Merge branch 'main' of https://github.com/passageidentity/example-go

Author: dylanbrookes

.github/CODEOWNERS

@@ -0,0 +1,2 @@
+# Default global owners for example-go
+*       @calhorn95 @dylanbrookes

Dockerfile

@@ -1,4 +1,4 @@
-FROM golang:1.15
+FROM golang:1.15-alpine
 
 WORKDIR /app
 

README.md

@@ -2,6 +2,40 @@
 
 Passage provides an SDK to easily authenticate HTTP requests. Example source code can be found on GitHub, [here](https://github.com/passageidentity/example-go).
 
+### Setup
+
+For this example app, we'll need to provide our application with a Passage App ID and API Key. Your App ID and API Key can be found in the [Passage Console](https://console.passage.id) in your App Settings. You'll need to set the following environment variables with your respective credentials:
+
+```bash
+PASSAGE_APP_ID=
+PASSAGE_API_KEY=
+PORT=5000
+```
+
+### Run With Go
+
+To run this example app, make sure you have [Go installed on your computer](https://golang.org/doc/install).
+
+Run the following command:
+
+```bash
+go run main.go
+```
+
+### Run With Docker
+
+Create your docker image with the following command:
+
+```bash
+$ docker build -t example-go .
+```
+
+Run your docker container using the example-go image:
+
+```bash
+$ docker run -p 5000:5000 example-go
+```
+
 ### Authenticating an HTTP Request
 
 A Go server can easily authenticate an HTTP request using the Passage SDK, as shown below.
@@ -16,7 +50,7 @@ import (
 func exampleHandler(w http.ResponseWriter, r *http.Request) {
 
 	// Authenticate this request using the Passage SDK.
-	psg := passage.New("<Passage App Handle>")
+	psg := passage.New("<Passage App ID>")
 	_, err := psg.AuthenticateRequest(r)
 	if err != nil {
 		w.WriteHeader(http.StatusUnauthorized)
@@ -30,22 +64,22 @@ func exampleHandler(w http.ResponseWriter, r *http.Request) {
 
 ### Authorizing a User
 
-It is important to remember that the `psg.AuthenticateRequest()` function validates that a request is properly authenticated, but makes no assertions about *who* it is authorized for. To perform an authorization check, the Passage User Handle can be referenced.
+It is important to remember that the `psg.AuthenticateRequest()` function validates that a request is properly authenticated, but makes no assertions about _who_ it is authorized for. To perform an authorization check, the Passage User Handle can be referenced.
 
 ```go
 func exampleHandler(w http.ResponseWriter, r *http.Request) {
 
 	// Authenticate this request using the Passage SDK.
-	psg := passage.New("<Passage App Handle>")
-	passageHandle, err := psg.AuthenticateRequest(r)
+	psg := passage.New("<Passage App ID>")
+	passageUserID, err := psg.AuthenticateRequest(r)
 	if err != nil {
 		w.WriteHeader(http.StatusUnauthorized)
 		return
 	}
 
 	// Check that the user with `passageHandle` is allowed to perform
 	// a certain action on a certain resource.
-	err = authorizationCheck(passageHandle)
+	err = authorizationCheck(passageUserID)
 	if err != nil {
 		w.WriteHeader(http.StatusUnauthorized)
 		return
@@ -57,19 +91,21 @@ func exampleHandler(w http.ResponseWriter, r *http.Request) {
 ```
 
 ## Get User
- To get user information, you can use the Passage SDK with an API key. This will authenticate your web server to Passage and grant you management
- access to user information. API keys should never be hard-coded in source code, but stored in environment variables or a secrets storage mechanism.
+
+To get user information, you can use the Passage SDK with an API key. This will authenticate your web server to Passage and grant you management
+access to user information. API keys should never be hard-coded in source code, but stored in environment variables or a secrets storage mechanism.
+
 ```go
 
-	psg := passage.New("<Passage App Handle>", "<API_KEY>")
-	passageHandle, err := psg.AuthenticateRequest(r)
+	psg := passage.New("<Passage App ID>", "<API_KEY>")
+	passageUserID, err := psg.AuthenticateRequest(r)
 	if err != nil {
 		w.WriteHeader(http.StatusUnauthorized)
 		return
 	}
-   
+
     //information regarding the user will exist in the user variable
-	user, err := psg.GetUser(passageHandle)
+	user, err := psg.GetUser(passageUserID)
 	if err != nil {
 		fmt.Println("Could not get user: ", err)
 		return
@@ -82,8 +118,8 @@ The easiest way to add authentication to a web frontend is with a Passage Elemen
 
 ```html
 <!-- Passage will populate this custom element with a complete authentication UI/UX. -->
-<passage-auth app-id="<Passage App Handle>"></passage-auth>
+<passage-auth app-id="<Passage App ID>"></passage-auth>
 
