From 91704519cc0543d0b2bb4c23b405f2ae8ba4235e Mon Sep 17 00:00:00 2001 From: goginenibhavani2000 Date: Thu, 17 Jul 2025 19:41:48 +0530 Subject: [PATCH 1/7] Implemented RBAC middleware support with example --- examples/rbac/config.json | 7 +++++ examples/rbac/main.go | 35 ++++++++++++++++++++++++ pkg/gofr/context.go | 12 +++++++++ pkg/gofr/rbac/config.go | 52 +++++++++++++++++++++++++++++++++++ pkg/gofr/rbac/helper.go | 17 ++++++++++++ pkg/gofr/rbac/match.go | 40 +++++++++++++++++++++++++++ pkg/gofr/rbac/middleware.go | 54 +++++++++++++++++++++++++++++++++++++ 7 files changed, 217 insertions(+) create mode 100644 examples/rbac/config.json create mode 100644 examples/rbac/main.go create mode 100644 pkg/gofr/rbac/config.go create mode 100644 pkg/gofr/rbac/helper.go create mode 100644 pkg/gofr/rbac/match.go create mode 100644 pkg/gofr/rbac/middleware.go diff --git a/examples/rbac/config.json b/examples/rbac/config.json new file mode 100644 index 000000000..3253cb635 --- /dev/null +++ b/examples/rbac/config.json @@ -0,0 +1,7 @@ +{ + "roles": { + "admin": ["*"], + "editor": ["/posts/*", "/dashboard"], + "user": ["/profile", "/home", "/sayhello*"] + } + } \ No newline at end of file diff --git a/examples/rbac/main.go b/examples/rbac/main.go new file mode 100644 index 000000000..61eb5a0d2 --- /dev/null +++ b/examples/rbac/main.go @@ -0,0 +1,35 @@ +package main + +import ( + "net/http" + + "gofr.dev/pkg/gofr" + "gofr.dev/pkg/gofr/rbac" +) + +func main() { + app := gofr.New() + + // json config path file is required + rbacConfigs, err := rbac.LoadPermissions("config.json") + if err != nil { + return + } + + rbacConfigs.RoleExtractorFunc = extractor + + app.UseMiddleware(rbac.Middleware(rbacConfigs)) + + handler := func(ctx *gofr.Context) (any, error) { + return "Hello World!", nil + } + + app.GET("/sayhello/123", handler) + app.GET("/greet", rbac.RequireRole("admin", handler)) + + app.Run() // listens and serves on localhost:8000 +} + +func extractor(req *http.Request, _ ...any) (string, error) { + return req.Header.Get("X-USER-ROLE"), nil +} diff --git a/pkg/gofr/context.go b/pkg/gofr/context.go index 0b20cce73..50e9f6191 100644 --- a/pkg/gofr/context.go +++ b/pkg/gofr/context.go @@ -41,6 +41,7 @@ type AuthInfo interface { GetClaims() jwt.MapClaims GetUsername() string GetAPIKey() string + GetRole() string } /* @@ -111,6 +112,7 @@ type authInfo struct { claims jwt.MapClaims username string apiKey string + role string } // GetAuthInfo is a method on context, to access different methods to retrieve authentication info. @@ -118,6 +120,7 @@ type authInfo struct { // GetAuthInfo().GetClaims() : retrieves the jwt claims. // GetAuthInfo().GetUsername() : retrieves the username while basic authentication. // GetAuthInfo().GetAPIKey() : retrieves the APIKey being used for authentication. +// GetAuthInfo().GetRole() : retrieves the role being used for authentication. func (c *Context) GetAuthInfo() AuthInfo { claims, _ := c.Request.Context().Value(middleware.JWTClaim).(jwt.MapClaims) @@ -125,10 +128,13 @@ func (c *Context) GetAuthInfo() AuthInfo { username, _ := c.Request.Context().Value(middleware.Username).(string) + role, _ := c.Request.Context().Value(4).(string) + return &authInfo{ claims: claims, username: username, apiKey: APIKey, + role: role, } } @@ -150,6 +156,12 @@ func (a *authInfo) GetAPIKey() string { return a.apiKey } +// GetRole returns the role when RBAC is enabled. +// It returns an empty string if called, when RBAC is not enabled. +func (a *authInfo) GetRole() string { + return a.role +} + // func (c *Context) reset(w Responder, r Request) { // c.Request = r // c.responder = w diff --git a/pkg/gofr/rbac/config.go b/pkg/gofr/rbac/config.go new file mode 100644 index 000000000..3c7ef8e04 --- /dev/null +++ b/pkg/gofr/rbac/config.go @@ -0,0 +1,52 @@ +package rbac + +import ( + "encoding/json" + "net/http" + "os" +) + +type Config struct { + RoleWithPermissions map[string][]string `json:"roles"` // Role: [Allowed routes] + RoleExtractorFunc func(req *http.Request, args ...any) (string, error) +} + +func LoadPermissions(path string) (*Config, error) { + data, err := os.ReadFile(path) + if err != nil { + return nil, err + } + var config Config + if err := json.Unmarshal(data, &config); err != nil { + return nil, err + } + return &config, nil +} + +/* is the below sample .json file as expected? +{ + "roles": { + "admin": ["*"], + "editor": ["/posts/*", "/dashboard"], + "user": ["/profile", "/home"] + } +} +*/ + +// for the route specific +// should we validate the request with the role or add that role permission to that route? and should it work independently without rbac.usemiddleware? + +/* +given in problem statement +app.Use(rbac.Middleware(config)) // Global +app.GET("/admin", rbac.RequireRole("admin")(handler)) // Route-specific + + + + +implemented +app.UseMiddleware(rbac.Middleware(rbacConfigs)) +app.GET("/greet", rbac.RequireRole("admin", handler)) + + +*/ diff --git a/pkg/gofr/rbac/helper.go b/pkg/gofr/rbac/helper.go new file mode 100644 index 000000000..8079e2483 --- /dev/null +++ b/pkg/gofr/rbac/helper.go @@ -0,0 +1,17 @@ +package rbac + +import "gofr.dev/pkg/gofr" + +func HasRole(ctx *gofr.Context, role string) bool { + authInfo := ctx.GetAuthInfo() + return authInfo.GetRole() == role +} + +func IsAdmin(ctx *gofr.Context) bool { + return HasRole(ctx, "admin") +} + +func GetUserRole(ctx *gofr.Context) string { + authInfo := ctx.GetAuthInfo() + return authInfo.GetRole() +} diff --git a/pkg/gofr/rbac/match.go b/pkg/gofr/rbac/match.go new file mode 100644 index 000000000..eb2d36f5b --- /dev/null +++ b/pkg/gofr/rbac/match.go @@ -0,0 +1,40 @@ +package rbac + +import ( + "path" + "strings" +) + +func isPathAllowed(role string, route string, config *Config) bool { + allowedPaths := config.RoleWithPermissions[role] + + for _, pattern := range allowedPaths { + // Allow simple wildcard "*" + if pattern == "*" { + return true + } + + // Ensure pattern ends with * if it's a prefix match + if pattern == route { + return true + } + // Normalize pattern and path to avoid trailing slash issues + normalizedPattern := strings.TrimSuffix(pattern, "/") + normalizedPath := strings.TrimSuffix(route, "/") + + // Allow matching wildcard like /admin/* or /users/* + if ok, _ := path.Match(normalizedPattern, normalizedPath); ok { + return true + } + + // Support prefix match with * (e.g. /users/* should match /users/123) + if strings.HasSuffix(pattern, "*") { + prefix := strings.TrimSuffix(pattern, "*") + if strings.HasPrefix(route, prefix) { + return true + } + } + } + + return false +} diff --git a/pkg/gofr/rbac/middleware.go b/pkg/gofr/rbac/middleware.go new file mode 100644 index 000000000..435cc18b5 --- /dev/null +++ b/pkg/gofr/rbac/middleware.go @@ -0,0 +1,54 @@ +package rbac + +import ( + "context" + "errors" + "net/http" + + "gofr.dev/pkg/gofr" +) + +/* +roles with routes allowed- json file +extract the file and store in rbac configs +role given for the API- remove default case +*/ + +type authMethod int + +const userRole authMethod = 4 + +func Middleware(config *Config, args ...any) func(handler http.Handler) http.Handler { + return func(handler http.Handler) http.Handler { + return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) { + role, err := config.RoleExtractorFunc(r, args) + if err != nil { + http.Error(w, "Unauthorized: Missing or invalid role", http.StatusUnauthorized) + + return + } + + if !isPathAllowed(role, r.URL.Path, config) { + http.Error(w, "Forbidden: Access denied", http.StatusForbidden) + + return + } + + ctx := context.WithValue(r.Context(), userRole, role) + + handler.ServeHTTP(w, r.Clone(ctx)) + }) + } +} + +func RequireRole(allowedRole string, handlerFunc gofr.Handler) gofr.Handler { + return func(ctx *gofr.Context) (any, error) { + authinfo := ctx.GetAuthInfo() + + if authinfo.GetRole() == allowedRole { + return handlerFunc(ctx) + } + + return nil, errors.New("forbidden: access denied") + } +} From a123a0338c069f356730aaed5cd1c2cf999375cb Mon Sep 17 00:00:00 2001 From: goginenibhavani2000 Date: Sun, 10 Aug 2025 11:27:17 -0400 Subject: [PATCH 2/7] Add route specific override and fix userRole read from context --- examples/rbac/config.json | 2 +- examples/rbac/main.go | 14 +++++++++----- pkg/gofr/context.go | 4 ---- pkg/gofr/rbac/config.go | 29 +---------------------------- pkg/gofr/rbac/match.go | 5 +++++ pkg/gofr/rbac/middleware.go | 14 +++++++------- 6 files changed, 23 insertions(+), 45 deletions(-) diff --git a/examples/rbac/config.json b/examples/rbac/config.json index 3253cb635..a63887329 100644 --- a/examples/rbac/config.json +++ b/examples/rbac/config.json @@ -2,6 +2,6 @@ "roles": { "admin": ["*"], "editor": ["/posts/*", "/dashboard"], - "user": ["/profile", "/home", "/sayhello*"] + "user": ["/profile", "/home", "/sayhello*","/greet"] } } \ No newline at end of file diff --git a/examples/rbac/main.go b/examples/rbac/main.go index 61eb5a0d2..035bfd6b1 100644 --- a/examples/rbac/main.go +++ b/examples/rbac/main.go @@ -16,16 +16,16 @@ func main() { return } + overrides := map[string]bool{"user1": true} + + rbacConfigs.OverRides = overrides + rbacConfigs.RoleExtractorFunc = extractor app.UseMiddleware(rbac.Middleware(rbacConfigs)) - handler := func(ctx *gofr.Context) (any, error) { - return "Hello World!", nil - } - app.GET("/sayhello/123", handler) - app.GET("/greet", rbac.RequireRole("admin", handler)) + app.GET("/greet", rbac.RequireRole("user1", handler)) app.Run() // listens and serves on localhost:8000 } @@ -33,3 +33,7 @@ func main() { func extractor(req *http.Request, _ ...any) (string, error) { return req.Header.Get("X-USER-ROLE"), nil } + +func handler(ctx *gofr.Context) (any, error) { + return "Hello World!", nil +} diff --git a/pkg/gofr/context.go b/pkg/gofr/context.go index 50e9f6191..019da22c1 100644 --- a/pkg/gofr/context.go +++ b/pkg/gofr/context.go @@ -120,7 +120,6 @@ type authInfo struct { // GetAuthInfo().GetClaims() : retrieves the jwt claims. // GetAuthInfo().GetUsername() : retrieves the username while basic authentication. // GetAuthInfo().GetAPIKey() : retrieves the APIKey being used for authentication. -// GetAuthInfo().GetRole() : retrieves the role being used for authentication. func (c *Context) GetAuthInfo() AuthInfo { claims, _ := c.Request.Context().Value(middleware.JWTClaim).(jwt.MapClaims) @@ -128,13 +127,10 @@ func (c *Context) GetAuthInfo() AuthInfo { username, _ := c.Request.Context().Value(middleware.Username).(string) - role, _ := c.Request.Context().Value(4).(string) - return &authInfo{ claims: claims, username: username, apiKey: APIKey, - role: role, } } diff --git a/pkg/gofr/rbac/config.go b/pkg/gofr/rbac/config.go index 3c7ef8e04..3fd04dd10 100644 --- a/pkg/gofr/rbac/config.go +++ b/pkg/gofr/rbac/config.go @@ -9,6 +9,7 @@ import ( type Config struct { RoleWithPermissions map[string][]string `json:"roles"` // Role: [Allowed routes] RoleExtractorFunc func(req *http.Request, args ...any) (string, error) + OverRides map[string]bool // role: [override bool] } func LoadPermissions(path string) (*Config, error) { @@ -22,31 +23,3 @@ func LoadPermissions(path string) (*Config, error) { } return &config, nil } - -/* is the below sample .json file as expected? -{ - "roles": { - "admin": ["*"], - "editor": ["/posts/*", "/dashboard"], - "user": ["/profile", "/home"] - } -} -*/ - -// for the route specific -// should we validate the request with the role or add that role permission to that route? and should it work independently without rbac.usemiddleware? - -/* -given in problem statement -app.Use(rbac.Middleware(config)) // Global -app.GET("/admin", rbac.RequireRole("admin")(handler)) // Route-specific - - - - -implemented -app.UseMiddleware(rbac.Middleware(rbacConfigs)) -app.GET("/greet", rbac.RequireRole("admin", handler)) - - -*/ diff --git a/pkg/gofr/rbac/match.go b/pkg/gofr/rbac/match.go index eb2d36f5b..2291e6863 100644 --- a/pkg/gofr/rbac/match.go +++ b/pkg/gofr/rbac/match.go @@ -36,5 +36,10 @@ func isPathAllowed(role string, route string, config *Config) bool { } } + // override with role match + if config.OverRides[role] { + return true + } + return false } diff --git a/pkg/gofr/rbac/middleware.go b/pkg/gofr/rbac/middleware.go index 435cc18b5..5b1c45daf 100644 --- a/pkg/gofr/rbac/middleware.go +++ b/pkg/gofr/rbac/middleware.go @@ -8,16 +8,16 @@ import ( "gofr.dev/pkg/gofr" ) +type authMethod int + +const userRole authMethod = 4 + /* roles with routes allowed- json file extract the file and store in rbac configs role given for the API- remove default case */ -type authMethod int - -const userRole authMethod = 4 - func Middleware(config *Config, args ...any) func(handler http.Handler) http.Handler { return func(handler http.Handler) http.Handler { return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) { @@ -36,16 +36,16 @@ func Middleware(config *Config, args ...any) func(handler http.Handler) http.Han ctx := context.WithValue(r.Context(), userRole, role) - handler.ServeHTTP(w, r.Clone(ctx)) + handler.ServeHTTP(w, r.WithContext(ctx)) }) } } func RequireRole(allowedRole string, handlerFunc gofr.Handler) gofr.Handler { return func(ctx *gofr.Context) (any, error) { - authinfo := ctx.GetAuthInfo() + role, _ := ctx.Context.Value(userRole).(string) - if authinfo.GetRole() == allowedRole { + if role == allowedRole { return handlerFunc(ctx) } From e59fd18e7b285b616f9b05197dcc8c2a948ed0b5 Mon Sep 17 00:00:00 2001 From: goginenibhavani2000 Date: Sun, 10 Aug 2025 11:33:42 -0400 Subject: [PATCH 3/7] remove unneccessary changes --- pkg/gofr/context.go | 8 -------- pkg/gofr/rbac/helper.go | 8 ++++---- pkg/gofr/rbac/middleware.go | 6 ------ 3 files changed, 4 insertions(+), 18 deletions(-) diff --git a/pkg/gofr/context.go b/pkg/gofr/context.go index 019da22c1..0b20cce73 100644 --- a/pkg/gofr/context.go +++ b/pkg/gofr/context.go @@ -41,7 +41,6 @@ type AuthInfo interface { GetClaims() jwt.MapClaims GetUsername() string GetAPIKey() string - GetRole() string } /* @@ -112,7 +111,6 @@ type authInfo struct { claims jwt.MapClaims username string apiKey string - role string } // GetAuthInfo is a method on context, to access different methods to retrieve authentication info. @@ -152,12 +150,6 @@ func (a *authInfo) GetAPIKey() string { return a.apiKey } -// GetRole returns the role when RBAC is enabled. -// It returns an empty string if called, when RBAC is not enabled. -func (a *authInfo) GetRole() string { - return a.role -} - // func (c *Context) reset(w Responder, r Request) { // c.Request = r // c.responder = w diff --git a/pkg/gofr/rbac/helper.go b/pkg/gofr/rbac/helper.go index 8079e2483..f775a7b30 100644 --- a/pkg/gofr/rbac/helper.go +++ b/pkg/gofr/rbac/helper.go @@ -3,8 +3,8 @@ package rbac import "gofr.dev/pkg/gofr" func HasRole(ctx *gofr.Context, role string) bool { - authInfo := ctx.GetAuthInfo() - return authInfo.GetRole() == role + expRole, _ := ctx.Context.Value(userRole).(string) + return expRole == role } func IsAdmin(ctx *gofr.Context) bool { @@ -12,6 +12,6 @@ func IsAdmin(ctx *gofr.Context) bool { } func GetUserRole(ctx *gofr.Context) string { - authInfo := ctx.GetAuthInfo() - return authInfo.GetRole() + role, _ := ctx.Context.Value(userRole).(string) + return role } diff --git a/pkg/gofr/rbac/middleware.go b/pkg/gofr/rbac/middleware.go index 5b1c45daf..0cd807fba 100644 --- a/pkg/gofr/rbac/middleware.go +++ b/pkg/gofr/rbac/middleware.go @@ -12,12 +12,6 @@ type authMethod int const userRole authMethod = 4 -/* -roles with routes allowed- json file -extract the file and store in rbac configs -role given for the API- remove default case -*/ - func Middleware(config *Config, args ...any) func(handler http.Handler) http.Handler { return func(handler http.Handler) http.Handler { return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) { From 23073f7c40d0ec79c068a88433c9c11a79d830ac Mon Sep 17 00:00:00 2001 From: goginenibhavani2000 Date: Mon, 11 Aug 2025 15:32:10 -0400 Subject: [PATCH 4/7] Added unit tests to rbac package --- pkg/gofr/rbac/config_test.go | 75 +++++++++++++++++ pkg/gofr/rbac/helper_test.go | 67 ++++++++++++++++ pkg/gofr/rbac/match_test.go | 134 +++++++++++++++++++++++++++++++ pkg/gofr/rbac/middleware_test.go | 131 ++++++++++++++++++++++++++++++ 4 files changed, 407 insertions(+) create mode 100644 pkg/gofr/rbac/config_test.go create mode 100644 pkg/gofr/rbac/helper_test.go create mode 100644 pkg/gofr/rbac/match_test.go create mode 100644 pkg/gofr/rbac/middleware_test.go diff --git a/pkg/gofr/rbac/config_test.go b/pkg/gofr/rbac/config_test.go new file mode 100644 index 000000000..8a2d082e0 --- /dev/null +++ b/pkg/gofr/rbac/config_test.go @@ -0,0 +1,75 @@ +package rbac + +import ( + "encoding/json" + "os" + "path/filepath" + "reflect" + "testing" +) + +// Helper function to create a temporary JSON file for testing. +func createTempJSONFile(t *testing.T, data any) string { + t.Helper() + dir := t.TempDir() + file := filepath.Join(dir, "test.json") + + jsonBytes, err := json.Marshal(data) + if err != nil { + t.Fatalf("error marshaling: %v", err) + } + if err := os.WriteFile(file, jsonBytes, 0644); err != nil { + t.Fatalf("error writing file: %v", err) + } + return file +} + +func TestLoadPermissions_Success(t *testing.T) { + expected := Config{ + RoleWithPermissions: map[string][]string{ + "admin": {"/admin", "/dashboard"}, + "viewer": {"/dashboard"}, + }, + } + file := createTempJSONFile(t, struct { + RoleWithPermissions map[string][]string `json:"roles"` + }{ + RoleWithPermissions: expected.RoleWithPermissions, + }) + + got, err := LoadPermissions(file) + + if err != nil { + t.Fatalf("LoadPermissions returned error: %v", err) + } + if !reflect.DeepEqual(got.RoleWithPermissions, expected.RoleWithPermissions) { + t.Errorf("RoleWithPermissions mismatch: got %v, want %v", got.RoleWithPermissions, expected.RoleWithPermissions) + } + if !reflect.DeepEqual(got.OverRides, expected.OverRides) { + t.Errorf("OverRides mismatch: got %v, want %v", got.OverRides, expected.OverRides) + } +} + +func TestLoadPermissions_FileNotFound(t *testing.T) { + // Act + _, err := LoadPermissions("nonexistentpath.json") + // Assert + if err == nil { + t.Fatalf("expected error for missing file, got nil") + } +} + +func TestLoadPermissions_InvalidJSON(t *testing.T) { + dir := t.TempDir() + file := filepath.Join(dir, "bad.json") + + // Write invalid JSON + if err := os.WriteFile(file, []byte("{invalid json"), 0644); err != nil { + t.Fatalf("could not write test file: %v", err) + } + + _, err := LoadPermissions(file) + if err == nil { + t.Fatalf("expected JSON unmarshal error, got nil") + } +} diff --git a/pkg/gofr/rbac/helper_test.go b/pkg/gofr/rbac/helper_test.go new file mode 100644 index 000000000..ccd123ec7 --- /dev/null +++ b/pkg/gofr/rbac/helper_test.go @@ -0,0 +1,67 @@ +package rbac + +import ( + "context" + "testing" + + "gofr.dev/pkg/gofr" +) + +func TestHasRole(t *testing.T) { + tests := []struct { + name string + ctxRoleVal string + checkRole string + expectedRes bool + }{ + {"matching role", "admin", "admin", true}, + {"non-matching role", "viewer", "admin", false}, + {"empty role in context", "", "admin", false}, + {"nil role in context", "", "", true}, + } + + for _, tt := range tests { + t.Run(tt.name, func(t *testing.T) { + // Create base context with the userRole value + baseCtx := context.WithValue(context.Background(), userRole, tt.ctxRoleVal) + + // Wrap baseCtx in gofr.Context + gofrCtx := &gofr.Context{Context: baseCtx} + + got := HasRole(gofrCtx, tt.checkRole) + if got != tt.expectedRes { + t.Errorf("HasRole() = %v, want %v", got, tt.expectedRes) + } + }) + } +} + +func TestIsAdmin(t *testing.T) { + baseCtx := context.WithValue(context.Background(), userRole, "admin") + gofrCtx := &gofr.Context{Context: baseCtx} + + if !IsAdmin(gofrCtx) { + t.Errorf("IsAdmin() = false, want true") + } + + nonAdminCtx := &gofr.Context{Context: context.WithValue(context.Background(), userRole, "viewer")} + if IsAdmin(nonAdminCtx) { + t.Errorf("IsAdmin() = true, want false") + } +} + +func TestGetUserRole(t *testing.T) { + expectedRole := "editor" + baseCtx := context.WithValue(context.Background(), userRole, expectedRole) + gofrCtx := &gofr.Context{Context: baseCtx} + + if role := GetUserRole(gofrCtx); role != expectedRole { + t.Errorf("GetUserRole() = %v, want %v", role, expectedRole) + } + + // Test no role set should return "" + emptyCtx := &gofr.Context{Context: context.Background()} + if role := GetUserRole(emptyCtx); role != "" { + t.Errorf("GetUserRole() with no role = %v, want empty string", role) + } +} diff --git a/pkg/gofr/rbac/match_test.go b/pkg/gofr/rbac/match_test.go new file mode 100644 index 000000000..fd69986df --- /dev/null +++ b/pkg/gofr/rbac/match_test.go @@ -0,0 +1,134 @@ +package rbac + +import "testing" + +func TestIsPathAllowed(t *testing.T) { + type args struct { + role string + route string + config *Config + } + + tests := []struct { + name string + args args + want bool + }{ + { + name: "exact match route", + args: args{ + role: "admin", + route: "/dashboard", + config: &Config{ + RoleWithPermissions: map[string][]string{ + "admin": {"/dashboard"}, + }, + }, + }, + want: true, + }, + { + name: "wildcard match any route", + args: args{ + role: "admin", + route: "/anything/here", + config: &Config{ + RoleWithPermissions: map[string][]string{ + "admin": {"*"}, + }, + }, + }, + want: true, + }, + { + name: "path.Match style match", + args: args{ + role: "admin", + route: "/users/123", + config: &Config{ + RoleWithPermissions: map[string][]string{ + "admin": {"/users/*"}, + }, + }, + }, + want: true, + }, + { + name: "prefix match with * suffix", + args: args{ + role: "editor", + route: "/projects/42/files", + config: &Config{ + RoleWithPermissions: map[string][]string{ + "editor": {"/projects/"}, + }, + }, + }, + want: false, + }, + { + name: "prefix * suffix allowed", + args: args{ + role: "editor", + route: "/projects/42/files", + config: &Config{ + RoleWithPermissions: map[string][]string{ + "editor": {"/projects/*"}, + }, + }, + }, + want: true, + }, + { + name: "trailing slash ignored", + args: args{ + role: "viewer", + route: "/reports/", + config: &Config{ + RoleWithPermissions: map[string][]string{ + "viewer": {"/reports"}, + }, + }, + }, + want: true, + }, + { + name: "no match but overridden by config", + args: args{ + role: "special", + route: "/secret/area", + config: &Config{ + RoleWithPermissions: map[string][]string{ + "special": {}, + }, + OverRides: map[string]bool{ + "special": true, + }, + }, + }, + want: true, + }, + { + name: "no permissions no override", + args: args{ + role: "guest", + route: "/dashboard", + config: &Config{ + RoleWithPermissions: map[string][]string{ + "guest": {}, + }, + OverRides: map[string]bool{}, + }, + }, + want: false, + }, + } + + for _, tt := range tests { + t.Run(tt.name, func(t *testing.T) { + if got := isPathAllowed(tt.args.role, tt.args.route, tt.args.config); got != tt.want { + t.Errorf("isPathAllowed() = %v, want %v", got, tt.want) + } + }) + } +} diff --git a/pkg/gofr/rbac/middleware_test.go b/pkg/gofr/rbac/middleware_test.go new file mode 100644 index 000000000..5537acc35 --- /dev/null +++ b/pkg/gofr/rbac/middleware_test.go @@ -0,0 +1,131 @@ +package rbac + +import ( + "context" + "errors" + "io" + "net/http" + "net/http/httptest" + "testing" + + "gofr.dev/pkg/gofr" +) + +// mockHandler just writes "OK" to the ResponseWriter +func mockHandler(w http.ResponseWriter, r *http.Request) { + io.WriteString(w, "OK") +} + +func TestMiddleware_UnauthorizedRoleExtractor(t *testing.T) { + cfg := &Config{ + RoleExtractorFunc: func(r *http.Request, args ...any) (string, error) { + return "", errors.New("no role") + }, + } + + req := httptest.NewRequest("GET", "/some", nil) + rr := httptest.NewRecorder() + + h := Middleware(cfg)(http.HandlerFunc(mockHandler)) + h.ServeHTTP(rr, req) + + if rr.Code != http.StatusUnauthorized { + t.Errorf("got status %d, want %d", rr.Code, http.StatusUnauthorized) + } + if body := rr.Body.String(); body == "" { + t.Errorf("expected error message in body, got empty") + } +} + +func TestMiddleware_ForbiddenPath(t *testing.T) { + cfg := &Config{ + RoleExtractorFunc: func(r *http.Request, args ...any) (string, error) { + return "user", nil + }, + RoleWithPermissions: map[string][]string{ + "user": {}, + }, + OverRides: map[string]bool{}, + } + + req := httptest.NewRequest("GET", "/forbidden", nil) + rr := httptest.NewRecorder() + + h := Middleware(cfg)(http.HandlerFunc(mockHandler)) + h.ServeHTTP(rr, req) + + if rr.Code != http.StatusForbidden { + t.Errorf("got status %d, want %d", rr.Code, http.StatusForbidden) + } +} + +func TestMiddleware_SuccessAddsRole(t *testing.T) { + cfg := &Config{ + RoleExtractorFunc: func(r *http.Request, args ...any) (string, error) { + return "admin", nil + }, + RoleWithPermissions: map[string][]string{ + "admin": {"*"}, + }, + } + + var ctxRole string + nextHandler := http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) { + // Extract role from context to verify it's stored + if val, ok := r.Context().Value(userRole).(string); ok { + ctxRole = val + } + w.WriteHeader(http.StatusOK) + }) + + req := httptest.NewRequest("GET", "/anything", nil) + rr := httptest.NewRecorder() + + h := Middleware(cfg)(nextHandler) + h.ServeHTTP(rr, req) + + if rr.Code != http.StatusOK { + t.Errorf("got status %d, want %d", rr.Code, http.StatusOK) + } + if ctxRole != "admin" { + t.Errorf("expected role 'admin' in context, got '%s'", ctxRole) + } +} + +func TestRequireRole_Match(t *testing.T) { + expectedResult := "success" + + handler := func(ctx *gofr.Context) (any, error) { + return expectedResult, nil + } + + // Create a context with the expected role + baseCtx := context.WithValue(context.Background(), userRole, "admin") + gCtx := &gofr.Context{Context: baseCtx} + + got, err := RequireRole("admin", handler)(gCtx) + if err != nil { + t.Fatalf("unexpected error: %v", err) + } + if got != expectedResult { + t.Errorf("got %v, want %v", got, expectedResult) + } +} + +func TestRequireRole_NoMatch(t *testing.T) { + handler := func(ctx *gofr.Context) (any, error) { + return "should not run", nil + } + + // context with wrong role + baseCtx := context.WithValue(context.Background(), userRole, "user") + gCtx := &gofr.Context{Context: baseCtx} + + _, err := RequireRole("admin", handler)(gCtx) + if err == nil { + t.Fatalf("expected error, got nil") + } + if err.Error() != "forbidden: access denied" { + t.Errorf("got error %q, want %q", err.Error(), "forbidden: access denied") + } +} From 0a0334f95091b6146d632d22e18aab271eb77328 Mon Sep 17 00:00:00 2001 From: goginenibhavani2000 Date: Mon, 11 Aug 2025 16:28:05 -0400 Subject: [PATCH 5/7] fix linters --- pkg/gofr/rbac/config.go | 3 + pkg/gofr/rbac/config_test.go | 8 +- pkg/gofr/rbac/helper_test.go | 10 +- pkg/gofr/rbac/match.go | 2 +- pkg/gofr/rbac/match_test.go | 171 +++++++++++++++---------------- pkg/gofr/rbac/middleware.go | 4 +- pkg/gofr/rbac/middleware_test.go | 36 ++++--- 7 files changed, 121 insertions(+), 113 deletions(-) diff --git a/pkg/gofr/rbac/config.go b/pkg/gofr/rbac/config.go index 3fd04dd10..86e918b00 100644 --- a/pkg/gofr/rbac/config.go +++ b/pkg/gofr/rbac/config.go @@ -17,9 +17,12 @@ func LoadPermissions(path string) (*Config, error) { if err != nil { return nil, err } + var config Config + if err := json.Unmarshal(data, &config); err != nil { return nil, err } + return &config, nil } diff --git a/pkg/gofr/rbac/config_test.go b/pkg/gofr/rbac/config_test.go index 8a2d082e0..f9782de22 100644 --- a/pkg/gofr/rbac/config_test.go +++ b/pkg/gofr/rbac/config_test.go @@ -18,9 +18,11 @@ func createTempJSONFile(t *testing.T, data any) string { if err != nil { t.Fatalf("error marshaling: %v", err) } - if err := os.WriteFile(file, jsonBytes, 0644); err != nil { + + if err := os.WriteFile(file, jsonBytes, 0600); err != nil { t.Fatalf("error writing file: %v", err) } + return file } @@ -42,9 +44,11 @@ func TestLoadPermissions_Success(t *testing.T) { if err != nil { t.Fatalf("LoadPermissions returned error: %v", err) } + if !reflect.DeepEqual(got.RoleWithPermissions, expected.RoleWithPermissions) { t.Errorf("RoleWithPermissions mismatch: got %v, want %v", got.RoleWithPermissions, expected.RoleWithPermissions) } + if !reflect.DeepEqual(got.OverRides, expected.OverRides) { t.Errorf("OverRides mismatch: got %v, want %v", got.OverRides, expected.OverRides) } @@ -64,7 +68,7 @@ func TestLoadPermissions_InvalidJSON(t *testing.T) { file := filepath.Join(dir, "bad.json") // Write invalid JSON - if err := os.WriteFile(file, []byte("{invalid json"), 0644); err != nil { + if err := os.WriteFile(file, []byte("{invalid json"), 0600); err != nil { t.Fatalf("could not write test file: %v", err) } diff --git a/pkg/gofr/rbac/helper_test.go b/pkg/gofr/rbac/helper_test.go index ccd123ec7..8e7ee5be4 100644 --- a/pkg/gofr/rbac/helper_test.go +++ b/pkg/gofr/rbac/helper_test.go @@ -23,7 +23,7 @@ func TestHasRole(t *testing.T) { for _, tt := range tests { t.Run(tt.name, func(t *testing.T) { // Create base context with the userRole value - baseCtx := context.WithValue(context.Background(), userRole, tt.ctxRoleVal) + baseCtx := context.WithValue(t.Context(), userRole, tt.ctxRoleVal) // Wrap baseCtx in gofr.Context gofrCtx := &gofr.Context{Context: baseCtx} @@ -37,14 +37,14 @@ func TestHasRole(t *testing.T) { } func TestIsAdmin(t *testing.T) { - baseCtx := context.WithValue(context.Background(), userRole, "admin") + baseCtx := context.WithValue(t.Context(), userRole, "admin") gofrCtx := &gofr.Context{Context: baseCtx} if !IsAdmin(gofrCtx) { t.Errorf("IsAdmin() = false, want true") } - nonAdminCtx := &gofr.Context{Context: context.WithValue(context.Background(), userRole, "viewer")} + nonAdminCtx := &gofr.Context{Context: context.WithValue(t.Context(), userRole, "viewer")} if IsAdmin(nonAdminCtx) { t.Errorf("IsAdmin() = true, want false") } @@ -52,7 +52,7 @@ func TestIsAdmin(t *testing.T) { func TestGetUserRole(t *testing.T) { expectedRole := "editor" - baseCtx := context.WithValue(context.Background(), userRole, expectedRole) + baseCtx := context.WithValue(t.Context(), userRole, expectedRole) gofrCtx := &gofr.Context{Context: baseCtx} if role := GetUserRole(gofrCtx); role != expectedRole { @@ -60,7 +60,7 @@ func TestGetUserRole(t *testing.T) { } // Test no role set should return "" - emptyCtx := &gofr.Context{Context: context.Background()} + emptyCtx := &gofr.Context{Context: t.Context()} if role := GetUserRole(emptyCtx); role != "" { t.Errorf("GetUserRole() with no role = %v, want empty string", role) } diff --git a/pkg/gofr/rbac/match.go b/pkg/gofr/rbac/match.go index 2291e6863..30c201951 100644 --- a/pkg/gofr/rbac/match.go +++ b/pkg/gofr/rbac/match.go @@ -5,7 +5,7 @@ import ( "strings" ) -func isPathAllowed(role string, route string, config *Config) bool { +func isPathAllowed(role, route string, config *Config) bool { allowedPaths := config.RoleWithPermissions[role] for _, pattern := range allowedPaths { diff --git a/pkg/gofr/rbac/match_test.go b/pkg/gofr/rbac/match_test.go index fd69986df..b401bd590 100644 --- a/pkg/gofr/rbac/match_test.go +++ b/pkg/gofr/rbac/match_test.go @@ -2,131 +2,122 @@ package rbac import "testing" -func TestIsPathAllowed(t *testing.T) { - type args struct { +func TestIsPathAllowed_ExactAndWildcard(t *testing.T) { + cases := []struct { + name string role string route string config *Config - } - - tests := []struct { - name string - args args - want bool + want bool }{ { - name: "exact match route", - args: args{ - role: "admin", - route: "/dashboard", - config: &Config{ - RoleWithPermissions: map[string][]string{ - "admin": {"/dashboard"}, - }, - }, + name: "exact match route", + role: "admin", + route: "/dashboard", + config: &Config{ + RoleWithPermissions: map[string][]string{"admin": {"/dashboard"}}, }, want: true, }, { - name: "wildcard match any route", - args: args{ - role: "admin", - route: "/anything/here", - config: &Config{ - RoleWithPermissions: map[string][]string{ - "admin": {"*"}, - }, - }, + name: "wildcard match any route", + role: "admin", + route: "/anything/here", + config: &Config{ + RoleWithPermissions: map[string][]string{"admin": {"*"}}, }, want: true, }, + } + + for _, tt := range cases { + t.Run(tt.name, func(t *testing.T) { + if got := isPathAllowed(tt.role, tt.route, tt.config); got != tt.want { + t.Errorf("isPathAllowed() = %v, want %v", got, tt.want) + } + }) + } +} + +func TestIsPathAllowed_PatternsAndPrefixes(t *testing.T) { + cases := []struct { + name string + role string + route string + config *Config + want bool + }{ { - name: "path.Match style match", - args: args{ - role: "admin", - route: "/users/123", - config: &Config{ - RoleWithPermissions: map[string][]string{ - "admin": {"/users/*"}, - }, - }, + name: "path.Match style match", + role: "admin", + route: "/users/123", + config: &Config{ + RoleWithPermissions: map[string][]string{"admin": {"/users/*"}}, }, want: true, }, { - name: "prefix match with * suffix", - args: args{ - role: "editor", - route: "/projects/42/files", - config: &Config{ - RoleWithPermissions: map[string][]string{ - "editor": {"/projects/"}, - }, - }, - }, - want: false, - }, - { - name: "prefix * suffix allowed", - args: args{ - role: "editor", - route: "/projects/42/files", - config: &Config{ - RoleWithPermissions: map[string][]string{ - "editor": {"/projects/*"}, - }, - }, + name: "prefix match with * suffix", + role: "editor", + route: "/projects/42/files", + config: &Config{ + RoleWithPermissions: map[string][]string{"editor": {"/projects/*"}}, }, want: true, }, { - name: "trailing slash ignored", - args: args{ - role: "viewer", - route: "/reports/", - config: &Config{ - RoleWithPermissions: map[string][]string{ - "viewer": {"/reports"}, - }, - }, + name: "trailing slash ignored", + role: "viewer", + route: "/reports/", + config: &Config{ + RoleWithPermissions: map[string][]string{"viewer": {"/reports"}}, }, want: true, }, + } + + for _, tt := range cases { + t.Run(tt.name, func(t *testing.T) { + if got := isPathAllowed(tt.role, tt.route, tt.config); got != tt.want { + t.Errorf("isPathAllowed() = %v, want %v", got, tt.want) + } + }) + } +} + +func TestIsPathAllowed_Overrides(t *testing.T) { + cases := []struct { + name string + role string + route string + config *Config + want bool + }{ { - name: "no match but overridden by config", - args: args{ - role: "special", - route: "/secret/area", - config: &Config{ - RoleWithPermissions: map[string][]string{ - "special": {}, - }, - OverRides: map[string]bool{ - "special": true, - }, - }, + name: "no match but overridden", + role: "special", + route: "/secret/area", + config: &Config{ + RoleWithPermissions: map[string][]string{"special": {}}, + OverRides: map[string]bool{"special": true}, }, want: true, }, { - name: "no permissions no override", - args: args{ - role: "guest", - route: "/dashboard", - config: &Config{ - RoleWithPermissions: map[string][]string{ - "guest": {}, - }, - OverRides: map[string]bool{}, - }, + name: "no permissions no override", + role: "guest", + route: "/dashboard", + config: &Config{ + RoleWithPermissions: map[string][]string{"guest": {}}, + OverRides: map[string]bool{}, }, want: false, }, } - for _, tt := range tests { + for _, tt := range cases { t.Run(tt.name, func(t *testing.T) { - if got := isPathAllowed(tt.args.role, tt.args.route, tt.args.config); got != tt.want { + if got := isPathAllowed(tt.role, tt.route, tt.config); got != tt.want { t.Errorf("isPathAllowed() = %v, want %v", got, tt.want) } }) diff --git a/pkg/gofr/rbac/middleware.go b/pkg/gofr/rbac/middleware.go index 0cd807fba..edfdf3fbd 100644 --- a/pkg/gofr/rbac/middleware.go +++ b/pkg/gofr/rbac/middleware.go @@ -12,6 +12,8 @@ type authMethod int const userRole authMethod = 4 +var ErrAccessDenied = errors.New("forbidden: access denied") + func Middleware(config *Config, args ...any) func(handler http.Handler) http.Handler { return func(handler http.Handler) http.Handler { return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) { @@ -43,6 +45,6 @@ func RequireRole(allowedRole string, handlerFunc gofr.Handler) gofr.Handler { return handlerFunc(ctx) } - return nil, errors.New("forbidden: access denied") + return nil, ErrAccessDenied } } diff --git a/pkg/gofr/rbac/middleware_test.go b/pkg/gofr/rbac/middleware_test.go index 5537acc35..814f41209 100644 --- a/pkg/gofr/rbac/middleware_test.go +++ b/pkg/gofr/rbac/middleware_test.go @@ -11,19 +11,21 @@ import ( "gofr.dev/pkg/gofr" ) -// mockHandler just writes "OK" to the ResponseWriter -func mockHandler(w http.ResponseWriter, r *http.Request) { - io.WriteString(w, "OK") +var errNoRole = errors.New("no role") + +// mockHandler just writes "OK" to the ResponseWriter. +func mockHandler(w http.ResponseWriter, _ *http.Request) { + _, _ = io.WriteString(w, "OK") } func TestMiddleware_UnauthorizedRoleExtractor(t *testing.T) { cfg := &Config{ - RoleExtractorFunc: func(r *http.Request, args ...any) (string, error) { - return "", errors.New("no role") + RoleExtractorFunc: func(_ *http.Request, _ ...any) (string, error) { + return "", errNoRole }, } - req := httptest.NewRequest("GET", "/some", nil) + req := httptest.NewRequest(http.MethodGet, "/some", http.NoBody) rr := httptest.NewRecorder() h := Middleware(cfg)(http.HandlerFunc(mockHandler)) @@ -32,6 +34,7 @@ func TestMiddleware_UnauthorizedRoleExtractor(t *testing.T) { if rr.Code != http.StatusUnauthorized { t.Errorf("got status %d, want %d", rr.Code, http.StatusUnauthorized) } + if body := rr.Body.String(); body == "" { t.Errorf("expected error message in body, got empty") } @@ -39,7 +42,7 @@ func TestMiddleware_UnauthorizedRoleExtractor(t *testing.T) { func TestMiddleware_ForbiddenPath(t *testing.T) { cfg := &Config{ - RoleExtractorFunc: func(r *http.Request, args ...any) (string, error) { + RoleExtractorFunc: func(_ *http.Request, _ ...any) (string, error) { return "user", nil }, RoleWithPermissions: map[string][]string{ @@ -48,7 +51,7 @@ func TestMiddleware_ForbiddenPath(t *testing.T) { OverRides: map[string]bool{}, } - req := httptest.NewRequest("GET", "/forbidden", nil) + req := httptest.NewRequest(http.MethodGet, "/forbidden", http.NoBody) rr := httptest.NewRecorder() h := Middleware(cfg)(http.HandlerFunc(mockHandler)) @@ -61,7 +64,7 @@ func TestMiddleware_ForbiddenPath(t *testing.T) { func TestMiddleware_SuccessAddsRole(t *testing.T) { cfg := &Config{ - RoleExtractorFunc: func(r *http.Request, args ...any) (string, error) { + RoleExtractorFunc: func(_ *http.Request, _ ...any) (string, error) { return "admin", nil }, RoleWithPermissions: map[string][]string{ @@ -70,15 +73,17 @@ func TestMiddleware_SuccessAddsRole(t *testing.T) { } var ctxRole string + nextHandler := http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) { // Extract role from context to verify it's stored if val, ok := r.Context().Value(userRole).