AJ ONeal 0d99234914

ref!(auth/jwt): variadic requiredScopes in NewAccessTokenValidator ...

Distinguishes the two validator constructors by signature:
- NewIDTokenValidator(iss, aud, azp []string) — allowlist semantics
- NewAccessTokenValidator(iss, aud []string, requiredScopes ...string) — requirement semantics

Variadic scopes read naturally at the call site:
  NewAccessTokenValidator(issuers, audiences, "openid", "profile")

Three-state semantics preserved:
  no args        → scope not checked
  []string{}...  → scope must be present (any value)
  "openid", ...  → scope must contain all listed values

Also removes the old gracePeriod parameter from both constructors
(was 0 at all call sites; set GracePeriod on the struct directly
if a non-default value is needed).

Adds TestCov_NewAccessTokenValidator_Scopes covering all three cases.

2026-03-17 08:00:45 -06:00

..

csvauth

ref(auth/csvauth): don't hold mutex longer than necessary

2026-03-03 03:05:05 -07:00

envauth

doc(auth/envauth): add Go Reference badge

2025-10-11 19:06:44 -06:00

jwt

ref!(auth/jwt): variadic requiredScopes in NewAccessTokenValidator

2026-03-17 08:00:45 -06:00

auth.go

feat(auth): add BasicVerifier, BasicAuthenticator, and BasicPrinciple for interfaces without implementation dependency

2026-02-26 20:03:43 -07:00

go.mod

feat(auth): add BasicVerifier, BasicAuthenticator, and BasicPrinciple for interfaces without implementation dependency

2026-02-26 20:03:43 -07:00

request_example_test.go

fix(auth): update test

2026-03-03 00:01:15 -07:00

request.go

fix(auth): add missing arg to NewBasicRequestAuthenticator

2026-03-02 23:18:05 -07:00