Add IAM scaffold modules

iam/cmd/iam/main.go

@@ -0,0 +1,7 @@
+package main
+
+import "todo-vibe-coding/iam/internal/service"
+
+func main() {
+	_ = service.NewIAM()
+}

iam/deployments/README.md

@@ -0,0 +1,3 @@
+# deployments
+
+Deployment manifests placeholder.

iam/docs/README.md

@@ -0,0 +1,8 @@
+# IAM Demo Structure
+
+This folder is a lightweight example showing how files can be split by responsibility.
+
+- cmd/iam/main.go creates the service.
+- internal/service wires dependencies.
+- internal/auth/jwt holds token logic.
+- internal/repo provides data access interfaces.

iam/internal/api/http/router.go

@@ -0,0 +1,7 @@
+package http
+
+type Router struct{}
+
+func NewRouter() *Router {
+	return &Router{}
+}

iam/internal/api/middleware/logging.go

@@ -0,0 +1,7 @@
+package middleware
+
+type Logger struct{}
+
+func NewLogger() *Logger {
+	return &Logger{}
+}

iam/internal/auth/jwks/jwks.go

@@ -0,0 +1,7 @@
+package jwks
+
+type Store struct{}
+
+func NewStore() *Store {
+	return &Store{}
+}

iam/internal/auth/jwt/manager.go

@@ -0,0 +1,9 @@
+package jwt
+
+type Manager struct {
+	secret string
+}
+
+func NewManager(secret string) *Manager {
+	return &Manager{secret: secret}
+}

iam/internal/auth/keys/keys.go

@@ -0,0 +1,7 @@
+package keys
+
+type Manager struct{}
+
+func NewManager() *Manager {
+	return &Manager{}
+}

iam/internal/auth/refresh/refresh.go

@@ -0,0 +1,7 @@
+package refresh
+
+type Store struct{}
+
+func NewStore() *Store {
+	return &Store{}
+}

iam/internal/auth/revoke/revoke.go

@@ -0,0 +1,7 @@
+package revoke
+
+type Tracker struct{}
+
+func NewTracker() *Tracker {
+	return &Tracker{}
+}

iam/internal/config/config.go

@@ -0,0 +1,9 @@
+package config
+
+type Config struct {
+	Issuer string
+}
+
+func Default() Config {
+	return Config{Issuer: "iam-demo"}
+}

iam/internal/domain/models.go

@@ -0,0 +1,11 @@
+package domain
+
+type User struct {
+	ID   int64
+	Name string
+}
+
+type Role struct {
+	ID   int64
+	Name string
+}

iam/internal/errors/errors.go

@@ -0,0 +1,5 @@
+package errors
+
+import "errors"
+
+var ErrUnauthorized = errors.New("unauthorized")

iam/internal/repo/user_store.go

@@ -0,0 +1,20 @@
+package repo
+
+type User struct {
+	ID   int64
+	Name string
+}
+
+type UserStore interface {
+	FindByID(id int64) (*User, error)
+}
+
+type inMemoryUserStore struct{}
+
+func NewInMemoryUserStore() UserStore {
+	return &inMemoryUserStore{}
+}
+
+func (s *inMemoryUserStore) FindByID(id int64) (*User, error) {
+	return &User{ID: id, Name: "demo"}, nil
+}

iam/internal/service/iam.go

@@ -0,0 +1,18 @@
+package service
+
+import (
+	"todo-vibe-coding/iam/internal/auth/jwt"
+	"todo-vibe-coding/iam/internal/repo"
+)
+
+type IAM struct {
+	tokens *jwt.Manager
+	users  repo.UserStore
+}
+
+func NewIAM() *IAM {
+	return &IAM{
+		tokens: jwt.NewManager("dev-secret"),
+		users:  repo.NewInMemoryUserStore(),
+	}
+}

iam/internal/transport/events.go

@@ -0,0 +1,7 @@
+package transport
+
+type Emitter struct{}
+
+func NewEmitter() *Emitter {
+	return &Emitter{}
+}

iam/internal/util/ids.go

@@ -0,0 +1,5 @@
+package util
+
+func NextID() int64 {
+	return 1
+}

iam/migrations/README.md

@@ -0,0 +1,3 @@
+# migrations
+
+Database migrations placeholder.

iam/pkg/README.md

@@ -0,0 +1,3 @@
+# pkg
+
+Shared packages for reuse across services (placeholder).

iam/scripts/README.md

@@ -0,0 +1,3 @@
+# scripts
+
+Ops scripts placeholder.

iam/test/README.md

@@ -0,0 +1,3 @@
+# test
+
+Integration tests placeholder.