hace 3 meses · 77859866da
--- a/auth/authentication.go
+++ b/auth/authentication.go
@@ -0,0 +1,55 @@
 
				
				+package auth
			
 
				
				+
			
 
				
				+import (
			
 
				
				+	"net/http"
			
 
				
				+	"strings"
			
 
				
				+
			
 
				
				+	"github.com/gin-gonic/gin"
			
 
				
				+
			
 
				
				+	"git.x2erp.com/qdy/go-base/config"
			
 
				
				+)
			
 
				
				+
			
 
				
				+func AuthMiddleware() gin.HandlerFunc {
			
 
				
				+	return func(c *gin.Context) {
			
 
				
				+		// 从 Header 中获取 token
			
 
				
				+		authHeader := c.GetHeader("Authorization")
			
 
				
				+		if authHeader == "" {
			
 
				
				+			c.JSON(http.StatusUnauthorized, gin.H{
			
 
				
				+				"success": false,
			
 
				
				+				"error":   "Authorization header is required",
			
 
				
				+			})
			
 
				
				+			c.Abort()
			
 
				
				+			return
			
 
				
				+		}
			
 
				
				+
			
 
				
				+		// 检查 Bearer token 格式
			
 
				
				+		parts := strings.Split(authHeader, " ")
			
 
				
				+		if len(parts) != 2 || parts[0] != "Bearer" {
			
 
				
				+			c.JSON(http.StatusUnauthorized, gin.H{
			
 
				
				+				"success": false,
			
 
				
				+				"error":   "Authorization header format must be Bearer {token}",
			
 
				
				+			})
			
 
				
				+			c.Abort()
			
 
				
				+			return
			
 
				
				+		}
			
 
				
				+
			
 
				
				+		tokenString := parts[1]
			
 
				
				+		configTokenString := config.GetConfig().GetAuth().Token
			
 
				
				+
			
 
				
				+		// 比较 token 是否相等
			
 
				
				+		if tokenString != configTokenString {
			
 
				
				+			c.JSON(http.StatusUnauthorized, gin.H{
			
 
				
				+				"success": false,
			
 
				
				+				"error":   "Invalid token",
			
 
				
				+			})
			
 
				
				+			c.Abort()
			
 
				
				+			return
			
 
				
				+		}
			
 
				
				+
			
 
				
				+		// Token 验证通过，可以存储一些上下文信息
			
 
				
				+		c.Set("authenticated", true)
			
 
				
				+		c.Set("authType", "token")
			
 
				
				+
			
 
				
				+		c.Next()
			
 
				
				+	}
			
 
				
				+}
			
--- a/main.go
+++ b/main.go
@@ -10,6 +10,7 @@ import (
 
				
				 
			
 
				
				 	"git.x2erp.com/qdy/go-base/types"
			
 
				
				 	"git.x2erp.com/qdy/go-db/factory"
			
 
				
				+	"git.x2erp.com/qdy/go-service-agent/auth"
			
 
				
				 	"git.x2erp.com/qdy/go-service-agent/routes"
			
 
				
				 	"github.com/gin-gonic/gin"
			
 
				
				 )
			
@@ -77,16 +78,13 @@ func main() {
 
				
				 
			
 
				
				 // 启动HTTP服务器
			
 
				
				 func startHTTPServer() {
			
 
				
				+	//建立路由
			
 
				
				 	router := gin.Default()
			
 
				
				 
			
 
				
				-	// 添加中间件 重复注册
			
 
				
				-	//router.Use(gin.Logger())
			
 
				
				-	//router.Use(gin.Recovery())
			
 
				
				-
			
 
				
				 	// 核心路由
			
 
				
				 	router.GET("/api/health", routes.HealthHandler(db, "oracle"))
			
 
				
				-	router.POST("/api/query", withQueryRequest(routes.QueryHandler(db)))
			
 
				
				-	router.POST("/api/query/csv", withQueryRequest(routes.QueryHandlerCSV(db)))
			
 
				
				+	router.POST("/api/query", auth.AuthMiddleware(), withQueryRequest(routes.QueryHandler(db)))
			
 
				
				+	router.POST("/api/query/csv", auth.AuthMiddleware(), withQueryRequest(routes.QueryHandlerCSV(db)))
			
 
				
				 	router.GET("/api/info", routes.InfoHandler(dbFactory))
			
 
				
				 
			
 
				
				 	config := dbFactory.GetConfig()