AdminAuthMiddleware is middleware for admin authentication.

ClientCertFromContext gets the reference to the ClientCert stored in the request.Context().

ClientCertFromRequestContext gets the reference to the ClientCert stored in the request.Context().

ClientCertMiddleware enforces that the incoming request includes a known client certificate, and stores the fetched permissions in the session.

CustomerAPIAuthMiddleware checks to see if the request matches one of the routes that should be allowed through with less strict authentication requirements.

DevlocalClientCertMiddleware fakes the client cert as always devlocal.

InitAuth initializes the Okta provider.

IsLoggedInMiddleware handles requests to is_logged_in endpoint by returning true if someone is logged in.

NewAssignUserHandler creates a new AssignUserHandler.

NewAuthContext creates an Context.

NewCallbackHandler creates a new CallbackHandler.

NewCreateAndLoginUserHandler creates a new CreateAndLoginUserHandler.

NewCreateUserHandler creates a new CreateUserHandler.

NewLogoutHandler creates a new LogoutHandler.

NewLogoutOktaRedirectHandler creates a new NewLogoutOktaRedirectHandler.

NewUserListHandler returns a new UserListHandler.

PPTASAuthorizationMiddleware is the PPTAS authorization middleware.

PrimeAuthorizationMiddleware is the prime authorization middleware.

PrimeSimulatorAuthorizationMiddleware ensures only users with the prime simulator role can access the simulator.

SetClientCertInRequestContext returns a copy of the request's Context() with the client certificate data.

StateCookieName returns the okta.mil state cookie name.

UserAuthMiddleware enforces that the incoming request is tied to a user session.

AdminUserType is the type of user for an admin user.

CustomerServiceRepresentativeOfficeUserType is the Customer Service Representative type of user for an Office user.

GSROfficeUserType is a type of user for a GSR user.

HQOfficeUserType is a type of user for a HQ user.

MilMoveUserType is the type of user for a Service Member.

MultiRoleOfficeUserType has all the Office user roles.

PrimeSimulatorOfficeUserType is the type of user for an Office user.

QaeOfficeUserType is a type of user for an Office user.

ServicesCounselorOfficeUserType is the type of user for an Office User.

TIOOfficeUserType is the type of user for an Office user.

TOOOfficeUserType is the type of user for an Office user.

CallbackHandler processes a callback from okta.mil.

Context is the common handler type for auth handlers.

FeatureFlag holds the name of a feature flag and if it is enabled.

LogoutHandler handles logging the user out of okta.mil.

LogoutOktaRedirectHandler handles logging the user out of okta.mil and then redirecting the user BACK to the sign in page this will be used for customers that are required to authenticate with CAC first.

RedirectHandler handles redirection.

UserListHandler handles redirection.

AssignUserHandler logs a user in directly.

used by authorizeKnownUser and authorizeUnknownUser.

CreateAndLoginUserHandler creates and then logs in a new user.

CreateUserHandler creates a new user.