(string); ok { ctxRole = val } + w.WriteHeader(http.StatusOK) }) - req := httptest.NewRequest("GET", "/anything", nil) + req := httptest.NewRequest(http.MethodGet, "/anything", http.NoBody) rr := httptest.NewRecorder() h := Middleware(cfg)(nextHandler) @@ -87,6 +92,7 @@ func TestMiddleware_SuccessAddsRole(t *testing.T) { if rr.Code != http.StatusOK { t.Errorf("got status %d, want %d", rr.Code, http.StatusOK) } + if ctxRole != "admin" { t.Errorf("expected role 'admin' in context, got '%s'", ctxRole) } @@ -95,36 +101,38 @@ func TestMiddleware_SuccessAddsRole(t *testing.T) { func TestRequireRole_Match(t *testing.T) { expectedResult := "success" - handler := func(ctx *gofr.Context) (any, error) { + handler := func(_ *gofr.Context) (any, error) { return expectedResult, nil } // Create a context with the expected role - baseCtx := context.WithValue(context.Background(), userRole, "admin") + baseCtx := context.WithValue(t.Context(), userRole, "admin") gCtx := &gofr.Context{Context: baseCtx} got, err := RequireRole("admin", handler)(gCtx) if err != nil { t.Fatalf("unexpected error: %v", err) } + if got != expectedResult { t.Errorf("got %v, want %v", got, expectedResult) } } func TestRequireRole_NoMatch(t *testing.T) { - handler := func(ctx *gofr.Context) (any, error) { + handler := func(_ *gofr.Context) (any, error) { return "should not run", nil } // context with wrong role - baseCtx := context.WithValue(context.Background(), userRole, "user") + baseCtx := context.WithValue(t.Context(), userRole, "user") gCtx := &gofr.Context{Context: baseCtx} _, err := RequireRole("admin", handler)(gCtx) if err == nil { t.Fatalf("expected error, got nil") } + if err.Error() != "forbidden: access denied" { t.Errorf("got error %q, want %q", err.Error(), "forbidden: access denied") } From 21b630981dba62c966b4abc7c9d5a74dde73f82e Mon Sep 17 00:00:00 2001 From: goginenibhavani2000 Date: Wed, 13 Aug 2025 14:36:57 -0400 Subject: [PATCH 6/7] add go.od to separate out RBAC module --- pkg/gofr/rbac/go.mod | 100 +++++++++++ pkg/gofr/rbac/go.sum | 416 +++++++++++++++++++++++++++++++++++++++++++ 2 files changed, 516 insertions(+) create mode 100644 pkg/gofr/rbac/go.mod create mode 100644 pkg/gofr/rbac/go.sum diff --git a/pkg/gofr/rbac/go.mod b/pkg/gofr/rbac/go.mod new file mode 100644 index 000000000..a64de3e9e --- /dev/null +++ b/pkg/gofr/rbac/go.mod @@ -0,0 +1,100 @@ +module gofr.dev/rbac + +go 1.24.6 + +require gofr.dev v1.43.0 + +require ( + cloud.google.com/go v0.120.0 // indirect + cloud.google.com/go/auth v0.16.3 // indirect + cloud.google.com/go/auth/oauth2adapt v0.2.8 // indirect + cloud.google.com/go/compute/metadata v0.7.0 // indirect + cloud.google.com/go/iam v1.5.2 // indirect + cloud.google.com/go/pubsub v1.49.0 // indirect + filippo.io/edwards25519 v1.1.0 // indirect + github.com/DATA-DOG/go-sqlmock v1.5.2 // indirect + github.com/XSAM/otelsql v0.39.0 // indirect + github.com/beorn7/perks v1.0.1 // indirect + github.com/cenkalti/backoff/v5 v5.0.2 // indirect + github.com/cespare/xxhash/v2 v2.3.0 // indirect + github.com/davecgh/go-spew v1.1.1 // indirect + github.com/dgraph-io/dgo/v210 v210.0.0-20230328113526-b66f8ae53a2d // indirect + github.com/dgryski/go-rendezvous v0.0.0-20200823014737-9f7001d12a5f // indirect + github.com/dustin/go-humanize v1.0.1 // indirect + github.com/eclipse/paho.mqtt.golang v1.5.0 // indirect + github.com/felixge/httpsnoop v1.0.4 // indirect + github.com/go-logr/logr v1.4.3 // indirect + github.com/go-logr/stdr v1.2.2 // indirect + github.com/go-sql-driver/mysql v1.9.3 // indirect + github.com/gogo/protobuf v1.3.2 // indirect + github.com/golang-jwt/jwt/v5 v5.3.0 // indirect + github.com/google/s2a-go v0.1.9 // indirect + github.com/google/uuid v1.6.0 // indirect + github.com/googleapis/enterprise-certificate-proxy v0.3.6 // indirect + github.com/googleapis/gax-go/v2 v2.15.0 // indirect + github.com/gorilla/mux v1.8.1 // indirect + github.com/gorilla/websocket v1.5.3 // indirect + github.com/grafana/regexp v0.0.0-20240518133315-a468a5bfb3bc // indirect + github.com/grpc-ecosystem/go-grpc-middleware v1.4.0 // indirect + github.com/grpc-ecosystem/grpc-gateway/v2 v2.27.1 // indirect + github.com/joho/godotenv v1.5.1 // indirect + github.com/klauspost/compress v1.18.0 // indirect + github.com/lib/pq v1.10.9 // indirect + github.com/mattn/go-isatty v0.0.20 // indirect + github.com/munnerz/goautoneg v0.0.0-20191010083416-a7dc8b61c822 // indirect + github.com/ncruces/go-strftime v0.1.9 // indirect + github.com/openzipkin/zipkin-go v0.4.3 // indirect + github.com/pierrec/lz4/v4 v4.1.22 // indirect + github.com/pkg/errors v0.9.1 // indirect + github.com/pmezard/go-difflib v1.0.0 // indirect + github.com/prometheus/client_golang v1.23.0 // indirect + github.com/prometheus/client_model v0.6.2 // indirect + github.com/prometheus/common v0.65.0 // indirect + github.com/prometheus/otlptranslator v0.0.0-20250717125610-8549f4ab4f8f // indirect + github.com/prometheus/procfs v0.17.0 // indirect + github.com/redis/go-redis/extra/rediscmd/v9 v9.11.0 // indirect + github.com/redis/go-redis/extra/redisotel/v9 v9.11.0 // indirect + github.com/redis/go-redis/v9 v9.11.0 // indirect + github.com/remyoudompheng/bigfft v0.0.0-20230129092748-24d4a6f8daec // indirect + github.com/segmentio/kafka-go v0.4.48 // indirect + github.com/stretchr/testify v1.10.0 // indirect + github.com/xdg-go/pbkdf2 v1.0.0 // indirect + github.com/xdg-go/scram v1.1.2 // indirect + github.com/xdg-go/stringprep v1.0.4 // indirect + go.opencensus.io v0.24.0 // indirect + go.opentelemetry.io/auto/sdk v1.1.0 // indirect + go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc v0.61.0 // indirect + go.opentelemetry.io/contrib/instrumentation/net/http/httptrace/otelhttptrace v0.62.0 // indirect + go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp v0.62.0 // indirect + go.opentelemetry.io/otel v1.37.0 // indirect + go.opentelemetry.io/otel/exporters/otlp/otlptrace v1.37.0 // indirect + go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc v1.37.0 // indirect + go.opentelemetry.io/otel/exporters/prometheus v0.59.1 // indirect + go.opentelemetry.io/otel/exporters/zipkin v1.37.0 // indirect + go.opentelemetry.io/otel/metric v1.37.0 // indirect + go.opentelemetry.io/otel/sdk v1.37.0 // indirect + go.opentelemetry.io/otel/sdk/metric v1.37.0 // indirect + go.opentelemetry.io/otel/trace v1.37.0 // indirect + go.opentelemetry.io/proto/otlp v1.7.0 // indirect + go.uber.org/mock v0.5.2 // indirect + golang.org/x/crypto v0.40.0 // indirect + golang.org/x/exp v0.0.0-20250620022241-b7579e27df2b // indirect + golang.org/x/net v0.42.0 // indirect + golang.org/x/oauth2 v0.30.0 // indirect + golang.org/x/sync v0.16.0 // indirect + golang.org/x/sys v0.34.0 // indirect + golang.org/x/term v0.33.0 // indirect + golang.org/x/text v0.27.0 // indirect + golang.org/x/time v0.12.0 // indirect + google.golang.org/api v0.244.0 // indirect + google.golang.org/genproto v0.0.0-20250603155806-513f23925822 // indirect + google.golang.org/genproto/googleapis/api v0.0.0-20250603155806-513f23925822 // indirect + google.golang.org/genproto/googleapis/rpc v0.0.0-20250728155136-f173205681a0 // indirect + google.golang.org/grpc v1.74.2 // indirect + google.golang.org/protobuf v1.36.6 // indirect + gopkg.in/yaml.v3 v3.0.1 // indirect + modernc.org/libc v1.66.3 // indirect + modernc.org/mathutil v1.7.1 // indirect + modernc.org/memory v1.11.0 // indirect + modernc.org/sqlite v1.38.2 // indirect +) diff --git a/pkg/gofr/rbac/go.sum b/pkg/gofr/rbac/go.sum new file mode 100644 index 000000000..bf617246c --- /dev/null +++ b/pkg/gofr/rbac/go.sum @@ -0,0 +1,416 @@ +cloud.google.com/go v0.26.0/go.mod h1:aQUYkXzVsufM+DwF1aE+0xfcU+56JwCaLick0ClmMTw= +cloud.google.com/go v0.120.0 h1:wc6bgG9DHyKqF5/vQvX1CiZrtHnxJjBlKUyF9nP6meA= +cloud.google.com/go v0.120.0/go.mod h1:/beW32s8/pGRuj4IILWQNd4uuebeT4dkOhKmkfit64Q= +cloud.google.com/go/auth v0.16.3 h1:kabzoQ9/bobUmnseYnBO6qQG7q4a/CffFRlJSxv2wCc= +cloud.google.com/go/auth v0.16.3/go.mod h1:NucRGjaXfzP1ltpcQ7On/VTZ0H4kWB5Jy+Y9Dnm76fA= +cloud.google.com/go/auth/oauth2adapt v0.2.8 h1:keo8NaayQZ6wimpNSmW5OPc283g65QNIiLpZnkHRbnc= +cloud.google.com/go/auth/oauth2adapt v0.2.8/go.mod h1:XQ9y31RkqZCcwJWNSx2Xvric3RrU88hAYYbjDWYDL+c= +cloud.google.com/go/compute/metadata v0.7.0 h1:PBWF+iiAerVNe8UCHxdOt6eHLVc3ydFeOCw78U8ytSU= +cloud.google.com/go/compute/metadata v0.7.0/go.mod h1:j5MvL9PprKL39t166CoB1uVHfQMs4tFQZZcKwksXUjo= +cloud.google.com/go/iam v1.5.2 h1:qgFRAGEmd8z6dJ/qyEchAuL9jpswyODjA2lS+w234g8= +cloud.google.com/go/iam v1.5.2/go.mod h1:SE1vg0N81zQqLzQEwxL2WI6yhetBdbNQuTvIKCSkUHE= +cloud.google.com/go/kms v1.22.0 h1:dBRIj7+GDeeEvatJeTB19oYZNV0aj6wEqSIT/7gLqtk= +cloud.google.com/go/kms v1.22.0/go.mod h1:U7mf8Sva5jpOb4bxYZdtw/9zsbIjrklYwPcvMk34AL8= +cloud.google.com/go/longrunning v0.6.7 h1:IGtfDWHhQCgCjwQjV9iiLnUta9LBCo8R9QmAFsS/PrE= +cloud.google.com/go/longrunning v0.6.7/go.mod h1:EAFV3IZAKmM56TyiE6VAP3VoTzhZzySwI/YI1s/nRsY= +cloud.google.com/go/pubsub v1.49.0 h1:5054IkbslnrMCgA2MAEPcsN3Ky+AyMpEZcii/DoySPo= +cloud.google.com/go/pubsub v1.49.0/go.mod h1:K1FswTWP+C1tI/nfi3HQecoVeFvL4HUOB1tdaNXKhUY= +filippo.io/edwards25519 v1.1.0 h1:FNf4tywRC1HmFuKW5xopWpigGjJKiJSV0Cqo0cJWDaA= +filippo.io/edwards25519 v1.1.0/go.mod h1:BxyFTGdWcka3PhytdK4V28tE5sGfRvvvRV7EaN4VDT4= +github.com/BurntSushi/toml v0.3.1/go.mod h1:xHWCNGjB5oqiDr8zfno3MHue2Ht5sIBksp03qcyfWMU= +github.com/DATA-DOG/go-sqlmock v1.5.2 h1:OcvFkGmslmlZibjAjaHm3L//6LiuBgolP7OputlJIzU= +github.com/DATA-DOG/go-sqlmock v1.5.2/go.mod h1:88MAG/4G7SMwSE3CeA0ZKzrT5CiOU3OJ+JlNzwDqpNU= +github.com/XSAM/otelsql v0.39.0 h1:4o374mEIMweaeevL7fd8Q3C710Xi2Jh/c8G4Qy9bvCY= +github.com/XSAM/otelsql v0.39.0/go.mod h1:uMOXLUX+wkuAuP0AR3B45NXX7E9lJS2mERa8gqdU8R0= +github.com/alicebob/miniredis/v2 v2.35.0 h1:QwLphYqCEAo1eu1TqPRN2jgVMPBweeQcR21jeqDCONI= +github.com/alicebob/miniredis/v2 v2.35.0/go.mod h1:TcL7YfarKPGDAthEtl5NBeHZfeUQj6OXMm/+iu5cLMM= +github.com/benbjohnson/clock v1.1.0/go.mod h1:J11/hYXuz8f4ySSvYwY0FKfm+ezbsZBKZxNJlLklBHA= +github.com/beorn7/perks v1.0.1 h1:VlbKKnNfV8bJzeqoa4cOKqO6bYr3WgKZxO8Z16+hsOM= +github.com/beorn7/perks v1.0.1/go.mod h1:G2ZrVWU2WbWT9wwq4/hrbKbnv/1ERSJQ0ibhJ6rlkpw= +github.com/bsm/ginkgo/v2 v2.12.0 h1:Ny8MWAHyOepLGlLKYmXG4IEkioBysk6GpaRTLC8zwWs= +github.com/bsm/ginkgo/v2 v2.12.0/go.mod h1:SwYbGRRDovPVboqFv0tPTcG1sN61LM1Z4ARdbAV9g4c= +github.com/bsm/gomega v1.27.10 h1:yeMWxP2pV2fG3FgAODIY8EiRE3dy0aeFYt4l7wh6yKA= +github.com/bsm/gomega v1.27.10/go.mod h1:JyEr/xRbxbtgWNi8tIEVPUYZ5Dzef52k01W3YH0H+O0= +github.com/cenkalti/backoff/v5 v5.0.2 h1:rIfFVxEf1QsI7E1ZHfp/B4DF/6QBAUhmgkxc0H7Zss8= +github.com/cenkalti/backoff/v5 v5.0.2/go.mod h1:rkhZdG3JZukswDf7f0cwqPNk4K0sa+F97BxZthm/crw= +github.com/census-instrumentation/opencensus-proto v0.2.1/go.mod h1:f6KPmirojxKA12rnyqOA5BBL4O983OfeGPqjHWSTneU= +github.com/cespare/xxhash/v2 v2.3.0 h1:UL815xU9SqsFlibzuggzjXhog7bL6oX9BbNZnL2UFvs= +github.com/cespare/xxhash/v2 v2.3.0/go.mod h1:VGX0DQ3Q6kWi7AoAeZDth3/j3BFtOZR5XLFGgcrjCOs= +github.com/client9/misspell v0.3.4/go.mod h1:qj6jICC3Q7zFZvVWo7KLAzC3yx5G7kyvSDkc90ppPyw= +github.com/cncf/udpa/go v0.0.0-20191209042840-269d4d468f6f/go.mod h1:M8M6+tZqaGXZJjfX53e64911xZQV5JYwmTeXPW+k8Sc= +github.com/davecgh/go-spew v1.1.0/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38= +github.com/davecgh/go-spew v1.1.1 h1:vj9j/u1bqnvCEfJOwUhtlOARqs3+rkHYY13jYWTU97c= +github.com/davecgh/go-spew v1.1.1/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38= +github.com/dgraph-io/dgo/v210 v210.0.0-20230328113526-b66f8ae53a2d h1:abDbP7XBVgwda+h0J5Qra5p2OQpidU2FdkXvzCKL+H8= +github.com/dgraph-io/dgo/v210 v210.0.0-20230328113526-b66f8ae53a2d/go.mod h1:wKFzULXAPj3U2BDAPWXhSbQQNC6FU1+1/5iika6IY7g= +github.com/dgryski/go-rendezvous v0.0.0-20200823014737-9f7001d12a5f h1:lO4WD4F/rVNCu3HqELle0jiPLLBs70cWOduZpkS1E78= +github.com/dgryski/go-rendezvous v0.0.0-20200823014737-9f7001d12a5f/go.mod h1:cuUVRXasLTGF7a8hSLbxyZXjz+1KgoB3wDUb6vlszIc= +github.com/dustin/go-humanize v1.0.1 h1:GzkhY7T5VNhEkwH0PVJgjz+fX1rhBrR7pRT3mDkpeCY= +github.com/dustin/go-humanize v1.0.1/go.mod h1:Mu1zIs6XwVuF/gI1OepvI0qD18qycQx+mFykh5fBlto= +github.com/eclipse/paho.mqtt.golang v1.5.0 h1:EH+bUVJNgttidWFkLLVKaQPGmkTUfQQqjOsyvMGvD6o= +github.com/eclipse/paho.mqtt.golang v1.5.0/go.mod h1:du/2qNQVqJf/Sqs4MEL77kR8QTqANF7XU7Fk0aOTAgk= +github.com/envoyproxy/go-control-plane v0.9.0/go.mod h1:YTl/9mNaCwkRvm6d1a2C3ymFceY/DCBVvsKhRF0iEA4= +github.com/envoyproxy/go-control-plane v0.9.1-0.20191026205805-5f8ba28d4473/go.mod h1:YTl/9mNaCwkRvm6d1a2C3ymFceY/DCBVvsKhRF0iEA4= +github.com/envoyproxy/go-control-plane v0.9.4/go.mod h1:6rpuAdCZL397s3pYoYcLgu1mIlRU8Am5FuJP05cCM98= +github.com/envoyproxy/protoc-gen-validate v0.1.0/go.mod h1:iSmxcyjqTsJpI2R4NaDN7+kN2VEUnK/pcBlmesArF7c= +github.com/felixge/httpsnoop v1.0.4 h1:NFTV2Zj1bL4mc9sqWACXbQFVBBg2W3GPvqp8/ESS2Wg= +github.com/felixge/httpsnoop v1.0.4/go.mod h1:m8KPJKqk1gH5J9DgRY2ASl2lWCfGKXixSwevea8zH2U= +github.com/go-kit/log v0.1.0/go.mod h1:zbhenjAZHb184qTLMA9ZjW7ThYL0H2mk7Q6pNt4vbaY= +github.com/go-logfmt/logfmt v0.5.0/go.mod h1:wCYkCAKZfumFQihp8CzCvQ3paCTfi41vtzG1KdI/P7A= +github.com/go-logr/logr v1.2.2/go.mod h1:jdQByPbusPIv2/zmleS9BjJVeZ6kBagPoEUsqbVz/1A= +github.com/go-logr/logr v1.4.3 h1:CjnDlHq8ikf6E492q6eKboGOC0T8CDaOvkHCIg8idEI= +github.com/go-logr/logr v1.4.3/go.mod h1:9T104GzyrTigFIr8wt5mBrctHMim0Nb2HLGrmQ40KvY= +github.com/go-logr/stdr v1.2.2 h1:hSWxHoqTgW2S2qGc0LTAI563KZ5YKYRhT3MFKZMbjag= +github.com/go-logr/stdr v1.2.2/go.mod h1:mMo/vtBO5dYbehREoey6XUKy/eSumjCCveDpRre4VKE= +github.com/go-sql-driver/mysql v1.9.3 h1:U/N249h2WzJ3Ukj8SowVFjdtZKfu9vlLZxjPXV1aweo= +github.com/go-sql-driver/mysql v1.9.3/go.mod h1:qn46aNg1333BRMNU69Lq93t8du/dwxI64Gl8i5p1WMU= +github.com/go-stack/stack v1.8.0/go.mod h1:v0f6uXyyMGvRgIKkXu+yp6POWl0qKG85gN/melR3HDY= +github.com/gogo/protobuf v1.3.2 h1:Ov1cvc58UF3b5XjBnZv7+opcTcQFZebYjWzi34vdm4Q= +github.com/gogo/protobuf v1.3.2/go.mod h1:P1XiOD3dCwIKUDQYPy72D8LYyHL2YPYrpS2s69NZV8Q= +github.com/golang-jwt/jwt/v5 v5.3.0 h1:pv4AsKCKKZuqlgs5sUmn4x8UlGa0kEVt/puTpKx9vvo= +github.com/golang-jwt/jwt/v5 v5.3.0/go.mod h1:fxCRLWMO43lRc8nhHWY6LGqRcf+1gQWArsqaEUEa5bE= +github.com/golang/glog v0.0.0-20160126235308-23def4e6c14b/go.mod h1:SBH7ygxi8pfUlaOkMMuAQtPIUF8ecWP5IEl/CR7VP2Q= +github.com/golang/groupcache v0.0.0-20200121045136-8c9f03a8e57e/go.mod h1:cIg4eruTrX1D+g88fzRXU5OdNfaM+9IcxsU14FzY7Hc= +github.com/golang/groupcache v0.0.0-20241129210726-2c02b8208cf8 h1:f+oWsMOmNPc8JmEHVZIycC7hBoQxHH9pNKQORJNozsQ= +github.com/golang/groupcache v0.0.0-20241129210726-2c02b8208cf8/go.mod h1:wcDNUvekVysuuOpQKo3191zZyTpiI6se1N1ULghS0sw= +github.com/golang/mock v1.1.1/go.mod h1:oTYuIxOrZwtPieC+H1uAHpcLFnEyAGVDL/k47Jfbm0A= +github.com/golang/protobuf v1.2.0/go.mod h1:6lQm79b+lXiMfvg/cZm0SGofjICqVBUtrP5yJMmIC1U= +github.com/golang/protobuf v1.3.2/go.mod h1:6lQm79b+lXiMfvg/cZm0SGofjICqVBUtrP5yJMmIC1U= +github.com/golang/protobuf v1.3.3/go.mod h1:vzj43D7+SQXF/4pzW/hwtAqwc6iTitCiVSaWz5lYuqw= +github.com/golang/protobuf v1.4.0-rc.1/go.mod h1:ceaxUfeHdC40wWswd/P6IGgMaK3YpKi5j83Wpe3EHw8= +github.com/golang/protobuf v1.4.0-rc.1.0.20200221234624-67d41d38c208/go.mod h1:xKAWHe0F5eneWXFV3EuXVDTCmh+JuBKY0li0aMyXATA= +github.com/golang/protobuf v1.4.0-rc.2/go.mod h1:LlEzMj4AhA7rCAGe4KMBDvJI+AwstrUpVNzEA03Pprs= +github.com/golang/protobuf v1.4.0-rc.4.0.20200313231945-b860323f09d0/go.mod h1:WU3c8KckQ9AFe+yFwt9sWVRKCVIyN9cPHBJSNnbL67w= +github.com/golang/protobuf v1.4.0/go.mod h1:jodUvKwWbYaEsadDk5Fwe5c77LiNKVO9IDvqG2KuDX0= +github.com/golang/protobuf v1.4.1/go.mod h1:U8fpvMrcmy5pZrNK1lt4xCsGvpyWQ/VVv6QDs8UjoX8= +github.com/golang/protobuf v1.4.3/go.mod h1:oDoupMAO8OvCJWAcko0GGGIgR6R6ocIYbsSw735rRwI= +github.com/golang/protobuf v1.5.4 h1:i7eJL8qZTpSEXOPTxNKhASYpMn+8e5Q6AdndVa1dWek= +github.com/golang/protobuf v1.5.4/go.mod h1:lnTiLA8Wa4RWRcIUkrtSVa5nRhsEGBg48fD6rSs7xps= +github.com/google/go-cmp v0.2.0/go.mod h1:oXzfMopK8JAjlY9xF4vHSVASa0yLyX7SntLO5aqRK0M= +github.com/google/go-cmp v0.3.0/go.mod h1:8QqcDgzrUqlUb/G2PQTWiueGozuR1884gddMywk6iLU= +github.com/google/go-cmp v0.3.1/go.mod h1:8QqcDgzrUqlUb/G2PQTWiueGozuR1884gddMywk6iLU= +github.com/google/go-cmp v0.4.0/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE= +github.com/google/go-cmp v0.5.0/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE= +github.com/google/go-cmp v0.5.3/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE= +github.com/google/go-cmp v0.7.0 h1:wk8382ETsv4JYUZwIsn6YpYiWiBsYLSJiTsyBybVuN8= +github.com/google/go-cmp v0.7.0/go.mod h1:pXiqmnSA92OHEEa9HXL2W4E7lf9JzCmGVUdgjX3N/iU= +github.com/google/pprof v0.0.0-20250317173921-a4b03ec1a45e h1:ijClszYn+mADRFY17kjQEVQ1XRhq2/JR1M3sGqeJoxs= +github.com/google/pprof v0.0.0-20250317173921-a4b03ec1a45e/go.mod h1:boTsfXsheKC2y+lKOCMpSfarhxDeIzfZG1jqGcPl3cA= +github.com/google/s2a-go v0.1.9 h1:LGD7gtMgezd8a/Xak7mEWL0PjoTQFvpRudN895yqKW0= +github.com/google/s2a-go v0.1.9/go.mod h1:YA0Ei2ZQL3acow2O62kdp9UlnvMmU7kA6Eutn0dXayM= +github.com/google/uuid v1.1.2/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo= +github.com/google/uuid v1.6.0 h1:NIvaJDMOsjHA8n1jAhLSgzrAzy1Hgr+hNrb57e+94F0= +github.com/google/uuid v1.6.0/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo= +github.com/googleapis/enterprise-certificate-proxy v0.3.6 h1:GW/XbdyBFQ8Qe+YAmFU9uHLo7OnF5tL52HFAgMmyrf4= +github.com/googleapis/enterprise-certificate-proxy