AddAuthenticateHeader adds the "WWW-Authenticate" header to the response.

AuhtorizationHandler returns a JWT authorization handler.

ExtractToken extracts a token from a request header.

SignToken signs a token.

VerifyToken verifies a token.

ScopeAllRead represents the global read permission scope.

ScopeAllWrite represents the global write permission scope.

ScopeHideoutRead represents the hideout read permission scope.

ScopeHideoutWrite represents the hideout write permission scope.

ScopeItemRead represents the item read permission scope.

ScopeItemWrite represents the item write permission scope.

ScopeLocationRead represents the location read permission scope.

ScopeLocationWrite represents the location write permission scope.

ScopeStatisticRead represents the statistic read permission scope.

ScopeStatisticWrite represents the statistic write permission scope.

ScopeTokenWrite represents the token write permission scope.

ScopeUserRead represents the user read permission scope.

ScopeUserWrite represents the user write permission scope.

ErrExpiredToken indicates that the token is expired.

ErrInvalidAudience indicates that the audience value does not match.

ErrInvalidAuthHeader indicates that the authorization is invalid.

ErrInvalidScope indicates that a scope value is not valid.

ErrInvalidSubject indicates that the subject value is not valid.

ErrInvalidToken indicates that the token is invalid.

ErrMalformed indicates that the token is malformed.

ErrNoAuthHeader indicates that the authorization is not set.

ErrNotBefore indicates that the token is not yet valid.

Claims represents the claims of a token.