 <!-- Include the passage-web JavaScript from the Passage CDN. -->
 <script src="https://cdn.passage.id/passage-web.js"></script>
-```
+```

go.mod

@@ -2,4 +2,7 @@ module github.com/passageidentity/example-go
 
 go 1.15
 
-require github.com/passageidentity/passage-go v1.1.4-0.20220218163302-b39181e3aa63 // indirect
+require (
+	github.com/joho/godotenv v1.4.0
+	github.com/passageidentity/passage-go v1.1.4-0.20220218163302-b39181e3aa63
+)

go.sum

@@ -2,11 +2,8 @@ github.com/davecgh/go-spew v1.1.0 h1:ZDRjVQ15GmhC3fiQ8ni8+OwkZQO4DARzQgrnXU1Liz8
 github.com/davecgh/go-spew v1.1.0/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38=
 github.com/golang-jwt/jwt v3.2.2+incompatible h1:IfV12K8xAKAnZqdXVzCZ+TOjboZ2keLg81eXfW3O+oY=
 github.com/golang-jwt/jwt v3.2.2+incompatible/go.mod h1:8pz2t5EyA70fFQQSrl6XZXzqecmYZeUEB8OUGHkxJ+I=
+github.com/joho/godotenv v1.4.0 h1:3l4+N6zfMWnkbPEXKng2o2/MR5mSwTrBih4ZEkkz1lg=
 github.com/joho/godotenv v1.4.0/go.mod h1:f4LDr5Voq0i2e/R5DDNOoa2zzDfwtkZa6DnEwAbqwq4=
-github.com/passageidentity/passage-go v1.1.1 h1:nfc29QFPOhFrdcKr9pU5K4pVhsI+aWxtSxLSWjX4GPE=
-github.com/passageidentity/passage-go v1.1.1/go.mod h1:UvFvzPuSKx16jwWXti/JIaW9+3MfJw2fE+PbMV43I5I=
-github.com/passageidentity/passage-go v1.1.3 h1:u9dDsyuZUz8T6osXoafG4f3d6YDEpZbOFrwluH16PsI=
-github.com/passageidentity/passage-go v1.1.3/go.mod h1:bXWdkaW7wJ8Aq4qGalP22UaGxqzzud1+4nDxhJRZuPw=
 github.com/passageidentity/passage-go v1.1.4-0.20220218163302-b39181e3aa63 h1:asg2XadY5lbNEZwrN8vTSuziIFly4FoEKWd0emI9tLE=
 github.com/passageidentity/passage-go v1.1.4-0.20220218163302-b39181e3aa63/go.mod h1:bXWdkaW7wJ8Aq4qGalP22UaGxqzzud1+4nDxhJRZuPw=
 github.com/pmezard/go-difflib v1.0.0 h1:4DBwDE0NGyQoBHbLQYPwSUPoCMWR5BEzIk/f1lZbAQM=

main.go

@@ -2,23 +2,36 @@ package main
 
 import (
 	"fmt"
+	"log"
 	"net/http"
 	"os"
 	"text/template"
 
+	"github.com/joho/godotenv"
 	"github.com/passageidentity/passage-go"
 )
 
 func main() {
+	err := godotenv.Load(".env")
+	if err != nil {
+		log.Fatal("Failed to read .env variables")
+	}
+	
+	port := os.Getenv("PORT")
+	if port == "" {
+		log.Fatal("PORT environment variable required")
+	}
+
 	http.HandleFunc("/", indexHandler)
 	http.HandleFunc("/dashboard", dashboardHandler)
 	http.Handle("/assets/", http.FileServer(http.Dir("./templates")))
 
-	http.ListenAndServe(":"+os.Getenv("PORT"), nil)
+	http.ListenAndServe(":"+port, nil)
 }
 
 func indexHandler(w http.ResponseWriter, r *http.Request) {
-	http.ServeFile(w, r, "templates/index.html")
+	inputArgs := map[string]interface{}{"appID": os.Getenv("PASSAGE_APP_ID")}
+	outputHTML(w, "templates/index.html", inputArgs)
 }
 
 func outputHTML(w http.ResponseWriter, filename string, data interface{}) {
@@ -35,7 +48,7 @@ func outputHTML(w http.ResponseWriter, filename string, data interface{}) {
 
 func dashboardHandler(w http.ResponseWriter, r *http.Request) {
 	// Authenticate this request using the Passage SDK.
-	psg, err := passage.New("KZ520QJSiFRLvbBvraaAgYuf", &passage.Config{APIKey: os.Getenv("PASSAGE_API_KEY")})
+	psg, err := passage.New(os.Getenv("PASSAGE_APP_ID"), &passage.Config{APIKey: os.Getenv("PASSAGE_API_KEY")})
 	if err != nil {
 		fmt.Println("Cannot create psg: ", err)
 	}
@@ -50,6 +63,12 @@ func dashboardHandler(w http.ResponseWriter, r *http.Request) {
 		fmt.Println("Could not get user: ", err)
 		return
 	}
-	inputArgs := map[string]interface{}{"email": user.Email}
+	var identifier string
+	if user.Email != "" {
+		identifier = user.Email
+	} else {
+		identifier = user.Phone
+	}
+	inputArgs := map[string]interface{}{"identifier": identifier}
 	outputHTML(w, "templates/dashboard.html", inputArgs)
 }