v0.3.6/go.mod h1:MkHOF77EYAE7qfSuSS9PU6g4Nt4e11cnsDUowfwewLA= +github.com/googleapis/gax-go/v2 v2.15.0 h1:SyjDc1mGgZU5LncH8gimWo9lW1DtIfPibOG81vgd/bo= +github.com/googleapis/gax-go/v2 v2.15.0/go.mod h1:zVVkkxAQHa1RQpg9z2AUCMnKhi0Qld9rcmyfL1OZhoc= +github.com/gorilla/mux v1.8.1 h1:TuBL49tXwgrFYWhqrNgrUNEY92u81SPhu7sTdzQEiWY= +github.com/gorilla/mux v1.8.1/go.mod h1:AKf9I4AEqPTmMytcMc0KkNouC66V3BtZ4qD5fmWSiMQ= +github.com/gorilla/websocket v1.5.3 h1:saDtZ6Pbx/0u+bgYQ3q96pZgCzfhKXGPqt7kZ72aNNg= +github.com/gorilla/websocket v1.5.3/go.mod h1:YR8l580nyteQvAITg2hZ9XVh4b55+EU/adAjf1fMHhE= +github.com/grafana/regexp v0.0.0-20240518133315-a468a5bfb3bc h1:GN2Lv3MGO7AS6PrRoT6yV5+wkrOpcszoIsO4+4ds248= +github.com/grafana/regexp v0.0.0-20240518133315-a468a5bfb3bc/go.mod h1:+JKpmjMGhpgPL+rXZ5nsZieVzvarn86asRlBg4uNGnk= +github.com/grpc-ecosystem/go-grpc-middleware v1.4.0 h1:UH//fgunKIs4JdUbpDl1VZCDaL56wXCB/5+wF6uHfaI= +github.com/grpc-ecosystem/go-grpc-middleware v1.4.0/go.mod h1:g5qyo/la0ALbONm6Vbp88Yd8NsDy6rZz+RcrMPxvld8= +github.com/grpc-ecosystem/grpc-gateway/v2 v2.27.1 h1:X5VWvz21y3gzm9Nw/kaUeku/1+uBhcekkmy4IkffJww= +github.com/grpc-ecosystem/grpc-gateway/v2 v2.27.1/go.mod h1:Zanoh4+gvIgluNqcfMVTJueD4wSS5hT7zTt4Mrutd90= +github.com/joho/godotenv v1.5.1 h1:7eLL/+HRGLY0ldzfGMeQkb7vMd0as4CfYvUVzLqw0N0= +github.com/joho/godotenv v1.5.1/go.mod h1:f4LDr5Voq0i2e/R5DDNOoa2zzDfwtkZa6DnEwAbqwq4= +github.com/kisielk/errcheck v1.5.0/go.mod h1:pFxgyoBC7bSaBwPgfKdkLd5X25qrDl4LWUI2bnpBCr8= +github.com/kisielk/gotool v1.0.0/go.mod h1:XhKaO+MFFWcvkIS/tQcRk01m1F5IRFswLeQ+oQHNcck= +github.com/kisielk/sqlstruct v0.0.0-20201105191214-5f3e10d3ab46/go.mod h1:yyMNCyc/Ib3bDTKd379tNMpB/7/H5TjM2Y9QJ5THLbE= +github.com/klauspost/compress v1.15.9/go.mod h1:PhcZ0MbTNciWF3rruxRgKxI5NkcHHrHUDtV4Yw2GlzU= +github.com/klauspost/compress v1.18.0 h1:c/Cqfb0r+Yi+JtIEq73FWXVkRonBlf0CRNYc8Zttxdo= +github.com/klauspost/compress v1.18.0/go.mod h1:2Pp+KzxcywXVXMr50+X0Q/Lsb43OQHYWRCY2AiWywWQ= +github.com/konsorten/go-windows-terminal-sequences v1.0.1/go.mod h1:T0+1ngSBFLxvqU3pZ+m/2kptfBszLMUkC4ZK/EgS/cQ= +github.com/kr/pretty v0.1.0/go.mod h1:dAy3ld7l9f0ibDNOQOHHMYYIIbhfbHSm3C4ZsoJORNo= +github.com/kr/pretty v0.3.1 h1:flRD4NNwYAUpkphVc1HcthR4KEIFJ65n8Mw5qdRn3LE= +github.com/kr/pretty v0.3.1/go.mod h1:hoEshYVHaxMs3cyo3Yncou5ZscifuDolrwPKZanG3xk= +github.com/kr/pty v1.1.1/go.mod h1:pFQYn66WHrOpPYNljwOMqo10TkYh1fy3cYio2l3bCsQ= +github.com/kr/text v0.1.0/go.mod h1:4Jbv+DJW3UT/LiOwJeYQe1efqtUx/iVham/4vfdArNI= +github.com/kr/text v0.2.0 h1:5Nx0Ya0ZqY2ygV366QzturHI13Jq95ApcVaJBhpS+AY= +github.com/kr/text v0.2.0/go.mod h1:eLer722TekiGuMkidMxC/pM04lWEeraHUUmBw8l2grE= +github.com/kylelemons/godebug v1.1.0 h1:RPNrshWIDI6G2gRW9EHilWtl7Z6Sb1BR0xunSBf0SNc= +github.com/kylelemons/godebug v1.1.0/go.mod h1:9/0rRGxNHcop5bhtWyNeEfOS8JIWk580+fNqagV/RAw= +github.com/lib/pq v1.10.9 h1:YXG7RB+JIjhP29X+OtkiDnYaXQwpS4JEWq7dtCCRUEw= +github.com/lib/pq v1.10.9/go.mod h1:AlVN5x4E4T544tWzH6hKfbfQvm3HdbOxrmggDNAPY9o= +github.com/mattn/go-isatty v0.0.20 h1:xfD0iDuEKnDkl03q4limB+vH+GxLEtL/jb4xVJSWWEY= +github.com/mattn/go-isatty v0.0.20/go.mod h1:W+V8PltTTMOvKvAeJH7IuucS94S2C6jfK/D7dTCTo3Y= +github.com/munnerz/goautoneg v0.0.0-20191010083416-a7dc8b61c822 h1:C3w9PqII01/Oq1c1nUAm88MOHcQC9l5mIlSMApZMrHA= +github.com/munnerz/goautoneg v0.0.0-20191010083416-a7dc8b61c822/go.mod h1:+n7T8mK8HuQTcFwEeznm/DIxMOiR9yIdICNftLE1DvQ= +github.com/ncruces/go-strftime v0.1.9 h1:bY0MQC28UADQmHmaF5dgpLmImcShSi2kHU9XLdhx/f4= +github.com/ncruces/go-strftime v0.1.9/go.mod h1:Fwc5htZGVVkseilnfgOVb9mKy6w1naJmn9CehxcKcls= +github.com/opentracing/opentracing-go v1.1.0/go.mod h1:UkNAQd3GIcIGf0SeVgPpRdFStlNbqXla1AfSYxPUl2o= +github.com/openzipkin/zipkin-go v0.4.3 h1:9EGwpqkgnwdEIJ+Od7QVSEIH+ocmm5nPat0G7sjsSdg= +github.com/openzipkin/zipkin-go v0.4.3/go.mod h1:M9wCJZFWCo2RiY+o1eBCEMe0Dp2S5LDHcMZmk3RmK7c= +github.com/pierrec/lz4/v4 v4.1.15/go.mod h1:gZWDp/Ze/IJXGXf23ltt2EXimqmTUXEy0GFuRQyBid4= +github.com/pierrec/lz4/v4 v4.1.22 h1:cKFw6uJDK+/gfw5BcDL0JL5aBsAFdsIT18eRtLj7VIU= +github.com/pierrec/lz4/v4 v4.1.22/go.mod h1:gZWDp/Ze/IJXGXf23ltt2EXimqmTUXEy0GFuRQyBid4= +github.com/pkg/errors v0.8.1/go.mod h1:bwawxfHBFNV+L2hUp1rHADufV3IMtnDRdf1r5NINEl0= +github.com/pkg/errors v0.9.1 h1:FEBLx1zS214owpjy7qsBeixbURkuhQAwrK5UwLGTwt4= +github.com/pkg/errors v0.9.1/go.mod h1:bwawxfHBFNV+L2hUp1rHADufV3IMtnDRdf1r5NINEl0= +github.com/pmezard/go-difflib v1.0.0 h1:4DBwDE0NGyQoBHbLQYPwSUPoCMWR5BEzIk/f1lZbAQM= +github.com/pmezard/go-difflib v1.0.0/go.mod h1:iKH77koFhYxTK1pcRnkKkqfTogsbg7gZNVY4sRDYZ/4= +github.com/prometheus/client_golang v1.23.0 h1:ust4zpdl9r4trLY/gSjlm07PuiBq2ynaXXlptpfy8Uc= +github.com/prometheus/client_golang v1.23.0/go.mod h1:i/o0R9ByOnHX0McrTMTyhYvKE4haaf2mW08I+jGAjEE= +github.com/prometheus/client_model v0.0.0-20190812154241-14fe0d1b01d4/go.mod h1:xMI15A0UPsDsEKsMN9yxemIoYk6Tm2C1GtYGdfGttqA= +github.com/prometheus/client_model v0.6.2 h1:oBsgwpGs7iVziMvrGhE53c/GrLUsZdHnqNwqPLxwZyk= +github.com/prometheus/client_model v0.6.2/go.mod h1:y3m2F6Gdpfy6Ut/GBsUqTWZqCUvMVzSfMLjcu6wAwpE= +github.com/prometheus/common v0.65.0 h1:QDwzd+G1twt//Kwj/Ww6E9FQq1iVMmODnILtW1t2VzE= +github.com/prometheus/common v0.65.0/go.mod h1:0gZns+BLRQ3V6NdaerOhMbwwRbNh9hkGINtQAsP5GS8= +github.com/prometheus/otlptranslator v0.0.0-20250717125610-8549f4ab4f8f h1:QQB6SuvGZjK8kdc2YaLJpYhV8fxauOsjE6jgcL6YJ8Q= +github.com/prometheus/otlptranslator v0.0.0-20250717125610-8549f4ab4f8f/go.mod h1:P8AwMgdD7XEr6QRUJ2QWLpiAZTgTE2UYgjlu3svompI= +github.com/prometheus/procfs v0.17.0 h1:FuLQ+05u4ZI+SS/w9+BWEM2TXiHKsUQ9TADiRH7DuK0= +github.com/prometheus/procfs v0.17.0/go.mod h1:oPQLaDAMRbA+u8H5Pbfq+dl3VDAvHxMUOVhe0wYB2zw= +github.com/redis/go-redis/extra/rediscmd/v9 v9.11.0 h1:vP5CH2rJ3L4yk3o8FdXqiPL1lGl5APjHcxk5/OT6H0Q= +github.com/redis/go-redis/extra/rediscmd/v9 v9.11.0/go.mod h1:/2yj0RD4xjZQ7wOg9u7gVoBM0IgMGrHunAql1hr1NDg= +github.com/redis/go-redis/extra/redisotel/v9 v9.11.0 h1:dMNmusapfQefntfUqAYAvaVJMrJCdKUaQoPSZtd99WU= +github.com/redis/go-redis/extra/redisotel/v9 v9.11.0/go.mod h1:Yy5oaeVwWj7KMu6Mga/i4imlXFvgitQWN5HFiT5JqoE= +github.com/redis/go-redis/v9 v9.11.0 h1:E3S08Gl/nJNn5vkxd2i78wZxWAPNZgUNTp8WIJUAiIs= +github.com/redis/go-redis/v9 v9.11.0/go.mod h1:huWgSWd8mW6+m0VPhJjSSQ+d6Nh1VICQ6Q5lHuCH/Iw= +github.com/remyoudompheng/bigfft v0.0.0-20230129092748-24d4a6f8daec h1:W09IVJc94icq4NjY3clb7Lk8O1qJ8BdBEF8z0ibU0rE= +github.com/remyoudompheng/bigfft v0.0.0-20230129092748-24d4a6f8daec/go.mod h1:qqbHyh8v60DhA7CoWK5oRCqLrMHRGoxYCSS9EjAz6Eo= +github.com/rogpeppe/go-internal v1.13.1 h1:KvO1DLK/DRN07sQ1LQKScxyZJuNnedQ5/wKSR38lUII= +github.com/rogpeppe/go-internal v1.13.1/go.mod h1:uMEvuHeurkdAXX61udpOXGD/AzZDWNMNyH2VO9fmH0o= +github.com/segmentio/kafka-go v0.4.48 h1:9jyu9CWK4W5W+SroCe8EffbrRZVqAOkuaLd/ApID4Vs= +github.com/segmentio/kafka-go v0.4.48/go.mod h1:HjF6XbOKh0Pjlkr5GVZxt6CsjjwnmhVOfURM5KMd8qg= +github.com/sirupsen/logrus v1.4.2/go.mod h1:tLMulIdttU9McNUspp0xgXVQah82FyeX6MwdIuYE2rE= +github.com/stretchr/objx v0.1.0/go.mod h1:HFkY916IF+rwdDfMAkV7OtwuqBVzrE8GR6GFx+wExME= +github.com/stretchr/objx v0.1.1/go.mod h1:HFkY916IF+rwdDfMAkV7OtwuqBVzrE8GR6GFx+wExME= +github.com/stretchr/objx v0.4.0/go.mod h1:YvHI0jy2hoMjB+UWwv71VJQ9isScKT/TqJzVSSt89Yw= +github.com/stretchr/objx v0.5.0/go.mod h1:Yh+to48EsGEfYuaHDzXPcE3xhTkx73EhmCGUpEOglKo= +github.com/stretchr/objx v0.5.2 h1:xuMeJ0Sdp5ZMRXx/aWO6RZxdr3beISkG5/G/aIRr3pY= +github.com/stretchr/objx v0.5.2/go.mod h1:FRsXN1f5AsAjCGJKqEizvkpNtU+EGNCLh3NxZ/8L+MA= +github.com/stretchr/testify v1.2.2/go.mod h1:a8OnRcib4nhh0OaRAV+Yts87kKdq0PP7pXfy6kDkUVs= +github.com/stretchr/testify v1.3.0/go.mod h1:M5WIy9Dh21IEIfnGCwXGc5bZfKNJtfHm1UVUgZn+9EI= +github.com/stretchr/testify v1.4.0/go.mod h1:j7eGeouHqKxXV5pUuKE4zz7dFj8WfuZ+81PSLYec5m4= +github.com/stretchr/testify v1.7.0/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg= +github.com/stretchr/testify v1.7.1/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg= +github.com/stretchr/testify v1.8.0/go.mod h1:yNjHg4UonilssWZ8iaSj1OCr/vHnekPRkoO+kdMU+MU= +github.com/stretchr/testify v1.8.1/go.mod h1:w2LPCIKwWwSfY2zedu0+kehJoqGctiVI29o6fzry7u4= +github.com/stretchr/testify v1.10.0 h1:Xv5erBjTwe/5IxqUQTdXv5kgmIvbHo3QQyRwhJsOfJA= +github.com/stretchr/testify v1.10.0/go.mod h1:r2ic/lqez/lEtzL7wO/rwa5dbSLXVDPFyf8C91i36aY= +github.com/xdg-go/pbkdf2 v1.0.0 h1:Su7DPu48wXMwC3bs7MCNG+z4FhcyEuz5dlvchbq0B0c= +github.com/xdg-go/pbkdf2 v1.0.0/go.mod h1:jrpuAogTd400dnrH08LKmI/xc1MbPOebTwRqcT5RDeI= +github.com/xdg-go/scram v1.1.2 h1:FHX5I5B4i4hKRVRBCFRxq1iQRej7WO3hhBuJf+UUySY= +github.com/xdg-go/scram v1.1.2/go.mod h1:RT/sEzTbU5y00aCK8UOx6R7YryM0iF1N2MOmC3kKLN4= +github.com/xdg-go/stringprep v1.0.4 h1:XLI/Ng3O1Atzq0oBs3TWm+5ZVgkq2aqdlvP9JtoZ6c8= +github.com/xdg-go/stringprep v1.0.4/go.mod h1:mPGuuIYwz7CmR2bT9j4GbQqutWS1zV24gijq1dTyGkM= +github.com/yuin/goldmark v1.1.27/go.mod h1:3hX8gzYuyVAZsxl0MRgGTJEmQBFcNTphYh9decYSb74= +github.com/yuin/goldmark v1.2.1/go.mod h1:3hX8gzYuyVAZsxl0MRgGTJEmQBFcNTphYh9decYSb74= +github.com/yuin/goldmark v1.4.13/go.mod h1:6yULJ656Px+3vBD8DxQVa3kxgyrAnzto9xy5taEt/CY= +github.com/yuin/gopher-lua v1.1.1 h1:kYKnWBjvbNP4XLT3+bPEwAXJx262OhaHDWDVOPjL46M= +github.com/yuin/gopher-lua v1.1.1/go.mod h1:GBR0iDaNXjAgGg9zfCvksxSRnQx76gclCIb7kdAd1Pw= +go.einride.tech/aip v0.68.1 h1:16/AfSxcQISGN5z9C5lM+0mLYXihrHbQ1onvYTr93aQ= +go.einride.tech/aip v0.68.1/go.mod h1:XaFtaj4HuA3Zwk9xoBtTWgNubZ0ZZXv9BZJCkuKuWbg= +go.opencensus.io v0.24.0 h1:y73uSU6J157QMP2kn2r30vwW1A2W2WFwSCGnAVxeaD0= +go.opencensus.io v0.24.0/go.mod h1:vNK8G9p7aAivkbmorf4v+7Hgx+Zs0yY+0fOtgBfjQKo= +go.opentelemetry.io/auto/sdk v1.1.0 h1:cH53jehLUN6UFLY71z+NDOiNJqDdPRaXzTel0sJySYA= +go.opentelemetry.io/auto/sdk v1.1.0/go.mod h1:3wSPjt5PWp2RhlCcmmOial7AvC4DQqZb7a7wCow3W8A= +go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc v0.61.0 h1:q4XOmH/0opmeuJtPsbFNivyl7bCt7yRBbeEm2sC/XtQ= +go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc v0.61.0/go.mod h1:snMWehoOh2wsEwnvvwtDyFCxVeDAODenXHtn5vzrKjo= +go.opentelemetry.io/contrib/instrumentation/net/http/httptrace/otelhttptrace v0.62.0 h1:wCeciVlAfb5DC8MQl/DlmAv/FVPNpQgFvI/71+hatuc= +go.opentelemetry.io/contrib/instrumentation/net/http/httptrace/otelhttptrace v0.62.0/go.mod h1:WfEApdZDMlLUAev/0QQpr8EJ/z0VWDKYZ5tF5RH5T1U= +go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp v0.62.0 h1:Hf9xI/XLML9ElpiHVDNwvqI0hIFlzV8dgIr35kV1kRU= +go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp v0.62.0/go.mod h1:NfchwuyNoMcZ5MLHwPrODwUF1HWCXWrL31s8gSAdIKY= +go.opentelemetry.io/otel v1.37.0 h1:9zhNfelUvx0KBfu/gb+ZgeAfAgtWrfHJZcAqFC228wQ= +go.opentelemetry.io/otel v1.37.0/go.mod h1:ehE/umFRLnuLa/vSccNq9oS1ErUlkkK71gMcN34UG8I= +go.opentelemetry.io/otel/exporters/otlp/otlptrace v1.37.0 h1:Ahq7pZmv87yiyn3jeFz/LekZmPLLdKejuO3NcK9MssM= +go.opentelemetry.io/otel/exporters/otlp/otlptrace v1.37.0/go.mod h1:MJTqhM0im3mRLw1i8uGHnCvUEeS7VwRyxlLC78PA18M= +go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc v1.37.0 h1:EtFWSnwW9hGObjkIdmlnWSydO+Qs8OwzfzXLUPg4xOc= +go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc v1.37.0/go.mod h1:QjUEoiGCPkvFZ/MjK6ZZfNOS6mfVEVKYE99dFhuN2LI= +go.opentelemetry.io/otel/exporters/prometheus v0.59.1 h1:HcpSkTkJbggT8bjYP+BjyqPWlD17BH9C5CYNKeDzmcA= +go.opentelemetry.io/otel/exporters/prometheus v0.59.1/go.mod h1:0FJL+gjuUoM07xzik3KPBaN+nz/CoB15kV6WLMiXZag= +go.opentelemetry.io/otel/exporters/zipkin v1.37.0 h1:Z2apuaRnHEjzDAkpbWNPiksz1R0/FCIrJSjiMA43zwI= +go.opentelemetry.io/otel/exporters/zipkin v1.37.0/go.mod h1:ofGu/7fG+bpmjZoiPUUmYDJ4vXWxMT57HmGoegx49uw= +go.opentelemetry.io/otel/metric v1.37.0 h1:mvwbQS5m0tbmqML4NqK+e3aDiO02vsf/WgbsdpcPoZE= +go.opentelemetry.io/otel/metric v1.37.0/go.mod h1:04wGrZurHYKOc+RKeye86GwKiTb9FKm1WHtO+4EVr2E= +go.opentelemetry.io/otel/sdk v1.37.0 h1:ItB0QUqnjesGRvNcmAcU0LyvkVyGJ2xftD29bWdDvKI= +go.opentelemetry.io/otel/sdk v1.37.0/go.mod h1:VredYzxUvuo2q3WRcDnKDjbdvmO0sCzOvVAiY+yUkAg= +go.opentelemetry.io/otel/sdk/metric v1.37.0 h1:90lI228XrB9jCMuSdA0673aubgRobVZFhbjxHHspCPc= +go.opentelemetry.io/otel/sdk/metric v1.37.0/go.mod h1:cNen4ZWfiD37l5NhS+Keb5RXVWZWpRE+9WyVCpbo5ps= +go.opentelemetry.io/otel/trace v1.37.0 h1:HLdcFNbRQBE2imdSEgm/kwqmQj1Or1l/7bW6mxVK7z4= +go.opentelemetry.io/otel/trace v1.37.0/go.mod h1:TlgrlQ+PtQO5XFerSPUYG0JSgGyryXewPGyayAWSBS0= +go.opentelemetry.io/proto/otlp v1.7.0 h1:jX1VolD6nHuFzOYso2E73H85i92Mv8JQYk0K9vz09os= +go.opentelemetry.io/proto/otlp v1.7.0/go.mod h1:fSKjH6YJ7HDlwzltzyMj036AJ3ejJLCgCSHGj4efDDo= +go.uber.org/atomic v1.7.0/go.mod h1:fEN4uk6kAWBTFdckzkM89CLk9XfWZrxpCo0nPH17wJc= +go.uber.org/goleak v1.1.10/go.mod h1:8a7PlsEVH3e/a/GLqe5IIrQx6GzcnRmZEufDUTk4A7A= +go.uber.org/goleak v1.3.0 h1:2K3zAYmnTNqV73imy9J1T3WC+gmCePx2hEGkimedGto= +go.uber.org/goleak v1.3.0/go.mod h1:CoHD4mav9JJNrW/WLlf7HGZPjdw8EucARQHekz1X6bE= +go.uber.org/mock v0.5.2 h1:LbtPTcP8A5k9WPXj54PPPbjcI4Y6lhyOZXn+VS7wNko= +go.uber.org/mock v0.5.2/go.mod h1:wLlUxC2vVTPTaE3UD51E0BGOAElKrILxhVSDYQLld5o= +go.uber.org/multierr v1.6.0/go.mod h1:cdWPpRnG4AhwMwsgIHip0KRBQjJy5kYEpYjJxpXp9iU= +go.uber.org/zap v1.18.1/go.mod h1:xg/QME4nWcxGxrpdeYfq7UvYrLh66cuVKdrbD1XF/NI= +gofr.dev v1.43.0 h1:opQ5rq5+odYi8/VTY8tdVrtZaAjyYA01AS860EK55Ro= +gofr.dev v1.43.0/go.mod h1:BNgk8HKwwuReAZT5btqkwL3ugpEaYyC7TmTxBA81X90= +golang.org/x/crypto v0.0.0-20190308221718-c2843e01d9a2/go.mod h1:djNgcEr1/C05ACkg1iLfiJU5Ep61QUkGW8qpdssI0+w= +golang.org/x/crypto v0.0.0-20191011191535-87dc89f01550/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI= +golang.org/x/crypto v0.0.0-20200622213623-75b288015ac9/go.mod h1:LzIPMQfyMNhhGPhUkYOs5KpL4U8rLKemX1yGLhDgUto= +golang.org/x/crypto v0.0.0-20210921155107-089bfa567519/go.mod h1:GvvjBRRGRdwPK5ydBHafDWAxML/pGHZbMvKqRZ5+Abc= +golang.org/x/crypto v0.14.0/go.mod h1:MVFd36DqK4CsrnJYDkBA3VC4m2GkXAM0PvzMCn4JQf4= +golang.org/x/crypto v0.40.0 h1:r4x+VvoG5Fm+eJcxMaY8CQM7Lb0l1lsmjGBQ6s8BfKM= +golang.org/x/crypto v0.40.0/go.mod h1:Qr1vMER5WyS2dfPHAlsOj01wgLbsyWtFn/aY+5+ZdxY= +golang.org/x/exp v0.0.0-20190121172915-509febef88a4/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA= +golang.org/x/exp v0.0.0-20250620022241-b7579e27df2b h1:M2rDM6z3Fhozi9O7NWsxAkg/yqS/lQJ6PmkyIV3YP+o= +golang.org/x/exp v0.0.0-20250620022241-b7579e27df2b/go.mod h1:3//PLf8L/X+8b4vuAfHzxeRUl04Adcb341+IGKfnqS8= +golang.org/x/lint v0.0.0-20181026193005-c67002cb31c3/go.mod h1:UVdnD1Gm6xHRNCYTkRU2/jEulfH38KcIWyp/GAMgvoE= +golang.org/x/lint v0.0.0-20190227174305-5b3e6a55c961/go.mod h1:wehouNa3lNwaWXcvxsM5YxQ5yQlVC4a0KAMCusXpPoU= +golang.org/x/lint v0.0.0-20190313153728-d0100b6bd8b3/go.mod h1:6SW0HCj/g11FgYtHlgUYUwCkIfeOF89ocIRzGO/8vkc= +golang.org/x/lint v0.0.0-20190930215403-16217165b5de/go.mod h1:6SW0HCj/g11FgYtHlgUYUwCkIfeOF89ocIRzGO/8vkc= +golang.org/x/mod v0.2.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA= +golang.org/x/mod v0.3.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA= +golang.org/x/mod v0.6.0-dev.0.20220419223038-86c51ed26bb4/go.mod h1:jJ57K6gSWd91VN4djpZkiMVwK6gcyfeH4XE8wZrZaV4= +golang.org/x/mod v0.8.0/go.mod h1:iBbtSCu2XBx23ZKBPSOrRkjjQPZFPuis4dIYUhu/chs= +golang.org/x/mod v0.25.0 h1:n7a+ZbQKQA/Ysbyb0/6IbB1H/X41mKgbhfv7AfG/44w= +golang.org/x/mod v0.25.0/go.mod h1:IXM97Txy2VM4PJ3gI61r1YEk/gAj6zAHN3AdZt6S9Ww= +golang.org/x/net v0.0.0-20180724234803-3673e40ba225/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4= +golang.org/x/net v0.0.0-20180826012351-8a410e7b638d/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4= +golang.org/x/net v0.0.0-20190213061140-3a22650c66bd/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4= +golang.org/x/net v0.0.0-20190311183353-d8887717615a/go.mod h1:t9HGtf8HONx5eT2rtn7q6eTqICYqUVnKs3thJo3Qplg= +golang.org/x/net v0.0.0-20190404232315-eb5bcb51f2a3/go.mod h1:t9HGtf8HONx5eT2rtn7q6eTqICYqUVnKs3thJo3Qplg= +golang.org/x/net v0.0.0-20190620200207-3b0461eec859/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s= +golang.org/x/net v0.0.0-20200226121028-0de0cce0169b/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s= +golang.org/x/net v0.0.0-20201021035429-f5854403a974/go.mod h1:sp8m0HH+o8qH0wwXwYZr8TS3Oi6o0r6Gce1SSxlDquU= +golang.org/x/net v0.0.0-20201110031124-69a78807bb2b/go.mod h1:sp8m0HH+o8qH0wwXwYZr8TS3Oi6o0r6Gce1SSxlDquU= +golang.org/x/net v0.0.0-20210226172049-e18ecbb05110/go.mod h1:m0MpNAwzfU5UDzcl9v0D8zg8gWTRqZa9RBIspLL5mdg= +golang.org/x/net v0.0.0-20220722155237-a158d28d115b/go.mod h1:XRhObCWvk6IyKnWLug+ECip1KBveYUHfp+8e9klMJ9c= +golang.org/x/net v0.6.0/go.mod h1:2Tu9+aMcznHK/AK1HMvgo6xiTLG5rD5rZLDS+rp2Bjs= +golang.org/x/net v0.10.0/go.mod h1:0qNGK6F8kojg2nk9dLZ2mShWaEBan6FAoqfSigmmuDg= +golang.org/x/net v0.17.0/go.mod h1:NxSsAGuq816PNPmqtQdLE42eU2Fs7NoRIZrHJAlaCOE= +golang.org/x/net v0.42.0 h1:jzkYrhi3YQWD6MLBJcsklgQsoAcw89EcZbJw8Z614hs= +golang.org/x/net v0.42.0/go.mod h1:FF1RA5d3u7nAYA4z2TkclSCKh68eSXtiFwcWQpPXdt8= +golang.org/x/oauth2 v0.0.0-20180821212333-d2e6202438be/go.mod h1:N/0e6XlmueqKjAGxoOufVs8QHGRruUQn6yWY3a++T0U= +golang.org/x/oauth2 v0.30.0 h1:dnDm7JmhM45NNpd8FDDeLhK6FwqbOf4MLCM9zb1BOHI= +golang.org/x/oauth2 v0.30.0/go.mod h1:B++QgG3ZKulg6sRPGD/mqlHQs5rB3Ml9erfeDY7xKlU= +golang.org/x/sync v0.0.0-20180314180146-1d60e4601c6f/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM= +golang.org/x/sync v0.0.0-20181108010431-42b317875d0f/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM= +golang.org/x/sync v0.0.0-20190423024810-112230192c58/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM= +golang.org/x/sync v0.0.0-20190911185100-cd5d95a43a6e/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM= +golang.org/x/sync v0.0.0-20201020160332-67f06af15bc9/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM= +golang.org/x/sync v0.0.0-20220722155255-886fb9371eb4/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM= +golang.org/x/sync v0.1.0/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM= +golang.org/x/sync v0.16.0 h1:ycBJEhp9p4vXvUZNszeOq0kGTPghopOL8q0fq3vstxw= +golang.org/x/sync v0.16.0/go.mod h1:1dzgHSNfp02xaA81J2MS99Qcpr2w7fw1gpm99rleRqA= +golang.org/x/sys v0.0.0-20180830151530-49385e6e1522/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY= +golang.org/x/sys v0.0.0-20190215142949-d0b11bdaac8a/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY= +golang.org/x/sys v0.0.0-20190412213103-97732733099d/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs= +golang.org/x/sys v0.0.0-20190422165155-953cdadca894/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs= +golang.org/x/sys v0.0.0-20200930185726-fdedc70b468f/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs= +golang.org/x/sys v0.0.0-20201119102817-f84b799fce68/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs= +golang.org/x/sys v0.0.0-20210615035016-665e8c7367d1/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg= +golang.org/x/sys v0.0.0-20211025201205-69cdffdb9359/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg= +golang.org/x/sys v0.0.0-20220520151302-bc2c85ada10a/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg= +golang.org/x/sys v0.0.0-20220722155257-8c9f86f7a55f/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg= +golang.org/x/sys v0.5.