Charon v3.1.1

API Reference Charon v3.1.1

modules

 Modules

Charon

Authentication & sessions for API's.

Charon.Config

Config struct.

Charon.Models.Session

A session.

Charon.Models.Tokens

Tokens to be communicated to the client.

Charon.SessionPlugs

Plugs to create, update/refresh and delete sessions. When creating or updating a session, new tokens are created as well.

Charon.SessionPlugs.InsecureTokenTransportError

Error raised when token transport method "bearer" is requested by a browser client.

Charon.SessionPlugs.SessionStorageError

Error raised when a new/updated session could not be stored.

Charon.SessionPlugs.SessionUpdateConflictError

Error raised on an optimistic locking error when updating an existing session.

Charon.SessionStore

The persistent session store. See Charon.SessionStore.Behaviour for callbacks. All functions delegate to the configured session store module.

Charon.SessionStore.Behaviour

Behaviour definition of a persistent session store. Clients should not use the implementation directly, but should use Charon.SessionStore.

Charon.SessionStore.DummyStore

A dummy session store that can be used if fully stateless tokens are desired.

Charon.SessionStore.LocalStore

An in-memory persistent session store, implements behaviour Charon.SessionStore. In addition to the required callbacks, this store also provides get_all/3 and delete_all/3 (for a user) functions.

Charon.SessionStore.RedisStore

A persistent session store based on Redis, which implements behaviour Charon.SessionStore. In addition to the required callbacks, this store also provides get_all/3 and delete_all/3 (for a user) functions.

Charon.SessionStore.RedisStore.Config

Config module for Charon.SessionStore.RedisStore.

Charon.TestHelpers

Utility functions for writing tests.

Charon.TokenFactory

Entrypoint for Charon.TokenFactory.Behaviour implementation. All functions delegate to the configured module.

Charon.TokenFactory.Behaviour

Behaviour for token-signing modules.

Charon.TokenFactory.Jwt

JWT's with either symmetric (HMAC) or asymmetric (EDDSA) signatures. The default, simplest and most performant option is symmetric signatures (MAC), with the key derived from the Charon base secret.

Charon.TokenFactory.Jwt.Config

Config module for Charon.TokenFactory.Jwt.

Charon.TokenPlugs

The plugs in this module (and its submodules) can be used to verify tokens. The token's presence, signature, expiration and any claims can be checked. Additionally, the token's session can be loaded and, in case of a refresh token, it can be verified that it matches the session.

Charon.TokenPlugs.PutAssigns

After verifying everything you would want to verify about a token, assign the following to the conn

Charon.Utils

Utility functions, mainly getters and setters for module internals.

Charon.Utils.KeyGenerator

Derive a key from a base secret using PBKDF2.