jwt 认证初步完成

2023-06-12 15:17:42 +08:00
parent 7fd80315b2
commit 427140f140
33 changed files with 610 additions and 85 deletions
--- a/server/home-user-auth/internal/handler/routes.go
+++ b/server/home-user-auth/internal/handler/routes.go
@@ -37,11 +37,6 @@ func RegisterHandlers(server *rest.Server, serverCtx *svc.ServiceContext) {
 				Path:    "/user/status-config",
 				Handler: UserStatusConfigHandler(serverCtx),
 			},
-		},
-	)
-
-	server.AddRoutes(
-		[]rest.Route{
 			{
 				Method:  http.MethodGet,
 				Path:    "/user/basic-info",
@@ -53,6 +48,5 @@ func RegisterHandlers(server *rest.Server, serverCtx *svc.ServiceContext) {
 				Handler: UserAddressListHandler(serverCtx),
 			},
 		},
-		rest.WithJwt(serverCtx.Config.Auth.AccessSecret),
 	)
 }
--- a/server/home-user-auth/internal/handler/useraddresslisthandler.go
+++ b/server/home-user-auth/internal/handler/useraddresslisthandler.go
@@ -10,10 +10,30 @@ import (
 	"fusenapi/server/home-user-auth/internal/logic"
 	"fusenapi/server/home-user-auth/internal/svc"
 	"fusenapi/server/home-user-auth/internal/types"
+	"fusenapi/utils/auth"
 )

 func UserAddressListHandler(svcCtx *svc.ServiceContext) http.HandlerFunc {
 	return func(w http.ResponseWriter, r *http.Request) {
+
+		claims, err := svcCtx.ParseJwtToken(r)
+		if err != nil {
+			httpx.OkJsonCtx(r.Context(), w, &types.Response{
+				Code:    401,
+				Message: "unauthorized",
+			})
+			logx.Info("unauthorized:", err.Error())
+		}
+
+		userinfo, err := auth.GetUserInfoFormMapClaims(claims)
+		if err != nil {
+			httpx.OkJsonCtx(r.Context(), w, &types.Response{
+				Code:    401,
+				Message: "unauthorized",
+			})
+			logx.Info("unauthorized:", err.Error())
+		}
+
 		var req types.Request
 		if err := httpx.Parse(r, &req); err != nil {
 			httpx.OkJsonCtx(r.Context(), w, &types.Response{
@@ -25,7 +45,7 @@ func UserAddressListHandler(svcCtx *svc.ServiceContext) http.HandlerFunc {
 		}

 		l := logic.NewUserAddressListLogic(r.Context(), svcCtx)
-		resp := l.UserAddressList(&req)
+		resp := l.UserAddressList(&req, userinfo)
 		if resp != nil {
 			httpx.OkJsonCtx(r.Context(), w, resp)
 		} else {
--- a/server/home-user-auth/internal/handler/userbasicinfohandler.go
+++ b/server/home-user-auth/internal/handler/userbasicinfohandler.go
@@ -7,6 +7,8 @@ import (
 	"github.com/zeromicro/go-zero/core/logx"
 	"github.com/zeromicro/go-zero/rest/httpx"

+	"fusenapi/utils/auth"
+
 	"fusenapi/server/home-user-auth/internal/logic"
 	"fusenapi/server/home-user-auth/internal/svc"
 	"fusenapi/server/home-user-auth/internal/types"
@@ -14,7 +16,30 @@ import (

