Documentation
¶
Overview ¶
Package security contains CLI tooling for automated security analysis: performance regression gates, static-analysis scanner baselines, and related helper scripts.
What this package must NOT do ¶
- Be imported by library code — it exists solely as tooling.
Index ¶
Constants ¶
This section is empty.
Variables ¶
This section is empty.
Functions ¶
func ConstantTimeEqual ¶
Types ¶
type PasswordReport ¶
type Report ¶
type Report struct {
ProductionMode bool
SigningAlgorithm string
ValidationMode int
StrictMode bool
AccessTTL time.Duration
RefreshTTL time.Duration
Argon2 PasswordReport
TOTPEnabled bool
BackupEnabled bool
DeviceBindingEnabled bool
RefreshRotationEnabled bool
RefreshReuseDetectionEnabled bool
SessionCapsActive bool
RateLimitingActive bool
EmailVerificationActive bool
PasswordResetActive bool
}
func BuildReport ¶
func BuildReport(input ReportInput) Report
type ReportInput ¶
type ReportInput struct {
ProductionMode bool
SigningAlgorithm string
ValidationMode int
StrictMode bool
AccessTTL time.Duration
RefreshTTL time.Duration
Password PasswordReport
TOTPEnabled bool
BackupCodeCount int
DeviceBindingEnabled bool
RefreshRotationEnabled bool
RefreshReuseDetectionEnabled bool
EnableRefreshThrottle bool
EmailVerificationEnabled bool
PasswordResetEnabled bool
MaxSessionsPerUser int
MaxSessionsPerTenant int
EnforceSingleSession bool
ConcurrentLoginLimit int
MaxLoginAttempts int
LoginCooldownDuration time.Duration
}
type TOTPConfig ¶
type TOTPManager ¶
type TOTPManager struct {
// contains filtered or unexported fields
}
func NewTOTPManager ¶
func NewTOTPManager(cfg TOTPConfig) *TOTPManager
func (*TOTPManager) GenerateSecret ¶
func (m *TOTPManager) GenerateSecret() ([]byte, string, error)
func (*TOTPManager) ProvisionURI ¶
func (m *TOTPManager) ProvisionURI(secretBase32, account string) string
func (*TOTPManager) VerifyCode ¶
Source Files
Click to show internal directories.
Click to hide internal directories.