mirror of
https://github.com/weloe/token-go.git
synced 2025-10-03 14:46:29 +08:00
131 lines
3.1 KiB
Go
131 lines
3.1 KiB
Go
package token_go
|
|
|
|
import (
|
|
"errors"
|
|
"github.com/weloe/token-go/constant"
|
|
"github.com/weloe/token-go/ctx"
|
|
"github.com/weloe/token-go/model"
|
|
"math"
|
|
"strconv"
|
|
)
|
|
|
|
// createLoginToken create by config.TokenConfig and model.Login
|
|
func (e *Enforcer) createLoginToken(id string, loginModel *model.Login) (string, error) {
|
|
tokenConfig := e.config
|
|
var tokenValue string
|
|
var err error
|
|
// if isConcurrent is false,
|
|
if !tokenConfig.IsConcurrent {
|
|
err = e.Replaced(id, loginModel.Device)
|
|
if err != nil {
|
|
return "", err
|
|
}
|
|
}
|
|
|
|
// if loginModel set token, return directly
|
|
if loginModel.Token != "" {
|
|
return loginModel.Token, nil
|
|
}
|
|
|
|
// if share token
|
|
if tokenConfig.IsConcurrent && tokenConfig.IsShare {
|
|
// reuse the previous token.
|
|
if v := e.GetSession(id); v != nil {
|
|
tokenValue = v.GetLastTokenByDevice(loginModel.Device)
|
|
if tokenValue != "" {
|
|
return tokenValue, nil
|
|
}
|
|
|
|
}
|
|
}
|
|
|
|
// create new token
|
|
tokenValue, err = e.generateFunc.Exec(tokenConfig.TokenStyle)
|
|
if err != nil {
|
|
return "", err
|
|
}
|
|
|
|
return tokenValue, nil
|
|
}
|
|
|
|
// ResponseToken set token to cookie or header
|
|
func (e *Enforcer) responseToken(tokenValue string, loginModel *model.Login, ctx ctx.Context) error {
|
|
if ctx == nil {
|
|
return nil
|
|
}
|
|
tokenConfig := e.config
|
|
|
|
// set token to cookie
|
|
if tokenConfig.IsReadCookie {
|
|
var cookieTimeout int64
|
|
if !loginModel.IsLastingCookie {
|
|
cookieTimeout = -1
|
|
} else {
|
|
if loginModel.Timeout != 0 {
|
|
cookieTimeout = loginModel.Timeout
|
|
} else {
|
|
cookieTimeout = tokenConfig.Timeout
|
|
}
|
|
if cookieTimeout == constant.NeverExpire {
|
|
cookieTimeout = math.MaxInt64
|
|
}
|
|
}
|
|
|
|
if tokenConfig.CookieConfig.Path == "" {
|
|
tokenConfig.CookieConfig.Path = "/"
|
|
}
|
|
|
|
// add cookie use tokenConfig.CookieConfig
|
|
ctx.Response().AddCookie(tokenConfig.TokenName,
|
|
tokenValue,
|
|
tokenConfig.CookieConfig.Path,
|
|
tokenConfig.CookieConfig.Domain,
|
|
cookieTimeout)
|
|
}
|
|
|
|
// set token to header
|
|
if loginModel.IsWriteHeader {
|
|
ctx.Response().SetHeader(tokenConfig.TokenName, tokenValue)
|
|
ctx.Response().AddHeader(constant.AccessControlExposeHeaders, tokenConfig.TokenName)
|
|
}
|
|
|
|
return nil
|
|
}
|
|
|
|
// validateValue validate if value is proper
|
|
func (e *Enforcer) validateValue(str string) (bool, error) {
|
|
i, err := strconv.Atoi(str)
|
|
// if convert err return true
|
|
if err != nil {
|
|
return true, nil
|
|
}
|
|
if i == constant.BeReplaced {
|
|
return false, errors.New("this account is replaced")
|
|
}
|
|
if i == constant.BeKicked {
|
|
return false, errors.New("this account is kicked out")
|
|
}
|
|
if i == constant.BeBanned {
|
|
return false, errors.New("this account is banned")
|
|
}
|
|
return true, nil
|
|
}
|
|
|
|
// spliceSessionKey splice session-id key
|
|
func (e *Enforcer) spliceSessionKey(id string) string {
|
|
return e.config.TokenName + ":" + e.loginType + ":session:" + id
|
|
}
|
|
|
|
// spliceTokenKey splice token-id key
|
|
func (e *Enforcer) spliceTokenKey(id string) string {
|
|
return e.config.TokenName + ":" + e.loginType + ":token:" + id
|
|
}
|
|
|
|
func (e *Enforcer) spliceBannedKey(id string, service string) string {
|
|
return e.config.TokenName + ":" + e.loginType + ":ban:" + service + ":" + id
|
|
}
|
|
|
|
func (e *Enforcer) SetJwtSecretKey(key string) {
|
|
e.config.JwtSecretKey = key
|
|
}
|