fusen/fusenapi
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

fix

Browse Source
This commit is contained in:
eson 2023-08-28 16:58:53 +08:00
parent 9aa51c221c
commit 13663f6c40
1 changed files with 43 additions and 49 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

92
utils/basic/request_parse.go
View File

@ -4,7 +4,6 @@ import (
"errors" "errors"
"fmt" "fmt"
"log" "log"
"strconv"
"fusenapi/shared" "fusenapi/shared"
"fusenapi/utils/auth" "fusenapi/utils/auth"
@ -58,63 +57,58 @@ func ParseJwtToken(r *http.Request, svcCtx any) (*auth.UserInfo, error) {
var userinfo *auth.UserInfo var userinfo *auth.UserInfo
var err error var err error
// log.Println(io.ReadAll(r.Body)) // log.Println(io.ReadAll(r.Body))
token := r.Header.Get("Authorization") // token := r.Header.Get("Authorization")
userId, err := strconv.ParseInt(token, 10, 64) // userId, err := strconv.ParseInt(token, 10, 64)
if err == nil { var secret uint64 = 0
userinfo = &auth.UserInfo{ token, info, err := auth.ParseJwtTokenHeader[auth.UserInfo](r) //解析Token头, 和payload信息
UserId: userId, if err != nil {
logx.Error(err)
return nil, err
}
if info != nil {
if info.IsUser() {
// us, err := state.GetUserState(info.UserId) //获取缓存的用户状态
reflect.ValueOf(svcCtx)
ctxValue := reflect.ValueOf(svcCtx).FieldByName("MysqlConn")
gdb := ctxValue.Interface().(*gorm.DB)
us, err := shared.GetUserState(info.UserId, gdb)
if err != nil {
log.Println(info)
logx.Error(err)
return nil, err
}
secret = us.PwdHash // 获取密码的hash做jwt, 便于重置密码的使用
} else if info.IsGuest() {
secret = auth.DefaultJwtSecret //获取默认的hash
} }
} else { }
var secret uint64 = 0
token, info, err := auth.ParseJwtTokenHeader[auth.UserInfo](r) //解析Token头, 和payload信息 if secret != 0 {
claims, err := auth.ParseJwtTokenUint64Secret(token, secret)
// 如果解析JWT token出错,则返回未授权的JSON响应并记录错误消息
if err != nil { if err != nil {
logx.Error(err) log.Println(token)
if err != nil {
return nil, fmt.Errorf("unauthorized")
}
return nil, err return nil, err
} }
if info != nil { if claims != nil {
if info.IsUser() { // 从token中获取对应的用户信息
// us, err := state.GetUserState(info.UserId) //获取缓存的用户状态 userinfo, err = auth.GetUserInfoFormMapClaims(claims)
reflect.ValueOf(svcCtx) // 如果获取用户信息出错,则返回未授权的JSON响应并记录错误消息
ctxValue := reflect.ValueOf(svcCtx).FieldByName("MysqlConn")
gdb := ctxValue.Interface().(*gorm.DB)
us, err := shared.GetUserState(info.UserId, gdb)
if err != nil {
logx.Error(err)
return nil, err
}
secret = us.PwdHash // 获取密码的hash做jwt, 便于重置密码的使用
} else if info.IsGuest() {
secret = auth.DefaultJwtSecret //获取默认的hash
}
}
if secret != 0 {
log.Println("secret != 0", info)
claims, err := auth.ParseJwtTokenUint64Secret(token, secret)
// 如果解析JWT token出错,则返回未授权的JSON响应并记录错误消息
if err != nil { if err != nil {
log.Println(token) return nil, fmt.Errorf("unauthorized")
if err != nil {
return nil, fmt.Errorf("unauthorized")
}
return nil, err
} }
if claims != nil {
// 从token中获取对应的用户信息
userinfo, err = auth.GetUserInfoFormMapClaims(claims)
// 如果获取用户信息出错,则返回未授权的JSON响应并记录错误消息
if err != nil {
return nil, fmt.Errorf("unauthorized")
}
}
} else {
// 白板用户
userinfo = &auth.UserInfo{UserId: 0, GuestId: 0}
} }
} else {
// 白板用户
userinfo = &auth.UserInfo{UserId: 0, GuestId: 0}
} }
return userinfo, nil return userinfo, nil