76 lines
2.0 KiB
Go
76 lines
2.0 KiB
Go
/*
|
|
* @Author: LinkLeong link@icewhale.com
|
|
* @Date: 2022-06-17 14:01:25
|
|
* @LastEditors: LinkLeong
|
|
* @LastEditTime: 2022-07-29 16:22:25
|
|
* @FilePath: /CasaOS/pkg/utils/jwt/jwt_helper.go
|
|
* @Description:
|
|
* @Website: https://www.casaos.io
|
|
* Copyright (c) 2022 by icewhale, All Rights Reserved.
|
|
*/
|
|
package jwt
|
|
|
|
import (
|
|
"fmt"
|
|
"strconv"
|
|
"time"
|
|
|
|
"github.com/IceWhaleTech/CasaOS/model"
|
|
"github.com/IceWhaleTech/CasaOS/pkg/utils/common_err"
|
|
loger2 "github.com/IceWhaleTech/CasaOS/pkg/utils/loger"
|
|
"github.com/gin-gonic/gin"
|
|
)
|
|
|
|
func JWT() gin.HandlerFunc {
|
|
return func(c *gin.Context) {
|
|
var code int
|
|
code = common_err.SUCCESS
|
|
token := c.GetHeader("Authorization")
|
|
if len(token) == 0 {
|
|
token = c.Query("token")
|
|
}
|
|
if token == "" {
|
|
code = common_err.INVALID_PARAMS
|
|
}
|
|
|
|
claims, err := ParseToken(token, false)
|
|
|
|
//_, err := ParseToken(token)
|
|
if err != nil {
|
|
code = common_err.ERROR_AUTH_TOKEN
|
|
} else if (c.Request.URL.Path == "/v1/file" || c.Request.URL.Path == "/v1/image" || c.Request.URL.Path == "/v1/file/upload" || c.Request.URL.Path == "/v1/batch") && claims.VerifyIssuer("casaos", true) {
|
|
//Special treatment
|
|
} else if !claims.VerifyExpiresAt(time.Now(), true) || !claims.VerifyIssuer("casaos", true) {
|
|
code = common_err.ERROR_AUTH_TOKEN
|
|
}
|
|
if code != common_err.SUCCESS {
|
|
c.JSON(code, model.Result{Success: code, Message: common_err.GetMsg(code)})
|
|
c.Abort()
|
|
return
|
|
}
|
|
c.Request.Header.Add("user_id", strconv.Itoa(claims.Id))
|
|
c.Next()
|
|
}
|
|
}
|
|
|
|
//get AccessToken
|
|
func GetAccessToken(username, pwd string, id int) string {
|
|
token, err := GenerateToken(username, pwd, id, "casaos", 3*time.Hour*time.Duration(1))
|
|
if err == nil {
|
|
return token
|
|
} else {
|
|
loger2.Error(fmt.Sprintf("Get Token Fail: %V", err))
|
|
return ""
|
|
}
|
|
}
|
|
|
|
func GetRefreshToken(username, pwd string, id int) string {
|
|
token, err := GenerateToken(username, pwd, id, "refresh", 7*24*time.Hour*time.Duration(1))
|
|
if err == nil {
|
|
return token
|
|
} else {
|
|
loger2.Error(fmt.Sprintf("Get Token Fail: %V", err))
|
|
return ""
|
|
}
|
|
}
|