authd/README.md

# authd

`authd` is a (JWT) token-based authentication micro-service based on [libipc][libipc].
`authd` stores users (login, encrypted password), their profile (arbitrary data) and their *permissions*.
For example, `authd` is used by [dnsmanagerd][dnsmanagerd] to handle authentication and permissions.

No SQL, the entire database is stored in plain files, thanks to [the DODB database library][dodb].

The [netlibre service][netlibre] is the first to use `authd` in a real-life deployment.

## Build

`authd` is written in Crystal.
You’ll need the following tools to build it: `crystal`, `shards` and `make`.

```
make
make install
```

## Run

```
$ authd --help
```

For a more extensive documentation, please read the manual for both [authd][authdmanual] and [authctl][authctlmanual].

See the [configuration example][configuration-example] to avoid long command-line parameters.

Also, extensive usage examples are available in the makefiles.

## Administration

```sh
# First user in the database is an administrator.
authctl bootstrap name email
```

```sh
# Add a user:
authctl user add login email
```

For a comprehensive list of available commands, please read the [authctl manual][authctlmanual].

## Real-life deployment

For a real-life deployment, you might want to enable registration.
In this case, you need to get a `mailer` application to send template emails.
See [an example of such application][mailer].

### Backup and migration

```sh
# Database backup.
tar cfz db.tar.gz ./db-authd

# Database migration.
tar xfz db.tar.gz
```

Wasn't that hard, isn't it?

## Contributing

Pull requests are welcome. For major changes, please open an issue first to discuss what you would like to change.

Please make sure to update tests as appropriate.

# API and design choices

See [API.md][API] and [DESIGN-CHOICES.md][design].

[libipc]: https://git.baguette.netlib.re/Baguette/libipc
[dnsmanagerd]: https://git.baguette.netlib.re/Baguette/dnsmanager
[netlibre]: https://www.netlib.re
[configuration-example]: ./configuration-example.yml
[mailer]: https://git.baguette.netlib.re/Baguette/mailer
[authdmanual]: ./man/authd.1
[authctlmanual]: ./man/authctl.1
[dodb]: https://git.baguette.netlib.re/Baguette/dodb.cr
[API]: ./API.md
[design]: ./DESIGN-CHOICES.md
-												README re-introduced.

											
										
										
											2019-12-17 16:18:29 +01:00
+								# authd
-												README update (and split).

											
										
										
											2024-12-11 13:25:08 +01:00
+								`authd` is a (JWT) token-based authentication micro-service based on [libipc][libipc].
 								`authd` stores users (login, encrypted password), their profile (arbitrary data) and their *permissions*.
 								For example, `authd` is used by [dnsmanagerd][dnsmanagerd] to handle authentication and permissions.
-												README re-introduced.

											
										
										
											2019-12-17 16:18:29 +01:00
-												README update (and split).

											
										
										
											2024-12-11 13:25:08 +01:00
+								No SQL, the entire database is stored in plain files, thanks to [the DODB database library][dodb].
 								The [netlibre service][netlibre] is the first to use `authd` in a real-life deployment.
-												README re-introduced.

											
										
										
											2019-12-17 16:18:29 +01:00
-												README: add + update + fix most explanations. Sill very much WIP.

											
										
										
											2023-06-13 18:15:47 +02:00
+								## Build
-												README re-introduced.

											
										
										
											2019-12-17 16:18:29 +01:00
-												README: add + update + fix most explanations. Sill very much WIP.

											
										
										
											2023-06-13 18:15:47 +02:00
+								`authd` is written in Crystal.
-												Minor README update (mostly a few links).

											
										
										
											2024-12-01 00:41:37 +01:00
+								You’ll need the following tools to build it: `crystal`, `shards` and `make`.
-												README re-introduced.

											
										
										
											2019-12-17 16:18:29 +01:00
 								```
 								make
-												Minor README update (mostly a few links).

											
										
										
											2024-12-01 00:41:37 +01:00
+								make install
-												README re-introduced.

