Name		Name	Last commit message	Last commit date
Latest commit History 34 Commits
.github/workflows		.github/workflows
examples		examples
.gitignore		.gitignore
Makefile		Makefile
formatter.go		formatter.go
go.mod		go.mod
go.sum		go.sum
int_encoding.go		int_encoding.go
int_encoding_test.go		int_encoding_test.go
license.md		license.md
path_formatter.go		path_formatter.go
path_formatter_test.go		path_formatter_test.go
query_formatter.go		query_formatter.go
query_formatter_test.go		query_formatter_test.go
readme.md		readme.md
signer.go		signer.go
signer_test.go		signer_test.go

Repository files navigation

surl

Create signed URLs in Go.

Installation

go get github.com/leg100/surl@latest

Usage

package main

import (
	"fmt"
	"log"
	"time"

	"github.com/leg100/surl"
)

func main() {
	signer := surl.New([]byte("secret_sesame"))

	// Create a signed URL that expires in one hour.
	signed, _ := signer.Sign("https://example.com/a/b/c?foo=bar", time.Hour)
	fmt.Println(signed)
	// Outputs something like:
	// https://example.com/a/b/c?expiry=1667331055&foo=bar&signature=TGvxmRwpoAUt9YEIbeJ164lMYrzA2DBnYB9Lcy9m1T

	err := signer.Verify(signed)
	if err != nil {
		log.Fatal("verification failed: ", err.Error())
	}
	fmt.Println("verification succeeded")
}

Options

The format and behaviour of signed URLs can be configured by passing options to the constructor.

Query Formatter

surl.New(secret, surl.WithQueryFormatter())

The query formatter is the default format. It stores the signature and expiry in query parameters:

https://example.com/a/b/c?expiry=1667331055&foo=bar&signature=TGvxmRwpoAUt9YEIbeJ164lMYrzA2DBnYB9Lcy9m1T

Path Formatter

surl.New(secret, surl.WithPathFormatter())

The path formatter stores the signature and expiry in the path itself:

https://example.com/PaMIbZQ6wxPdHXVLfIGwZBULo-FSTdt7-bCLZjBPPUE.1669574162/a/b/c?foo=bar

Prefix Path

surl.New(secret, surl.PrefixPath("/signed"))

Prefix the signed URL path:

https://example.com/signed/a/b/c?expiry=1669574398&foo=bar&signature=NvIrIFcc1OaKgeVSN685tSD26PTdjlUxxSZRE18Wk_8

Note: a slash is implicitly inserted between the prefix and the rest of the path.

Skip Query

surl.New(secret, surl.SkipQuery())

Skip the query string when computing the signature. This is useful, say, if you have pagination query parameters but you want to use the same signed URL regardless of their value. See the example.

Decimal Encoding of Expiry

surl.New(secret, surl.WithDecimalExpiry())

Encode expiry in decimal. This is the default.

https://example.com/a/b/c?expiry=1667331055&foo=bar&signature=TGvxmRwpoAUt9YEIbeJ164lMYrzA2DBnYB9Lcy9m1T

Base58 Encoding of Expiry

surl.New(secret, surl.WithBase58Expiry())

Encode the expiry using Base58:

https://example.com/a/b/c?expiry=3xx1vi&foo=bar&signature=-mwCtMLTBgDkShZTbBcHjRCRXtO_ZYPE0cmrh3u6S-s

Notes

Any change in the order of the query parameters in a signed URL renders it invalid, unless SkipQuery is specified.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

surl

Installation

Usage

Options

Query Formatter

Path Formatter

Prefix Path

Skip Query

Decimal Encoding of Expiry

Base58 Encoding of Expiry

Notes

About

Releases

Packages

Languages

License

casperrafn/surl

Folders and files

Latest commit

History

Repository files navigation

surl

Installation

Usage

Options

Query Formatter

Path Formatter

Prefix Path

Skip Query

Decimal Encoding of Expiry

Base58 Encoding of Expiry

Notes

About

Resources

License

Stars

Watchers

Forks

Releases

Packages 0

Languages

Packages