Key Auth Middleware

Key auth middleware provides a key based authentication.

  • For valid key it calls the next handler.
  • For invalid key, it sends “401 - Unauthorized” response.
  • For missing key, it sends “400 - Bad Request” response.

Usage

  1. e.Use(middleware.KeyAuth(func(key string, c echo.Context) (bool, error) {
  2.   return key == "valid-key", nil
  3. }))

Custom Configuration

Usage

  1. e := echo.New()
  2. e.Use(middleware.KeyAuthWithConfig(middleware.KeyAuthConfig{
  3.   KeyLookup: "query:api-key",
  4. }))

Configuration

  1. KeyAuthConfig struct {
  2.   // Skipper defines a function to skip middleware.
  3.   Skipper Skipper
  5.   // KeyLookup is a string in the form of "<source>:<name>" that is used
  6.   // to extract key from the request.
  7.   // Optional. Default value "header:Authorization".
  8.   // Possible values:
  9.   // - "header:<name>"
  10.   // - "query:<name>"
  11.   KeyLookup string `json:"key_lookup"`
  13.   // AuthScheme to be used in the Authorization header.
  14.   // Optional. Default value "Bearer".
  15.   AuthScheme string
  17.   // Validator is a function to validate key.
  18.   // Required.
  19.   Validator KeyAuthValidator
  20. }

Default Configuration

  1. DefaultKeyAuthConfig = KeyAuthConfig{
  2.   Skipper:    DefaultSkipper,
  3.   KeyLookup:  "header:" + echo.HeaderAuthorization,
  4.   AuthScheme: "Bearer",
  5. }