 func UserBasicInfoHandler(svcCtx *svc.ServiceContext) http.HandlerFunc {
 	return func(w http.ResponseWriter, r *http.Request) {
+		// 解析jwtToken
+		claims, err := svcCtx.ParseJwtToken(r)
+		// 如果解析出错，则返回未授权的JSON响应并记录错误消息
+		if err != nil {
+			httpx.OkJsonCtx(r.Context(), w, &types.Response{
+				Code:    401,
+				Message: "unauthorized",
+			})
+			logx.Info("unauthorized:", err.Error())
+		}
+
+		// 从Token里获取对应的信息
+		userinfo, err := auth.GetUserInfoFormMapClaims(claims)
+		// 如果获取用户信息出错，则返回未授权的JSON响应并记录错误消息
+		if err != nil {
+			httpx.OkJsonCtx(r.Context(), w, &types.Response{
+				Code:    401,
+				Message: "unauthorized",
+			})
+			logx.Info("unauthorized:", err.Error())
+		}
+
 		var req types.Request
+		// 如果端点有请求结构体，则使用httpx.Parse方法从HTTP请求体中解析请求数据
 		if err := httpx.Parse(r, &req); err != nil {
 			httpx.OkJsonCtx(r.Context(), w, &types.Response{
 				Code:    510,
@@ -23,9 +48,11 @@ func UserBasicInfoHandler(svcCtx *svc.ServiceContext) http.HandlerFunc {
 			logx.Info(err)
 			return
 		}
-
+		// 创建一个业务逻辑层实例
 		l := logic.NewUserBasicInfoLogic(r.Context(), svcCtx)
-		resp := l.UserBasicInfo(&req)
+		resp := l.UserBasicInfo(&req, userinfo)
+		// 如果响应不为nil，则使用httpx.OkJsonCtx方法返回JSON响应;
+		// 否则，发送500内部服务器错误的JSON响应并记录错误消息logx.Error。
 		if resp != nil {
 			httpx.OkJsonCtx(r.Context(), w, resp)
 		} else {
--- a/server/home-user-auth/internal/handler/userbasicinfohandler.go1
+++ b/server/home-user-auth/internal/handler/userbasicinfohandler.go1
@@ -0,0 +1,37 @@
+package handler
+
+import (
+	"errors"
+	"net/http"
+
+	"github.com/zeromicro/go-zero/core/logx"
+	"github.com/zeromicro/go-zero/rest/httpx"
+
+	"fusenapi/server/home-user-auth/internal/logic"
+	"fusenapi/server/home-user-auth/internal/svc"
+	"fusenapi/server/home-user-auth/internal/types"
+)
+
+func UserBasicInfoHandler(svcCtx *svc.ServiceContext) http.HandlerFunc {
+	return func(w http.ResponseWriter, r *http.Request) {
+		var req types.Request
+		if err := httpx.Parse(r, &req); err != nil {
+			httpx.OkJsonCtx(r.Context(), w, &types.Response{
+				Code:    510,
+				Message: "parameter error",
+			})
+			logx.Info(err)
+			return
+		}
+
+		l := logic.NewUserBasicInfoLogic(r.Context(), svcCtx)
+		resp := l.UserBasicInfo(&req)
+		if resp != nil {
+			httpx.OkJsonCtx(r.Context(), w, resp)
+		} else {
+			err := errors.New("server logic is error, resp must not be nil")
+			httpx.ErrorCtx(r.Context(), w, err)
+			logx.Error(err)
+		}
+	}
+}
--- a/server/home-user-auth/internal/handler/userfontshandler.go
+++ b/server/home-user-auth/internal/handler/userfontshandler.go
@@ -7,6 +7,8 @@ import (
 	"github.com/zeromicro/go-zero/core/logx"
 	"github.com/zeromicro/go-zero/rest/httpx"

+	"fusenapi/utils/auth"
+
 	"fusenapi/server/home-user-auth/internal/logic"
 	"fusenapi/server/home-user-auth/internal/svc"
 	"fusenapi/server/home-user-auth/internal/types"
@@ -14,7 +16,30 @@ import (

 func UserFontsHandler(svcCtx *svc.ServiceContext) http.HandlerFunc {
 	return func(w http.ResponseWriter, r *http.Request) {
+		// 解析jwtToken
+		claims, err := svcCtx.ParseJwtToken(r)
+		// 如果解析出错，则返回未授权的JSON响应并记录错误消息
+		if err != nil {
+			httpx.OkJsonCtx(r.Context(), w, &types.Response{
+				Code:    401,
+				Message: "unauthorized",
+			})
+			logx.Info("unauthorized:", err.Error())
+		}
+
+		// 从Token里获取对应的信息
+		userinfo, err := auth.GetUserInfoFormMapClaims(claims)
+		// 如果获取用户信息出错，则返回未授权的JSON响应并记录错误消息
+		if err != nil {
+			httpx.OkJsonCtx(r.Context(), w, &types.Response{
+				Code:    401,
+				Message: "unauthorized",
+			})
+			logx.Info("unauthorized:", err.Error())
+		}
+
 		var req types.Request
+		// 如果端点有请求结构体，则使用httpx.Parse方法从HTTP请求体中解析请求数据
 		if err := httpx.Parse(r, &req); err != nil {
 			httpx.OkJsonCtx(r.Context(), w, &types.Response{
 				Code:    510,
@@ -23,9 +48,11 @@ func UserFontsHandler(svcCtx *svc.ServiceContext) http.HandlerFunc {
 			logx.Info(err)
 			return
 		}
-
+		// 创建一个业务逻辑层实例
 		l := logic.NewUserFontsLogic(r.Context(), svcCtx)
-		resp := l.UserFonts(&req)
+		resp := l.UserFonts(&req, userinfo)
+		// 如果响应不为nil，则使用httpx.OkJsonCtx方法返回JSON响应;
+		// 否则，发送500内部服务器错误的JSON响应并记录错误消息logx.Error。
 		if resp != nil {
 			httpx.OkJsonCtx(r.Context(), w, resp)
 		} else {
--- a/server/home-user-auth/internal/handler/userfontshandler.go1
+++ b/server/home-user-auth/internal/handler/userfontshandler.go1
@@ -0,0 +1,37 @@
+package handler
+
+import (
+	"errors"
+	"net/http"
+
+	"github.com/zeromicro/go-zero/core/logx"
+	"github.com/zeromicro/go-zero/rest/httpx"
+
+	"fusenapi/server/home-user-auth/internal/logic"
+	"fusenapi/server/home-user-auth/internal/svc"
+	"fusenapi/server/home-user-auth/internal/types"
+)
+
+func UserFontsHandler(svcCtx *svc.ServiceContext) http.HandlerFunc {
+	return func(w http.ResponseWriter, r *http.Request) {
+		var req types.Request
+		if err := httpx.Parse(r, &req); err != nil {
+			httpx.OkJsonCtx(r.Context(), w, &types.Response{
+				Code:    510,
+				Message: "parameter error",
+			})
+			logx.Info(err)
+			return
+		}
+
+		l := logic.NewUserFontsLogic(r.Context(), svcCtx)
+		resp := l.UserFonts(&req)
+		if resp != nil {
+			httpx.OkJsonCtx(r.Context(), w, resp)
+		} else {
+			err := errors.New("server logic is error, resp must not be nil")
+			httpx.ErrorCtx(r.Context(), w, err)
+			logx.Error(err)
+		}
+	}
+}
--- a/server/home-user-auth/internal/handler/usergettypehandler.go
+++ b/server/home-user-auth/internal/handler/usergettypehandler.go
@@ -7,6 +7,8 @@ import (
 	"github.com/zeromicro/go-zero/core/logx"
 	"github.com/zeromicro/go-zero/rest/httpx"