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg= +golang.org/x/sys v0.6.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg= +golang.org/x/sys v0.8.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg= +golang.org/x/sys v0.13.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg= +golang.org/x/sys v0.34.0 h1:H5Y5sJ2L2JRdyv7ROF1he/lPdvFsd0mJHFw2ThKHxLA= +golang.org/x/sys v0.34.0/go.mod h1:BJP2sWEmIv4KK5OTEluFJCKSidICx8ciO85XgH3Ak8k= +golang.org/x/term v0.0.0-20201126162022-7de9c90e9dd1/go.mod h1:bj7SfCRtBDWHUb9snDiAeCFNEtKQo2Wmx5Cou7ajbmo= +golang.org/x/term v0.0.0-20210927222741-03fcf44c2211/go.mod h1:jbD1KX2456YbFQfuXm/mYQcufACuNUgVhRMnK/tPxf8= +golang.org/x/term v0.5.0/go.mod h1:jMB1sMXY+tzblOD4FWmEbocvup2/aLOaQEp7JmGp78k= +golang.org/x/term v0.8.0/go.mod h1:xPskH00ivmX89bAKVGSKKtLOWNx2+17Eiy94tnKShWo= +golang.org/x/term v0.13.0/go.mod h1:LTmsnFJwVN6bCy1rVCoS+qHT1HhALEFxKncY3WNNh4U= +golang.org/x/term v0.33.0 h1:NuFncQrRcaRvVmgRkvM3j/F00gWIAlcmlB8ACEKmGIg= +golang.org/x/term v0.33.0/go.mod h1:s18+ql9tYWp1IfpV9DmCtQDDSRBUjKaw9M1eAv5UeF0= +golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ= +golang.org/x/text v0.3.3/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ= +golang.org/x/text v0.3.7/go.mod h1:u+2+/6zg+i71rQMx5EYifcz6MCKuco9NR6JIITiCfzQ= +golang.org/x/text v0.3.8/go.mod h1:E6s5w1FMmriuDzIBO73fBruAKo1PCIq6d2Q6DHfQ8WQ= +golang.org/x/text v0.7.0/go.mod h1:mrYo+phRRbMaCq/xk9113O4dZlRixOauAjOtrjsXDZ8= +golang.org/x/text v0.9.0/go.mod h1:e1OnstbJyHTd6l/uOt8jFFHp6TRDWZR/bV3emEE/zU8= +golang.org/x/text v0.13.0/go.mod h1:TvPlkZtksWOMsz7fbANvkp4WM8x/WCo/om8BMLbz+aE= +golang.org/x/text v0.27.0 h1:4fGWRpyh641NLlecmyl4LOe6yDdfaYNrGb2zdfo4JV4= +golang.org/x/text v0.27.0/go.mod h1:1D28KMCvyooCX9hBiosv5Tz/+YLxj0j7XhWjpSUF7CU= +golang.org/x/time v0.12.0 h1:ScB/8o8olJvc+CQPWrK3fPZNfh7qgwCrY0zJmoEQLSE= +golang.org/x/time v0.12.0/go.mod h1:CDIdPxbZBQxdj6cxyCIdrNogrJKMJ7pr37NYpMcMDSg= +golang.org/x/tools v0.0.0-20180917221912-90fa682c2a6e/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ= +golang.org/x/tools v0.0.0-20190114222345-bf090417da8b/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ= +golang.org/x/tools v0.0.0-20190226205152-f727befe758c/go.mod h1:9Yl7xja0Znq3iFh3HoIrodX9oNMXvdceNzlUR8zjMvY= +golang.org/x/tools v0.0.0-20190311212946-11955173bddd/go.mod h1:LCzVGOaR6xXOjkQ3onu1FJEFr0SW1gC7cKk1uF8kGRs= +golang.org/x/tools v0.0.0-20190524140312-2c0ae7006135/go.mod h1:RgjU9mgBXZiqYHBnxXauZ1Gv1EHHAz9KjViQ78xBX0Q= +golang.org/x/tools v0.0.0-20191108193012-7d206e10da11/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo= +golang.org/x/tools v0.0.0-20191119224855-298f0cb1881e/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo= +golang.org/x/tools v0.0.0-20200619180055-7c47624df98f/go.mod h1:EkVYQZoAsY45+roYkvgYkIh4xh/qjgUK9TdY2XT94GE= +golang.org/x/tools v0.0.0-20210106214847-113979e3529a/go.mod h1:emZCQorbCU4vsT4fOWvOPXz4eW1wZW4PmDk9uLelYpA= +golang.org/x/tools v0.1.12/go.mod h1:hNGJHUnrk76NpqgfD5Aqm5Crs+Hm0VOH/i9J2+nxYbc= +golang.org/x/tools v0.6.0/go.mod h1:Xwgl3UAJ/d3gWutnCtw505GrjyAbvKui8lOU390QaIU= +golang.org/x/tools v0.34.0 h1:qIpSLOxeCYGg9TrcJokLBG4KFA6d795g0xkBkiESGlo= +golang.org/x/tools v0.34.0/go.mod h1:pAP9OwEaY1CAW3HOmg3hLZC5Z0CCmzjAF2UQMSqNARg= +golang.org/x/xerrors v0.0.0-20190717185122-a985d3407aa7/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0= +golang.org/x/xerrors v0.0.0-20191011141410-1b5146add898/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0= +golang.org/x/xerrors v0.0.0-20191204190536-9bdfabe68543/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0= +golang.org/x/xerrors v0.0.0-20200804184101-5ec99f83aff1/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0= +google.golang.org/api v0.244.0 h1:lpkP8wVibSKr++NCD36XzTk/IzeKJ3klj7vbj+XU5pE= +google.golang.org/api v0.244.0/go.mod h1:dMVhVcylamkirHdzEBAIQWUCgqY885ivNeZYd7VAVr8= +google.golang.org/appengine v1.1.0/go.mod h1:EbEs0AVv82hx2wNQdGPgUI5lhzA/G0D9YwlJXL52JkM= +google.golang.org/appengine v1.4.0/go.mod h1:xpcJRLb0r/rnEns0DIKYYv+WjYCduHsrkT7/EB5XEv4= +google.golang.org/genproto v0.0.0-20180817151627-c66870c02cf8/go.mod h1:JiN7NxoALGmiZfu7CAH4rXhgtRTLTxftemlI0sWmxmc= +google.golang.org/genproto v0.0.0-20190819201941-24fa4b261c55/go.mod h1:DMBHOl98Agz4BDEuKkezgsaosCRResVns1a3J2ZsMNc= +google.golang.org/genproto v0.0.0-20200423170343-7949de9c1215/go.mod h1:55QSHmfGQM9UVYDPBsyGGes0y52j32PQ3BqQfXhyH3c= +google.golang.org/genproto v0.0.0-20200526211855-cb27e3aa2013/go.mod h1:NbSheEEYHJ7i3ixzK3sjbqSGDJWnxyFXZblF3eUsNvo= +google.golang.org/genproto v0.0.0-20250603155806-513f23925822 h1:rHWScKit0gvAPuOnu87KpaYtjK5zBMLcULh7gxkCXu4= +google.golang.org/genproto v0.0.0-20250603155806-513f23925822/go.mod h1:HubltRL7rMh0LfnQPkMH4NPDFEWp0jw3vixw7jEM53s= +google.golang.org/genproto/googleapis/api v0.0.0-20250603155806-513f23925822 h1:oWVWY3NzT7KJppx2UKhKmzPq4SRe0LdCijVRwvGeikY= +google.golang.org/genproto/googleapis/api v0.0.0-20250603155806-513f23925822/go.mod h1:h3c4v36UTKzUiuaOKQ6gr3S+0hovBtUrXzTG/i3+XEc= +google.golang.org/genproto/googleapis/rpc v0.0.0-20250728155136-f173205681a0 h1:MAKi5q709QWfnkkpNQ0M12hYJ1+e8qYVDyowc4U1XZM= +google.golang.org/genproto/googleapis/rpc v0.0.0-20250728155136-f173205681a0/go.mod h1:qQ0YXyHHx3XkvlzUtpXDkS29lDSafHMZBAZDc03LQ3A= +google.golang.org/grpc v1.19.0/go.mod h1:mqu4LbDTu4XGKhr4mRzUsmM4RtVoemTSY81AxZiDr8c= +google.golang.org/grpc v1.23.0/go.mod h1:Y5yQAOtifL1yxbo5wqy6BxZv8vAUGQwXBOALyacEbxg= +google.golang.org/grpc v1.25.1/go.mod h1:c3i+UQWmh7LiEpx4sFZnkU36qjEYZ0imhYfXVyQciAY= +google.golang.org/grpc v1.27.0/go.mod h1:qbnxyOmOxrQa7FizSgH+ReBfzJrCY1pSN7KXBS8abTk= +google.golang.org/grpc v1.29.1/go.mod h1:itym6AZVZYACWQqET3MqgPpjcuV5QH3BxFS3IjizoKk= +google.golang.org/grpc v1.33.2/go.mod h1:JMHMWHQWaTccqQQlmk3MJZS+GWXOdAesneDmEnv2fbc= +google.golang.org/grpc v1.74.2 h1:WoosgB65DlWVC9FqI82dGsZhWFNBSLjQ84bjROOpMu4= +google.golang.org/grpc v1.74.2/go.mod h1:CtQ+BGjaAIXHs/5YS3i473GqwBBa1zGQNevxdeBEXrM= +google.golang.org/protobuf v0.0.0-20200109180630-ec00e32a8dfd/go.mod h1:DFci5gLYBciE7Vtevhsrf46CRTquxDuWsQurQQe4oz8= +google.golang.org/protobuf v0.0.0-20200221191635-4d8936d0db64/go.mod h1:kwYJMbMJ01Woi6D6+Kah6886xMZcty6N08ah7+eCXa0= +google.golang.org/protobuf v0.0.0-20200228230310-ab0ca4ff8a60/go.mod h1:cfTl7dwQJ+fmap5saPgwCLgHXTUD7jkjRqWcaiX5VyM= +google.golang.org/protobuf v1.20.1-0.20200309200217-e05f789c0967/go.mod h1:A+miEFZTKqfCUM6K7xSMQL9OKL/b6hQv+e19PK+JZNE= +google.golang.org/protobuf v1.21.0/go.mod h1:47Nbq4nVaFHyn7ilMalzfO3qCViNmqZ2kzikPIcrTAo= +google.golang.org/protobuf v1.22.0/go.mod h1:EGpADcykh3NcUnDUJcl1+ZksZNG86OlYog2l/sGQquU= +google.golang.org/protobuf v1.23.0/go.mod h1:EGpADcykh3NcUnDUJcl1+ZksZNG86OlYog2l/sGQquU= +google.golang.org/protobuf v1.23.1-0.20200526195155-81db48ad09cc/go.mod h1:EGpADcykh3NcUnDUJcl1+ZksZNG86OlYog2l/sGQquU= +google.golang.org/protobuf v1.25.0/go.mod h1:9JNX74DMeImyA3h4bdi1ymwjUzf21/xIlbajtzgsN7c= +google.golang.org/protobuf v1.36.6 h1:z1NpPI8ku2WgiWnf+t9wTPsn6eP1L7ksHUlkfLvd9xY= +google.golang.org/protobuf v1.36.6/go.mod h1:jduwjTPXsFjZGTmRluh+L6NjiWu7pchiJ2/5YcXBHnY= +gopkg.in/check.v1 v0.0.0-20161208181325-20d25e280405/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0= +gopkg.in/check.v1 v1.0.0-20180628173108-788fd7840127/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0= +gopkg.in/check.v1 v1.0.0-20201130134442-10cb98267c6c h1:Hei/4ADfdWqJk1ZMxUNpqntNwaWcugrBjAiHlqqRiVk= +gopkg.in/check.v1 v1.0.0-20201130134442-10cb98267c6c/go.mod h1:JHkPIbrfpd72SG/EVd6muEfDQjcINNoR0C8j2r3qZ4Q= +gopkg.in/yaml.v2 v2.2.2/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI= +gopkg.in/yaml.v2 v2.2.8/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI= +gopkg.in/yaml.v3 v3.0.0-20200313102051-9f266ea9e77c/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM= +gopkg.in/yaml.v3 v3.0.0-20210107192922-496545a6307b/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM= +gopkg.in/yaml.v3 v3.0.1 h1:fxVm/GzAzEWqLHuvctI91KS9hhNmmWOoWu0XTYJS7CA= +gopkg.in/yaml.v3 v3.0.1/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM= +honnef.co/go/tools v0.0.0-20190102054323-c2f93a96b099/go.mod h1:rf3lG4BRIbNafJWhAfAdb/ePZxsR/4RtNHQocxwk9r4= +honnef.co/go/tools v0.0.0-20190523083050-ea95bdfd59fc/go.mod h1:rf3lG4BRIbNafJWhAfAdb/ePZxsR/4RtNHQocxwk9r4= +modernc.org/cc/v4 v4.26.2 h1:991HMkLjJzYBIfha6ECZdjrIYz2/1ayr+FL8GN+CNzM= +modernc.org/cc/v4 v4.26.2/go.mod h1:uVtb5OGqUKpoLWhqwNQo/8LwvoiEBLvZXIQ/SmO6mL0= +modernc.org/ccgo/v4 v4.28.0 h1:rjznn6WWehKq7dG4JtLRKxb52Ecv8OUGah8+Z/SfpNU= +modernc.org/ccgo/v4 v4.28.0/go.mod h1:JygV3+9AV6SmPhDasu4JgquwU81XAKLd3OKTUDNOiKE= +modernc.org/fileutil v1.3.8 h1:qtzNm7ED75pd1C7WgAGcK4edm4fvhtBsEiI/0NQ54YM= +modernc.org/fileutil v1.3.8/go.mod h1:HxmghZSZVAz/LXcMNwZPA/DRrQZEVP9VX0V4LQGQFOc= +modernc.org/gc/v2 v2.6.5 h1:nyqdV8q46KvTpZlsw66kWqwXRHdjIlJOhG6kxiV/9xI= +modernc.org/gc/v2 v2.6.5/go.mod h1:YgIahr1ypgfe7chRuJi2gD7DBQiKSLMPgBQe9oIiito= +modernc.org/goabi0 v0.2.0 h1:HvEowk7LxcPd0eq6mVOAEMai46V+i7Jrj13t4AzuNks= +modernc.org/goabi0 v0.2.0/go.mod h1:CEFRnnJhKvWT1c1JTI3Avm+tgOWbkOu5oPA8eH8LnMI= +modernc.org/libc v1.66.3 h1:cfCbjTUcdsKyyZZfEUKfoHcP3S0Wkvz3jgSzByEWVCQ= +modernc.org/libc v1.66.3/go.mod h1:XD9zO8kt59cANKvHPXpx7yS2ELPheAey0vjIuZOhOU8= +modernc.org/mathutil v1.7.1 h1:GCZVGXdaN8gTqB1Mf/usp1Y/hSqgI2vAGGP4jZMCxOU= +modernc.org/mathutil v1.7.1/go.mod h1:4p5IwJITfppl0G4sUEDtCr4DthTaT47/N3aT6MhfgJg= +modernc.org/memory v1.11.0 h1:o4QC8aMQzmcwCK3t3Ux/ZHmwFPzE6hf2Y5LbkRs+hbI= +modernc.org/memory v1.11.0/go.mod h1:/JP4VbVC+K5sU2wZi9bHoq2MAkCnrt2r98UGeSK7Mjw= +modernc.org/opt v0.1.4 h1:2kNGMRiUjrp4LcaPuLY2PzUfqM/w9N23quVwhKt5Qm8= +modernc.org/opt v0.1.4/go.mod h1:03fq9lsNfvkYSfxrfUhZCWPk1lm4cq4N+Bh//bEtgns= +modernc.org/sortutil v1.2.1 h1:+xyoGf15mM3NMlPDnFqrteY07klSFxLElE2PVuWIJ7w= +modernc.org/sortutil v1.2.1/go.mod h1:7ZI3a3REbai7gzCLcotuw9AC4VZVpYMjDzETGsSMqJE= +modernc.org/sqlite v1.38.2 h1:Aclu7+tgjgcQVShZqim41Bbw9Cho0y/7WzYptXqkEek= +modernc.org/sqlite v1.38.2/go.mod h1:cPTJYSlgg3Sfg046yBShXENNtPrWrDX8bsbAQBzgQ5E= +modernc.org/strutil v1.2.1 h1:UneZBkQA+DX2Rp35KcM69cSsNES9ly8mQWD71HKlOA0= +modernc.org/strutil v1.2.1/go.mod h1:EHkiggD70koQxjVdSBM3JKM7k6L0FbGE5eymy9i3B9A= +modernc.org/token v1.1.0 h1:Xl7Ap9dKaEs5kLoOQeQmPWevfnk/DM5qcLcYlA8ys6Y= +modernc.org/token v1.1.0/go.mod h1:UGzOrNV1mAFSEB63lOFHIpNRUVMvYTc6yu1SMY/XTDM= From 03b7ab91eec8fab78010cb2f7272ee3ffa1e4374 Mon Sep 17 00:00:00 2001 From: Bhavani Gogineni Date: Tue, 2 Sep 2025 14:03:38 -0400 Subject: [PATCH 7/7] defining roles at route level and using assert.equal in test files --- examples/rbac/config.json | 14 +- examples/rbac/main.go | 11 +- pkg/gofr/rbac/config.go | 6 +- pkg/gofr/rbac/config_test.go | 92 +++---- pkg/gofr/rbac/go.mod | 100 -------- pkg/gofr/rbac/go.sum | 416 ------------------------------- pkg/gofr/rbac/helper.go | 4 - pkg/gofr/rbac/helper_test.go | 15 -- pkg/gofr/rbac/match.go | 46 ++-- pkg/gofr/rbac/match_test.go | 139 +++-------- pkg/gofr/rbac/middleware.go | 2 +- pkg/gofr/rbac/middleware_test.go | 217 ++++++++-------- 12 files changed, 206 insertions(+), 856 deletions(-) delete mode 100644 pkg/gofr/rbac/go.mod delete mode 100644 pkg/gofr/rbac/go.sum diff --git a/examples/rbac/config.json b/examples/rbac/config.json index a63887329..9b3c35929 100644 --- a/examples/rbac/config.json +++ b/examples/rbac/config.json @@ -1,7 +1,11 @@ { - "roles": { - "admin": ["*"], - "editor": ["/posts/*", "/dashboard"], - "user": ["/profile", "/home", "/sayhello*","/greet"] + "route": { + "*": ["admin"], + "/post/*": ["admin","editor"], + "/dashboard": ["admin","editor"], + "/profile": ["admin","editor","user"], + "/home":["admin","editor","user"], + "/sayhello/*":["admin","editor","user"], + "/greet":["admin","editor","user"] } - } \ No newline at end of file + } \ No newline at end of file diff --git a/examples/rbac/main.go b/examples/rbac/main.go index 035bfd6b1..6b67f1f8f 100644 --- a/examples/rbac/main.go +++ b/examples/rbac/main.go @@ -10,21 +10,24 @@ import ( func main() { app := gofr.New() - // json config path file is required + // loading the rbac config file which is required rbacConfigs, err := rbac.LoadPermissions("config.json") if err != nil { return } - overrides := map[string]bool{"user1": true} - + // example of setting override for a specific role + overrides := map[string]bool{"/greet": true} rbacConfigs.OverRides = overrides + // setting the role extractor function rbacConfigs.RoleExtractorFunc = extractor + // applying the middleware app.UseMiddleware(rbac.Middleware(rbacConfigs)) - app.GET("/sayhello/123", handler) + // sample routes + app.GET("/sayhello/321", handler) app.GET("/greet", rbac.RequireRole("user1", handler)) app.Run() // listens and serves on localhost:8000 diff --git a/pkg/gofr/rbac/config.go b/pkg/gofr/rbac/config.go index 86e918b00..8ea962e28 100644 --- a/pkg/gofr/rbac/config.go +++ b/pkg/gofr/rbac/config.go @@ -7,9 +7,9 @@ import ( ) type Config struct { - RoleWithPermissions map[string][]string `json:"roles"` // Role: [Allowed routes] - RoleExtractorFunc func(req *http.Request, args ...any) (string, error) - OverRides map[string]bool // role: [override bool] + RouteWithPermissions map[string][]string `json:"route"` // route: [Allowed roles] + RoleExtractorFunc func(req *http.Request, args ...any) (string, error) + OverRides map[string]bool // route: [override bool] } func LoadPermissions(path string) (*Config, error) { diff --git a/pkg/gofr/rbac/config_test.go b/pkg/gofr/rbac/config_test.go index f9782de22..19ed959ea 100644 --- a/pkg/gofr/rbac/config_test.go +++ b/pkg/gofr/rbac/config_test.go @@ -1,79 +1,47 @@ package rbac import ( - "encoding/json" "os" - "path/filepath" - "reflect" "testing" -) - -// Helper function to create a temporary JSON file for testing. -func createTempJSONFile(t *testing.T, data any) string { - t.Helper() - dir := t.TempDir() - file := filepath.Join(dir, "test.json") - - jsonBytes, err := json.Marshal(data) - if err != nil { - t.Fatalf("error marshaling: %v", err) - } - if err := os.WriteFile(file, jsonBytes, 0600); err != nil { - t.Fatalf("error writing file: %v", err) - } - - return file -} + "github.com/stretchr/testify/assert" +) func TestLoadPermissions_Success(t *testing.T) { - expected := Config{ - RoleWithPermissions: map[string][]string{ - "admin": {"/admin", "/dashboard"}, - "viewer": {"/dashboard"}, - }, - } - file := createTempJSONFile(t, struct { - RoleWithPermissions map[string][]string `json:"roles"` - }{ - RoleWithPermissions: expected.RoleWithPermissions, - }) - - got, err := LoadPermissions(file) - - if err != nil { - t.Fatalf("LoadPermissions returned error: %v", err) - } - - if !reflect.DeepEqual(got.RoleWithPermissions, expected.RoleWithPermissions) { - t.Errorf("RoleWithPermissions mismatch: got %v, want %v", got.RoleWithPermissions, expected.RoleWithPermissions) - } - - if !reflect.DeepEqual(got.OverRides, expected.OverRides) { - t.Errorf("OverRides mismatch: got %v, want %v", got.OverRides, expected.OverRides) - } + jsonContent := `{ + "route": {"admin":["read", "write"], "user":["read"]}, + "OverRides": {"admin":true, "user":false} + }` + tempFile, err := os.CreateTemp("", "test_permissions_*.json") + assert.NoError(t, err) + defer os.Remove(tempFile.Name()) + + _, err = tempFile.Write([]byte(jsonContent)) + assert.NoError(t, err) + tempFile.Close() + + cfg, err := LoadPermissions(tempFile.Name()) + assert.NoError(t, err) + assert.Equal(t, map[string][]string{"admin": {"read", "write"}, "user": {"read"}}, cfg.RouteWithPermissions) + assert.Equal(t, map[string]bool{"admin": true, "user": false}, cfg.OverRides) } func TestLoadPermissions_FileNotFound(t *testing.T) { - // Act - _, err := LoadPermissions("nonexistentpath.json") - // Assert - if err == nil { - t.Fatalf("expected error for missing file, got nil") - } + cfg, err := LoadPermissions("non_existent_file.json") + assert.Nil(t, cfg) + assert.Error(t, err) } func TestLoadPermissions_InvalidJSON(t *testing.T) { - dir := t.TempDir() - file := filepath.Join(dir, "bad.json") + tempFile, err := os.CreateTemp("", "badjson_*.json") + assert.NoError(t, err) + defer os.Remove(tempFile.Name()) - // Write invalid JSON - if err := os.WriteFile(file, []byte("{invalid json"), 0600); err != nil { - t.Fatalf("could not write test file: %v", err) - } + _, err = tempFile.Write([]byte(`{"route": [INVALID JSON}`)) + assert.NoError(t, err) + tempFile.Close() - _, err := LoadPermissions(file) - if err == nil { - t.Fatalf("expected JSON unmarshal error, got nil") - } + cfg, err := LoadPermissions(tempFile.Name()) + assert.Nil(t, cfg) + assert.Error(t, err) } diff --git a/pkg/gofr/rbac/go.mod b/pkg/gofr/rbac/go.mod deleted file mode 100644 index a64de3e9e..000000000 --- a/pkg/gofr/rbac/go.mod +++ /dev/null @@ -1,100 +0,0 @@ -module gofr.dev/rbac - -go 1.24.6 - -require gofr.dev v1.43.0 - -require ( - cloud.google.com/go v0.120.0 // indirect - cloud.google.com/go/auth v0.16.3 // indirect - cloud.google.com/go/auth/oauth2adapt v0.2.8 // indirect - cloud.google.com/go/compute/metadata v0.7.0 // indirect - cloud.google.com/go/iam v1.5.2 // indirect - cloud.google.com/go/pubsub v1.49.0 // indirect - filippo.io/edwards25519 v1.1.0 // indirect - github.com/DATA-DOG/go-sqlmock v1.5.2 // indirect - github.com/XSAM/otelsql v0.39.0 // indirect - github.com/beorn7/perks v1.0.1 // indirect - github.com/cenkalti/backoff/v5 v5.0.2 // indirect - github.com/cespare/xxhash/v2 v2.3.0 // indirect - github.com/davecgh/go-spew v1.1.1 // indirect - github.com/dgraph-io/dgo/v210 v210.0.0-20230328113526-b66f8ae53a2d // indirect - github.com/dgryski/go-rendezvous v0.0.0-20200823014737-9f7001d12a5f // indirect - github.com/dustin/go-humanize v1.0.1 // indirect - github.com/eclipse/paho.mqtt.golang v1.5.0 // indirect - github.com/felixge/httpsnoop v1.0.4 // indirect - github.com/go-logr/logr v1.4.3 // indirect - github.com/go-logr/stdr v1.2.2 // indirect - github.com/go-sql-driver/mysql v1.9.3 // indirect - github.com/gogo/protobuf v1.3.2 // indirect - github.com/golang-jwt/jwt/v5 v5.3.0 // indirect - github.com/google/s2a-go v0.1.9 // indirect - github.com/google/uuid v1.6.0 // indirect - github.com/googleapis/enterprise-certificate-proxy v0.3.6 // indirect - github.com/googleapis/gax-go/v2 v2.15.0 // indirect - github.com/gorilla/mux v1.8.1 // indirect - github.com/gorilla/websocket v1.5.3 // indirect - github.com/grafana/regexp