Skip to content

X
xpkg
提交 a414c378 authored 作者: mooncake9527's avatar mooncake9527
浏览文件
操作

jwt

上级 0a34ab95
隐藏空白字符变更
内嵌 并排
正在显示 包含 22 行增加269 行删除
gin/ctxUtils/ctx.go
浏览文件 @ a414c378
......@@ -33,9 +33,9 @@ const (
KeyAppName CtxKey = "appName"
KeyApiStartTime CtxKey = "apiStartTime"
KeyClientIP CtxKey = "clientIP"
KeyUID CtxKey = "userId"
KeyUType CtxKey = "userType"
KeyCompanyID CtxKey = "companyId"
KeyUID CtxKey = "uid"
KeyUType CtxKey = "uType"
KeyCompanyID CtxKey = "companyID"
KeyShopID CtxKey = "shopID"
KeyUName CtxKey = "uname"
KeyToken CtxKey = "token"
......@@ -51,6 +51,20 @@ var (
ErrorGinContextNotFound = errors.New("gin context not found")
)
func Set(c *gin.Context, key CtxKey, val any) {
c.Set(key.String(), val)
}
func Get[T any](c *gin.Context, key CtxKey) (T, bool) {
if val, ok := c.Get(key.String()); ok {
if v, ok1 := val.(T); ok1 {
return v, true
}
}
var a T
return a, false
}
// GetGinCtxTraceID get request id from gin.Context
func GetGinCtxTraceID(c *gin.Context) string {
if v, isExist := c.Get(ContextTraceIDKey.String()); isExist {
......
gin/middleware/auth_test.go deleted 100644 → 0
浏览文件 @ 0a34ab95
package middleware
import (
"context"
"encoding/json"
"errors"
"fmt"
"io"
"net/http"
"testing"
"time"
"github.com/gin-gonic/gin"
"gitlab.wanzhuangkj.com/tush/xpkg/gin/response"
"gitlab.wanzhuangkj.com/tush/xpkg/httpcli"
"gitlab.wanzhuangkj.com/tush/xpkg/jwt"
"gitlab.wanzhuangkj.com/tush/xpkg/utils"
"github.com/stretchr/testify/assert"
)
var (
uid = "100"
name = "tom"
fields = jwt.KV{"id": utils.StrToUint64(uid), "name": name, "age": 10, "foo": "bar"}
errMsg = http.StatusText(http.StatusUnauthorized)
)
func verify(claims *jwt.Claims, tokenTail10 string, c *gin.Context) error {
if claims.UID != uid || claims.Name != name {
return errors.New("verify failed")
}
// token := getToken(claims.UID)
// if token[len(token)-10:] != tokenTail10 { return err }
return nil
}
func verifyCustom(claims *jwt.CustomClaims, tokenTail10 string, c *gin.Context) error {
err := errors.New("verify failed")
//token, fields := getToken(id)
// if token[len(token)-10:] != tokenTail10 { return err }
id, exist := claims.GetUint64("id")
if !exist || id != fields["id"] {
return err
}
name, exist := claims.GetString("name")
if !exist || name != fields["name"] {
return err
}
age, exist := claims.GetInt("age")
if !exist || age != fields["age"] {
return err
}
return nil
}
func runAuthHTTPServer() string {
serverAddr, requestAddr := utils.GetLocalHTTPAddrPairs()
jwt.Init()
gin.SetMode(gin.ReleaseMode)
r := gin.Default()
r.Use(Cors())
getUserByIDHandler := func(c *gin.Context) {
id := c.Param("id")
response.Success(c, id)
}
loginHandler := func(c *gin.Context) {
token, _ := jwt.GenerateToken(uid, name)
fmt.Println("token =", token)
response.Success(c, token)
}
r.GET("/auth/login", loginHandler)
r.GET("/user/:id", Auth(), getUserByIDHandler)
r.GET("/user/toHTTPCode/:id", Auth(WithVerify(verify), WithSwitchHTTPCode()), getUserByIDHandler)
loginCustomHandler := func(c *gin.Context) {
token, _ := jwt.GenerateCustomToken(fields)
fmt.Println("custom token =", token)
response.Success(c, token)
}
r.GET("/auth/customLogin", loginCustomHandler)
r.GET("/user/custom/:id", AuthCustom(verifyCustom), getUserByIDHandler)
r.GET("/user/custom/toHTTPCode/:id", AuthCustom(verifyCustom, WithSwitchHTTPCode()), getUserByIDHandler)
go func() {
err := r.Run(serverAddr)
if err != nil {
panic(err)
}
}()
time.Sleep(time.Millisecond * 200)
return requestAddr
}
func TestAuth(t *testing.T) {
requestAddr := runAuthHTTPServer()
// get token
result := &httpcli.StdResult{}
err := httpcli.Get(context.Background(), result, requestAddr+"/auth/login")
if err != nil {
t.Fatal(err)
}
token := result.Data.(string)
authorization := fmt.Sprintf("Bearer %s", token)
// success
val, err := getUser(requestAddr+"/user/"+uid, authorization)