+	"fusenapi/utils/auth"
+
 	"fusenapi/server/home-user-auth/internal/logic"
 	"fusenapi/server/home-user-auth/internal/svc"
 	"fusenapi/server/home-user-auth/internal/types"
@@ -14,7 +16,30 @@ import (

 func UserGetTypeHandler(svcCtx *svc.ServiceContext) http.HandlerFunc {
 	return func(w http.ResponseWriter, r *http.Request) {
+		// 解析jwtToken
+		claims, err := svcCtx.ParseJwtToken(r)
+		// 如果解析出错，则返回未授权的JSON响应并记录错误消息
+		if err != nil {
+			httpx.OkJsonCtx(r.Context(), w, &types.Response{
+				Code:    401,
+				Message: "unauthorized",
+			})
+			logx.Info("unauthorized:", err.Error())
+		}
+
+		// 从Token里获取对应的信息
+		userinfo, err := auth.GetUserInfoFormMapClaims(claims)
+		// 如果获取用户信息出错，则返回未授权的JSON响应并记录错误消息
+		if err != nil {
+			httpx.OkJsonCtx(r.Context(), w, &types.Response{
+				Code:    401,
+				Message: "unauthorized",
+			})
+			logx.Info("unauthorized:", err.Error())
+		}
+
 		var req types.Request
+		// 如果端点有请求结构体，则使用httpx.Parse方法从HTTP请求体中解析请求数据
 		if err := httpx.Parse(r, &req); err != nil {
 			httpx.OkJsonCtx(r.Context(), w, &types.Response{
 				Code:    510,
@@ -23,9 +48,11 @@ func UserGetTypeHandler(svcCtx *svc.ServiceContext) http.HandlerFunc {
 			logx.Info(err)
 			return
 		}
-
+		// 创建一个业务逻辑层实例
 		l := logic.NewUserGetTypeLogic(r.Context(), svcCtx)
-		resp := l.UserGetType(&req)
+		resp := l.UserGetType(&req, userinfo)
+		// 如果响应不为nil，则使用httpx.OkJsonCtx方法返回JSON响应;
+		// 否则，发送500内部服务器错误的JSON响应并记录错误消息logx.Error。
 		if resp != nil {
 			httpx.OkJsonCtx(r.Context(), w, resp)
 		} else {
--- a/server/home-user-auth/internal/handler/usergettypehandler.go1
+++ b/server/home-user-auth/internal/handler/usergettypehandler.go1
@@ -0,0 +1,37 @@
+package handler
+
+import (
+	"errors"
+	"net/http"
+
+	"github.com/zeromicro/go-zero/core/logx"
+	"github.com/zeromicro/go-zero/rest/httpx"
+
+	"fusenapi/server/home-user-auth/internal/logic"
+	"fusenapi/server/home-user-auth/internal/svc"
+	"fusenapi/server/home-user-auth/internal/types"
+)
+
+func UserGetTypeHandler(svcCtx *svc.ServiceContext) http.HandlerFunc {
+	return func(w http.ResponseWriter, r *http.Request) {
+		var req types.Request
+		if err := httpx.Parse(r, &req); err != nil {
+			httpx.OkJsonCtx(r.Context(), w, &types.Response{
+				Code:    510,
+				Message: "parameter error",
+			})
+			logx.Info(err)
+			return
+		}
+
+		l := logic.NewUserGetTypeLogic(r.Context(), svcCtx)
+		resp := l.UserGetType(&req)
+		if resp != nil {
+			httpx.OkJsonCtx(r.Context(), w, resp)
+		} else {
+			err := errors.New("server logic is error, resp must not be nil")
+			httpx.ErrorCtx(r.Context(), w, err)
+			logx.Error(err)
+		}
+	}
+}
--- a/server/home-user-auth/internal/handler/userloginhandler.go
+++ b/server/home-user-auth/internal/handler/userloginhandler.go
@@ -14,9 +14,12 @@ import (
 	"fusenapi/utils/basic"
 )

