OptimusX
/
OneAuth
mirror of https://github.com/veypi/OneAuth.git
3
0
Fork 0
Code Issues Projects Releases Wiki Activity

refactor(auth): Implement lazy token parsing in UserID method

Browse Source 
- Add jwt package import for token parsing
    - Add private ctxKeyTokenParsed constant to track parse status
    - Remove unused VBaseProvider variable
    - Rewrite UserID method with lazy token parsing logic
    - Check cached token status to avoid repeated parsing
    - Extract and parse token from request when needed
    - Validate token type is access token
    - Cache userID and parsed status in request context
master
veypi 4 weeks ago
parent 3ea5499532
commit 261dd9ffb0
1 changed files with 36 additions and 6 deletions
Show Stats Download Patch File Download Diff File

36
auth/auth.go
Unescape Escape View File

@ -13,6 +13,7 @@ import (
"strings" "strings"
"github.com/veypi/vbase/cfg" "github.com/veypi/vbase/cfg"
"github.com/veypi/vbase/libs/jwt"
"github.com/veypi/vbase/models" "github.com/veypi/vbase/models"
"github.com/veypi/vigo" "github.com/veypi/vigo"
pub "github.com/veypi/vigo/contrib/auth" pub "github.com/veypi/vigo/contrib/auth"
@ -33,6 +34,9 @@ const (
LevelAdmin = 7 // 111 管理员 (完全控制) LevelAdmin = 7 // 111 管理员 (完全控制)
) )
// ctxKeyTokenParsed 标记token是否已解析请求级别避免重复解析
const ctxKeyTokenParsed = "_token_parsed"
// PermFunc 权限检查函数类型 // PermFunc 权限检查函数类型
type PermFunc = pub.PermFunc type PermFunc = pub.PermFunc
@ -44,9 +48,6 @@ var Factory = &authFactory{
apps: make(map[string]Provider), apps: make(map[string]Provider),
} }
// VBaseProvider vbase 自身的权限 Provider 实例
var VBaseProvider Provider
var _ pub.Provider = &vbaseProvider{} var _ pub.Provider = &vbaseProvider{}
func init() { func init() {
@ -98,12 +99,41 @@ type vbaseProvider struct {
// ========== Provider 接口实现 ========== // ========== Provider 接口实现 ==========
func (a *vbaseProvider) UserID(x *vigo.X) string { func (a *vbaseProvider) UserID(x *vigo.X) string {
// 1. 检查是否已解析过(无论成功与否,避免重复解析)
if _, parsed := x.Get(ctxKeyTokenParsed).(bool); parsed {
if uid, ok := x.Get(CtxKeyUserID).(string); ok { if uid, ok := x.Get(CtxKeyUserID).(string); ok {
return uid return uid
} }
return "" return ""
} }
// 2. 惰性解析:从请求中提取 token
tokenStr := extractToken(x)
if tokenStr == "" {
x.Set(ctxKeyTokenParsed, true)
return ""
}
// 3. 解析并验证 token
claims, err := jwt.ParseToken(tokenStr)
if err != nil {
x.Set(ctxKeyTokenParsed, true)
return ""
}
// 确保是 access token
if !jwt.IsAccessToken(claims) {
x.Set(ctxKeyTokenParsed, true)
return ""
}
// 4. 设置到上下文中,供后续调用使用
x.Set(CtxKeyUserID, claims.UserID)
x.Set(ctxKeyTokenParsed, true)
return claims.UserID
}
// Grant 授予权限 // Grant 授予权限
func (a *vbaseProvider) Grant(ctx context.Context, userID, permissionID string, level int) error { func (a *vbaseProvider) Grant(ctx context.Context, userID, permissionID string, level int) error {
if err := validatePermission(permissionID, level); err != nil { if err := validatePermission(permissionID, level); err != nil {

Write Preview
Loading…
Cancel
Save