| 123456789101112131415161718192021222324252627282930313233343536373839404142434445 |
- package middleware
- import (
- "github.com/gin-gonic/gin"
- "iot_manager_service/util/cache"
- "iot_manager_service/util/common"
- "iot_manager_service/util/token"
- "net/http"
- "strings"
- )
- // 验证token令牌的中间件
- func AuthMiddleware() gin.HandlerFunc {
- return func(c *gin.Context) {
- //如果包含路径/login则放行,其余的都要进行token认证
- if strings.Contains(c.Request.RequestURI, "/login") ||
- strings.Contains(c.Request.RequestURI, "/websocket") ||
- strings.Contains(c.Request.RequestURI, "/getPublicKey") {
- c.Next()
- return
- }
- // 从请求头中获取token
- tokenString := c.GetHeader("Authorization")
- if tokenString == "" {
- c.JSON(http.StatusOK, common.ParamsInvalidResponse("验证不能为空", nil))
- c.Abort()
- return
- }
- //解析token
- claims, err := token.JwtClaims.ParseJwtToken(tokenString)
- //过期或者无效
- if err != nil {
- c.JSON(http.StatusUnauthorized, common.StatusUnauthorized("登录过期,请重新登录", nil))
- c.Abort()
- return
- }
- user, _ := cache.GetNowSysUser(claims.ID)
- if user.ID == 0 {
- c.JSON(http.StatusUnauthorized, common.StatusUnauthorized("请先登录!", nil))
- c.Abort()
- return
- }
- c.Next()
- }
- }
|