templates/dashboard.html

@@ -22,7 +22,7 @@
   <div class="bg-poly"></div>
 
   <div class=header>
-    {{.email}} signed in
+    {{.identifier}} signed in
     <br>
     with <strong>Passage.</strong>
   </div>

templates/index.html

@@ -1,48 +1,61 @@
 <!DOCTYPE html>
 <html lang="en">
-<head>
-  <meta charset="UTF-8">
-  <meta http-equiv="X-UA-Compatible" content="IE=edge">
-  <meta name="viewport" content="width=device-width, initial-scale=1.0">
-  <link href="https://fonts.googleapis.com/css2?family=Nunito:wght@300&display=swap" rel="stylesheet">
-  <link href="https://fonts.googleapis.com/css2?family=Lexend+Deca&display=swap" rel="stylesheet">
-  <link href="https://cdn.jsdelivr.net/npm/[email protected]/dist/css/bootstrap.min.css" rel="stylesheet" integrity="sha384-+0n0xVW2eSR5OomGNYDnhzAbDsOXxcvSN1TPprVMTNDbiYZCxYbOOl7+AMvyTG2x" crossorigin="anonymous">
-  <link rel="stylesheet" href="assets/style.css">
-  <link rel="stylesheet" href="assets/index.css">
-  <title>Try Passage</title>
-  <script async src="https://www.googletagmanager.com/gtag/js?id=G-B8V1R3HRNB"></script>
-  <script>
-    window.dataLayer = window.dataLayer || [];
-    function gtag(){dataLayer.push(arguments);}
-    gtag('js', new Date());
-    gtag('config', 'G-B8V1R3HRNB');
-  </script>
-</head>
-<body>
-  <div class="bg-poly"></div>
+  <head>
+    <meta charset="UTF-8" />
+    <meta http-equiv="X-UA-Compatible" content="IE=edge" />
+    <meta name="viewport" content="width=device-width, initial-scale=1.0" />
+    <link
+      href="https://fonts.googleapis.com/css2?family=Nunito:wght@300&display=swap"
+      rel="stylesheet"
+    />
+    <link
+      href="https://fonts.googleapis.com/css2?family=Lexend+Deca&display=swap"
+      rel="stylesheet"
+    />
+    <link
+      href="https://cdn.jsdelivr.net/npm/[email protected]/dist/css/bootstrap.min.css"
+      rel="stylesheet"
+      integrity="sha384-+0n0xVW2eSR5OomGNYDnhzAbDsOXxcvSN1TPprVMTNDbiYZCxYbOOl7+AMvyTG2x"
+      crossorigin="anonymous"
+    />
+    <link rel="stylesheet" href="assets/style.css" />
+    <link rel="stylesheet" href="assets/index.css" />
+    <title>Try Passage</title>
+    <script
+      async
+      src="https://www.googletagmanager.com/gtag/js?id=G-B8V1R3HRNB"
+    ></script>
+    <script>
+      window.dataLayer = window.dataLayer || [];
+      function gtag() {
+        dataLayer.push(arguments);
+      }
+      gtag("js", new Date());
+      gtag("config", "G-B8V1R3HRNB");
+    </script>
+  </head>
+  <body>
+    <div class="bg-poly"></div>
 
-  <div class=header>
-    build amazing things
-    <br>
-    with <strong>Passage.</strong>
-  </div>
-  
-  <div class="form-container">
-    <!-- Passage will populate this custom element with a complete authentication UI/UX. -->
-    <passage-auth app-id="KZ520QJSiFRLvbBvraaAgYuf"></passage-auth>
-    <!-- Include the passage-web JavaScript from the Passage CDN. -->
-    <script src="https://cdn.passage.id/passage-web.js"></script>
-  </div>
+    <div class="header">
+      build amazing things
+      <br />
+      with <strong>Passage.</strong>
+    </div>
 
-  <div class="footer">
-    Implement awesome authentication with two lines of code.
-    <br>
-    <a href="https://passage.id">
-      <button class="btn btn-lg">
-        Request Early Access
-      </button>
-    </a>
-  </div>
+    <div class="form-container">
+      <!-- Passage will populate this custom element with a complete authentication UI/UX. -->
+      <passage-auth app-id="{{.appID}}"></passage-auth>
+      <!-- Include the passage-web JavaScript from the Passage CDN. -->
+      <script src="https://cdn.passage.id/passage-web.js"></script>
+    </div>
 
-</body>
+    <div class="footer">
+      Implement awesome authentication with two lines of code.
+      <br />
+      <a href="https://passage.id">
+        <button class="btn btn-lg">Request Early Access</button>
+      </a>
+    </div>
+  </body>
 </html>