SigNoz/signoz
1
0
Fork 0
mirror of https://github.com/SigNoz/signoz.git synced 2026-03-17 02:12:12 +00:00
Code Issues Actions 2 Packages Projects Releases Wiki Activity
Files
daa73b9d196bcfdca2996ffd8ebd4c1c6b8bcdee
signoz/pkg/modules/session/session.go
Vibhu Pandey c122bc09b4 feat(tokenizer|sso): add tokenizer for session management and oidc sso support (#9183) 
## 📄 Summary

- Instead of relying on JWT for session management, we are adding another token system: opaque. This gives the benefits of expiration and revocation.

- We are now ensuring that emails are regex checked throughout the backend.

- Support has been added for OIDC protocol
2025-10-16 18:00:38 +05:30

61 lines
2.2 KiB
Go
Raw Blame History

package session
import (
"context"
"net/http"
"net/url"
"time"
"github.com/SigNoz/signoz/pkg/types/authtypes"
"github.com/SigNoz/signoz/pkg/valuer"
)
type Module interface {
// This is soon be removed.
DeprecatedCreateSessionByEmailPassword(ctx context.Context, email valuer.Email, password string) (*authtypes.Token, error)
// Gets the session context for the user. The context contains information on what the user has to do in order to create a session.
GetSessionContext(ctx context.Context, email valuer.Email, siteURL *url.URL) (*authtypes.SessionContext, error)
// Create a session for a user using password authn provider.
CreatePasswordAuthNSession(ctx context.Context, authNProvider authtypes.AuthNProvider, email valuer.Email, password string, orgID valuer.UUID) (*authtypes.Token, error)
// Create a session for a user using callback authn providers.
CreateCallbackAuthNSession(ctx context.Context, authNProvider authtypes.AuthNProvider, values url.Values) (string, error)
// Rotate a token.
RotateSession(ctx context.Context, accessToken string, refreshToken string) (*authtypes.Token, error)
// Delete a session.
DeleteSession(ctx context.Context, accessToken string) error
// Get the rotation interval for the session.
GetRotationInterval(ctx context.Context) time.Duration
}
type Handler interface {
// Get the session context for the user.
GetSessionContext(http.ResponseWriter, *http.Request)
// Create a session for a user using email and password.
DeprecatedCreateSessionByEmailPassword(http.ResponseWriter, *http.Request)
// Create a session for a user using email and password.
CreateSessionByEmailPassword(http.ResponseWriter, *http.Request)
// Create a session for a user using google callback.
CreateSessionByGoogleCallback(http.ResponseWriter, *http.Request)
// Create a session for a user using saml callback.
CreateSessionBySAMLCallback(http.ResponseWriter, *http.Request)
// Create a session for a user using oidc callback.
CreateSessionByOIDCCallback(http.ResponseWriter, *http.Request)
// Rotate a token.
RotateSession(http.ResponseWriter, *http.Request)
// Delete a session.
DeleteSession(http.ResponseWriter, *http.Request)
}
Reference in New Issue View Git Blame Copy Permalink