summaryrefslogtreecommitdiff
path: root/pkg/authz/id_token.go
diff options
context:
space:
mode:
Diffstat (limited to 'pkg/authz/id_token.go')
-rw-r--r--pkg/authz/id_token.go40
1 files changed, 40 insertions, 0 deletions
diff --git a/pkg/authz/id_token.go b/pkg/authz/id_token.go
new file mode 100644
index 0000000..b647161
--- /dev/null
+++ b/pkg/authz/id_token.go
@@ -0,0 +1,40 @@
+package authz
+
+import (
+ "encoding/base64"
+ "encoding/json"
+ "errors"
+ "strings"
+ "time"
+)
+
+type IDToken struct {
+ Audience []string `json:"aud"`
+ Email string `json:"email"`
+ EmailVerified bool `json:"email_verified"`
+ ExpiredAt int64 `json:"exp"`
+ IssuedAt int64 `json:"iat"`
+ Issuer string `json:"iss"`
+ Name string `json:"name"`
+ Nickname string `json:"nickname"`
+ Picture string `json:"picture"`
+ Subject string `json:"sub"`
+ UpdatedAt time.Time `json:"updated_at"`
+}
+
+func NewIDToken(raw string) (*IDToken, error) {
+ sections := strings.SplitN(raw, ".", 3)
+ if len(sections) != 3 {
+ return nil, errors.New("Invalid token")
+ }
+ bytes, err := base64.RawURLEncoding.DecodeString(sections[1])
+ if err != nil {
+ return nil, err
+ }
+
+ token := &IDToken{}
+ if err := json.Unmarshal(bytes, token); err != nil {
+ return nil, err
+ }
+ return token, nil
+}
generated by cgit v1.2.3 (git 2.39.1) at 2026-02-02 05:04:58 +0000