if err != nil {
t.Fatal(err)
}
assert.Equal(t, val["data"], uid)
// success
val, err = getUser(requestAddr+"/user/toHTTPCode/"+uid, authorization)
if err != nil {
t.Fatal(err)
}
assert.Equal(t, val["data"], uid)
// verify name failed, return 401
name = "notfound"
val, err = getUser(requestAddr+"/user/toHTTPCode/"+uid, authorization)
if err != nil {
t.Fatal(err)
}
assert.Equal(t, val["msg"], errMsg)
// authorization format error, missing token, return 200
val, err = getUser(requestAddr+"/user/"+uid, "Bearer ")
if err != nil {
t.Fatal(err)
}
assert.Equal(t, val["msg"], errMsg)
// authorization format error, missing Bearer, return 200
val, err = getUser(requestAddr+"/user/"+uid, token)
if err != nil {
t.Fatal(err)
}
assert.Equal(t, val["msg"], errMsg)
}
func TestAuthCustom(t *testing.T) {
requestAddr := runAuthHTTPServer()
// get token
result := &httpcli.StdResult{}
err := httpcli.Get(context.Background(), result, requestAddr+"/auth/customLogin")
if err != nil {
t.Fatal(err)
}
token := result.Data.(string)
authorization := fmt.Sprintf("Bearer %s", token)
// success
val, _ := getUserCustom(requestAddr+"/user/custom/"+uid, authorization)
assert.Equal(t, val["data"], uid)
// success
val, _ = getUserCustom(requestAddr+"/user/custom/toHTTPCode/"+uid, authorization)
assert.Equal(t, val["data"], uid)
// verify name error, return 401
fields["name"] = "john"
val, _ = getUser(requestAddr+"/user/custom/toHTTPCode/"+uid, authorization)
assert.Equal(t, val["msg"], errMsg)
// authorization format error, missing token, return 200
val, _ = getUserCustom(requestAddr+"/user/custom/"+uid, "Bearer ")
assert.Equal(t, val["msg"], errMsg)
// authorization format error, missing Bearer, return 200
val, _ = getUserCustom(requestAddr+"/user/custom/"+uid, token)
assert.Equal(t, val["msg"], errMsg)
}
func getUser(url string, authorization string) (gin.H, error) {
var result = gin.H{}
client := &http.Client{}
request, err := http.NewRequest("GET", url, nil)
request.Header.Add("Authorization", authorization)
if err != nil {
return result, err
}
resp, err := client.Do(request)
if err != nil {
return result, err
}
defer resp.Body.Close()
data, err := io.ReadAll(resp.Body)
if err != nil {
return result, err
}
err = json.Unmarshal(data, &result)
return result, err
}
func getUserCustom(url string, authorization string) (gin.H, error) {
var result = gin.H{}
client := &http.Client{}
request, err := http.NewRequest("GET", url, nil)
request.Header.Add("Authorization", authorization)
if err != nil {
return result, err
}
resp, err := client.Do(request)
if err != nil {
return result, err
}
defer resp.Body.Close()
data, err := io.ReadAll(resp.Body)
if err != nil {
return result, err
}
err = json.Unmarshal(data, &result)
return result, err
}
httpcli/httpcli_test.go deleted 100644 → 0
浏览文件 @ 0a34ab95
package httpcli
import (
"context"
"testing"
)
func TestRequest_SetBody(t *testing.T) {
ctx := context.Background()
req := New()
ret := make(map[string]any)
if err := req.SetURL("http://baidu.com").
SetParams(KV{"a": "b"}).
GET(ctx).
BindJSON(&ret).
Err(); err != nil {
t.Error(err.Error())
}
}
jwt/jwt.go
浏览文件 @ a414c378
......@@ -165,18 +165,17 @@ func ParseCustomToken(tokenString string) (*CustomClaims, error) {
return nil, errInit
}
token, err := jwt.ParseWithClaims(tokenString, &CustomClaims{}, func(token *jwt.Token) (interface{}, error) {
cc := &CustomClaims{}
token, err := jwt.ParseWithClaims(tokenString, cc, func(token *jwt.Token) (interface{}, error) {
return opt.signingKey, nil
})
if err != nil {
return nil, err
}
if claims, ok := token.Claims.(*CustomClaims); ok && token.Valid {
return claims, nil
if !token.Valid {
return nil, errSignature
}
return nil, errSignature
return cc, nil
}
// RefreshCustomToken refresh custom token
......
Markdown 格式
0%
您添加了 0 到此讨论。请谨慎行事。
请先完成此评论的编辑!
注册 或者 后发表评论