mirrors
/
gitea
mirror of https://github.com/go-gitea/gitea.git
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 211 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
7969 Commits
17 Branches
Tree: 3f5cdfe359
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '3f5cdfe359'
${ noResults }
gitea/vendor/github.com/tstranex/u2f/README.md

README.md 2.5KB
Raw Normal View History

Use Go1.11 module (#5743) * Migrate to go modules * make vendor * Update mvdan.cc/xurls * make vendor * Update code.gitea.io/git * make fmt-check * Update github.com/go-sql-driver/mysql * make vendor
5 years ago
 12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576777879808182838485868788899091929394959697 
  1. # Go FIDO U2F Library

  2. 

  3. This Go package implements the parts of the FIDO U2F specification required on

  4. the server side of an application.

  5. 

  6. [![Build Status](https://travis-ci.org/tstranex/u2f.svg?branch=master)](https://travis-ci.org/tstranex/u2f)

  7. 

  8. ## Features

  9. 

  10. - Native Go implementation

  11. - No dependancies other than the Go standard library

  12. - Token attestation certificate verification

  13. 

  14. ## Usage

  15. 

  16. Please visit http://godoc.org/github.com/tstranex/u2f for the full

  17. documentation.

  18. 

  19. ### How to enrol a new token

  20. 

  21. ```go

  22. app_id := "http://localhost"

  23. 

  24. // Send registration request to the browser.

  25. c, _ := NewChallenge(app_id, []string{app_id})

  26. req, _ := c.RegisterRequest()

  27. 

  28. // Read response from the browser.

  29. var resp RegisterResponse

  30. reg, err := Register(resp, c, nil)

  31. if err != nil {

  32.     // Registration failed.

  33. }

  34. 

  35. // Store registration in the database.

  36. ```

  37. 

  38. ### How to perform an authentication

  39. 

  40. ```go

  41. // Fetch registration and counter from the database.

  42. var reg Registration

  43. var counter uint32

  44. 

  45. // Send authentication request to the browser.

  46. c, _ := NewChallenge(app_id, []string{app_id})

  47. req, _ := c.SignRequest(reg)

  48. 

  49. // Read response from the browser.

  50. var resp SignResponse

  51. newCounter, err := reg.Authenticate(resp, c, counter)

  52. if err != nil {

  53.     // Authentication failed.

  54. }

  55. 

  56. // Store updated counter in the database.

  57. ```

  58. 

  59. ## Installation

  60. 

  61. ```

  62. $ go get github.com/tstranex/u2f

  63. ```

  64. 

  65. ## Example

  66. 

  67. See u2fdemo/main.go for an full example server. To run it:

  68. 

  69. ```

  70. $ go install github.com/tstranex/u2f/u2fdemo

  71. $ ./bin/u2fdemo

  72. ```

  73. 

  74. Open https://localhost:3483 in Chrome.

  75. Ignore the SSL warning (due to the self-signed certificate for localhost).

  76. You can then test registering and authenticating using your token.

  77. 

  78. ## Changelog

  79. 

  80. - 2016-12-18: The package has been updated to work with the new

  81.   U2F Javascript 1.1 API specification. This causes some breaking changes.

  82. 

  83.   `SignRequest` has been replaced by `WebSignRequest` which now includes

  84.   multiple registrations. This is useful when the user has multiple devices

  85.   registered since you can now authenticate against any of them with a single

  86.   request.

  87. 

  88.   `WebRegisterRequest` has been introduced, which should generally be used

  89.   instead of using `RegisterRequest` directly. It includes the list of existing

  90.   registrations with the new registration request. If the user's device already

  91.   matches one of the existing registrations, it will refuse to re-register.

  92. 

  93.   `Challenge.RegisterRequest` has been replaced by `NewWebRegisterRequest`.

  94. 

  95. ## License

  96. 

  97. The Go FIDO U2F Library is licensed under the MIT License.