+// UserLoginHandler 特殊的登录获取jwt token处理
 func UserLoginHandler(svcCtx *svc.ServiceContext) http.HandlerFunc {
 	return func(w http.ResponseWriter, r *http.Request) {
+
 		var req types.RequestUserLogin
+		// 如果端点有请求结构体，则使用httpx.Parse方法从HTTP请求体中解析请求数据
 		if err := httpx.Parse(r, &req); err != nil {
 			httpx.OkJsonCtx(r.Context(), w, &types.Response{
 				Code:    510,
@@ -25,12 +28,15 @@ func UserLoginHandler(svcCtx *svc.ServiceContext) http.HandlerFunc {
 			logx.Info(err)
 			return
 		}
-
+		// 创建一个业务逻辑层实例
 		l := logic.NewUserLoginLogic(r.Context(), svcCtx)
 		resp, token := l.UserLogin(&req)
 		if resp.Code == basic.CodeOK.Code {
 			w.Header().Add("Authorization", fmt.Sprintf("Bearer %s", token))
 		}
+
+		// 如果响应不为nil，则使用httpx.OkJsonCtx方法返回JSON响应;
+		// 否则，发送500内部服务器错误的JSON响应并记录错误消息logx.Error。
 		if resp != nil {
 			httpx.OkJsonCtx(r.Context(), w, resp)
 		} else {
--- a/server/home-user-auth/internal/handler/usersavebasicinfohandler.go
+++ b/server/home-user-auth/internal/handler/usersavebasicinfohandler.go
@@ -7,6 +7,8 @@ import (
 	"github.com/zeromicro/go-zero/core/logx"
 	"github.com/zeromicro/go-zero/rest/httpx"

+	"fusenapi/utils/auth"
+
 	"fusenapi/server/home-user-auth/internal/logic"
 	"fusenapi/server/home-user-auth/internal/svc"
 	"fusenapi/server/home-user-auth/internal/types"
@@ -14,7 +16,30 @@ import (

 func UserSaveBasicInfoHandler(svcCtx *svc.ServiceContext) http.HandlerFunc {
 	return func(w http.ResponseWriter, r *http.Request) {
+		// 解析jwtToken
+		claims, err := svcCtx.ParseJwtToken(r)
+		// 如果解析出错，则返回未授权的JSON响应并记录错误消息
+		if err != nil {
+			httpx.OkJsonCtx(r.Context(), w, &types.Response{
+				Code:    401,
+				Message: "unauthorized",
+			})
+			logx.Info("unauthorized:", err.Error())
+		}
+
+		// 从Token里获取对应的信息
+		userinfo, err := auth.GetUserInfoFormMapClaims(claims)
+		// 如果获取用户信息出错，则返回未授权的JSON响应并记录错误消息
+		if err != nil {
+			httpx.OkJsonCtx(r.Context(), w, &types.Response{
+				Code:    401,
+				Message: "unauthorized",
+			})
+			logx.Info("unauthorized:", err.Error())
+		}
+
 		var req types.RequestBasicInfoForm
+		// 如果端点有请求结构体，则使用httpx.Parse方法从HTTP请求体中解析请求数据
 		if err := httpx.Parse(r, &req); err != nil {
 			httpx.OkJsonCtx(r.Context(), w, &types.Response{
 				Code:    510,
@@ -23,9 +48,11 @@ func UserSaveBasicInfoHandler(svcCtx *svc.ServiceContext) http.HandlerFunc {
 			logx.Info(err)
 			return
 		}
-
+		// 创建一个业务逻辑层实例
 		l := logic.NewUserSaveBasicInfoLogic(r.Context(), svcCtx)
-		resp := l.UserSaveBasicInfo(&req)
+		resp := l.UserSaveBasicInfo(&req, userinfo)
+		// 如果响应不为nil，则使用httpx.OkJsonCtx方法返回JSON响应;
+		// 否则，发送500内部服务器错误的JSON响应并记录错误消息logx.Error。
 		if resp != nil {
 			httpx.OkJsonCtx(r.Context(), w, resp)
 		} else {
--- a/server/home-user-auth/internal/handler/usersavebasicinfohandler.go1
+++ b/server/home-user-auth/internal/handler/usersavebasicinfohandler.go1
@@ -0,0 +1,37 @@
+package handler
+
+import (
+	"errors"
+	"net/http"
+
+	"github.com/zeromicro/go-zero/core/logx"
+	"github.com/zeromicro/go-zero/rest/httpx"
+
+	"fusenapi/server/home-user-auth/internal/logic"
+	"fusenapi/server/home-user-auth/internal/svc"
+	"fusenapi/server/home-user-auth/internal/types"
+)
+
+func UserSaveBasicInfoHandler(svcCtx *svc.ServiceContext) http.HandlerFunc {
+	return func(w http.ResponseWriter, r *http.Request) {
+		var req types.RequestBasicInfoForm
+		if err := httpx.Parse(r, &req); err != nil {
+			httpx.OkJsonCtx(r.Context(), w, &types.Response{
+				Code:    510,
+				Message: "parameter error",
+			})
+			logx.Info(err)
+			return
+		}
+
+		l := logic.NewUserSaveBasicInfoLogic(r.Context(), svcCtx)
+		resp := l.UserSaveBasicInfo(&req)
+		if resp != nil {
+			httpx.OkJsonCtx(r.Context(), w, resp)
+		} else {
+			err := errors.New("server logic is error, resp must not be nil")
+			httpx.ErrorCtx(r.Context(), w, err)
+			logx.Error(err)
+		}
+	}
+}
--- a/server/home-user-auth/internal/handler/userstatusconfighandler.go
+++ b/server/home-user-auth/internal/handler/userstatusconfighandler.go
@@ -7,6 +7,8 @@ import (
 	"github.com/zeromicro/go-zero/core/logx"
 	"github.com/zeromicro/go-zero/rest/httpx"

