首頁 探索 說明
註冊 登入
huangguangrong
/
slow_wild_gateway
1
0
複刻 0
Files 問題管理 0 合併請求 0 Wiki
目錄樹: 5580261726
分支列表 標籤列表
slow_wild_gatew...
/
apps
/
internal
/
middleware
/
optionaljwtmiddleware.go

optionaljwtmiddleware.go 1.7 KB
文件歷史 原始文件

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970 
  1. package middleware
    2. 

  2. 

  3. import (
    4. 

  4. 	"context"
    5. 

  5. 	"errors"
    6. 

  6. 	"fmt"
    7. 

  7. 	"net/http"
    8. 

  8. 	"strings"
    9. 

  9. 

  10. 	"github.com/golang-jwt/jwt/v4"
    11. 

  11. )
    12. 

  12. 

  13. const (
    14. 

  14. 	jwtAudience    = "aud"
    15. 

  15. 	jwtExpire      = "exp"
    16. 

  16. 	jwtId          = "jti"
    17. 

  17. 	jwtIssueAt     = "iat"
    18. 

  18. 	jwtIssuer      = "iss"
    19. 

  19. 	jwtNotBefore   = "nbf"
    20. 

  20. 	jwtSubject     = "sub"
    21. 

  21. 	noDetailReason = "no detail reason"
    22. 

  22. )
    23. 

  23. 

  24. type OptionalJwtMiddleware struct {
    25. 

  25. 	Secret string
    26. 

  26. }
    27. 

  27. 

  28. func NewOptionalJwtMiddleware(secret string) *OptionalJwtMiddleware {
    29. 

  29. 	return &OptionalJwtMiddleware{
    30. 

  30. 		Secret: secret,
    31. 

  31. 	}
    32. 

  32. }
    33. 

  33. 

  34. func (m *OptionalJwtMiddleware) Handle(next http.HandlerFunc) http.HandlerFunc {
    35. 

  35. 	return func(w http.ResponseWriter, r *http.Request) {
    36. 

  36. 		// 尝试从请求头中获取 JWT 令牌
    37. 

  37. 		tokenString := r.Header.Get("Authorization")
    38. 

  38. 		ctx := r.Context()
    39. 

  39. 		if len(tokenString) > 0 {
    40. 

  40. 			// 如果提供了 JWT 令牌,则验证它
    41. 

  41. 			tokenValue := strings.Split(tokenString, " ")
    42. 

  42. 

  43. 			if len(tokenValue) == 2 {
    44. 

  44. 				parsedToken, err := jwt.Parse(tokenValue[1], func(token *jwt.Token) (interface{}, error) {
    45. 

  45. 					if _, ok := token.Method.(*jwt.SigningMethodHMAC); ok {
    46. 

  46. 						return []byte(m.Secret), nil
    47. 

  47. 					}
    48. 

  48. 					return nil, errors.New("failed to parse token")
    49. 

  49. 				})
    50. 

  50. 

  51. 				if err == nil {
    52. 

  52. 					if claims, ok := parsedToken.Claims.(jwt.MapClaims); ok && parsedToken.Valid {
    53. 

  53. 						// 将解析到的 claims 添加到请求上下文中
    54. 

  54. 						for k, v := range claims {
    55. 

  55. 							switch k {
    56. 

  56. 							case jwtAudience, jwtExpire, jwtId, jwtIssueAt, jwtIssuer, jwtNotBefore, jwtSubject:
    57. 

  57. 								// ignore the standard claims
    58. 

  58. 							default:
    59. 

  59. 								ctx = context.WithValue(ctx, k, v)
    60. 

  60. 							}
    61. 

  61. 						}
    62. 

  62. 						fmt.Println("vvvvvvvv: ")
    63. 

  63. 					}
    64. 

  64. 				}
    65. 

  65. 			}
    66. 

  66. 		}
    67. 

  67. 		newReq := r.WithContext(ctx)
    68. 

  68. 		next(w, newReq)
    69. 

  69. 	}
    70. 

  70. }
    71.