v0.0.0-20240518133315-a468a5bfb3bc // indirect - github.com/grpc-ecosystem/go-grpc-middleware v1.4.0 // indirect - github.com/grpc-ecosystem/grpc-gateway/v2 v2.27.1 // indirect - github.com/joho/godotenv v1.5.1 // indirect - github.com/klauspost/compress v1.18.0 // indirect - github.com/lib/pq v1.10.9 // indirect - github.com/mattn/go-isatty v0.0.20 // indirect - github.com/munnerz/goautoneg v0.0.0-20191010083416-a7dc8b61c822 // indirect - github.com/ncruces/go-strftime v0.1.9 // indirect - github.com/openzipkin/zipkin-go v0.4.3 // indirect - github.com/pierrec/lz4/v4 v4.1.22 // indirect - github.com/pkg/errors v0.9.1 // indirect - github.com/pmezard/go-difflib v1.0.0 // indirect - github.com/prometheus/client_golang v1.23.0 // indirect - github.com/prometheus/client_model v0.6.2 // indirect - github.com/prometheus/common v0.65.0 // indirect - github.com/prometheus/otlptranslator v0.0.0-20250717125610-8549f4ab4f8f // indirect - github.com/prometheus/procfs v0.17.0 // indirect - github.com/redis/go-redis/extra/rediscmd/v9 v9.11.0 // indirect - github.com/redis/go-redis/extra/redisotel/v9 v9.11.0 // indirect - github.com/redis/go-redis/v9 v9.11.0 // indirect - github.com/remyoudompheng/bigfft v0.0.0-20230129092748-24d4a6f8daec // indirect - github.com/segmentio/kafka-go v0.4.48 // indirect - github.com/stretchr/testify v1.10.0 // indirect - github.com/xdg-go/pbkdf2 v1.0.0 // indirect - github.com/xdg-go/scram v1.1.2 // indirect - github.com/xdg-go/stringprep v1.0.4 // indirect - go.opencensus.io v0.24.0 // indirect - go.opentelemetry.io/auto/sdk v1.1.0 // indirect - go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc v0.61.0 // indirect - go.opentelemetry.io/contrib/instrumentation/net/http/httptrace/otelhttptrace v0.62.0 // indirect - go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp v0.62.0 // indirect - go.opentelemetry.io/otel v1.37.0 // indirect - go.opentelemetry.io/otel/exporters/otlp/otlptrace v1.37.0 // indirect - go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc v1.37.0 // indirect - go.opentelemetry.io/otel/exporters/prometheus v0.59.1 // indirect - go.opentelemetry.io/otel/exporters/zipkin v1.37.0 // indirect - go.opentelemetry.io/otel/metric v1.37.0 // indirect - go.opentelemetry.io/otel/sdk v1.37.0 // indirect - go.opentelemetry.io/otel/sdk/metric v1.37.0 // indirect - go.opentelemetry.io/otel/trace v1.37.0 // indirect - go.opentelemetry.io/proto/otlp v1.7.0 // indirect - go.uber.org/mock v0.5.2 // indirect - golang.org/x/crypto v0.40.0 // indirect - golang.org/x/exp v0.0.0-20250620022241-b7579e27df2b // indirect - golang.org/x/net v0.42.0 // indirect - golang.org/x/oauth2 v0.30.0 // indirect - golang.org/x/sync v0.16.0 // indirect - golang.org/x/sys v0.34.0 // indirect - golang.org/x/term v0.33.0 // indirect - golang.org/x/text v0.27.0 // indirect - golang.org/x/time v0.12.0 // indirect - google.golang.org/api v0.244.0 // indirect - google.golang.org/genproto v0.0.0-20250603155806-513f23925822 // indirect - google.golang.org/genproto/googleapis/api v0.0.0-20250603155806-513f23925822 // indirect - google.golang.org/genproto/googleapis/rpc v0.0.0-20250728155136-f173205681a0 // indirect - google.golang.org/grpc v1.74.2 // indirect - google.golang.org/protobuf v1.36.6 // indirect - gopkg.in/yaml.v3 v3.0.1 // indirect - modernc.org/libc v1.66.3 // indirect - modernc.org/mathutil v1.7.1 // indirect - modernc.org/memory v1.11.0 // indirect - modernc.org/sqlite v1.38.2 // indirect -) diff --git a/pkg/gofr/rbac/go.sum b/pkg/gofr/rbac/go.sum deleted file mode 100644 index bf617246c..000000000 --- a/pkg/gofr/rbac/go.sum +++ /dev/null @@ -1,416 +0,0 @@ -cloud.google.com/go v0.26.0/go.mod h1:aQUYkXzVsufM+DwF1aE+0xfcU+56JwCaLick0ClmMTw= -cloud.google.com/go v0.120.0 h1:wc6bgG9DHyKqF5/vQvX1CiZrtHnxJjBlKUyF9nP6meA= -cloud.google.com/go v0.120.0/go.mod h1:/beW32s8/pGRuj4IILWQNd4uuebeT4dkOhKmkfit64Q= -cloud.google.com/go/auth v0.16.3 h1:kabzoQ9/bobUmnseYnBO6qQG7q4a/CffFRlJSxv2wCc= -cloud.google.com/go/auth v0.16.3/go.mod h1:NucRGjaXfzP1ltpcQ7On/VTZ0H4kWB5Jy+Y9Dnm76fA= -cloud.google.com/go/auth/oauth2adapt v0.2.8 h1:keo8NaayQZ6wimpNSmW5OPc283g65QNIiLpZnkHRbnc= -cloud.google.com/go/auth/oauth2adapt v0.2.8/go.mod h1:XQ9y31RkqZCcwJWNSx2Xvric3RrU88hAYYbjDWYDL+c= -cloud.google.com/go/compute/metadata v0.7.0 h1:PBWF+iiAerVNe8UCHxdOt6eHLVc3ydFeOCw78U8ytSU= -cloud.google.com/go/compute/metadata v0.7.0/go.mod h1:j5MvL9PprKL39t166CoB1uVHfQMs4tFQZZcKwksXUjo= -cloud.google.com/go/iam v1.5.2 h1:qgFRAGEmd8z6dJ/qyEchAuL9jpswyODjA2lS+w234g8= -cloud.google.com/go/iam v1.5.2/go.mod h1:SE1vg0N81zQqLzQEwxL2WI6yhetBdbNQuTvIKCSkUHE= -cloud.google.com/go/kms v1.22.0 h1:dBRIj7+GDeeEvatJeTB19oYZNV0aj6wEqSIT/7gLqtk= -cloud.google.com/go/kms v1.22.0/go.mod h1:U7mf8Sva5jpOb4bxYZdtw/9zsbIjrklYwPcvMk34AL8= -cloud.google.com/go/longrunning v0.6.7 h1:IGtfDWHhQCgCjwQjV9iiLnUta9LBCo8R9QmAFsS/PrE= -cloud.google.com/go/longrunning v0.6.7/go.mod h1:EAFV3IZAKmM56TyiE6VAP3VoTzhZzySwI/YI1s/nRsY= -cloud.google.com/go/pubsub v1.49.0 h1:5054IkbslnrMCgA2MAEPcsN3Ky+AyMpEZcii/DoySPo= -cloud.google.com/go/pubsub v1.49.0/go.mod h1:K1FswTWP+C1tI/nfi3HQecoVeFvL4HUOB1tdaNXKhUY= -filippo.io/edwards25519 v1.1.0 h1:FNf4tywRC1HmFuKW5xopWpigGjJKiJSV0Cqo0cJWDaA= -filippo.io/edwards25519 v1.1.0/go.mod h1:BxyFTGdWcka3PhytdK4V28tE5sGfRvvvRV7EaN4VDT4= -github.com/BurntSushi/toml v0.3.1/go.mod h1:xHWCNGjB5oqiDr8zfno3MHue2Ht5sIBksp03qcyfWMU= -github.com/DATA-DOG/go-sqlmock v1.5.2 h1:OcvFkGmslmlZibjAjaHm3L//6LiuBgolP7OputlJIzU= -github.com/DATA-DOG/go-sqlmock v1.5.2/go.mod h1:88MAG/4G7SMwSE3CeA0ZKzrT5CiOU3OJ+JlNzwDqpNU= -github.com/XSAM/otelsql v0.39.0 h1:4o374mEIMweaeevL7fd8Q3C710Xi2Jh/c8G4Qy9bvCY= -github.com/XSAM/otelsql v0.39.0/go.mod h1:uMOXLUX+wkuAuP0AR3B45NXX7E9lJS2mERa8gqdU8R0= -github.com/alicebob/miniredis/v2 v2.35.0 h1:QwLphYqCEAo1eu1TqPRN2jgVMPBweeQcR21jeqDCONI= -github.com/alicebob/miniredis/v2 v2.35.0/go.mod h1:TcL7YfarKPGDAthEtl5NBeHZfeUQj6OXMm/+iu5cLMM= -github.com/benbjohnson/clock v1.1.0/go.mod h1:J11/hYXuz8f4ySSvYwY0FKfm+ezbsZBKZxNJlLklBHA= -github.com/beorn7/perks v1.0.1 h1:VlbKKnNfV8bJzeqoa4cOKqO6bYr3WgKZxO8Z16+hsOM= -github.com/beorn7/perks v1.0.1/go.mod h1:G2ZrVWU2WbWT9wwq4/hrbKbnv/1ERSJQ0ibhJ6rlkpw= -github.com/bsm/ginkgo/v2 v2.12.0 h1:Ny8MWAHyOepLGlLKYmXG4IEkioBysk6GpaRTLC8zwWs= -github.com/bsm/ginkgo/v2 v2.12.0/go.mod h1:SwYbGRRDovPVboqFv0tPTcG1sN61LM1Z4ARdbAV9g4c= -github.com/bsm/gomega v1.27.10 h1:yeMWxP2pV2fG3FgAODIY8EiRE3dy0aeFYt4l7wh6yKA= -github.com/bsm/gomega v1.27.10/go.mod h1:JyEr/xRbxbtgWNi8tIEVPUYZ5Dzef52k01W3YH0H+O0= -github.com/cenkalti/backoff/v5 v5.0.2 h1:rIfFVxEf1QsI7E1ZHfp/B4DF/6QBAUhmgkxc0H7Zss8= -github.com/cenkalti/backoff/v5 v5.0.2/go.mod h1:rkhZdG3JZukswDf7f0cwqPNk4K0sa+F97BxZthm/crw= -github.com/census-instrumentation/opencensus-proto v0.2.1/go.mod h1:f6KPmirojxKA12rnyqOA5BBL4O983OfeGPqjHWSTneU= -github.com/cespare/xxhash/v2 v2.3.0 h1:UL815xU9SqsFlibzuggzjXhog7bL6oX9BbNZnL2UFvs= -github.com/cespare/xxhash/v2 v2.3.0/go.mod h1:VGX0DQ3Q6kWi7AoAeZDth3/j3BFtOZR5XLFGgcrjCOs= -github.com/client9/misspell v0.3.4/go.mod h1:qj6jICC3Q7zFZvVWo7KLAzC3yx5G7kyvSDkc90ppPyw= -github.com/cncf/udpa/go v0.0.0-20191209042840-269d4d468f6f/go.mod h1:M8M6+tZqaGXZJjfX53e64911xZQV5JYwmTeXPW+k8Sc= -github.com/davecgh/go-spew v1.1.0/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38= -github.com/davecgh/go-spew v1.1.1 h1:vj9j/u1bqnvCEfJOwUhtlOARqs3+rkHYY13jYWTU97c= -github.com/davecgh/go-spew v1.1.1/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38= -github.com/dgraph-io/dgo/v210 v210.0.0-20230328113526-b66f8ae53a2d h1:abDbP7XBVgwda+h0J5Qra5p2OQpidU2FdkXvzCKL+H8= -github.com/dgraph-io/dgo/v210 v210.0.0-20230328113526-b66f8ae53a2d/go.mod h1:wKFzULXAPj3U2BDAPWXhSbQQNC6FU1+1/5iika6IY7g= -github.com/dgryski/go-rendezvous v0.0.0-20200823014737-9f7001d12a5f h1:lO4WD4F/rVNCu3HqELle0jiPLLBs70cWOduZpkS1E78= -github.com/dgryski/go-rendezvous v0.0.0-20200823014737-9f7001d12a5f/go.mod h1:cuUVRXasLTGF7a8hSLbxyZXjz+1KgoB3wDUb6vlszIc= -github.com/dustin/go-humanize v1.0.1 h1:GzkhY7T5VNhEkwH0PVJgjz+fX1rhBrR7pRT3mDkpeCY= -github.com/dustin/go-humanize v1.0.1/go.mod h1:Mu1zIs6XwVuF/gI1OepvI0qD18qycQx+mFykh5fBlto= -github.com/eclipse/paho.mqtt.golang v1.5.0 h1:EH+bUVJNgttidWFkLLVKaQPGmkTUfQQqjOsyvMGvD6o= -github.com/eclipse/paho.mqtt.golang v1.5.0/go.mod h1:du/2qNQVqJf/Sqs4MEL77kR8QTqANF7XU7Fk0aOTAgk= -github.com/envoyproxy/go-control-plane v0.9.0/go.mod h1:YTl/9mNaCwkRvm6d1a2C3ymFceY/DCBVvsKhRF0iEA4= -github.com/envoyproxy/go-control-plane v0.9.1-0.20191026205805-5f8ba28d4473/go.mod h1:YTl/9mNaCwkRvm6d1a2C3ymFceY/DCBVvsKhRF0iEA4= -github.com/envoyproxy/go-control-plane v0.9.4/go.mod h1:6rpuAdCZL397s3pYoYcLgu1mIlRU8Am5FuJP05cCM98= -github.com/envoyproxy/protoc-gen-validate v0.1.0/go.mod h1:iSmxcyjqTsJpI2R4NaDN7+kN2VEUnK/pcBlmesArF7c= -github.com/felixge/httpsnoop v1.0.4 h1:NFTV2Zj1bL4mc9sqWACXbQFVBBg2W3GPvqp8/ESS2Wg= -github.com/felixge/httpsnoop v1.0.4/go.mod h1:m8KPJKqk1gH5J9DgRY2ASl2lWCfGKXixSwevea8zH2U= -github.com/go-kit/log v0.1.0/go.mod h1:zbhenjAZHb184qTLMA9ZjW7ThYL0H2mk7Q6pNt4vbaY= -github.com/go-logfmt/logfmt v0.5.0/go.mod h1:wCYkCAKZfumFQihp8CzCvQ3paCTfi41vtzG1KdI/P7A= -github.com/go-logr/logr v1.2.2/go.mod h1:jdQByPbusPIv2/zmleS9BjJVeZ6kBagPoEUsqbVz/1A= -github.com/go-logr/logr v1.4.3 h1:CjnDlHq8ikf6E492q6eKboGOC0T8CDaOvkHCIg8idEI= -github.com/go-logr/logr v1.4.3/go.mod h1:9T104GzyrTigFIr8wt5mBrctHMim0Nb2HLGrmQ40KvY= -github.com/go-logr/stdr v1.2.2 h1:hSWxHoqTgW2S2qGc0LTAI563KZ5YKYRhT3MFKZMbjag= -github.com/go-logr/stdr v1.2.2/go.mod h1:mMo/vtBO5dYbehREoey6XUKy/eSumjCCveDpRre4VKE= -github.com/go-sql-driver/mysql v1.9.3 h1:U/N249h2WzJ3Ukj8SowVFjdtZKfu9vlLZxjPXV1aweo= -github.com/go-sql-driver/mysql v1.9.3/go.mod h1:qn46aNg1333BRMNU69Lq93t8du/dwxI64Gl8i5p1WMU= -github.com/go-stack/stack v1.8.0/go.mod h1:v0f6uXyyMGvRgIKkXu+yp6POWl0qKG85gN/melR3HDY= -github.com/gogo/protobuf v1.3.2 h1:Ov1cvc58UF3b5XjBnZv7+opcTcQFZebYjWzi34vdm4Q= -github.com/gogo/protobuf v1.3.2/go.mod h1:P1XiOD3dCwIKUDQYPy72D8LYyHL2YPYrpS2s69NZV8Q= -github.com/golang-jwt/jwt/v5 v5.3.0 h1:pv4AsKCKKZuqlgs5sUmn4x8UlGa0kEVt/puTpKx9vvo= -github.com/golang-jwt/jwt/v5 v5.3.0/go.mod h1:fxCRLWMO43lRc8nhHWY6LGqRcf+1gQWArsqaEUEa5bE= -github.com/golang/glog v0.0.0-20160126235308-23def4e6c14b/go.mod h1:SBH7ygxi8pfUlaOkMMuAQtPIUF8ecWP5IEl/CR7VP2Q= -github.com/golang/groupcache v0.0.0-20200121045136-8c9f03a8e57e/go.mod h1:cIg4eruTrX1D+g88fzRXU5OdNfaM+9IcxsU14FzY7Hc= -github.com/golang/groupcache v0.0.0-20241129210726-2c02b8208cf8 h1:f+oWsMOmNPc8JmEHVZIycC7hBoQxHH9pNKQORJNozsQ= -github.com/golang/groupcache v0.0.0-20241129210726-2c02b8208cf8/go.mod h1:wcDNUvekVysuuOpQKo3191zZyTpiI6se1N1ULghS0sw= -github.com/golang/mock v1.1.1/go.mod h1:oTYuIxOrZwtPieC+H1uAHpcLFnEyAGVDL/k47Jfbm0A= -github.com/golang/protobuf v1.2.0/go.mod h1:6lQm79b+lXiMfvg/cZm0SGofjICqVBUtrP5yJMmIC1U= -github.com/golang/protobuf v1.3.2/go.mod h1:6lQm79b+lXiMfvg/cZm0SGofjICqVBUtrP5yJMmIC1U= -github.com/golang/protobuf v1.3.3/go.mod h1:vzj43D7+SQXF/4pzW/hwtAqwc6iTitCiVSaWz5lYuqw= -github.com/golang/protobuf v1.4.0-rc.1/go.mod h1:ceaxUfeHdC40wWswd/P6IGgMaK3YpKi5j83Wpe3EHw8= -github.com/golang/protobuf v1.4.0-rc.1.0.20200221234624-67d41d38c208/go.mod h1:xKAWHe0F5eneWXFV3EuXVDTCmh+JuBKY0li0aMyXATA= -github.com/golang/protobuf v1.4.0-rc.2/go.mod h1:LlEzMj4AhA7rCAGe4KMBDvJI+AwstrUpVNzEA03Pprs= -github.com/golang/protobuf v1.4.0-rc.4.0.20200313231945-b860323f09d0/go.mod h1:WU3c8KckQ9AFe+yFwt9sWVRKCVIyN9cPHBJSNnbL67w= -github.com/golang/protobuf v1.4.0/go.mod h1:jodUvKwWbYaEsadDk5Fwe5c77LiNKVO9IDvqG2KuDX0= -github.com/golang/protobuf v1.4.1/go.mod h1:U8fpvMrcmy5pZrNK1lt4xCsGvpyWQ/VVv6QDs8UjoX8= -github.com/golang/protobuf v1.4.3/go.mod h1:oDoupMAO8OvCJWAcko0GGGIgR6R6ocIYbsSw735rRwI= -github.com/golang/protobuf v1.5.4 h1:i7eJL8qZTpSEXOPTxNKhASYpMn+8e5Q6AdndVa1dWek= -github.com/golang/protobuf v1.5.4/go.mod h1:lnTiLA8Wa4RWRcIUkrtSVa5nRhsEGBg48fD6rSs7xps= -github.com/google/go-cmp v0.2.0/go.mod h1:oXzfMopK8JAjlY9xF4vHSVASa0yLyX7SntLO5aqRK0M= -github.com/google/go-cmp v0.3.0/go.mod h1:8QqcDgzrUqlUb/G2PQTWiueGozuR1884gddMywk6iLU= -github.com/google/go-cmp v0.3.1/go.mod h1:8QqcDgzrUqlUb/G2PQTWiueGozuR1884gddMywk6iLU= -github.com/google/go-cmp v0.4.0/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE= -github.com/google/go-cmp v0.5.0/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE= -github.com/google/go-cmp v0.5.3/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE= -github.com/google/go-cmp v0.7.0 h1:wk8382ETsv4JYUZwIsn6YpYiWiBsYLSJiTsyBybVuN8= -github.com/google/go-cmp v0.7.0/go.mod h1:pXiqmnSA92OHEEa9HXL2W4E7lf9JzCmGVUdgjX3N/iU= -github.com/google/pprof v0.0.0-20250317173921-a4b03ec1a45e h1:ijClszYn+mADRFY17kjQEVQ1XRhq2/JR1M3sGqeJoxs= -github.com/google/pprof v0.0.0-20250317173921-a4b03ec1a45e/go.mod h1:boTsfXsheKC2y+lKOCMpSfarhxDeIzfZG1jqGcPl3cA= -github.com/google/s2a-go v0.1.9 h1:LGD7gtMgezd8a/Xak7mEWL0PjoTQFvpRudN895yqKW0= -github.com/google/s2a-go v0.1.9/go.mod h1:YA0Ei2ZQL3acow2O62kdp9UlnvMmU7kA6Eutn0dXayM= -github.com/google/uuid v1.1.2/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo= -github.com/google/uuid v1.6.0 h1:NIvaJDMOsjHA8n1jAhLSgzrAzy1Hgr+hNrb57e+94F0= -github.com/google/uuid v1.6.0/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo= -github.com/googleapis/enterprise-certificate-proxy v0.3.6 h1:GW/XbdyBFQ8Qe+YAmFU9uHLo7OnF5tL52HFAgMmyrf4= -github.com/googleapis/enterprise-certificate-proxy v0.3.6/go.mod h1:MkHOF77EYAE7qfSuSS9PU6g4Nt4e11cnsDUowfwewLA= -github.com/googleapis/gax-go/v2 v2.15.0 h1:SyjDc1mGgZU5LncH8gimWo9lW1DtIfPibOG81vgd/bo= -github.com/googleapis/gax-go/v2 v2.15.0/go.mod h1:zVVkkxAQHa1RQpg9z2AUCMnKhi0Qld9rcmyfL1OZhoc= -github.com/gorilla/mux v1.8.1 h1:TuBL49tXwgrFYWhqrNgrUNEY92u81SPhu7sTdzQEiWY= -github.com/gorilla/mux v1.8.1/go.mod h1:AKf9I4AEqPTmMytcMc0KkNouC66V3BtZ4qD5fmWSiMQ= -github.com/gorilla/websocket v1.5.3 h1:saDtZ6Pbx/0u+bgYQ3q96pZgCzfhKXGPqt7kZ72aNNg= -github.com/gorilla/websocket v1.5.3/go.mod h1:YR8l580nyteQvAITg2hZ9XVh4b55+EU/adAjf1fMHhE= -github.com/grafana/regexp v0.0.0-20240518133315-a468a5bfb3bc h1:GN2Lv3MGO7AS6PrRoT6yV5+wkrOpcszoIsO4+4ds248= -github.com/grafana/regexp v0.0.0-20240518133315-a468a5bfb3bc/go.mod h1:+JKpmjMGhpgPL+rXZ5nsZieVzvarn86asRlBg4uNGnk= -github.com/grpc-ecosystem/go-grpc-middleware v1.4.0 h1:UH//fgunKIs4JdUbpDl1VZCDaL56wXCB/5+wF6uHfaI= -github.com/grpc-ecosystem/go-grpc-middleware v1.4.0/go.mod h1:g5qyo/la0ALbONm6Vbp88Yd8NsDy6rZz+RcrMPxvld8= -github.com/grpc-ecosystem/grpc-gateway/v2 v2.27.1 h1:X5VWvz21y3gzm9Nw/kaUeku/1+uBhcekkmy4IkffJww= -github.com/grpc-ecosystem/grpc-gateway/v2 v2.27.1/go.mod h1:Zanoh4+gvIgluNqcfMVTJueD4wSS5hT7zTt4Mrutd90= -github.com/joho/godotenv v1.5.1 h1:7eLL/+HRGLY0ldzfGMeQkb7vMd0as4CfYvUVzLqw0N0= -github.com/joho/godotenv v1.5.1/go.mod h1:f4LDr5Voq0i2e/R5DDNOoa2zzDfwtkZa6DnEwAbqwq4= -github.com/kisielk/errcheck v1.5.0/go.mod h1:pFxgyoBC7bSaBwPgfKdkLd5X25qrDl4LWUI2bnpBCr8= -github.com/kisielk/gotool v1.0.0/go.mod h1:XhKaO+MFFWcvkIS/tQcRk01m1F5IRFswLeQ+oQHNcck= -github.com/kisielk/sqlstruct v0.0.0-20201105191214-5f3e10d3ab46/go.mod h1:yyMNCyc/Ib3bDTKd379tNMpB/7/H5TjM2Y9QJ5THLbE= -github.com/klauspost/compress v1.15.9/go.mod h1:PhcZ0MbTNciWF3rruxRgKxI5NkcHHrHUDtV4Yw2GlzU= -github.com/klauspost/compress v1.18.0 h1:c/Cqfb0r+Yi+JtIEq73FWXVkRonBlf0CRNYc8Zttxdo= -github.com/klauspost/compress v1.18.0/go.mod h1:2Pp+KzxcywXVXMr50+X0Q/Lsb43OQHYWRCY2AiWywWQ= -github.com/konsorten/go-windows-terminal-sequences v1.0.1/go.mod h1:T0+1ngSBFLxvqU3pZ+m/2kptfBszLMUkC4ZK/EgS/cQ= -github.com/kr/pretty v0.1.0/go.mod h1:dAy3ld7l9f0ibDNOQOHHMYYIIbhfbHSm3C4ZsoJORNo= -github.com/kr/pretty v0.3.1 h1:flRD4NNwYAUpkphVc1HcthR4KEIFJ65n8Mw5qdRn3LE= -github.com/kr/pretty v0.3.1/go.mod h1:hoEshYVHaxMs3cyo3Yncou5ZscifuDolrwPKZanG3xk= -github.com/kr/pty v1.1.1/go.mod h1:pFQYn66WHrOpPYNljwOMqo10TkYh1fy3cYio2l3bCsQ= -github.com/kr/text v0.1.0/go.mod h1:4Jbv+DJW3UT/LiOwJeYQe1efqtUx/iVham/4vfdArNI= -github.com/kr/text v0.2.0 h1:5Nx0Ya0ZqY2ygV366QzturHI13Jq95ApcVaJBhpS+AY= -github.com/kr/text v0.2.0/go.mod h1:eLer722TekiGuMkidMxC/pM04lWEeraHUUmBw8l2grE= -github.com/kylelemons/godebug v1.1.0 h1:RPNrshWIDI6G2gRW9EHilWtl7Z6Sb1BR0xunSBf0SNc= -github.com/kylelemons/godebug v1.1.0/go.mod h1:9/0rRGxNHcop5bhtWyNeEfOS8JIWk580+fNqagV/RAw= -github.com/lib/pq v1.10.9 h1:YXG7RB+JIjhP29X+OtkiDnYaXQwpS4JEWq7dtCCRUEw= -github.com/lib/pq v1.10.9/go.mod h1:AlVN5x4E4T544tWzH6hKfbfQvm3HdbOxrmggDNAPY9o= -github.com/mattn/go-isatty v0.0.20 h1:xfD0iDuEKnDkl03q4limB+vH+GxLEtL/jb4xVJSWWEY= -github.com/mattn/go-isatty v0.0.20/go.mod h1:W+V8PltTTMOvKvAeJH7IuucS94S2C6jfK/D7dTCTo3Y= -github.com/munnerz/goautoneg v0.0.0-20191010083416-a7dc8b61c822 h1:C3w9PqII01/Oq1c1nUAm88MOHcQC9l5mIlSMApZMrHA= -github.com/munnerz/goautoneg v0.0.0-20191010083416-a7dc8b61c822/go.mod h1:+n7T8mK8HuQTcFwEeznm/DIxMOiR9yIdICNftLE1DvQ= -github.com/ncruces/go-strftime v0.1.9 h1:bY0MQC28UADQmHmaF5dgpLmImcShSi2kHU9XLdhx/f4= -github.com/ncruces/go-strftime v0.1.9/go.mod h1:Fwc5htZGVVkseilnfgOVb9mKy6w1naJmn9CehxcKcls= -github.com/opentracing/opentracing-go v1.1.0/go.mod h1:UkNAQd3GIcIGf0SeVgPpRdFStlNbqXla1AfSYxPUl2o= -github.com/openzipkin/zipkin-go v0.4.3 h1:9EGwpqkgnwdEIJ+Od7QVSEIH+ocmm5nPat0G7sjsSdg= -github.com/openzipkin/zipkin-go v0.4.3/go.mod h1:M9wCJZFWCo2RiY+o1eBCEMe0Dp2S5LDHcMZmk3RmK7c= -github.com/pierrec/lz4/v4 v4.1.15/go.mod h1:gZWDp/Ze/IJXGXf23ltt2EXimqmTUXEy0GFuRQyBid4= -github.com/pierrec/lz4/v4 v4.1.22 h1:cKFw6uJDK+/gfw5BcDL0JL5aBsAFdsIT18eRtLj7VIU= -github.com/pierrec/lz4/v4 v4.1.22/go.mod h1:gZWDp/Ze/IJXGXf23ltt2EXimqmTUXEy0GFuRQyBid4= -github.com/pkg/errors v0.8.1/go.mod h1:bwawxfHBFNV+L2hUp1rHADufV3IMtnDRdf1r5NINEl0= -github.com/pkg/errors v0.9.1 h1:FEBLx1zS214owpjy7qsBeixbURkuhQAwrK5UwLGTwt4= -github.com/pkg/errors v0.9.1/go.mod h1:bwawxfHBFNV+L2hUp1rHADufV3IMtnDRdf1r5NINEl0= -github.com/pmezard/go-difflib v1.0.0 h1:4DBwDE0NGyQoBHbLQYPwSUPoCMWR5BEzIk/f1lZbAQM= -github.com/pmezard/go-difflib v1.0.0/go.mod h1:iKH77koFhYxTK1pcRnkKkqfTogsbg7gZNVY4sRDYZ/4= -github.com/prometheus/client_golang v1.23.0 h1:ust4zpdl9r4trLY/gSjlm07PuiBq2ynaXXlptpfy8Uc= -github.com/prometheus/client_golang v1.23.0/go.mod h1:i/o0R9ByOnHX0McrTMTyhYvKE4haaf2mW08I+jGAjEE= -github.com/prometheus/client_model v0.0.0-20190812154241-14fe0d1b01d4/go.mod h1:xMI15A0UPsDsEKsMN9yxemIoYk6Tm2C1GtYGdfGttqA= -github.com/prometheus/client_model v0.6.2 h1:oBsgwpGs7iVziMvrGhE53c/GrLUsZdHnqNwqPLxwZyk= -github.com/prometheus/client_model v0.6.2/go.mod h1:y3m2F6Gdpfy6Ut/GBsUqTWZqCUvMVzSfMLjcu6wAwpE= -github.com/prometheus/common v0.65.0 h1:QDwzd+G1twt//Kwj/Ww6E9FQq1iVMmODnILtW1t2VzE= -github.com/prometheus/common v0.65.0/go.mod h1:0gZns+BLRQ3V6NdaerOhMbwwRbNh9hkGINtQAsP5GS8= -github.com/prometheus/otlptranslator v0.0.0-20250717125610-8549f4ab4f8f