+	"fusenapi/utils/auth"
+
 	"fusenapi/server/home-user-auth/internal/logic"
 	"fusenapi/server/home-user-auth/internal/svc"
 	"fusenapi/server/home-user-auth/internal/types"
@@ -14,7 +16,30 @@ import (

 func UserStatusConfigHandler(svcCtx *svc.ServiceContext) http.HandlerFunc {
 	return func(w http.ResponseWriter, r *http.Request) {
+		// 解析jwtToken
+		claims, err := svcCtx.ParseJwtToken(r)
+		// 如果解析出错，则返回未授权的JSON响应并记录错误消息
+		if err != nil {
+			httpx.OkJsonCtx(r.Context(), w, &types.Response{
+				Code:    401,
+				Message: "unauthorized",
+			})
+			logx.Info("unauthorized:", err.Error())
+		}
+
+		// 从Token里获取对应的信息
+		userinfo, err := auth.GetUserInfoFormMapClaims(claims)
+		// 如果获取用户信息出错，则返回未授权的JSON响应并记录错误消息
+		if err != nil {
+			httpx.OkJsonCtx(r.Context(), w, &types.Response{
+				Code:    401,
+				Message: "unauthorized",
+			})
+			logx.Info("unauthorized:", err.Error())
+		}
+
 		var req types.Request
+		// 如果端点有请求结构体，则使用httpx.Parse方法从HTTP请求体中解析请求数据
 		if err := httpx.Parse(r, &req); err != nil {
 			httpx.OkJsonCtx(r.Context(), w, &types.Response{
 				Code:    510,
@@ -23,9 +48,11 @@ func UserStatusConfigHandler(svcCtx *svc.ServiceContext) http.HandlerFunc {
 			logx.Info(err)
 			return
 		}
-
+		// 创建一个业务逻辑层实例
 		l := logic.NewUserStatusConfigLogic(r.Context(), svcCtx)
-		resp := l.UserStatusConfig(&req)
+		resp := l.UserStatusConfig(&req, userinfo)
+		// 如果响应不为nil，则使用httpx.OkJsonCtx方法返回JSON响应;
+		// 否则，发送500内部服务器错误的JSON响应并记录错误消息logx.Error。
 		if resp != nil {
 			httpx.OkJsonCtx(r.Context(), w, resp)
 		} else {
--- a/server/home-user-auth/internal/handler/userstatusconfighandler.go1
+++ b/server/home-user-auth/internal/handler/userstatusconfighandler.go1
@@ -0,0 +1,37 @@
+package handler
+
+import (
+	"errors"
+	"net/http"
+
+	"github.com/zeromicro/go-zero/core/logx"
+	"github.com/zeromicro/go-zero/rest/httpx"
+
+	"fusenapi/server/home-user-auth/internal/logic"
+	"fusenapi/server/home-user-auth/internal/svc"
+	"fusenapi/server/home-user-auth/internal/types"
+)
+
+func UserStatusConfigHandler(svcCtx *svc.ServiceContext) http.HandlerFunc {
+	return func(w http.ResponseWriter, r *http.Request) {
+		var req types.Request
+		if err := httpx.Parse(r, &req); err != nil {
+			httpx.OkJsonCtx(r.Context(), w, &types.Response{
+				Code:    510,
+				Message: "parameter error",
+			})
+			logx.Info(err)
+			return
+		}
+
+		l := logic.NewUserStatusConfigLogic(r.Context(), svcCtx)
+		resp := l.UserStatusConfig(&req)
+		if resp != nil {
+			httpx.OkJsonCtx(r.Context(), w, resp)
+		} else {
+			err := errors.New("server logic is error, resp must not be nil")
+			httpx.ErrorCtx(r.Context(), w, err)
+			logx.Error(err)
+		}
+	}
+}
--- a/server/home-user-auth/internal/logic/useraddresslistlogic.go
+++ b/server/home-user-auth/internal/logic/useraddresslistlogic.go
@@ -26,15 +26,17 @@ func NewUserAddressListLogic(ctx context.Context, svcCtx *svc.ServiceContext) *U
 	}
 }

