OptimusX
/
OneAuth
mirror of https://github.com/veypi/OneAuth.git
4
0
Fork 0
Code Issues Projects Releases Wiki Activity
You cannot select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
v3
master
v2
v1.0.0
v0.1.0
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'dcce188e7a'
${ noResults }
OneAuth/oa/api/token/token.go

194 lines
4.4 KiB
Go
Raw Normal View History Unescape Escape

feat: update api curd
4 weeks ago
package token
import (
feat: token gen
4 weeks ago
"encoding/hex"
feat: update api curd
4 weeks ago
"oa/cfg"
feat: token gen
4 weeks ago
"oa/errs"
"oa/libs/auth"
feat: update api curd
4 weeks ago
M "oa/models"
feat: token gen
4 weeks ago
"time"
feat: update api curd
4 weeks ago
feat: token gen
4 weeks ago
"github.com/golang-jwt/jwt/v5"
feat: update api curd
4 weeks ago
"github.com/veypi/OneBD/rest"
feat: token gen
4 weeks ago
"github.com/veypi/utils"
"github.com/veypi/utils/logv"
feat: update api curd
4 weeks ago
)
func useToken(r rest.Router) {
feat: token gen
4 weeks ago
r.Post("/salt", tokenSalt)
feat: update api curd
4 weeks ago
r.Post("/", tokenPost)
r.Get("/:token_id", tokenGet)
r.Patch("/:token_id", tokenPatch)
r.Delete("/:token_id", tokenDelete)
r.Get("/", tokenList)
}
func tokenSalt(x *rest.X) (any, error) {
opts := &M.TokenSalt{}
err := x.Parse(opts)
if err != nil {
return nil, err
}
data := &M.User{}
feat: token gen
4 weeks ago
query := "username = ?"
if opts.Typ == nil {
} else if *opts.Typ == "email" {
query = "email = ?"
} else if *opts.Typ == "phone" {
query = "phone = ?"
}
feat: update api curd
4 weeks ago
feat: token gen
4 weeks ago
err = cfg.DB().Where(query, opts.Username).First(data).Error
return map[string]string{"salt": data.Salt, "id": data.ID}, err
feat: update api curd
4 weeks ago
}
feat: token gen
4 weeks ago
// for user login app
func tokenPost(x *rest.X) (any, error) {
opts := &M.TokenPost{}
err := x.Parse(opts)
if err != nil {
return nil, err
}
aid := cfg.Config.ID
if opts.AppID != nil {
aid = *opts.AppID
}
data := &M.Token{}
claim := &auth.Claims{}
claim.IssuedAt = jwt.NewNumericDate(time.Now())
claim.Issuer = "oa"
if opts.Token != nil {
// for other app redirect
oldClaim, err := auth.ParseJwt(*opts.Token)
if err != nil {
return nil, err
}
err = cfg.DB().Where("id = ?", oldClaim.ID).First(data).Error
if err != nil {
return nil, err
}
if oldClaim.AID == *opts.AppID {
// refresh token
update model
1 week ago
claim.AID = oldClaim.AID
claim.UID = oldClaim.UID
claim.Name = oldClaim.Name
claim.Icon = oldClaim.Icon
claim.ExpiresAt = jwt.NewNumericDate(time.Now().Add(time.Minute * 10))
acList := make(auth.Access, 0, 10)
logv.AssertError(cfg.DB().Table("accesses a").
Select("a.name, a.t_id, a.level").
Joins("INNER JOIN user_roles ur ON ur.role_id = a.role_id AND ur.user_id = ?", oldClaim.UID).
Scan(&acList).Error)
claim.Access = acList
feat: token gen
4 weeks ago
} else {
// gen other app token
}
update model
1 week ago
} else if opts.Code != nil && aid == cfg.Config.ID {
feat: token gen
4 weeks ago
// for oa login
user := &M.User{}
err = cfg.DB().Where("id = ?", opts.UserID).Find(user).Error
if err != nil {
return nil, err
}
logv.Info().Str("user", user.ID).Msg("login")
code := *opts.Code
salt := logv.AssertFuncErr(hex.DecodeString(*opts.Salt))
key := logv.AssertFuncErr(hex.DecodeString(user.Code))
de, err := utils.AesDecrypt([]byte(code), key, salt)
if err != nil || de != user.ID {
return nil, errs.AuthInvalid
}
data.UserID = opts.UserID
data.AppID = aid
if opts.ExpiredAt != nil {
data.ExpiredAt = *opts.ExpiredAt
} else {
data.ExpiredAt = time.Now().Add(time.Hour * 72)
}
if opts.OverPerm != nil {
data.OverPerm = *opts.OverPerm
}
update model
1 week ago
if opts.Device != nil {
data.Device = *opts.Device
}
data.ExpiredAt = time.Now().Add(time.Hour)
logv.AssertError(cfg.DB().Create(data).Error)
claim.ID = data.ID
feat: token gen
4 weeks ago
claim.AID = aid
claim.UID = user.ID
claim.Name = user.Username
claim.Icon = user.Icon
update model
1 week ago
claim.ExpiresAt = jwt.NewNumericDate(data.ExpiredAt)
feat: token gen
4 weeks ago
if user.Nickname != "" {
claim.Name = user.Nickname
}
} else {
return nil, errs.ArgsInvalid
}
update model
1 week ago
token := logv.AssertFuncErr(auth.GenJwt(claim))
return token, err
feat: token gen
4 weeks ago
}
feat: update api curd
4 weeks ago
func tokenGet(x *rest.X) (any, error) {
opts := &M.TokenGet{}
err := x.Parse(opts)
if err != nil {
return nil, err
}
data := &M.Token{}
err = cfg.DB().Where("id = ?", opts.ID).First(data).Error
return data, err
}
func tokenPatch(x *rest.X) (any, error) {
opts := &M.TokenPatch{}
err := x.Parse(opts)
if err != nil {
return nil, err
}
data := &M.Token{}
err = cfg.DB().Where("id = ?", opts.ID).First(data).Error
if err != nil {
return nil, err
}
optsMap := make(map[string]interface{})
if opts.ExpiredAt != nil {
optsMap["expired_at"] = opts.ExpiredAt
}
if opts.OverPerm != nil {
optsMap["over_perm"] = opts.OverPerm
}
err = cfg.DB().Model(data).Updates(optsMap).Error
return data, err
}
func tokenDelete(x *rest.X) (any, error) {
opts := &M.TokenDelete{}
err := x.Parse(opts)
if err != nil {
return nil, err
}
data := &M.Token{}
err = cfg.DB().Where("id = ?", opts.ID).Delete(data).Error
return data, err
}
func tokenList(x *rest.X) (any, error) {
opts := &M.TokenList{}
err := x.Parse(opts)
if err != nil {
return nil, err
}
data := make([]*M.Token, 0, 10)
query := cfg.DB()
query = query.Where("user_id = ?", opts.UserID)
query = query.Where("app_id = ?", opts.AppID)
err = query.Find(&data).Error
return data, err
}