokenAuthenticator and TokenIssuer that always issues an empty token and authenticates everything.

OneTimeTokenAuthenticator issues tokens that can be used for authorization only once.

TokenAuthenticator is an interface that wraps Authenticate method.

TokenGenerator is an interface that wraps Generate method.

TokenIssuer is an interface that wraps IssueToken method.