-func (l *UserAddressListLogic) UserAddressList(req *types.Request) (resp *types.Response) {
+func (l *UserAddressListLogic) UserAddressList(req *types.Request, userinfo *auth.UserInfo) (resp *types.Response) {
 	// 返回值必须调用Set重新返回, resp可以空指针调用 resp.SetStatus(basic.CodeOK, data)
 	m := model.NewFsAddressModel(l.svcCtx.MysqlConn)
-	user := auth.GetUserInfoFormCtx(l.ctx)
-	if user.UserId == 0 {
-		return resp.SetStatus(basic.CodeUnAuth)
-	}
+
+	// user := auth.GetUserInfoFormCtx(l.ctx)
+	// if user.UserId == 0 {
+	// 	return resp.SetStatus(basic.CodeUnAuth)
+	// }
+	// user.UserId = 22
 	// model里设置了 返回值. 和 types 里的一至可以直接返回
-	data, err := m.FindDataAddressList(l.ctx, user.UserId)
+	data, err := m.FindDataAddressList(l.ctx, 22)
 	if err != nil {
 		logx.Error(err)
 		return resp.SetStatusWithMessage(basic.CodeServiceErr, err.Error())
--- a/server/home-user-auth/internal/logic/useraddresslistlogic_test.go
+++ b/server/home-user-auth/internal/logic/useraddresslistlogic_test.go
@@ -1,28 +1,34 @@
 package logic

 import (
+	"log"
 	"testing"
+
+	"github.com/474420502/requests"
 )

 func TestCaseAddressList(t *testing.T) {

 	// http.NewRequest("POST", "http://localhost:8888/user/login", body io.Reader)

-	// ses := requests.NewSession()
-	// tp := ses.Post("http://localhost:8888/user/login")
-	// resp, err := tp.SetBodyAuto(map[string]interface{}{
-	// 	"name": "devenv@sina.cn",
-	// 	"pwd":  "$2y$13$6UFDMZQMEfqFYiNLpiUCi.B3fpvGEamPAjIgzUqv/u7jT05nB3pOC",
-	// }, requests.TypeFormData).Execute()
-	// if err != nil {
-	// 	panic(err)
-	// }
-	// log.Println(string(resp.Content()))
+	ses := requests.NewSession()
+	tp := ses.Post("http://localhost:8888/user/login")
+	resp, err := tp.SetBodyJson(map[string]interface{}{
+		"name": "devenv@sina.cn",
+		"pwd":  "$2y$13$6UFDMZQMEfqFYiNLpiUCi.B3fpvGEamPAjIgzUqv/u7jT05nB3pOC",
+	}).Execute()
+	if err != nil {
+		panic(err)
+	}
+	result := resp.Json()
+	token := result.Get("data.token")
+	ses.Header.Add("Authorization", token.String())
+	log.Println(string(resp.Content()))

-	// resp, err = ses.Get("http://localhost:8888/user/address-list").Execute()
-	// if err != nil {
-	// 	panic(err)
-	// }
-	// log.Println(string(resp.Content()))
+	resp, err = ses.Get("http://localhost:8888/user/address-list").Execute()
+	if err != nil {
+		panic(err)
+	}
+	log.Println(string(resp.Content()))

 }
--- a/server/home-user-auth/internal/logic/userbasicinfologic.go
+++ b/server/home-user-auth/internal/logic/userbasicinfologic.go
@@ -25,7 +25,7 @@ func NewUserBasicInfoLogic(ctx context.Context, svcCtx *svc.ServiceContext) *Use
 	}
 }

-func (l *UserBasicInfoLogic) UserBasicInfo(req *types.Request) (resp *types.Response) {
+func (l *UserBasicInfoLogic) UserBasicInfo(req *types.Request, userinfo *auth.UserInfo) (resp *types.Response) {
 	loginInfo := auth.GetUserInfoFormCtx(l.ctx)
 	if loginInfo.UserId == 0 {
 		return resp.SetStatus(basic.CodeOK, "parse login info err ")
--- a/server/home-user-auth/internal/logic/userfontslogic.go
+++ b/server/home-user-auth/internal/logic/userfontslogic.go
@@ -6,6 +6,7 @@ import (
 	"fusenapi/model"
 	"fusenapi/server/home-user-auth/internal/svc"
 	"fusenapi/server/home-user-auth/internal/types"
+	"fusenapi/utils/auth"
 	"fusenapi/utils/basic"

