Home Explore Help
Register Sign In
huangguangrong
/
slow_wild_gateway
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: 42df31eac7
Branches Tags
slow_wild_gatew...
/
apps
/
internal
/
middleware
/
optionaljwtmiddleware.go

optionaljwtmiddleware.go 1.6 KB
History Raw

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768 
  1. package middleware
    2. 

  2. 

  3. import (
    4. 

  4. 	"context"
    5. 

  5. 	"errors"
    6. 

  6. 	"net/http"
    7. 

  7. 	"strings"
    8. 

  8. 

  9. 	"github.com/golang-jwt/jwt/v4"
    10. 

  10. )
    11. 

  11. 

  12. const (
    13. 

  13. 	jwtAudience    = "aud"
    14. 

  14. 	jwtExpire      = "exp"
    15. 

  15. 	jwtId          = "jti"
    16. 

  16. 	jwtIssueAt     = "iat"
    17. 

  17. 	jwtIssuer      = "iss"
    18. 

  18. 	jwtNotBefore   = "nbf"
    19. 

  19. 	jwtSubject     = "sub"
    20. 

  20. 	noDetailReason = "no detail reason"
    21. 

  21. )
    22. 

  22. 

  23. type OptionalJwtMiddleware struct {
    24. 

  24. 	Secret string
    25. 

  25. }
    26. 

  26. 

  27. func NewOptionalJwtMiddleware(secret string) *OptionalJwtMiddleware {
    28. 

  28. 	return &OptionalJwtMiddleware{
    29. 

  29. 		Secret: secret,
    30. 

  30. 	}
    31. 

  31. }
    32. 

  32. 

  33. func (m *OptionalJwtMiddleware) Handle(next http.HandlerFunc) http.HandlerFunc {
    34. 

  34. 	return func(w http.ResponseWriter, r *http.Request) {
    35. 

  35. 		// 尝试从请求头中获取 JWT 令牌
    36. 

  36. 		tokenString := r.Header.Get("Authorization")
    37. 

  37. 		ctx := r.Context()
    38. 

  38. 		if len(tokenString) > 0 {
    39. 

  39. 			// 如果提供了 JWT 令牌,则验证它
    40. 

  40. 			tokenValue := strings.Split(tokenString, " ")
    41. 

  41. 

  42. 			if len(tokenValue) == 2 {
    43. 

  43. 				parsedToken, err := jwt.Parse(tokenValue[1], func(token *jwt.Token) (interface{}, error) {
    44. 

  44. 					if _, ok := token.Method.(*jwt.SigningMethodHMAC); ok {
    45. 

  45. 						return []byte(m.Secret), nil
    46. 

  46. 					}
    47. 

  47. 					return nil, errors.New("failed to parse token")
    48. 

  48. 				})
    49. 

  49. 

  50. 				if err == nil {
    51. 

  51. 					if claims, ok := parsedToken.Claims.(jwt.MapClaims); ok && parsedToken.Valid {
    52. 

  52. 						// 将解析到的 claims 添加到请求上下文中
    53. 

  53. 						for k, v := range claims {
    54. 

  54. 							switch k {
    55. 

  55. 							case jwtAudience, jwtExpire, jwtId, jwtIssueAt, jwtIssuer, jwtNotBefore, jwtSubject:
    56. 

  56. 								// ignore the standard claims
    57. 

  57. 							default:
    58. 

  58. 								ctx = context.WithValue(ctx, k, v)
    59. 

  59. 							}
    60. 

  60. 						}
    61. 

  61. 					}
    62. 

  62. 				}
    63. 

  63. 			}
    64. 

  64. 		}
    65. 

  65. 		newReq := r.WithContext(ctx)
    66. 

  66. 		next(w, newReq)
    67. 

  67. 	}
    68. 

  68. }
    69.