liyunjia/chuanyue-service
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

添加token中间件

Browse Source
This commit is contained in:
liyunjia 2024-05-23 06:22:10 +08:00
parent eb990f8f68
commit 0840048161
3 changed files with 39 additions and 8 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
library/src/middleware/mod.rs
View File

@ -1,3 +1,4 @@
pub mod req_id; pub mod req_id;
pub mod req_log; pub mod req_log;
pub mod cors; pub mod cors;
pub mod req_token;

30
library/src/middleware/req_token.rs Normal file
View File

@ -0,0 +1,30 @@
use axum::{extract::Request, middleware::Next, response::{IntoResponse, Response}};
use http::{header, StatusCode};
use jsonwebtoken::{decode, DecodingKey, Validation};
use crate::{config, token::Claims};
pub async fn authenticate_access_token(mut req: Request, next: Next) -> Response {
let auth_header = req.headers().get(header::AUTHORIZATION);
let token = match auth_header {
Some(header_value) => {
let parts: Vec<&str> = header_value.to_str().unwrap_or("").split_whitespace().collect();
if parts.len() != 2 || parts[0] != "Bearer" {
return (StatusCode::BAD_REQUEST, "Invalid authorization header format".to_string()).into_response();
}
parts[1]
},
None => return (StatusCode::UNAUTHORIZED, "Missing authorization header".to_string()).into_response(),
};
let validation = Validation::default();
match decode::<Claims>(token, &DecodingKey::from_secret(config!().jwt.secret.as_bytes()), &validation) {
Ok(decoded) => {
// 将Claims附加到请求扩展中以便后续处理使用
req.extensions_mut().insert(decoded.claims);
next.run(req).await
},
Err(_) => (StatusCode::UNAUTHORIZED, "Invalid token".to_string()).into_response(),
}
}

14
library/src/token.rs
View File

@ -2,14 +2,14 @@ use serde::{Deserialize, Serialize};
use crate::config; use crate::config;
#[derive(Debug, Serialize, Deserialize)] #[derive(Debug, Serialize, Deserialize, Clone)]
pub struct Claim { pub struct Claims {
sub: i64, // 用户ID sub: i64, // 用户ID
exp: usize, // Token过期时间戳 exp: usize, // Token过期时间戳
} }
pub fn generate_token(sub: i64) -> String { pub fn generate_token(sub: i64) -> String {
let claim = Claim { let claim = Claims {
sub, sub,
exp: config!().jwt.expires, exp: config!().jwt.expires,
}; };
@ -17,14 +17,14 @@ pub fn generate_token(sub: i64) -> String {
} }
pub fn generate_refresh_token(sub: i64) -> String { pub fn generate_refresh_token(sub: i64) -> String {
let claim = Claim { let claim = Claims {
sub, sub,
exp: config!().jwt.refresh_expires, exp: config!().jwt.refresh_expires,
}; };
generate(claim) generate(claim)
} }
fn generate(claim: Claim) -> String { fn generate(claim: Claims) -> String {
let token = jsonwebtoken::encode( let token = jsonwebtoken::encode(
&jsonwebtoken::Header::default(), &jsonwebtoken::Header::default(),
&claim, &claim,
@ -36,8 +36,8 @@ fn generate(claim: Claim) -> String {
}) })
} }
pub fn verify_token(token: &str) -> Result<Claim, jsonwebtoken::errors::Error> { pub fn verify_token(token: &str) -> Result<Claims, jsonwebtoken::errors::Error> {
jsonwebtoken::decode::<Claim>( jsonwebtoken::decode::<Claims>(
token, token,
&jsonwebtoken::DecodingKey::from_secret(config!().jwt.secret.as_bytes()), &jsonwebtoken::DecodingKey::from_secret(config!().jwt.secret.as_bytes()),
&jsonwebtoken::Validation::default(), &jsonwebtoken::Validation::default(),