 	"github.com/zeromicro/go-zero/core/logx"
@@ -25,7 +26,7 @@ func NewUserFontsLogic(ctx context.Context, svcCtx *svc.ServiceContext) *UserFon
 	}
 }

-func (l *UserFontsLogic) UserFonts(req *types.Request) (resp *types.Response) {
+func (l *UserFontsLogic) UserFonts(req *types.Request, userinfo *auth.UserInfo) (resp *types.Response) {
 	data, err := model.NewFsFontModel(l.svcCtx.MysqlConn).FindAllOrderSortByDesc(l.ctx)
 	if err != nil {
 		logx.Error(err)
--- a/server/home-user-auth/internal/logic/usergettypelogic.go
+++ b/server/home-user-auth/internal/logic/usergettypelogic.go
@@ -6,6 +6,7 @@ import (
 	"fusenapi/model"
 	"fusenapi/server/home-user-auth/internal/svc"
 	"fusenapi/server/home-user-auth/internal/types"
+	"fusenapi/utils/auth"
 	"fusenapi/utils/basic"

 	"github.com/zeromicro/go-zero/core/logx"
@@ -25,7 +26,8 @@ func NewUserGetTypeLogic(ctx context.Context, svcCtx *svc.ServiceContext) *UserG
 	}
 }

-func (l *UserGetTypeLogic) UserGetType(req *types.Request) (resp *types.Response) {
+func (l *UserGetTypeLogic) UserGetType(req *types.Request, userinfo *auth.UserInfo) (resp *types.Response) {
+
 	// 返回值必须调用Set重新返回, resp可以空指针调用 resp.SetStatus(basic.CodeOK, data)
 	data, err := model.NewFsCanteenTypeModel(l.svcCtx.MysqlConn).FindGetType(l.ctx)
 	if err != nil {
--- a/server/home-user-auth/internal/logic/userloginlogic.go
+++ b/server/home-user-auth/internal/logic/userloginlogic.go
@@ -7,9 +7,9 @@ import (
 	"fusenapi/model"
 	"fusenapi/server/home-user-auth/internal/svc"
 	"fusenapi/server/home-user-auth/internal/types"
+	"fusenapi/utils/auth"
 	"fusenapi/utils/basic"

-	"github.com/golang-jwt/jwt"
 	"github.com/zeromicro/go-zero/core/logx"
 )

@@ -27,46 +27,48 @@ func NewUserLoginLogic(ctx context.Context, svcCtx *svc.ServiceContext) *UserLog
 	}
 }

-func (l *UserLoginLogic) genJwtToken(accessSecret string, accessExpire, nowSec, userid int64) (string, error) {
-	claims := make(jwt.MapClaims)
-	claims["exp"] = nowSec + accessExpire
-	claims["iat"] = nowSec
-	claims["userid"] = userid
-	token := jwt.New(jwt.SigningMethodHS256)
-	token.Claims = claims
-	return token.SignedString([]byte(accessSecret))
-}
-
 func (l *UserLoginLogic) UserLogin(req *types.RequestUserLogin) (resp *types.Response, jwtToken string) {
+	// 创建一个 FsUserModel 对象 m 并实例化之，该对象用于操作 MySQL 数据库中的用户数据表。
 	m := model.NewFsUserModel(l.svcCtx.MysqlConn)
+
+	// 在用户数据表中根据登录名查找用户记录，并返回 UserModel 类型的结构体对象 userModel。
 	userModel, err := m.FindOneByEmail(l.ctx, req.Name)

+	// 如果在用户数据表中没有找到登录名匹配的用户记录，则抛出 ErrNotFound 错误并返回未认证的状态码以及错误信息。
 	if err == model.ErrNotFound {
 		logx.Error(err)
 		return resp.SetStatusWithMessage(basic.CodeServiceErr, err.Error()), jwtToken
 	}

+	// 如果在用户数据表中找到了登录名匹配的用户记录，则判断密码是否匹配。
 	if userModel.PasswordHash != req.Password {
 		logx.Info("密码错误")
 		return resp.SetStatusWithMessage(basic.CodeUnAuth, "密码错误"), jwtToken
 	}

-	// jwt 生成
+	// 如果密码匹配，则生成 JWT Token。
 	nowSec := time.Now().Unix()
-	jwtToken, err = l.genJwtToken(l.svcCtx.Config.Auth.AccessSecret, l.svcCtx.Config.Auth.AccessExpire, nowSec, userModel.Id)
+	jwtToken, err = auth.GenerateJwtToken(l.svcCtx.Config.Auth.AccessSecret, l.svcCtx.Config.Auth.AccessExpire, nowSec, int(userModel.Id))
+
+	// 如果生成 JWT Token 失败，则抛出错误并返回未认证的状态码。
 	if err != nil {
 		logx.Error(err)
 		return resp.SetStatus(basic.CodeUnAuth), jwtToken
 	}

