AuthorizeScopes uses the provided manager and user to filter the provided scopes and returns a mapping of only the authorized scopes.

FromContext returns the AuthRecord value stored in ctx, if any.

GetSessionRef builds a per user and audience unique identifier.

GetUserClaimsForScopes returns a mapping of user claims of the provided user filtered by the provided scopes.

NewAuthRecord returns a implementation of identity.AuthRecord holding the provided data in memory.

NewContext returns a new Context that carries value auth.

NewLoginRequiredError creates a new corresponding error with the provided id.

NewRedirectError creates a new corresponding error with the provided id and redirect URL.

Config defines a IdentityManager's configuration settings.

IsHandledError is an error which tells that the backend has handled the request and all further handling should stop.

LoginRequiredError which backends can return to indicate that sign-in is required.

RedirectError is an error which backends can return if a redirection is required.

AuthRecord is an interface which provides identity auth information with scopes and claims..

Manager is a interface to define a identity manager.

PublicUser is a user with a public Subject and a raw id.

User defines a most simple user with an id defined as subject.

UserWithClaims is a User with jwt claims.

UserWithEmail is a User with Email.

UserWithID is a User with a locally unique numeric id.

UserWithProfile is a User with Name.

UserWithScopedClaims is a user with jwt claims bound to provided scopes.

UserWithSessionRef is a user which supports an underlaying session reference.

UserWithUniqueID is a User with a unique string id.

UserWithUsername is a User with an username different from subject.