Startseite Erkunden Hilfe
Registrieren Anmelden
xuyiping
/
kpt-tmr-group
1
0
Fork 0
Dateien Issues 0 Pull-Requests 0 Wiki
Struktur: 9afe81bd39
Branches Tags
kpt-tmr-group
/
http
/
middleware
/
sso.go

sso.go 1.1 KB
Verlauf Originalformat

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657 
  1. package middleware
    2. 

  2. 

  3. import (
    4. 

  4. 	"kpt-tmr-group/pkg/apierr"
    5. 

  5. 	"kpt-tmr-group/pkg/jwt"
    6. 

  6. 	commonPb "kpt-tmr-group/proto/go/backend/common"
    7. 

  7. 

  8. 	"net/http"
    9. 

  9. 	"strings"
    10. 

  10. 

  11. 	"github.com/gin-gonic/gin"
    12. 

  12. )
    13. 

  13. 

  14. const (
    15. 

  15. 	Authorization = "Authorization"
    16. 

  16. 	ToKenPrefix   = "Bearer "
    17. 

  17. 	UserName      = "userName"
    18. 

  18. 	XRequestId    = "X-Request-Id"
    19. 

  19. )
    20. 

  20. 

  21. func GetToken(c *gin.Context) string {
    22. 

  22. 	value := c.Request.Header.Get(Authorization)
    23. 

  23. 	if value != "" && strings.HasPrefix(value, ToKenPrefix) {
    24. 

  24. 		return strings.TrimPrefix(value, ToKenPrefix)
    25. 

  25. 	}
    26. 

  26. 	return ""
    27. 

  27. }
    28. 

  28. 

  29. func GetXRequestId(c *gin.Context) string {
    30. 

  30. 	item := c.Request.Header.Get(XRequestId)
    31. 

  31. 	return item
    32. 

  32. }
    33. 

  33. 

  34. func unauthorized(c *gin.Context) {
    35. 

  35. 	c.AbortWithStatusJSON(http.StatusBadRequest, apierr.WithContext(c, commonPb.Error_UNAUTHORIZED))
    36. 

  36. }
    37. 

  37. 

  38. // RequireAdmin ...
    39. 

  39. func RequireAdmin() gin.HandlerFunc {
    40. 

  40. 	return func(c *gin.Context) {
    41. 

  41. 		token := GetToken(c)
    42. 

  42. 		if token == "" {
    43. 

  43. 			unauthorized(c)
    44. 

  44. 			return
    45. 

  45. 		}
    46. 

  46. 

  47. 		claims, err := jwt.ParseToken(token)
    48. 

  48. 		if err != nil || claims == nil || claims.Username == "" {
    49. 

  49. 			unauthorized(c)
    50. 

  50. 			return
    51. 

  51. 		}
    52. 

  52. 

  53. 		c.Set(UserName, claims.Username)
    54. 

  54. 		c.Set(XRequestId, GetXRequestId(c))
    55. 

  55. 		c.Next()
    56. 

  56. 	}
    57. 

  57. }
    58.