qdy
/
go-base
İzle 2
Yıldızla 0
Çatalla 0
Kod Sorunlar 0 Değişiklik İstekleri 0 Sürümler 62 Wiki Aktivite
Açıklama Yok
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
48 İşlemeler
1 Dal
Ağaç: f2dfcc15af
Dallar Biçim İmleri
${ item.name }
Branş ${ searchTerm } oluştur
'f2dfcc15af'den
${ noResults }
go-base/authbase/token_auth_middleware.go

token_auth_middleware.go 1.7KB
Geçmiş Ham

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172 
  1. package authbase

  2. 

  3. import (

  4. 	"fmt"

  5. 	"net/http"

  6. 	"strings"

  7. 	"time"

  8. 

  9. 	"git.x2erp.com/qdy/go-base/config"

  10. 	"git.x2erp.com/qdy/go-base/ctx"

  11. 	"git.x2erp.com/qdy/go-base/util/jwt"

  12. )

  13. 

  14. // TokenAuth 简化的Bearer认证中间件

  15. func TokenAuth(next http.Handler) http.Handler {

  16. 	return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {

  17. 		// 1. 检查认证头

  18. 		authHeader := r.Header.Get("Authorization")

  19. 		if authHeader == "" {

  20. 			unauthorized(w, "缺少认证信息")

  21. 			return

  22. 		}

  23. 

  24. 		// 2. 检查Basic格式

  25. 		if !strings.HasPrefix(authHeader, "Bearer ") {

  26. 			unauthorized(w, "认证格式错误,请使用Bearer认证")

  27. 			return

  28. 		}

  29. 

  30. 		// 3. 解码凭证

  31. 		token := strings.TrimPrefix(authHeader, "Bearer ")

  32. 

  33. 		// 验证JWT令牌

  34. 		claims, err := validToken(token)

  35. 		if err != nil {

  36. 

  37. 			unauthorized(w, fmt.Sprintf("Invalid token: %v", err))

  38. 		}

  39. 

  40. 		// 6. 创建请求上下文

  41. 		traceID := r.Header.Get("X-Trace-ID")

  42. 		if traceID == "" {

  43. 			// 生成简单的时间戳追踪ID

  44. 			traceID = time.Now().Format("20060102150405.000")

  45. 		}

  46. 

  47. 		cfg := config.GetConfig()

  48. 

  49. 		requestCtx := &ctx.RequestContext{

  50. 			ServiceName:  cfg.GetServiceConfig().ServiceName,

  51. 			InstanceName: cfg.GetServiceConfig().InstanceName,

  52. 			TraceID:      traceID,

  53. 			TenantID:     claims.TenantID,

  54. 			UserID:       claims.UserID,

  55. 			Username:     claims.Username,

  56. 			ProjectID:    claims.ProjectID,

  57. 		}

  58. 

  59. 		// 7. 保存到请求

  60. 		r = ctx.SaveContext(r, requestCtx)

  61. 

  62. 		// 8. 继续处理

  63. 		next.ServeHTTP(w, r)

  64. 	})

  65. }

  66. 

  67. // 验证令牌(需要根据实际项目实现)

  68. func validToken(token string) (*jwt.Claims, error) {

  69. 	secretKey := config.GetServiceConfig().SecretKey

  70. 	//logger.Debug("secretKey:%s", secretKey)

  71. 	return jwt.ParseToken(token, secretKey)

  72. }