feat 网关鉴权

2025-12-22 18:04:36 +08:00
parent 69cc960fe5
commit 670140e7d3
68 changed files with 1424 additions and 492 deletions
--- a/Server/common/utils/jwt.go
+++ b/Server/common/utils/jwt.go
@@ -0,0 +1,53 @@
+package utils
+
+import (
+	"context"
+	"errors"
+	"github.com/golang-jwt/jwt/v5"
+	"google.golang.org/grpc/metadata"
+	"strconv"
+	"time"
+)
+
+type Claims struct {
+	USN int64 `json:"usn"`
+	jwt.RegisteredClaims
+}
+
+func GenToken(usn int64, secret string, expires time.Duration) (string, error) {
+	token := jwt.NewWithClaims(jwt.SigningMethodHS256, Claims{
+		USN: usn,
+		RegisteredClaims: jwt.RegisteredClaims{
+			ExpiresAt: jwt.NewNumericDate(time.Now().Add(expires)),
+		},
+	})
+	return token.SignedString([]byte(secret))
+}
+
+func ParseToken(tokenString string, secret string) (*Claims, error) {
+	claims := &Claims{}
+	token, err := jwt.ParseWithClaims(tokenString, claims, func(_ *jwt.Token) (interface{}, error) {
+		return []byte(secret), nil
+	})
+	if err != nil {
+		return nil, err
+	}
+	if !token.Valid {
+		return nil, errors.New("invalid token")
+	}
+	return claims, nil
+}
+
+func ShouldBindUsn(ctx context.Context, usn *int64) bool {
+	if md, ok := metadata.FromIncomingContext(ctx); ok {
+		usnArr := md.Get("X-Usn")
+		if len(usnArr) == 0 || usnArr[0] == "" {
+			return false
+		}
+		s, _ := strconv.Atoi(usnArr[0])
+		if s > 0 {
+			*usn = int64(s)
+		}
+	}
+	return *usn > 0
+}