											
										
										
											2019-12-17 16:18:29 +01:00
+								```
-												Minor README update (mostly a few links).

											
										
										
											2024-12-01 00:41:37 +01:00
+								## Run
-												README re-introduced.

											
										
										
											2019-12-17 16:18:29 +01:00
 								```
 								$ authd --help
 								```
-												README update (and split).

											
										
										
											2024-12-11 13:25:08 +01:00
+								For a more extensive documentation, please read the manual for both [authd][authdmanual] and [authctl][authctlmanual].
-												README re-introduced.

											
										
										
											2019-12-17 16:18:29 +01:00
-												README update (and split).

											
										
										
											2024-12-11 13:25:08 +01:00
+								See the [configuration example][configuration-example] to avoid long command-line parameters.
-												README re-introduced.

											
										
										
											2019-12-17 16:18:29 +01:00
-												README update (and split).

											
										
										
											2024-12-11 13:25:08 +01:00
+								Also, extensive usage examples are available in the makefiles.
-												README re-introduced.

											
										
										
											2019-12-17 16:18:29 +01:00
-												README update (and split).

											
										
										
											2024-12-11 13:25:08 +01:00
+								## Administration
-												README re-introduced.

											
										
										
											2019-12-17 16:18:29 +01:00
-												README update (and split).

											
										
										
											2024-12-11 13:25:08 +01:00
+								```sh
 								# First user in the database is an administrator.
 								authctl bootstrap name email
 								```
-												README: add + update + fix most explanations. Sill very much WIP.

											
										
										
											2023-06-13 18:15:47 +02:00
-												README update (and split).

											
										
										
											2024-12-11 13:25:08 +01:00
+								```sh
 								# Add a user:
 								authctl user add login email
 								```
-												README re-introduced.

											
										
										
											2019-12-17 16:18:29 +01:00
-												README update (and split).

											
										
										
											2024-12-11 13:25:08 +01:00
+								For a comprehensive list of available commands, please read the [authctl manual][authctlmanual].
-												README: add + update + fix most explanations. Sill very much WIP.

											
										
										
											2023-06-13 18:15:47 +02:00
-												README update (and split).

											
										
										
											2024-12-11 13:25:08 +01:00
+								## Real-life deployment
-												README re-introduced.

											
										
										
											2019-12-17 16:18:29 +01:00
-												README update (and split).

											
										
										
											2024-12-11 13:25:08 +01:00
+								For a real-life deployment, you might want to enable registration.
 								In this case, you need to get a `mailer` application to send template emails.
 								See [an example of such application][mailer].
-												README re-introduced.

											
										
										
											2019-12-17 16:18:29 +01:00
-												README update (and split).

											
										
										
											2024-12-11 13:25:08 +01:00
+								### Backup and migration
-												README re-introduced.

											
										
										
											2019-12-17 16:18:29 +01:00
-												README update (and split).

											
										
										
											2024-12-11 13:25:08 +01:00
+								```sh
 								# Database backup.
 								tar cfz db.tar.gz ./db-authd
-												README re-introduced.

											
										
										
											2019-12-17 16:18:29 +01:00
-												README update (and split).

											
										
										
											2024-12-11 13:25:08 +01:00
+								# Database migration.
 								tar xfz db.tar.gz
 								```
-												README re-introduced.

											
										
										
											2019-12-17 16:18:29 +01:00
-												README update (and split).

											
										
										
											2024-12-11 13:25:08 +01:00
+								Wasn't that hard, isn't it?
-												README re-introduced.

											
										
										
											2019-12-17 16:18:29 +01:00
 								## Contributing
 								Pull requests are welcome. For major changes, please open an issue first to discuss what you would like to change.
 								Please make sure to update tests as appropriate.
-												README: add + update + fix most explanations. Sill very much WIP.

											
										
										
											2023-06-13 18:15:47 +02:00
-												README update (and split).

											
										
										
											2024-12-11 13:25:08 +01:00
+								# API and design choices
-												README: add + update + fix most explanations. Sill very much WIP.

											
										
										
											2023-06-13 18:15:47 +02:00
-												README update (and split).

											
										
										
											2024-12-11 13:25:08 +01:00
+								See [API.md][API] and [DESIGN-CHOICES.md][design].
-												Minor README update (mostly a few links).

											
										
										
											2024-12-01 00:41:37 +01:00
 								[libipc]: https://git.baguette.netlib.re/Baguette/libipc
-												README: fix a link.

											
										
										
											2024-12-11 13:29:45 +01:00
+								[dnsmanagerd]: https://git.baguette.netlib.re/Baguette/dnsmanager
-												README update (and split).

											
										
										
											2024-12-11 13:25:08 +01:00
+								[netlibre]: https://www.netlib.re
 								[configuration-example]: ./configuration-example.yml
 								[mailer]: https://git.baguette.netlib.re/Baguette/mailer
 								[authdmanual]: ./man/authd.1
 								[authctlmanual]: ./man/authctl.1
 								[dodb]: https://git.baguette.netlib.re/Baguette/dodb.cr
 								[API]: ./API.md
 								[design]: ./DESIGN-CHOICES.md