leaf-library-3/internal/services/auth/auth.go

package auth

import (
	"context"
	"leafdev.top/Leaf/leaf-library-3/internal/constants"
	"leafdev.top/Leaf/leaf-library-3/internal/dto/user"
	errs2 "leafdev.top/Leaf/leaf-library-3/internal/errs"

	"github.com/gofiber/fiber/v2"
	"github.com/mitchellh/mapstructure"
)

func (a *Service) AuthFromToken(tokenType constants.JwtTokenTypes, token string) (*user.User, error) {
	if a.config.Debug.Enabled {
		return a.parseUserJWT(tokenType, "")
	}

	return a.parseUserJWT(tokenType, token)
}

func (a *Service) GetUserFromIdToken(idToken string) (*user.User, error) {
	return a.parseUserJWT(constants.JwtTokenTypeIDToken, idToken)
}

func (a *Service) GetUser(ctx *fiber.Ctx) *user.User {
	userCtx := ctx.Locals(constants.AuthMiddlewareKey)

	u, ok := userCtx.(*user.User)
	u.ID = u.Token.Sub

	if !ok {
		panic("User context is not valid")
	}

	return u
}

func (a *Service) GetCtx(ctx context.Context) *user.User {
	userCtx := ctx.Value(constants.AuthMiddlewareKey)

	u, ok := userCtx.(*user.User)
	u.ID = u.Token.Sub

	if !ok {
		panic("User context is not valid")
	}

	return u
}

func (a *Service) GetUserSafe(ctx *fiber.Ctx) (*user.User, bool) {
	userCtx := ctx.Locals(constants.AuthMiddlewareKey)

	u, ok := userCtx.(*user.User)
	u.ID = u.Token.Sub

	return u, ok
}

func (a *Service) GetCtxSafe(ctx context.Context) (*user.User, bool) {
	userCtx := ctx.Value(constants.AuthMiddlewareKey)

	u, ok := userCtx.(*user.User)
	u.ID = u.Token.Sub

	return u, ok
}

func (a *Service) SetUser(ctx context.Context, user *user.User) context.Context {
	return context.WithValue(ctx, constants.AuthMiddlewareKey, user)
}

func (a *Service) parseUserJWT(tokenType constants.JwtTokenTypes, jwtToken string) (*user.User, error) {
	var sub = user.ID(user.AnonymousUser)
	var jwtIdToken = new(user.User)

	if a.config.Debug.Enabled {
		jwtIdToken.Token.Sub = sub
		jwtIdToken.Valid = true
		return jwtIdToken, nil
	} else {
		token, err := a.jwks.ParseJWT(jwtToken)
		if err != nil {
			return nil, errs2.NotValidToken
		}

		subStr, err := token.Claims.GetSubject()
		if err != nil {
			return nil, errs2.NotValidToken
		}

		sub = user.ID(subStr)

		// 如果 token.Header 中没有 typ
		if token.Header["typ"] == "" {
			return nil, errs2.EmptyResponse
		}

		// 验证 token 类型
		if tokenType != "" && tokenType.String() != token.Header["typ"] {
			return nil, errs2.TokenError
		}

		jwtIdToken.Valid = true

		err = mapstructure.Decode(token.Claims, &jwtIdToken.Token)
		if err != nil {
			a.logger.Logger.Error("Failed to map token claims to JwtIDToken struct.\nError: " + err.Error())
			return nil, nil
		}

		// 手动指定，因为 mapstructure 无法转换 UserID 类型
		jwtIdToken.Token.Sub = sub
	}

	return jwtIdToken, nil
}
init 2024-12-05 17:44:29 +00:00			`package auth`

			`import (`
			`"context"`
update 2024-12-10 10:22:14 +00:00			`"leafdev.top/Leaf/leaf-library-3/internal/constants"`
			`"leafdev.top/Leaf/leaf-library-3/internal/dto/user"`
			`errs2 "leafdev.top/Leaf/leaf-library-3/internal/errs"`
update 2024-12-06 15:38:22 +00:00
init 2024-12-05 17:44:29 +00:00			`"github.com/gofiber/fiber/v2"`
			`"github.com/mitchellh/mapstructure"`
			`)`

update 2024-12-06 15:38:22 +00:00			`func (a Service) AuthFromToken(tokenType constants.JwtTokenTypes, token string) (user.User, error) {`
init 2024-12-05 17:44:29 +00:00			`if a.config.Debug.Enabled {`
			`return a.parseUserJWT(tokenType, "")`
			`}`

			`return a.parseUserJWT(tokenType, token)`
			`}`

			`func (a Service) GetUserFromIdToken(idToken string) (user.User, error) {`
update 2024-12-06 15:38:22 +00:00			`return a.parseUserJWT(constants.JwtTokenTypeIDToken, idToken)`
init 2024-12-05 17:44:29 +00:00			`}`

