Leaf/framework_v2
5
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

改进

Browse Source
This commit is contained in:
Twilight 2024-07-14 22:16:03 +08:00
parent 57e57e5028
commit 67f2e24c0a
2 changed files with 14 additions and 19 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

9
consts/auth.go
View File

@ -12,8 +12,9 @@ const (
) )
var ( var (
ErrNotValidToken = errors.New("无效的 JWT 令牌。") ErrNotValidToken = errors.New("无效的 JWT 令牌")
ErrJWTFormatError = errors.New("JWT 格式错误。") ErrJWTFormatError = errors.New("JWT 格式错误")
ErrNotBearerType = errors.New("不是 Bearer 类型。") ErrNotBearerType = errors.New("不是 Bearer 类型")
ErrEmptyResponse = errors.New("我们的服务器返回了空请求,可能某些环节出了问题。") ErrEmptyResponse = errors.New("我们的服务器返回了空请求,可能某些环节出了问题")
ErrTokenError = errors.New("token 类型错误")
) )

24
internal/logic/auth.go
View File

@ -1,7 +1,6 @@
package logic package logic
import ( import (
"errors"
"framework_v2/consts" "framework_v2/consts"
"framework_v2/internal/providers" "framework_v2/internal/providers"
"framework_v2/internal/providers/jwks" "framework_v2/internal/providers/jwks"
@ -16,13 +15,8 @@ type AuthLogic struct {
} }
var ( var (
ErrNotValidToken = errors.New("无效的 JWT 令牌") config = *providers.MustGet[providers.GlobalConfig]()
ErrJWTFormatError = errors.New("JWT 格式错误") logger = *providers.MustGet[zap.Logger]()
ErrNotBearerType = errors.New("不是 Bearer 类型")
ErrEmptyResponse = errors.New("我们的服务器返回了空请求,可能某些环节出了问题")
ErrTokenError = errors.New("token 类型错误")
config = *providers.MustGet[providers.GlobalConfig]()
logger = *providers.MustGet[zap.Logger]()
) )
func NewAuthLogic() *AuthLogic { func NewAuthLogic() *AuthLogic {
@ -41,35 +35,35 @@ func (a *AuthLogic) GinMiddlewareAuth(tokenType models.JWTTokenTypes, c *gin.Con
authorization := c.Request.Header.Get(consts.AuthHeader) authorization := c.Request.Header.Get(consts.AuthHeader)
if authorization == "" { if authorization == "" {
return nil, ErrJWTFormatError return nil, consts.ErrJWTFormatError
} }
authSplit := strings.Split(authorization, " ") authSplit := strings.Split(authorization, " ")
if len(authSplit) != 2 { if len(authSplit) != 2 {
return nil, ErrJWTFormatError return nil, consts.ErrJWTFormatError
} }
if authSplit[0] != consts.AuthPrefix { if authSplit[0] != consts.AuthPrefix {
return nil, ErrNotBearerType return nil, consts.ErrNotBearerType
} }
token, err := jwks.ParseJWT(authSplit[1]) token, err := jwks.ParseJWT(authSplit[1])
if err != nil { if err != nil {
return nil, ErrNotValidToken return nil, consts.ErrNotValidToken
} }
sub, err = token.Claims.GetSubject() sub, err = token.Claims.GetSubject()
if err != nil { if err != nil {
return nil, ErrNotValidToken return nil, consts.ErrNotValidToken
} }
// 如果 token.Header 中没有 typ // 如果 token.Header 中没有 typ
if token.Header["typ"] == "" { if token.Header["typ"] == "" {
return nil, ErrEmptyResponse return nil, consts.ErrEmptyResponse
} }
// 验证 token 类型 // 验证 token 类型
if tokenType != "" && tokenType.String() != token.Header["typ"] { if tokenType != "" && tokenType.String() != token.Header["typ"] {
return nil, ErrTokenError return nil, consts.ErrTokenError
} }
jwtIdToken.Valid = true jwtIdToken.Valid = true