EggPlanet
/
egg_app
3
0
Fork 0
Code Issues 0 Pull Requests 0 Releases 0 Wiki Activity
蛋蛋星球-客户端
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
102 Commits
1 Branch
6.5 MiB
 
 
 
 
 
 
Tree: a8a8cf607b
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'a8a8cf607b'
${ noResults }
egg_app/app/lib/auth/auth.go

85 lines
2.3 KiB
Raw Blame History 

  1. package auth

  2. 

  3. import (

  4. 	"applet/app/utils/cache"

  5. 	"errors"

  6. 	"fmt"

  7. 	"github.com/dgrijalva/jwt-go"

  8. 	"time"

  9. )

  10. 

  11. // GenToken 生成JWT

  12. func GenToken(uid int64) (string, error) {

  13. 	// 创建一个我们自己的声明

  14. 	c := JWTUser{

  15. 		Uid: uid,

  16. 		StandardClaims: jwt.StandardClaims{

  17. 			ExpiresAt: time.Now().Add(TokenExpireDuration).Unix(), // 过期时间

  18. 			Issuer:    "egg_app",                                  // 签发人

  19. 		},

  20. 	}

  21. 	// 使用指定的签名方法创建签名对象

  22. 	tokenClaims := jwt.NewWithClaims(jwt.SigningMethodHS256, c)

  23. 	// 使用指定的secret签名并获得完整的编码后的字符串token

  24. 	token, err := tokenClaims.SignedString(Secret)

  25. 	if err != nil {

  26. 		return "", err

  27. 	}

  28. 	// 缓存token

  29. 	cacheKey := fmt.Sprintf(TokenKey, uid)

  30. 	_, err = cache.SetEx(cacheKey, token, TokenCacheTime)

  31. 	if err != nil {

  32. 		return "", err

  33. 	}

  34. 	return token, nil

  35. }

  36. 

  37. // ParseToken 解析JWT

  38. func ParseToken(tokenString string) (*JWTUser, string, error) {

  39. 	// 解析token

  40. 	token, err := jwt.ParseWithClaims(tokenString, &JWTUser{}, func(token *jwt.Token) (i interface{}, err error) {

  41. 		return Secret, nil

  42. 	})

  43. 	if err != nil {

  44. 		return nil, "", err

  45. 	}

  46. 

  47. 	if claims, ok := token.Claims.(*JWTUser); ok && token.Valid { // 校验token正确性

  48. 		if claims.StandardClaims.ExpiresAt < time.Now().Unix() { // 校验token时效性

  49. 			return nil, "", errors.New("token is expired")

  50. 		}

  51. 

  52. 		//TODO::单设备验证

  53. 		cacheKey := fmt.Sprintf(TokenKey, claims.Uid)

  54. 		cJwt, err1 := cache.GetString(cacheKey)

  55. 		if err != nil {

  56. 			return nil, "", err1

  57. 		}

  58. 		if cJwt != tokenString && cJwt != "" {

  59. 			return nil, "", errors.New("token expired")

  60. 		}

  61. 

  62. 		// TODO::判断Token快过期,就创建新的token(7天)

  63. 		if !claims.VerifyExpiresAt(time.Now().Add(time.Hour*24*7).Unix(), false) {

  64. 			newToken, _ := GenToken(claims.Uid)

  65. 			return claims, newToken, nil

  66. 		}

  67. 

  68. 		// TODO::判断缓存是否为空,若为空则填补

  69. 		if cJwt == "" {

  70. 			_, err = cache.SetEx(cacheKey, token, CalculateSecondsUntilExpiry(time.Unix(claims.ExpiresAt, 0)))

  71. 			if err != nil {

  72. 				return nil, "", err

  73. 			}

  74. 		}

  75. 		return claims, "", err

  76. 	}

  77. 

  78. 	return nil, "", errors.New("invalid token")

  79. }

  80. 

  81. // CalculateSecondsUntilExpiry 计算 Token 距离现在的过期时间还有多少秒

  82. func CalculateSecondsUntilExpiry(expiryTime time.Time) int {

  83. 	return int(expiryTime.Sub(time.Now()).Seconds())

  84. }