bsm-sdk
/
core
7
0
Fork 0
Code Issues Pull Requests Packages Projects Releases 101 Wiki Activity

fix bug

This commit is contained in:
yanweidong 2025-10-13 13:10:01 +08:00
parent 7e91109bce
commit 8aafcbd91c
2 changed files with 22 additions and 14 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
crypto/token/jwt.go
View File

@ -77,19 +77,19 @@ func (t *tokenJwt) IsExpired(tokenstring string) (bool, error) {
// 分割JWT的三个部分 // 分割JWT的三个部分
parts := strings.Split(tokenstring, ".") parts := strings.Split(tokenstring, ".")
if len(parts) != 3 { if len(parts) != 3 {
return false, errcode.ErrTokenDataInvalid return true, errcode.ErrTokenDataInvalid
} }
// 解码Payload部分 // 解码Payload部分
payload, err := base64.RawURLEncoding.DecodeString(parts[1]) payload, err := base64.RawURLEncoding.DecodeString(parts[1])
if err != nil { if err != nil {
return false, errcode.String(errcode.ErrTokenBase64Decode, err.Error()) return true, errcode.String(errcode.ErrTokenBase64Decode, err.Error())
} }
// 解析JSON // 解析JSON
var claims jwt.RegisteredClaims var claims jwt.RegisteredClaims
if err := json.Unmarshal(payload, &claims); err != nil { if err := json.Unmarshal(payload, &claims); err != nil {
return false, errcode.String(errcode.ErrTokenJsonDecode, err.Error()) return true, errcode.String(errcode.ErrTokenJsonDecode, err.Error())
} }
// 检查过期时间 // 检查过期时间

30
middleware/jwt.go
View File

@ -6,9 +6,9 @@ import (
"encoding/json" "encoding/json"
"log" "log"
"net/http" "net/http"
"time"
"git.apinb.com/bsm-sdk/core/crypto/encipher" "git.apinb.com/bsm-sdk/core/crypto/token"
"git.apinb.com/bsm-sdk/core/env"
"git.apinb.com/bsm-sdk/core/errcode" "git.apinb.com/bsm-sdk/core/errcode"
"git.apinb.com/bsm-sdk/core/types" "git.apinb.com/bsm-sdk/core/types"
"github.com/gin-gonic/gin" "github.com/gin-gonic/gin"
@ -27,19 +27,18 @@ func JwtAuth(time_verify bool) gin.HandlerFunc {
c.Abort() c.Abort()
return return
} }
// 提取Token
claims, err := encipher.ParseTokenAes(authHeader)
if err != nil || claims == nil {
log.Printf("提取token异常:%v\n", err)
c.JSON(http.StatusUnauthorized, gin.H{"error": "Token is required"})
c.Abort()
return
}
// 检测是否需要验证token时间 // 检测是否需要验证token时间
if time_verify { if time_verify {
// 判断时间claims.ExpiresAt // 判断时间claims.ExpiresAt
if time.Now().Unix() > claims.ExpiresAt { isExpire, err := token.New(env.Runtime.JwtSecretKey).IsExpired(authHeader)
if err != nil {
log.Println("token解析异常:", err)
c.JSON(http.StatusUnauthorized, gin.H{"error": "Token is required"})
c.Abort()
return
}
if isExpire {
log.Println("token过期请重新获取:", "Token has expired") log.Println("token过期请重新获取:", "Token has expired")
c.JSON(http.StatusUnauthorized, gin.H{"error": "Token has expired"}) c.JSON(http.StatusUnauthorized, gin.H{"error": "Token has expired"})
c.Abort() c.Abort()
@ -47,6 +46,15 @@ func JwtAuth(time_verify bool) gin.HandlerFunc {
} }
} }
// 提取Token
claims, err := token.New(env.Runtime.JwtSecretKey).ParseJwt(authHeader)
if err != nil || claims == nil {
log.Printf("提取token异常:%v\n", err)
c.JSON(http.StatusUnauthorized, gin.H{"error": "Token is required"})
c.Abort()
return
}
// 将解析后的 Token 存储到上下文中 // 将解析后的 Token 存储到上下文中
c.Set("Auth", claims) c.Set("Auth", claims)
// 如果 Token 有效,继续处理请求 // 如果 Token 有效,继续处理请求