新建request文件

  1. package models
  3. import "github.com/dgrijalva/jwt-go"
  5. type CustomClaims struct {
  6.     ID          uint
  7.     NickName    string
  8.     AuthorityId uint
  9.     jwt.StandardClaims
  10. }

生成key

https://suijimimashengcheng.bmcx.com/
image.png

编写token中间件

  1. package middlewares
  3. import (
  4.     "errors"
  5.     "go_final/mxshop-api/global"
  6.     "go_final/mxshop-api/models"
  7.     "net/http"
  8.     "time"
  10.     "github.com/dgrijalva/jwt-go"
  11.     "github.com/gin-gonic/gin"
  12. )
  14. type JWT struct {
  15.     SigningKey []byte
  16. }
  18. var (
  19.     TokenExpired     = errors.New("token is expired")
  20.     TokenNotValidYet = errors.New("token not active yet")
  21.     TokenMalformed   = errors.New("that's not even a token")
  22.     TokenInvalid     = errors.New("couldn't handle this token")
  23. )
  25. func NewJWT() *JWT {
  26.     return &JWT{
  27.         []byte(global.ServerConfig.JWTInfo.SigningKey), //可以设置过期时间
  28.     }
  29. }
  31. func JWTAuth() gin.HandlerFunc {
  32.     return func(c *gin.Context) {
  33.         // 我们这里jwt鉴权取头部信息 x-token 登录时回返回token信息 这里前端需要把token存储到cookie或者本地localSstorage中 不过需要跟后端协商过期时间 可以约定刷新令牌或者重新登录
  34.         token := c.Request.Header.Get("authorization")
  35.         if token == "" {
  36.             c.JSON(http.StatusUnauthorized, map[string]string{
  37.                 "msg": "请登录后操作",
  38.             })
  39.             c.Abort()
  40.             return
  41.         }
  42.         j := NewJWT()
  43.         // parseToken 解析token包含的信息
  44.         claims, err := j.ParseToken(token)
  45.         if err != nil {
  46.             if err == TokenExpired {
  47.                 c.JSON(http.StatusUnauthorized, gin.H{
  48.                     "msg": "授权已过期",
  49.                 })
  50.                 c.Abort()
  51.                 return
  52.             }
  54.             c.JSON(http.StatusUnauthorized, "未登陆")
  55.             c.Abort()
  56.             return
  57.         }
  58.         c.Set("claims", claims)
  59.         c.Set("userId", claims.ID)
  60.         c.Next()
  61.     }
  62. }
  64. // CreateToken 创建一个token
  65. func (j *JWT) CreateToken(claims models.CustomClaims) (string, error) {
  66.     token := jwt.NewWithClaims(jwt.SigningMethodHS256, claims)
  67.     return token.SignedString(j.SigningKey)
  68. }
  70. // ParseToken 解析token
  71. func (j *JWT) ParseToken(tokenString string) (*models.CustomClaims, error) {
  72.     token, err := jwt.ParseWithClaims(tokenString, &models.CustomClaims{}, func(token *jwt.Token) (i interface{}, e error) {
  73.         return j.SigningKey, nil
  74.     })
  75.     if err != nil {
  76.         if ve, ok := err.(*jwt.ValidationError); ok {
  77.             if ve.Errors&jwt.ValidationErrorMalformed != 0 {
  78.                 return nil, TokenMalformed
  79.             } else if ve.Errors&jwt.ValidationErrorExpired != 0 {
  80.                 // Token is expired
  81.                 return nil, TokenExpired
  82.             } else if ve.Errors&jwt.ValidationErrorNotValidYet != 0 {
  83.                 return nil, TokenNotValidYet
  84.             } else {
  85.                 return nil, TokenInvalid
  86.             }
  87.         }
  88.     }
  89.     if token != nil {
  90.         if claims, ok := token.Claims.(*models.CustomClaims); ok && token.Valid {
  91.             return claims, nil
  92.         }
  93.         return nil, TokenInvalid
  94.     } else {
  95.         return nil, TokenInvalid
  96.     }
  97. }
  99. // RefreshToken 更新token
  100. func (j *JWT) RefreshToken(tokenString string) (string, error) {
  101.     jwt.TimeFunc = func() time.Time {
  102.         return time.Unix(0, 0)
  103.     }
  104.     token, err := jwt.ParseWithClaims(tokenString, &models.CustomClaims{}, func(token *jwt.Token) (interface{}, error) {
  105.         return j.SigningKey, nil
  106.     })
  107.     if err != nil {
  108.         return "", err
  109.     }
  110.     if claims, ok := token.Claims.(*models.CustomClaims); ok && token.Valid {
  111.         jwt.TimeFunc = time.Now
  112.         claims.StandardClaims.ExpiresAt = time.Now().Add(1 * time.Hour).Unix()
  113.         return j.CreateToken(*claims)
  114.     }
  115.     return "", TokenInvalid
  116. }

使用(生成带签名的token)

  1. jwt := middlewares.NewJWT()
  2. claims := models.CustomClaims{
  3.     ID:          uint(userInfo.ID),
  4.     NickName:    userInfo.NickName,
  5.     AuthorityId: uint(userInfo.Role),
  6.     StandardClaims: jwt2.StandardClaims{
  7.         NotBefore: time.Now().Unix(),              // 签名的生效时间
  8.         ExpiresAt: time.Now().Unix() + 60*60*24*7, // 签名过期时间
  9.         Issuer:    "Felix_Mxshop",
  10.     },
  11. }
  12. token, err := jwt.CreateToken(claims)
  13. if err != nil {
  14.    // 生成token失败
  15. }