h1:QQB6SuvGZjK8kdc2YaLJpYhV8fxauOsjE6jgcL6YJ8Q= -github.com/prometheus/otlptranslator v0.0.0-20250717125610-8549f4ab4f8f/go.mod h1:P8AwMgdD7XEr6QRUJ2QWLpiAZTgTE2UYgjlu3svompI= -github.com/prometheus/procfs v0.17.0 h1:FuLQ+05u4ZI+SS/w9+BWEM2TXiHKsUQ9TADiRH7DuK0= -github.com/prometheus/procfs v0.17.0/go.mod h1:oPQLaDAMRbA+u8H5Pbfq+dl3VDAvHxMUOVhe0wYB2zw= -github.com/redis/go-redis/extra/rediscmd/v9 v9.11.0 h1:vP5CH2rJ3L4yk3o8FdXqiPL1lGl5APjHcxk5/OT6H0Q= -github.com/redis/go-redis/extra/rediscmd/v9 v9.11.0/go.mod h1:/2yj0RD4xjZQ7wOg9u7gVoBM0IgMGrHunAql1hr1NDg= -github.com/redis/go-redis/extra/redisotel/v9 v9.11.0 h1:dMNmusapfQefntfUqAYAvaVJMrJCdKUaQoPSZtd99WU= -github.com/redis/go-redis/extra/redisotel/v9 v9.11.0/go.mod h1:Yy5oaeVwWj7KMu6Mga/i4imlXFvgitQWN5HFiT5JqoE= -github.com/redis/go-redis/v9 v9.11.0 h1:E3S08Gl/nJNn5vkxd2i78wZxWAPNZgUNTp8WIJUAiIs= -github.com/redis/go-redis/v9 v9.11.0/go.mod h1:huWgSWd8mW6+m0VPhJjSSQ+d6Nh1VICQ6Q5lHuCH/Iw= -github.com/remyoudompheng/bigfft v0.0.0-20230129092748-24d4a6f8daec h1:W09IVJc94icq4NjY3clb7Lk8O1qJ8BdBEF8z0ibU0rE= -github.com/remyoudompheng/bigfft v0.0.0-20230129092748-24d4a6f8daec/go.mod h1:qqbHyh8v60DhA7CoWK5oRCqLrMHRGoxYCSS9EjAz6Eo= -github.com/rogpeppe/go-internal v1.13.1 h1:KvO1DLK/DRN07sQ1LQKScxyZJuNnedQ5/wKSR38lUII= -github.com/rogpeppe/go-internal v1.13.1/go.mod h1:uMEvuHeurkdAXX61udpOXGD/AzZDWNMNyH2VO9fmH0o= -github.com/segmentio/kafka-go v0.4.48 h1:9jyu9CWK4W5W+SroCe8EffbrRZVqAOkuaLd/ApID4Vs= -github.com/segmentio/kafka-go v0.4.48/go.mod h1:HjF6XbOKh0Pjlkr5GVZxt6CsjjwnmhVOfURM5KMd8qg= -github.com/sirupsen/logrus v1.4.2/go.mod h1:tLMulIdttU9McNUspp0xgXVQah82FyeX6MwdIuYE2rE= -github.com/stretchr/objx v0.1.0/go.mod h1:HFkY916IF+rwdDfMAkV7OtwuqBVzrE8GR6GFx+wExME= -github.com/stretchr/objx v0.1.1/go.mod h1:HFkY916IF+rwdDfMAkV7OtwuqBVzrE8GR6GFx+wExME= -github.com/stretchr/objx v0.4.0/go.mod h1:YvHI0jy2hoMjB+UWwv71VJQ9isScKT/TqJzVSSt89Yw= -github.com/stretchr/objx v0.5.0/go.mod h1:Yh+to48EsGEfYuaHDzXPcE3xhTkx73EhmCGUpEOglKo= -github.com/stretchr/objx v0.5.2 h1:xuMeJ0Sdp5ZMRXx/aWO6RZxdr3beISkG5/G/aIRr3pY= -github.com/stretchr/objx v0.5.2/go.mod h1:FRsXN1f5AsAjCGJKqEizvkpNtU+EGNCLh3NxZ/8L+MA= -github.com/stretchr/testify v1.2.2/go.mod h1:a8OnRcib4nhh0OaRAV+Yts87kKdq0PP7pXfy6kDkUVs= -github.com/stretchr/testify v1.3.0/go.mod h1:M5WIy9Dh21IEIfnGCwXGc5bZfKNJtfHm1UVUgZn+9EI= -github.com/stretchr/testify v1.4.0/go.mod h1:j7eGeouHqKxXV5pUuKE4zz7dFj8WfuZ+81PSLYec5m4= -github.com/stretchr/testify v1.7.0/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg= -github.com/stretchr/testify v1.7.1/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg= -github.com/stretchr/testify v1.8.0/go.mod h1:yNjHg4UonilssWZ8iaSj1OCr/vHnekPRkoO+kdMU+MU= -github.com/stretchr/testify v1.8.1/go.mod h1:w2LPCIKwWwSfY2zedu0+kehJoqGctiVI29o6fzry7u4= -github.com/stretchr/testify v1.10.0 h1:Xv5erBjTwe/5IxqUQTdXv5kgmIvbHo3QQyRwhJsOfJA= -github.com/stretchr/testify v1.10.0/go.mod h1:r2ic/lqez/lEtzL7wO/rwa5dbSLXVDPFyf8C91i36aY= -github.com/xdg-go/pbkdf2 v1.0.0 h1:Su7DPu48wXMwC3bs7MCNG+z4FhcyEuz5dlvchbq0B0c= -github.com/xdg-go/pbkdf2 v1.0.0/go.mod h1:jrpuAogTd400dnrH08LKmI/xc1MbPOebTwRqcT5RDeI= -github.com/xdg-go/scram v1.1.2 h1:FHX5I5B4i4hKRVRBCFRxq1iQRej7WO3hhBuJf+UUySY= -github.com/xdg-go/scram v1.1.2/go.mod h1:RT/sEzTbU5y00aCK8UOx6R7YryM0iF1N2MOmC3kKLN4= -github.com/xdg-go/stringprep v1.0.4 h1:XLI/Ng3O1Atzq0oBs3TWm+5ZVgkq2aqdlvP9JtoZ6c8= -github.com/xdg-go/stringprep v1.0.4/go.mod h1:mPGuuIYwz7CmR2bT9j4GbQqutWS1zV24gijq1dTyGkM= -github.com/yuin/goldmark v1.1.27/go.mod h1:3hX8gzYuyVAZsxl0MRgGTJEmQBFcNTphYh9decYSb74= -github.com/yuin/goldmark v1.2.1/go.mod h1:3hX8gzYuyVAZsxl0MRgGTJEmQBFcNTphYh9decYSb74= -github.com/yuin/goldmark v1.4.13/go.mod h1:6yULJ656Px+3vBD8DxQVa3kxgyrAnzto9xy5taEt/CY= -github.com/yuin/gopher-lua v1.1.1 h1:kYKnWBjvbNP4XLT3+bPEwAXJx262OhaHDWDVOPjL46M= -github.com/yuin/gopher-lua v1.1.1/go.mod h1:GBR0iDaNXjAgGg9zfCvksxSRnQx76gclCIb7kdAd1Pw= -go.einride.tech/aip v0.68.1 h1:16/AfSxcQISGN5z9C5lM+0mLYXihrHbQ1onvYTr93aQ= -go.einride.tech/aip v0.68.1/go.mod h1:XaFtaj4HuA3Zwk9xoBtTWgNubZ0ZZXv9BZJCkuKuWbg= -go.opencensus.io v0.24.0 h1:y73uSU6J157QMP2kn2r30vwW1A2W2WFwSCGnAVxeaD0= -go.opencensus.io v0.24.0/go.mod h1:vNK8G9p7aAivkbmorf4v+7Hgx+Zs0yY+0fOtgBfjQKo= -go.opentelemetry.io/auto/sdk v1.1.0 h1:cH53jehLUN6UFLY71z+NDOiNJqDdPRaXzTel0sJySYA= -go.opentelemetry.io/auto/sdk v1.1.0/go.mod h1:3wSPjt5PWp2RhlCcmmOial7AvC4DQqZb7a7wCow3W8A= -go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc v0.61.0 h1:q4XOmH/0opmeuJtPsbFNivyl7bCt7yRBbeEm2sC/XtQ= -go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc v0.61.0/go.mod h1:snMWehoOh2wsEwnvvwtDyFCxVeDAODenXHtn5vzrKjo= -go.opentelemetry.io/contrib/instrumentation/net/http/httptrace/otelhttptrace v0.62.0 h1:wCeciVlAfb5DC8MQl/DlmAv/FVPNpQgFvI/71+hatuc= -go.opentelemetry.io/contrib/instrumentation/net/http/httptrace/otelhttptrace v0.62.0/go.mod h1:WfEApdZDMlLUAev/0QQpr8EJ/z0VWDKYZ5tF5RH5T1U= -go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp v0.62.0 h1:Hf9xI/XLML9ElpiHVDNwvqI0hIFlzV8dgIr35kV1kRU= -go.opentelemetry.io/contrib/instrumentation/net/http/otelhttp v0.62.0/go.mod h1:NfchwuyNoMcZ5MLHwPrODwUF1HWCXWrL31s8gSAdIKY= -go.opentelemetry.io/otel v1.37.0 h1:9zhNfelUvx0KBfu/gb+ZgeAfAgtWrfHJZcAqFC228wQ= -go.opentelemetry.io/otel v1.37.0/go.mod h1:ehE/umFRLnuLa/vSccNq9oS1ErUlkkK71gMcN34UG8I= -go.opentelemetry.io/otel/exporters/otlp/otlptrace v1.37.0 h1:Ahq7pZmv87yiyn3jeFz/LekZmPLLdKejuO3NcK9MssM= -go.opentelemetry.io/otel/exporters/otlp/otlptrace v1.37.0/go.mod h1:MJTqhM0im3mRLw1i8uGHnCvUEeS7VwRyxlLC78PA18M= -go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc v1.37.0 h1:EtFWSnwW9hGObjkIdmlnWSydO+Qs8OwzfzXLUPg4xOc= -go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc v1.37.0/go.mod h1:QjUEoiGCPkvFZ/MjK6ZZfNOS6mfVEVKYE99dFhuN2LI= -go.opentelemetry.io/otel/exporters/prometheus v0.59.1 h1:HcpSkTkJbggT8bjYP+BjyqPWlD17BH9C5CYNKeDzmcA= -go.opentelemetry.io/otel/exporters/prometheus v0.59.1/go.mod h1:0FJL+gjuUoM07xzik3KPBaN+nz/CoB15kV6WLMiXZag= -go.opentelemetry.io/otel/exporters/zipkin v1.37.0 h1:Z2apuaRnHEjzDAkpbWNPiksz1R0/FCIrJSjiMA43zwI= -go.opentelemetry.io/otel/exporters/zipkin v1.37.0/go.mod h1:ofGu/7fG+bpmjZoiPUUmYDJ4vXWxMT57HmGoegx49uw= -go.opentelemetry.io/otel/metric v1.37.0 h1:mvwbQS5m0tbmqML4NqK+e3aDiO02vsf/WgbsdpcPoZE= -go.opentelemetry.io/otel/metric v1.37.0/go.mod h1:04wGrZurHYKOc+RKeye86GwKiTb9FKm1WHtO+4EVr2E= -go.opentelemetry.io/otel/sdk v1.37.0 h1:ItB0QUqnjesGRvNcmAcU0LyvkVyGJ2xftD29bWdDvKI= -go.opentelemetry.io/otel/sdk v1.37.0/go.mod h1:VredYzxUvuo2q3WRcDnKDjbdvmO0sCzOvVAiY+yUkAg= -go.opentelemetry.io/otel/sdk/metric v1.37.0 h1:90lI228XrB9jCMuSdA0673aubgRobVZFhbjxHHspCPc= -go.opentelemetry.io/otel/sdk/metric v1.37.0/go.mod h1:cNen4ZWfiD37l5NhS+Keb5RXVWZWpRE+9WyVCpbo5ps= -go.opentelemetry.io/otel/trace v1.37.0 h1:HLdcFNbRQBE2imdSEgm/kwqmQj1Or1l/7bW6mxVK7z4= -go.opentelemetry.io/otel/trace v1.37.0/go.mod h1:TlgrlQ+PtQO5XFerSPUYG0JSgGyryXewPGyayAWSBS0= -go.opentelemetry.io/proto/otlp v1.7.0 h1:jX1VolD6nHuFzOYso2E73H85i92Mv8JQYk0K9vz09os= -go.opentelemetry.io/proto/otlp v1.7.0/go.mod h1:fSKjH6YJ7HDlwzltzyMj036AJ3ejJLCgCSHGj4efDDo= -go.uber.org/atomic v1.7.0/go.mod h1:fEN4uk6kAWBTFdckzkM89CLk9XfWZrxpCo0nPH17wJc= -go.uber.org/goleak v1.1.10/go.mod h1:8a7PlsEVH3e/a/GLqe5IIrQx6GzcnRmZEufDUTk4A7A= -go.uber.org/goleak v1.3.0 h1:2K3zAYmnTNqV73imy9J1T3WC+gmCePx2hEGkimedGto= -go.uber.org/goleak v1.3.0/go.mod h1:CoHD4mav9JJNrW/WLlf7HGZPjdw8EucARQHekz1X6bE= -go.uber.org/mock v0.5.2 h1:LbtPTcP8A5k9WPXj54PPPbjcI4Y6lhyOZXn+VS7wNko= -go.uber.org/mock v0.5.2/go.mod h1:wLlUxC2vVTPTaE3UD51E0BGOAElKrILxhVSDYQLld5o= -go.uber.org/multierr v1.6.0/go.mod h1:cdWPpRnG4AhwMwsgIHip0KRBQjJy5kYEpYjJxpXp9iU= -go.uber.org/zap v1.18.1/go.mod h1:xg/QME4nWcxGxrpdeYfq7UvYrLh66cuVKdrbD1XF/NI= -gofr.dev v1.43.0 h1:opQ5rq5+odYi8/VTY8tdVrtZaAjyYA01AS860EK55Ro= -gofr.dev v1.43.0/go.mod h1:BNgk8HKwwuReAZT5btqkwL3ugpEaYyC7TmTxBA81X90= -golang.org/x/crypto v0.0.0-20190308221718-c2843e01d9a2/go.mod h1:djNgcEr1/C05ACkg1iLfiJU5Ep61QUkGW8qpdssI0+w= -golang.org/x/crypto v0.0.0-20191011191535-87dc89f01550/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI= -golang.org/x/crypto v0.0.0-20200622213623-75b288015ac9/go.mod h1:LzIPMQfyMNhhGPhUkYOs5KpL4U8rLKemX1yGLhDgUto= -golang.org/x/crypto v0.0.0-20210921155107-089bfa567519/go.mod h1:GvvjBRRGRdwPK5ydBHafDWAxML/pGHZbMvKqRZ5+Abc= -golang.org/x/crypto v0.14.0/go.mod h1:MVFd36DqK4CsrnJYDkBA3VC4m2GkXAM0PvzMCn4JQf4= -golang.org/x/crypto v0.40.0 h1:r4x+VvoG5Fm+eJcxMaY8CQM7Lb0l1lsmjGBQ6s8BfKM= -golang.org/x/crypto v0.40.0/go.mod h1:Qr1vMER5WyS2dfPHAlsOj01wgLbsyWtFn/aY+5+ZdxY= -golang.org/x/exp v0.0.0-20190121172915-509febef88a4/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA= -golang.org/x/exp v0.0.0-20250620022241-b7579e27df2b h1:M2rDM6z3Fhozi9O7NWsxAkg/yqS/lQJ6PmkyIV3YP+o= -golang.org/x/exp v0.0.0-20250620022241-b7579e27df2b/go.mod h1:3//PLf8L/X+8b4vuAfHzxeRUl04Adcb341+IGKfnqS8= -golang.org/x/lint v0.0.0-20181026193005-c67002cb31c3/go.mod h1:UVdnD1Gm6xHRNCYTkRU2/jEulfH38KcIWyp/GAMgvoE= -golang.org/x/lint v0.0.0-20190227174305-5b3e6a55c961/go.mod h1:wehouNa3lNwaWXcvxsM5YxQ5yQlVC4a0KAMCusXpPoU= -golang.org/x/lint v0.0.0-20190313153728-d0100b6bd8b3/go.mod h1:6SW0HCj/g11FgYtHlgUYUwCkIfeOF89ocIRzGO/8vkc= -golang.org/x/lint v0.0.0-20190930215403-16217165b5de/go.mod h1:6SW0HCj/g11FgYtHlgUYUwCkIfeOF89ocIRzGO/8vkc= -golang.org/x/mod v0.2.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA= -golang.org/x/mod v0.3.0/go.mod h1:s0Qsj1ACt9ePp/hMypM3fl4fZqREWJwdYDEqhRiZZUA= -golang.org/x/mod v0.6.0-dev.0.20220419223038-86c51ed26bb4/go.mod h1:jJ57K6gSWd91VN4djpZkiMVwK6gcyfeH4XE8wZrZaV4= -golang.org/x/mod v0.8.0/go.mod h1:iBbtSCu2XBx23ZKBPSOrRkjjQPZFPuis4dIYUhu/chs= -golang.org/x/mod v0.25.0 h1:n7a+ZbQKQA/Ysbyb0/6IbB1H/X41mKgbhfv7AfG/44w= -golang.org/x/mod v0.25.0/go.mod h1:IXM97Txy2VM4PJ3gI61r1YEk/gAj6zAHN3AdZt6S9Ww= -golang.org/x/net v0.0.0-20180724234803-3673e40ba225/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4= -golang.org/x/net v0.0.0-20180826012351-8a410e7b638d/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4= -golang.org/x/net v0.0.0-20190213061140-3a22650c66bd/go.mod h1:mL1N/T3taQHkDXs73rZJwtUhF3w3ftmwwsq0BUmARs4= -golang.org/x/net v0.0.0-20190311183353-d8887717615a/go.mod h1:t9HGtf8HONx5eT2rtn7q6eTqICYqUVnKs3thJo3Qplg= -golang.org/x/net v0.0.0-20190404232315-eb5bcb51f2a3/go.mod h1:t9HGtf8HONx5eT2rtn7q6eTqICYqUVnKs3thJo3Qplg= -golang.org/x/net v0.0.0-20190620200207-3b0461eec859/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s= -golang.org/x/net v0.0.0-20200226121028-0de0cce0169b/go.mod h1:z5CRVTTTmAJ677TzLLGU+0bjPO0LkuOLi4/5GtJWs/s= -golang.org/x/net v0.0.0-20201021035429-f5854403a974/go.mod h1:sp8m0HH+o8qH0wwXwYZr8TS3Oi6o0r6Gce1SSxlDquU= -golang.org/x/net v0.0.0-20201110031124-69a78807bb2b/go.mod h1:sp8m0HH+o8qH0wwXwYZr8TS3Oi6o0r6Gce1SSxlDquU= -golang.org/x/net v0.0.0-20210226172049-e18ecbb05110/go.mod h1:m0MpNAwzfU5UDzcl9v0D8zg8gWTRqZa9RBIspLL5mdg= -golang.org/x/net v0.0.0-20220722155237-a158d28d115b/go.mod h1:XRhObCWvk6IyKnWLug+ECip1KBveYUHfp+8e9klMJ9c= -golang.org/x/net v0.6.0/go.mod h1:2Tu9+aMcznHK/AK1HMvgo6xiTLG5rD5rZLDS+rp2Bjs= -golang.org/x/net v0.10.0/go.mod h1:0qNGK6F8kojg2nk9dLZ2mShWaEBan6FAoqfSigmmuDg= -golang.org/x/net v0.17.0/go.mod h1:NxSsAGuq816PNPmqtQdLE42eU2Fs7NoRIZrHJAlaCOE= -golang.org/x/net v0.42.0 h1:jzkYrhi3YQWD6MLBJcsklgQsoAcw89EcZbJw8Z614hs= -golang.org/x/net v0.42.0/go.mod h1:FF1RA5d3u7nAYA4z2TkclSCKh68eSXtiFwcWQpPXdt8= -golang.org/x/oauth2 v0.0.0-20180821212333-d2e6202438be/go.mod h1:N/0e6XlmueqKjAGxoOufVs8QHGRruUQn6yWY3a++T0U= -golang.org/x/oauth2 v0.30.0 h1:dnDm7JmhM45NNpd8FDDeLhK6FwqbOf4MLCM9zb1BOHI= -golang.org/x/oauth2 v0.30.0/go.mod h1:B++QgG3ZKulg6sRPGD/mqlHQs5rB3Ml9erfeDY7xKlU= -golang.org/x/sync v0.0.0-20180314180146-1d60e4601c6f/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM= -golang.org/x/sync v0.0.0-20181108010431-42b317875d0f/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM= -golang.org/x/sync v0.0.0-20190423024810-112230192c58/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM= -golang.org/x/sync v0.0.0-20190911185100-cd5d95a43a6e/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM= -golang.org/x/sync v0.0.0-20201020160332-67f06af15bc9/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM= -golang.org/x/sync v0.0.0-20220722155255-886fb9371eb4/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM= -golang.org/x/sync v0.1.0/go.mod h1:RxMgew5VJxzue5/jJTE5uejpjVlOe/izrB70Jof72aM= -golang.org/x/sync v0.16.0 h1:ycBJEhp9p4vXvUZNszeOq0kGTPghopOL8q0fq3vstxw= -golang.org/x/sync v0.16.0/go.mod h1:1dzgHSNfp02xaA81J2MS99Qcpr2w7fw1gpm99rleRqA= -golang.org/x/sys v0.0.0-20180830151530-49385e6e1522/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY= -golang.org/x/sys v0.0.0-20190215142949-d0b11bdaac8a/go.mod h1:STP8DvDyc/dI5b8T5hshtkjS+E42TnysNCUPdjciGhY= -golang.org/x/sys v0.0.0-20190412213103-97732733099d/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs= -golang.org/x/sys v0.0.0-20190422165155-953cdadca894/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs= -golang.org/x/sys v0.0.0-20200930185726-fdedc70b468f/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs= -golang.org/x/sys v0.0.0-20201119102817-f84b799fce68/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs= -golang.org/x/sys v0.0.0-20210615035016-665e8c7367d1/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg= -golang.org/x/sys v0.0.0-20211025201205-69cdffdb9359/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg= -golang.org/x/sys v0.0.0-20220520151302-bc2c85ada10a/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg= -golang.org/x/sys v0.0.0-20220722155257-8c9f86f7a55f/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg= -golang.org/x/sys v0.5.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg= -golang.org/x/sys v0.6.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg= -golang.org/x/sys v0.8.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg= -golang.org/x/sys v0.13.0/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg= -golang.org/x/sys v0.34.0 h1:H5Y5sJ2L2JRdyv7ROF1he/lPdvFsd0mJHFw2ThKHxLA= -golang.org/x/sys v0.34.0/go.mod h1:BJP2sWEmIv4KK5OTEluFJCKSidICx8ciO85XgH3Ak8k= -golang.org/x/term v0.0.0-20201126162022-7de9c90e9dd1/go.mod h1:bj7SfCRtBDWHUb9snDiAeCFNEtKQo2Wmx5Cou7ajbmo= -golang.org/x/term v0.0.0-20210927222741-03fcf44c2211/go.mod h1:jbD1KX2456YbFQfuXm/mYQcufACuNUgVhRMnK/tPxf8= -golang.org/x/term v0.5.0/go.mod h1:jMB1sMXY+tzblOD4FWmEbocvup2/aLOaQEp7JmGp78k= -golang.org/x/term v0.8.0/go.mod h1:xPskH00ivmX89bAKVGSKKtLOWNx2+17Eiy94tnKShWo= -golang.org/x/term v0.13.0/go.mod h1:LTmsnFJwVN6bCy1rVCoS+qHT1HhALEFxKncY3WNNh4U= -golang.org/x/term v0.33.0 h1:NuFncQrRcaRvVmgRkvM3j/F00gWIAlcmlB8ACEKmGIg= -golang.org/x/term v0.33.0/go.mod h1:s18+ql9tYWp1IfpV9DmCtQDDSRBUjKaw9M1eAv5UeF0= -golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ= -golang.org/x/text v0.3.3/go.mod h1:5Zoc/QRtKVWzQhOtBMvqHzDpF6irO9z98xDceosuGiQ= -golang.org/x/text v0.3.7/go.mod h1:u+2+/6zg+i71rQMx5EYifcz6MCKuco9NR6JIITiCfzQ= -golang.org/x/text v0.3.8/go.mod h1:E6s5w1FMmriuDzIBO73fBruAKo1PCIq6d2Q6DHfQ8WQ= -golang.org/x/text v0.7.0/go.mod h1:mrYo+phRRbMaCq/xk9113O4dZlRixOauAjOtrjsXDZ8= -golang.org/x/text v0.9.0/go.mod h1:e1OnstbJyHTd6l/uOt8jFFHp6TRDWZR/bV3emEE/zU8= -golang.org/x/text v0.13.0/go.mod h1:TvPlkZtksWOMsz7fbANvkp4WM8x/WCo/om8BMLbz+aE= -golang.org/x/text v0.27.0 h1:4fGWRpyh641NLlecmyl4LOe6yDdfaYNrGb2zdfo4JV4= -golang.org/x/text v0.27.0/go.mod h1:1D28KMCvyooCX9hBiosv5Tz/+YLxj0j7XhWjpSUF7CU= -golang.org/x/time v0.12.0 h1:ScB/8o8olJvc+CQPWrK3fPZNfh7qgwCrY0zJmoEQLSE= -golang.org/x/time v0.12.0/go.mod h1:CDIdPxbZBQxdj6cxyCIdrNogrJKMJ7pr37NYpMcMDSg= -golang.org/x/tools v0.0.0-20180917221912-90fa682c2a6e/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ= -golang.org/x/tools v0.0.0-20190114222345-bf090417da8b/go.mod h1:n7NCudcB/nEzxVGmLbDWY5pfWTLqBcC2KZ6jyYvM4mQ= -golang.org/x/tools v0.0.0-20190226205152-f727befe758c/go.mod h1:9Yl7xja0Znq3iFh3HoIrodX9oNMXvdceNzlUR8zjMvY= -golang.org/x/tools v0.0.0-20190311212946-11955173bddd/go.mod h1:LCzVGOaR6xXOjkQ3onu1FJEFr0SW1gC7cKk1uF8kGRs= -golang.org/x/tools v0.0.0-20190524140312-2c0ae7006135/go.mod h1:RgjU9mgBXZiqYHBnxXauZ1Gv1EHHAz9KjViQ78xBX0Q= -golang.org/x/tools v0.0.0-20191108193012-7d206e10da11/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo= -golang.org/x/tools v0.0.0-20191119224855-298f0cb1881e/go.mod h1:b+2E5dAYhXwXZwtnZ6UAqBI28+e2cm9otk0dWdXHAEo= -golang.org/x/tools v0.0.0-20200619180055-7c47624df98f/go.mod h1:EkVYQZoAsY45+roYkvgYkIh4xh/qjgUK9TdY2XT94GE= -golang.org/x/tools v0.0.0-20210106214847-113979e3529a/go.mod h1:emZCQorbCU4vsT4fOWvOPXz4eW1wZW4PmDk9uLelYpA= -golang.org/x/tools v0.1.12/go.mod h1:hNGJHUnrk76NpqgfD5Aqm5Crs+Hm0VOH/i9J2+nxYbc= -golang.org/x/tools v0.6.0/go.mod h1:Xwgl3UAJ/d3gWutnCtw505GrjyAbvKui8lOU390QaIU= -golang.org/x/tools v0.34.0 h1:qIpSLOxeCYGg9TrcJokLBG4KFA6d795g0xkBkiESGlo= -golang.org/x/tools v0.34.0/go.mod h1:pAP9OwEaY1CAW3HOmg3hLZC5Z0CCmzjAF2UQMSqNARg= -golang.org/x/xerrors v0.0.0-20190717185122-a985d3407aa7/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0= -golang.org/x/xerrors v0.0.0-20191011141410-1b5146add898/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0= -golang.org/x/xerrors v0.0.0-20191204190536-9bdfabe68543/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0= -golang.org/x/xerrors v0.0.0-20200804184101-5ec99f83aff1/go.mod h1:I/5z698sn9Ka8TeJc9MKroUUfqBBauWjQqLJ2OPfmY0= -google.golang.org/api v0.244.0 h1:lpkP8wVibSKr++NCD36XzTk/IzeKJ3klj7vbj+XU5pE= -google.golang.org/api v0.244.0/go.mod h1:dMVhVcylamkirHdzEBAIQWUCgqY885ivNeZYd7VAVr8= -google.golang.org/appengine v1.1.0/go.mod h1:EbEs0AVv82hx2wNQdGPgUI5lhzA/G0D9YwlJXL52JkM= -google.golang.org/appengine v1.4.0/go.mod h1:xpcJRLb0r/rnEns0DIKYYv+WjYCduHsrkT7/EB5XEv4= -google.golang.org/genproto v0.0.0-20180817151627-c66870c02cf8/go.mod h1:JiN7NxoALGmiZfu7CAH4rXhgtRTLTxftemlI0sWmxmc= -google.golang.org/genproto v0.0.0-20190819201941-24fa4b261c55/go.mod h1:DMBHOl98Agz4BDEuKkezgsaosCRResVns1a3J2ZsMNc= -google.golang.org/genproto v0.0.0-20200423170343-7949de9c1215/go.mod h1:55QSHmfGQM9UVYDPBsyGGes0y52j32PQ3BqQfXhyH3c= -google.golang.org/genproto v0.0.0-20200526211855-cb27e3aa2013/go.mod h1:NbSheEEYHJ7i3ixzK3sjbqSGDJWnxyFXZblF3eUsNvo= -google.golang.org/genproto v0.0.0-20250603155806-513f23925822 h1:rHWScKit0gvAPuOnu87KpaYtjK5zBMLcULh7gxkCXu4= -google.golang.org/genproto v0.0.0-20250603155806-513f23925822/go.mod h1:HubltRL7rMh0LfnQPkMH4NPDFEWp0jw3vixw7jEM53s= -google.golang.org/genproto/googleapis/api v0.0.0-20250603155806-513f23925822 h1:oWVWY3NzT7KJppx2UKhKmzPq4SRe0LdCijVRwvGeikY= -google.golang.org/genproto/googleapis/api v0.0.0-20250603155806-513f23925822/go.mod h1:h3c4v36UTKzUiuaOKQ6gr3S+0hovBtUrXzTG/i3+XEc= -google.golang.org/genproto/googleapis/rpc