			`func (a Service) GetUser(ctx fiber.Ctx) *user.User {`
update 2024-12-06 15:38:22 +00:00			`userCtx := ctx.Locals(constants.AuthMiddlewareKey)`
init 2024-12-05 17:44:29 +00:00
			`u, ok := userCtx.(*user.User)`
update 2024-12-06 18:44:32 +00:00			`u.ID = u.Token.Sub`
init 2024-12-05 17:44:29 +00:00
			`if !ok {`
			`panic("User context is not valid")`
			`}`

			`return u`
			`}`

			`func (a Service) GetCtx(ctx context.Context) user.User {`
update 2024-12-06 15:38:22 +00:00			`userCtx := ctx.Value(constants.AuthMiddlewareKey)`
init 2024-12-05 17:44:29 +00:00
			`u, ok := userCtx.(*user.User)`
update 2024-12-06 18:44:32 +00:00			`u.ID = u.Token.Sub`
init 2024-12-05 17:44:29 +00:00
			`if !ok {`
			`panic("User context is not valid")`
			`}`

			`return u`
			`}`

			`func (a Service) GetUserSafe(ctx fiber.Ctx) (*user.User, bool) {`
update 2024-12-06 15:38:22 +00:00			`userCtx := ctx.Locals(constants.AuthMiddlewareKey)`
init 2024-12-05 17:44:29 +00:00
			`u, ok := userCtx.(*user.User)`
update 2024-12-06 18:44:32 +00:00			`u.ID = u.Token.Sub`
init 2024-12-05 17:44:29 +00:00
			`return u, ok`
			`}`

			`func (a Service) GetCtxSafe(ctx context.Context) (user.User, bool) {`
update 2024-12-06 15:38:22 +00:00			`userCtx := ctx.Value(constants.AuthMiddlewareKey)`
init 2024-12-05 17:44:29 +00:00
			`u, ok := userCtx.(*user.User)`
update 2024-12-06 18:44:32 +00:00			`u.ID = u.Token.Sub`
init 2024-12-05 17:44:29 +00:00
			`return u, ok`
			`}`

			`func (a Service) SetUser(ctx context.Context, user user.User) context.Context {`
update 2024-12-06 15:38:22 +00:00			`return context.WithValue(ctx, constants.AuthMiddlewareKey, user)`
init 2024-12-05 17:44:29 +00:00			`}`

update 2024-12-06 15:38:22 +00:00			`func (a Service) parseUserJWT(tokenType constants.JwtTokenTypes, jwtToken string) (user.User, error) {`
update 2024-12-10 10:35:45 +00:00			`var sub = user.ID(user.AnonymousUser)`
init 2024-12-05 17:44:29 +00:00			`var jwtIdToken = new(user.User)`

			`if a.config.Debug.Enabled {`
			`jwtIdToken.Token.Sub = sub`
			`jwtIdToken.Valid = true`
			`return jwtIdToken, nil`
			`} else {`
			`token, err := a.jwks.ParseJWT(jwtToken)`
			`if err != nil {`
update 2024-12-10 10:22:14 +00:00			`return nil, errs2.NotValidToken`
init 2024-12-05 17:44:29 +00:00			`}`

			`subStr, err := token.Claims.GetSubject()`
			`if err != nil {`
update 2024-12-10 10:22:14 +00:00			`return nil, errs2.NotValidToken`
init 2024-12-05 17:44:29 +00:00			`}`

update 2024-12-06 18:44:32 +00:00			`sub = user.ID(subStr)`
init 2024-12-05 17:44:29 +00:00
			`// 如果 token.Header 中没有 typ`
			`if token.Header["typ"] == "" {`
update 2024-12-10 10:22:14 +00:00			`return nil, errs2.EmptyResponse`
init 2024-12-05 17:44:29 +00:00			`}`

			`// 验证 token 类型`
			`if tokenType != "" && tokenType.String() != token.Header["typ"] {`
update 2024-12-10 10:22:14 +00:00			`return nil, errs2.TokenError`
init 2024-12-05 17:44:29 +00:00			`}`

			`jwtIdToken.Valid = true`

			`err = mapstructure.Decode(token.Claims, &jwtIdToken.Token)`
			`if err != nil {`
			`a.logger.Logger.Error("Failed to map token claims to JwtIDToken struct.\nError: " + err.Error())`
			`return nil, nil`
			`}`

			`// 手动指定，因为 mapstructure 无法转换 UserID 类型`
			`jwtIdToken.Token.Sub = sub`
			`}`

			`return jwtIdToken, nil`
			`}`