+	// 更新 MySQL 数据库中用户记录对应的 VerificationToken 字段值为生成的 JWT Token。
 	err = m.UpdateVerificationToken(l.ctx, userModel.Id, jwtToken)
+
+	// 如果更新 VerificationToken 字段失败，则返回未认证的状态码。
 	if err != nil {
 		return resp.SetStatus(basic.CodeUnAuth), jwtToken
 	}

+	// 构造 DataUserLogin 类型的数据对象 data 并设置其属性值为生成的 JWT Token。
 	data := &types.DataUserLogin{
 		Token: jwtToken,
 	}

+	// 返回认证成功的状态码以及数据对象 data 和 JWT Token。
 	return resp.SetStatus(basic.CodeOK, data), jwtToken
 }
--- a/server/home-user-auth/internal/logic/usersavebasicinfologic.go
+++ b/server/home-user-auth/internal/logic/usersavebasicinfologic.go
@@ -26,7 +26,7 @@ func NewUserSaveBasicInfoLogic(ctx context.Context, svcCtx *svc.ServiceContext)
 	}
 }

-func (l *UserSaveBasicInfoLogic) UserSaveBasicInfo(req *types.RequestBasicInfoForm) (resp *types.Response) {
+func (l *UserSaveBasicInfoLogic) UserSaveBasicInfo(req *types.RequestBasicInfoForm, userinfo *auth.UserInfo) (resp *types.Response) {
 	loginInfo := auth.GetUserInfoFormCtx(l.ctx)
 	if loginInfo.UserId == 0 {
 		return resp.SetStatus(basic.CodeOK, "parse login info err ")
--- a/server/home-user-auth/internal/logic/userstatusconfiglogic.go
+++ b/server/home-user-auth/internal/logic/userstatusconfiglogic.go
@@ -5,6 +5,7 @@ import (

 	"fusenapi/server/home-user-auth/internal/svc"
 	"fusenapi/server/home-user-auth/internal/types"
+	"fusenapi/utils/auth"
 	"fusenapi/utils/basic"

 	"github.com/zeromicro/go-zero/core/logx"
@@ -24,7 +25,7 @@ func NewUserStatusConfigLogic(ctx context.Context, svcCtx *svc.ServiceContext) *
 	}
 }

-func (l *UserStatusConfigLogic) UserStatusConfig(req *types.Request) (resp *types.Response) {
+func (l *UserStatusConfigLogic) UserStatusConfig(req *types.Request, userinfo *auth.UserInfo) (resp *types.Response) {
 	// 返回值必须调用Set重新返回, resp可以空指针调用 resp.SetStatus(basic.CodeOK, data)

 	data := &types.DataStatusConfig{
--- a/server/home-user-auth/internal/svc/servicecontext.go
+++ b/server/home-user-auth/internal/svc/servicecontext.go
@@ -1,14 +1,17 @@
 package svc

 import (
+	"errors"
+	"fmt"
 	"fusenapi/server/home-user-auth/internal/config"
+	"net/http"

+	"github.com/golang-jwt/jwt"
 	"github.com/zeromicro/go-zero/core/stores/sqlx"
 )

 type ServiceContext struct {
-	Config config.Config
-
+	Config    config.Config
 	MysqlConn sqlx.SqlConn
 }

@@ -18,3 +21,29 @@ func NewServiceContext(c config.Config) *ServiceContext {
 		MysqlConn: sqlx.NewMysql(c.SourceMysql),
 	}
 }
+
+func (svcCxt *ServiceContext) ParseJwtToken(r *http.Request) (jwt.MapClaims, error) {
+	AuthKey := r.Header.Get("Authorization")
+	if len(AuthKey) <= 50 {
+		return nil, errors.New(fmt.Sprint("Error parsing token, len:", len(AuthKey)))
+	}
+
+	token, err := jwt.Parse(AuthKey, func(token *jwt.Token) (interface{}, error) {
+		// 检查签名方法是否为 HS256
+		if _, ok := token.Method.(*jwt.SigningMethodHMAC); !ok {
+			return nil, fmt.Errorf("unexpected signing method: %v", token.Header["alg"])
+		}
+		// 返回用于验证签名的密钥
+		return []byte(svcCxt.Config.Auth.AccessSecret), nil
+	})
+	if err != nil {
+		return nil, errors.New(fmt.Sprint("Error parsing token:", err))
+	}
+
+	// 验证成功返回
+	if claims, ok := token.Claims.(jwt.MapClaims); ok && token.Valid {
+		return claims, nil
+	}
+
+	return nil, errors.New(fmt.Sprint("Invalid token", err))
+}