v0.0.0-20250728155136-f173205681a0 h1:MAKi5q709QWfnkkpNQ0M12hYJ1+e8qYVDyowc4U1XZM= -google.golang.org/genproto/googleapis/rpc v0.0.0-20250728155136-f173205681a0/go.mod h1:qQ0YXyHHx3XkvlzUtpXDkS29lDSafHMZBAZDc03LQ3A= -google.golang.org/grpc v1.19.0/go.mod h1:mqu4LbDTu4XGKhr4mRzUsmM4RtVoemTSY81AxZiDr8c= -google.golang.org/grpc v1.23.0/go.mod h1:Y5yQAOtifL1yxbo5wqy6BxZv8vAUGQwXBOALyacEbxg= -google.golang.org/grpc v1.25.1/go.mod h1:c3i+UQWmh7LiEpx4sFZnkU36qjEYZ0imhYfXVyQciAY= -google.golang.org/grpc v1.27.0/go.mod h1:qbnxyOmOxrQa7FizSgH+ReBfzJrCY1pSN7KXBS8abTk= -google.golang.org/grpc v1.29.1/go.mod h1:itym6AZVZYACWQqET3MqgPpjcuV5QH3BxFS3IjizoKk= -google.golang.org/grpc v1.33.2/go.mod h1:JMHMWHQWaTccqQQlmk3MJZS+GWXOdAesneDmEnv2fbc= -google.golang.org/grpc v1.74.2 h1:WoosgB65DlWVC9FqI82dGsZhWFNBSLjQ84bjROOpMu4= -google.golang.org/grpc v1.74.2/go.mod h1:CtQ+BGjaAIXHs/5YS3i473GqwBBa1zGQNevxdeBEXrM= -google.golang.org/protobuf v0.0.0-20200109180630-ec00e32a8dfd/go.mod h1:DFci5gLYBciE7Vtevhsrf46CRTquxDuWsQurQQe4oz8= -google.golang.org/protobuf v0.0.0-20200221191635-4d8936d0db64/go.mod h1:kwYJMbMJ01Woi6D6+Kah6886xMZcty6N08ah7+eCXa0= -google.golang.org/protobuf v0.0.0-20200228230310-ab0ca4ff8a60/go.mod h1:cfTl7dwQJ+fmap5saPgwCLgHXTUD7jkjRqWcaiX5VyM= -google.golang.org/protobuf v1.20.1-0.20200309200217-e05f789c0967/go.mod h1:A+miEFZTKqfCUM6K7xSMQL9OKL/b6hQv+e19PK+JZNE= -google.golang.org/protobuf v1.21.0/go.mod h1:47Nbq4nVaFHyn7ilMalzfO3qCViNmqZ2kzikPIcrTAo= -google.golang.org/protobuf v1.22.0/go.mod h1:EGpADcykh3NcUnDUJcl1+ZksZNG86OlYog2l/sGQquU= -google.golang.org/protobuf v1.23.0/go.mod h1:EGpADcykh3NcUnDUJcl1+ZksZNG86OlYog2l/sGQquU= -google.golang.org/protobuf v1.23.1-0.20200526195155-81db48ad09cc/go.mod h1:EGpADcykh3NcUnDUJcl1+ZksZNG86OlYog2l/sGQquU= -google.golang.org/protobuf v1.25.0/go.mod h1:9JNX74DMeImyA3h4bdi1ymwjUzf21/xIlbajtzgsN7c= -google.golang.org/protobuf v1.36.6 h1:z1NpPI8ku2WgiWnf+t9wTPsn6eP1L7ksHUlkfLvd9xY= -google.golang.org/protobuf v1.36.6/go.mod h1:jduwjTPXsFjZGTmRluh+L6NjiWu7pchiJ2/5YcXBHnY= -gopkg.in/check.v1 v0.0.0-20161208181325-20d25e280405/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0= -gopkg.in/check.v1 v1.0.0-20180628173108-788fd7840127/go.mod h1:Co6ibVJAznAaIkqp8huTwlJQCZ016jof/cbN4VW5Yz0= -gopkg.in/check.v1 v1.0.0-20201130134442-10cb98267c6c h1:Hei/4ADfdWqJk1ZMxUNpqntNwaWcugrBjAiHlqqRiVk= -gopkg.in/check.v1 v1.0.0-20201130134442-10cb98267c6c/go.mod h1:JHkPIbrfpd72SG/EVd6muEfDQjcINNoR0C8j2r3qZ4Q= -gopkg.in/yaml.v2 v2.2.2/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI= -gopkg.in/yaml.v2 v2.2.8/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI= -gopkg.in/yaml.v3 v3.0.0-20200313102051-9f266ea9e77c/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM= -gopkg.in/yaml.v3 v3.0.0-20210107192922-496545a6307b/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM= -gopkg.in/yaml.v3 v3.0.1 h1:fxVm/GzAzEWqLHuvctI91KS9hhNmmWOoWu0XTYJS7CA= -gopkg.in/yaml.v3 v3.0.1/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM= -honnef.co/go/tools v0.0.0-20190102054323-c2f93a96b099/go.mod h1:rf3lG4BRIbNafJWhAfAdb/ePZxsR/4RtNHQocxwk9r4= -honnef.co/go/tools v0.0.0-20190523083050-ea95bdfd59fc/go.mod h1:rf3lG4BRIbNafJWhAfAdb/ePZxsR/4RtNHQocxwk9r4= -modernc.org/cc/v4 v4.26.2 h1:991HMkLjJzYBIfha6ECZdjrIYz2/1ayr+FL8GN+CNzM= -modernc.org/cc/v4 v4.26.2/go.mod h1:uVtb5OGqUKpoLWhqwNQo/8LwvoiEBLvZXIQ/SmO6mL0= -modernc.org/ccgo/v4 v4.28.0 h1:rjznn6WWehKq7dG4JtLRKxb52Ecv8OUGah8+Z/SfpNU= -modernc.org/ccgo/v4 v4.28.0/go.mod h1:JygV3+9AV6SmPhDasu4JgquwU81XAKLd3OKTUDNOiKE= -modernc.org/fileutil v1.3.8 h1:qtzNm7ED75pd1C7WgAGcK4edm4fvhtBsEiI/0NQ54YM= -modernc.org/fileutil v1.3.8/go.mod h1:HxmghZSZVAz/LXcMNwZPA/DRrQZEVP9VX0V4LQGQFOc= -modernc.org/gc/v2 v2.6.5 h1:nyqdV8q46KvTpZlsw66kWqwXRHdjIlJOhG6kxiV/9xI= -modernc.org/gc/v2 v2.6.5/go.mod h1:YgIahr1ypgfe7chRuJi2gD7DBQiKSLMPgBQe9oIiito= -modernc.org/goabi0 v0.2.0 h1:HvEowk7LxcPd0eq6mVOAEMai46V+i7Jrj13t4AzuNks= -modernc.org/goabi0 v0.2.0/go.mod h1:CEFRnnJhKvWT1c1JTI3Avm+tgOWbkOu5oPA8eH8LnMI= -modernc.org/libc v1.66.3 h1:cfCbjTUcdsKyyZZfEUKfoHcP3S0Wkvz3jgSzByEWVCQ= -modernc.org/libc v1.66.3/go.mod h1:XD9zO8kt59cANKvHPXpx7yS2ELPheAey0vjIuZOhOU8= -modernc.org/mathutil v1.7.1 h1:GCZVGXdaN8gTqB1Mf/usp1Y/hSqgI2vAGGP4jZMCxOU= -modernc.org/mathutil v1.7.1/go.mod h1:4p5IwJITfppl0G4sUEDtCr4DthTaT47/N3aT6MhfgJg= -modernc.org/memory v1.11.0 h1:o4QC8aMQzmcwCK3t3Ux/ZHmwFPzE6hf2Y5LbkRs+hbI= -modernc.org/memory v1.11.0/go.mod h1:/JP4VbVC+K5sU2wZi9bHoq2MAkCnrt2r98UGeSK7Mjw= -modernc.org/opt v0.1.4 h1:2kNGMRiUjrp4LcaPuLY2PzUfqM/w9N23quVwhKt5Qm8= -modernc.org/opt v0.1.4/go.mod h1:03fq9lsNfvkYSfxrfUhZCWPk1lm4cq4N+Bh//bEtgns= -modernc.org/sortutil v1.2.1 h1:+xyoGf15mM3NMlPDnFqrteY07klSFxLElE2PVuWIJ7w= -modernc.org/sortutil v1.2.1/go.mod h1:7ZI3a3REbai7gzCLcotuw9AC4VZVpYMjDzETGsSMqJE= -modernc.org/sqlite v1.38.2 h1:Aclu7+tgjgcQVShZqim41Bbw9Cho0y/7WzYptXqkEek= -modernc.org/sqlite v1.38.2/go.mod h1:cPTJYSlgg3Sfg046yBShXENNtPrWrDX8bsbAQBzgQ5E= -modernc.org/strutil v1.2.1 h1:UneZBkQA+DX2Rp35KcM69cSsNES9ly8mQWD71HKlOA0= -modernc.org/strutil v1.2.1/go.mod h1:EHkiggD70koQxjVdSBM3JKM7k6L0FbGE5eymy9i3B9A= -modernc.org/token v1.1.0 h1:Xl7Ap9dKaEs5kLoOQeQmPWevfnk/DM5qcLcYlA8ys6Y= -modernc.org/token v1.1.0/go.mod h1:UGzOrNV1mAFSEB63lOFHIpNRUVMvYTc6yu1SMY/XTDM= diff --git a/pkg/gofr/rbac/helper.go b/pkg/gofr/rbac/helper.go index f775a7b30..5ad1911d6 100644 --- a/pkg/gofr/rbac/helper.go +++ b/pkg/gofr/rbac/helper.go @@ -7,10 +7,6 @@ func HasRole(ctx *gofr.Context, role string) bool { return expRole == role } -func IsAdmin(ctx *gofr.Context) bool { - return HasRole(ctx, "admin") -} - func GetUserRole(ctx *gofr.Context) string { role, _ := ctx.Context.Value(userRole).(string) return role diff --git a/pkg/gofr/rbac/helper_test.go b/pkg/gofr/rbac/helper_test.go index 8e7ee5be4..5c0ced9fd 100644 --- a/pkg/gofr/rbac/helper_test.go +++ b/pkg/gofr/rbac/helper_test.go @@ -35,21 +35,6 @@ func TestHasRole(t *testing.T) { }) } } - -func TestIsAdmin(t *testing.T) { - baseCtx := context.WithValue(t.Context(), userRole, "admin") - gofrCtx := &gofr.Context{Context: baseCtx} - - if !IsAdmin(gofrCtx) { - t.Errorf("IsAdmin() = false, want true") - } - - nonAdminCtx := &gofr.Context{Context: context.WithValue(t.Context(), userRole, "viewer")} - if IsAdmin(nonAdminCtx) { - t.Errorf("IsAdmin() = true, want false") - } -} - func TestGetUserRole(t *testing.T) { expectedRole := "editor" baseCtx := context.WithValue(t.Context(), userRole, expectedRole) diff --git a/pkg/gofr/rbac/match.go b/pkg/gofr/rbac/match.go index 30c201951..1b36accf5 100644 --- a/pkg/gofr/rbac/match.go +++ b/pkg/gofr/rbac/match.go @@ -2,43 +2,31 @@ package rbac import ( "path" - "strings" ) -func isPathAllowed(role, route string, config *Config) bool { - allowedPaths := config.RoleWithPermissions[role] +func isRoleAllowed(role, apiroute string, config *Config) bool { + var routePermissions []string - for _, pattern := range allowedPaths { - // Allow simple wildcard "*" - if pattern == "*" { - return true - } - - // Ensure pattern ends with * if it's a prefix match - if pattern == route { - return true - } - // Normalize pattern and path to avoid trailing slash issues - normalizedPattern := strings.TrimSuffix(pattern, "/") - normalizedPath := strings.TrimSuffix(route, "/") - - // Allow matching wildcard like /admin/* or /users/* - if ok, _ := path.Match(normalizedPattern, normalizedPath); ok { - return true - } - - // Support prefix match with * (e.g. /users/* should match /users/123) - if strings.HasSuffix(pattern, "*") { - prefix := strings.TrimSuffix(pattern, "*") - if strings.HasPrefix(route, prefix) { + // find the matched route from config + for route, allowedRoles := range config.RouteWithPermissions { + if isMatched, _ := path.Match(route, apiroute); isMatched && route != "" { + // check if override is set for the matched route + if config.OverRides[apiroute] { return true } + routePermissions = allowedRoles + break } } - // override with role match - if config.OverRides[role] { - return true + // append global permissions if any + routePermissions = append(routePermissions, config.RouteWithPermissions["*"]...) + + // check if role is in allowed roles for the matched route + for _, allowedRole := range routePermissions { + if allowedRole == role || allowedRole == "*" { + return true + } } return false diff --git a/pkg/gofr/rbac/match_test.go b/pkg/gofr/rbac/match_test.go index b401bd590..5e1196af5 100644 --- a/pkg/gofr/rbac/match_test.go +++ b/pkg/gofr/rbac/match_test.go @@ -1,125 +1,42 @@ package rbac -import "testing" +import ( + "testing" -func TestIsPathAllowed_ExactAndWildcard(t *testing.T) { - cases := []struct { - name string - role string - route string - config *Config - want bool - }{ - { - name: "exact match route", - role: "admin", - route: "/dashboard", - config: &Config{ - RoleWithPermissions: map[string][]string{"admin": {"/dashboard"}}, - }, - want: true, - }, - { - name: "wildcard match any route", - role: "admin", - route: "/anything/here", - config: &Config{ - RoleWithPermissions: map[string][]string{"admin": {"*"}}, - }, - want: true, - }, - } - - for _, tt := range cases { - t.Run(tt.name, func(t *testing.T) { - if got := isPathAllowed(tt.role, tt.route, tt.config); got != tt.want { - t.Errorf("isPathAllowed() = %v, want %v", got, tt.want) - } - }) - } -} + "github.com/stretchr/testify/assert" +) -func TestIsPathAllowed_PatternsAndPrefixes(t *testing.T) { - cases := []struct { - name string - role string - route string - config *Config - want bool - }{ - { - name: "path.Match style match", - role: "admin", - route: "/users/123", - config: &Config{ - RoleWithPermissions: map[string][]string{"admin": {"/users/*"}}, - }, - want: true, - }, - { - name: "prefix match with * suffix", - role: "editor", - route: "/projects/42/files", - config: &Config{ - RoleWithPermissions: map[string][]string{"editor": {"/projects/*"}}, - }, - want: true, +func TestIsRoleAllowed(t *testing.T) { + config := &Config{ + RouteWithPermissions: map[string][]string{ + "/admin/*": {"admin"}, + "/user/*": {"user", "admin"}, + "*": {"guest"}, }, - { - name: "trailing slash ignored", - role: "viewer", - route: "/reports/", - config: &Config{ - RoleWithPermissions: map[string][]string{"viewer": {"/reports"}}, - }, - want: true, + OverRides: map[string]bool{ + "/admin/home": true, }, } - for _, tt := range cases { - t.Run(tt.name, func(t *testing.T) { - if got := isPathAllowed(tt.role, tt.route, tt.config); got != tt.want { - t.Errorf("isPathAllowed() = %v, want %v", got, tt.want) - } - }) - } -} - -func TestIsPathAllowed_Overrides(t *testing.T) { - cases := []struct { - name string - role string - route string - config *Config - want bool + tests := []struct { + name string + role string + route string + expected bool }{ - { - name: "no match but overridden", - role: "special", - route: "/secret/area", - config: &Config{ - RoleWithPermissions: map[string][]string{"special": {}}, - OverRides: map[string]bool{"special": true}, - }, - want: true, - }, - { - name: "no permissions no override", - role: "guest", - route: "/dashboard", - config: &Config{ - RoleWithPermissions: map[string][]string{"guest": {}}, - OverRides: map[string]bool{}, - }, - want: false, - }, + {"Override true", "anyone", "/admin/home", true}, + {"Pattern match /admin/*", "admin", "/admin/dashboard", true}, + {"Pattern match negative", "user", "/admin/dashboard", false}, + {"Non-pattern route", "user", "/user/profile", true}, + {"Wildcard permission", "guest", "/anything", true}, + {"No route or global match", "unknown", "/private", false}, + {"Not matched or globally allowed", "nobody", "/wildcard", false}, } - for _, tt := range cases { - t.Run(tt.name, func(t *testing.T) { - if got := isPathAllowed(tt.role, tt.route, tt.config); got != tt.want { - t.Errorf("isPathAllowed() = %v, want %v", got, tt.want) - } + for _, tc := range tests { + t.Run(tc.name, func(t *testing.T) { + got := isRoleAllowed(tc.role, tc.route, config) + assert.Equal(t, tc.expected, got, tc.name) }) } } diff --git a/pkg/gofr/rbac/middleware.go b/pkg/gofr/rbac/middleware.go index edfdf3fbd..0a0bb4a0e 100644 --- a/pkg/gofr/rbac/middleware.go +++ b/pkg/gofr/rbac/middleware.go @@ -24,7 +24,7 @@ func Middleware(config *Config, args ...any) func(handler http.Handler) http.Han return } - if !isPathAllowed(role, r.URL.Path, config) { + if !isRoleAllowed(role, r.URL.Path, config) { http.Error(w, "Forbidden: Access denied", http.StatusForbidden) return diff --git a/pkg/gofr/rbac/middleware_test.go b/pkg/gofr/rbac/middleware_test.go index 814f41209..adbedab5e 100644 --- a/pkg/gofr/rbac/middleware_test.go +++ b/pkg/gofr/rbac/middleware_test.go @@ -3,137 +3,142 @@ package rbac import ( "context" "errors" - "io" "net/http" "net/http/httptest" "testing" + "github.com/stretchr/testify/assert" "gofr.dev/pkg/gofr" ) -var errNoRole = errors.New("no role") - -// mockHandler just writes "OK" to the ResponseWriter. -func mockHandler(w http.ResponseWriter, _ *http.Request) { - _, _ = io.WriteString(w, "OK") -} - -func TestMiddleware_UnauthorizedRoleExtractor(t *testing.T) { - cfg := &Config{ - RoleExtractorFunc: func(_ *http.Request, _ ...any) (string, error) { - return "", errNoRole - }, - } - - req := httptest.NewRequest(http.MethodGet, "/some", http.NoBody) - rr := httptest.NewRecorder() - - h := Middleware(cfg)(http.HandlerFunc(mockHandler)) - h.ServeHTTP(rr, req) - - if rr.Code != http.StatusUnauthorized { - t.Errorf("got status %d, want %d", rr.Code, http.StatusUnauthorized) - } - - if body := rr.Body.String(); body == "" { - t.Errorf("expected error message in body, got empty") +// mock role extractor function for testing +func mockRoleExtractor(r *http.Request, args ...any) (string, error) { + role := r.Header.Get("Role") + if role == "" { + return "", errors.New("no role") } + return role, nil } -func TestMiddleware_ForbiddenPath(t *testing.T) { - cfg := &Config{ - RoleExtractorFunc: func(_ *http.Request, _ ...any) (string, error) { - return "user", nil - }, - RoleWithPermissions: map[string][]string{ - "user": {}, - }, - OverRides: map[string]bool{}, - } - - req := httptest.NewRequest(http.MethodGet, "/forbidden", http.NoBody) - rr := httptest.NewRecorder() - - h := Middleware(cfg)(http.HandlerFunc(mockHandler)) - h.ServeHTTP(rr, req) - - if rr.Code != http.StatusForbidden { - t.Errorf("got status %d, want %d", rr.Code, http.StatusForbidden) - } -} - -func TestMiddleware_SuccessAddsRole(t *testing.T) { - cfg := &Config{ - RoleExtractorFunc: func(_ *http.Request, _ ...any) (string, error) { - return "admin", nil - }, - RoleWithPermissions: map[string][]string{ - "admin": {"*"}, +func TestMiddleware_Authorization(t *testing.T) { + config := &Config{ + RouteWithPermissions: map[string][]string{ + "/allowed": {"admin"}, }, + OverRides: map[string]bool{}, + RoleExtractorFunc: mockRoleExtractor, } - var ctxRole string - + // next handler to confirm request passed through middleware + nextCalled := false nextHandler := http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) { - // Extract role from context to verify it's stored - if val, ok := r.Context().Value(userRole).(string); ok { - ctxRole = val - } - + nextCalled = true w.WriteHeader(http.StatusOK) }) - req := httptest.NewRequest(http.MethodGet, "/anything", http.NoBody) - rr := httptest.NewRecorder() - - h := Middleware(cfg)(nextHandler) - h.ServeHTTP(rr, req) - - if rr.Code != http.StatusOK { - t.Errorf("got status %d, want %d", rr.Code, http.StatusOK) - } - - if ctxRole != "admin" { - t.Errorf("expected role 'admin' in context, got '%s'", ctxRole) - } -} - -func TestRequireRole_Match(t *testing.T) { - expectedResult := "success" - - handler := func(_ *gofr.Context) (any, error) { - return expectedResult, nil - } - - // Create a context with the expected role - baseCtx := context.WithValue(t.Context(), userRole, "admin") - gCtx := &gofr.Context{Context: baseCtx} - - got, err := RequireRole("admin", handler)(gCtx) - if err != nil { - t.Fatalf("unexpected error: %v", err) + middleware := Middleware(config) + + // test cases + tests := []struct { + name string + roleHeader string + requestPath string + wantStatus int + wantNextCall bool + }{ + { + name: "No role header", + roleHeader: "", + requestPath: "/allowed", + wantStatus: http.StatusUnauthorized, + wantNextCall: false, + }, + { + name: "Unauthorized role", + roleHeader: "user", + requestPath: "/allowed", + wantStatus: http.StatusForbidden, + wantNextCall: false, + }, + { + name: "Authorized role", + roleHeader: "admin", + requestPath: "/allowed", + wantStatus: http.StatusOK, + wantNextCall: true, + }, } - if got != expectedResult { - t.Errorf("got %v, want %v", got, expectedResult) + for _, tc := range tests { + t.Run(tc.name, func(t *testing.T) { + nextCalled = false + req := httptest.NewRequest(http.MethodGet, tc.requestPath, nil) + if tc.roleHeader != "" { + req.Header.Set("Role", tc.roleHeader) + } + w := httptest.NewRecorder() + + handlerToTest := middleware(nextHandler) + handlerToTest.ServeHTTP(w, req) + + assert.Equal(t, tc.wantStatus, w.Code) + assert.Equal(t, tc.wantNextCall, nextCalled) + }) } } -func TestRequireRole_NoMatch(t *testing.T) { - handler := func(_ *gofr.Context) (any, error) { - return "should not run", nil +func TestRequireRole_Handler(t *testing.T) { + allowedRole := "admin" + called := false + handlerFunc := func(ctx *gofr.Context) (any, error) { + called = true + return "success", nil } - // context with wrong role - baseCtx := context.WithValue(t.Context(), userRole, "user") - gCtx := &gofr.Context{Context: baseCtx} - - _, err := RequireRole("admin", handler)(gCtx) - if err == nil { - t.Fatalf("expected error, got nil") + wrappedHandler := RequireRole(allowedRole, handlerFunc) + + tests := []struct { + name string + contextRole string + wantErr error + wantCalled bool + }{ + { + name: "Role allowed", + contextRole: "admin", + wantErr: nil, + wantCalled: true, + }, + { + name: "Role denied", + contextRole: "user", + wantErr: ErrAccessDenied, + wantCalled: false, + }, + { + name: "No role in context", + contextRole: "", + wantErr: ErrAccessDenied, + wantCalled: false, + }, } - if err.Error() != "forbidden: access denied" { - t.Errorf("got error %q, want %q", err.Error(), "forbidden: access denied") + for _, tc := range tests { + t.Run(tc.name, func(t *testing.T) { + called = false + ctx := &gofr.Context{ + Context: context.WithValue(context.Background(), userRole, tc.contextRole), + } + resp, err := wrappedHandler(ctx) + + assert.Equal(t, tc.wantErr, err) + if tc.wantCalled { + assert.True(t, called) + assert.Equal(t, "success", resp) + } else { + assert.False(t, called) + assert.Nil(t, resp) + } + }) } }