Skip to content

Instantly share code, notes, and snippets.

@coolaj86

coolaj86/Go-Cheatsheet.md

Last active October 12, 2025 00:58
Show Gist options

  • Select an option

    Learn more about clone URLs
  • Save coolaj86/4691e077c2f86e64ca0a089627a0c6a9 to your computer and use it in GitHub Desktop.

Select an option

Learn more about clone URLs
Save coolaj86/4691e077c2f86e64ca0a089627a0c6a9 to your computer and use it in GitHub Desktop.
Download ZIP
Golang Cheatsheet
Raw
Go-Cheatsheet.md

GoDoc Tricks: https://pkg.go.dev/github.com/fluhus/godoc-tricks

Base64 (and Random IDs)

s := base64.RawURLEncoding.EncodeToString([]byte(data))
b, err := b64.RawURLEncoding.DecodeString(s)

Random IDs

var Rando = rand.Reader
b := make([]byte, 16)
n, err := Rando.Read(b)
id := base64.RawURLEncoding.EncodeToString(b)

HTTP Request



HTTP Server


    srv := &http.Server{
        Addr:              runOpts.Addr,
        Handler:           r,
        ReadHeaderTimeout: 2 * time.Second,
        ReadTimeout:       10 * time.Second,
        WriteTimeout:      20 * time.Second,
        MaxHeaderBytes:    1024 * 1024, // 1MiB
    }
    if err := srv.ListenAndServe(); nil != err {
        fmt.Fprintf(os.Stderr, "%s", err)
        os.Exit(1)
        return
    }


HTTP Test Server


var srv *httptest.Server

func TestMain(m *testing.M) {
    // math/rand.Seed(0)
    
    srv = httptest.NewServer(mux)
    os.Exit(m.Run())
}


  client := srv.Client()
  urlstr, _ := url.Parse(srv.URL + "/debug/verify?exp=false")

  req := &http.Request{
    Method: "POST",
    URL:    urlstr,
    //Body:   ioutil.NopCloser(bytes.NewReader(jws)),
    Header: http.Header{},
  }
  req.Header.Set("Authorization", fmt.Sprintf("Bearer %s", jwt))
  res, err := client.Do(req)
  if nil != err {
    t.Error(err)
    return
  }
  data, err := ioutil.ReadAll(res.Body)
  if nil != err {
    t.Error(err)
    return
  }
  if 200 != res.StatusCode {
    log.Printf(string(data))
    t.Error(fmt.Errorf("bad status code: %d", res.StatusCode))
    return
  }


HTTP Handler


r.Body = http.MaxBytesReader(w, r.Body, 1 << 20)


Tee HTTP Body


TODO


Security


Compare


import "crypto/subtle"

func ConstantTimeCompare(x, y []byte) bool {
  return 1 == subtle.ConstantTimeCompare(x, y)
}


Error Strategies



JSON to Go



JSON to Postgres


https://numidian.io/convert/json/to/postgres


410 Gone


export GO111MODULE=on
export GOPROXY=direct
export GOSUMDB=off


X-Hub-Signature


	if len(secretToken) > 0 {
		sig := r.Header.Get(signatureHeader)
		if err := ValidateSignature(sig, body, secretToken); err != nil {
			return nil, err
		}
	}
    
// ValidateSignature validates the signature for the given payload.
// signature is the GitHub hash signature delivered in the X-Hub-Signature header.
// payload is the JSON payload sent by GitHub Webhooks.
// secretToken is the GitHub Webhook secret token.
//
// GitHub API docs: https://developer.github.com/webhooks/securing/#validating-payloads-from-github
func ValidateSignature(signature string, payload, secretToken []byte) error {
	messageMAC, hashFunc, err := messageMAC(signature)
	if err != nil {
		return err
	}
	if !checkMAC(payload, messageMAC, secretToken, hashFunc) {
		return errors.New("payload signature check failed")
	}
	return nil
}



  


  






        
        

          

            

              









            


            

              

  
    Sign up for free
    to join this conversation on GitHub.
    Already have an account?
    Sign in to comment