登录 注册
开源 企业版 高校版 私有云 模力方舟 模力方舟 AI 队友
扫描微信二维码支付
取消
支付完成
Ai
Watch
不关注 关注所有动态 仅关注版本发行动态 关注但不提醒动态
7 Star 23 Fork 31

go-course/go8

代码 Issues 0 Pull Requests 0 Wiki 统计 流水线
服务
加入 Gitee
与超过 1200万 开发者一起发现、参与优秀开源项目,私有仓库也完全免费 :)
免费加入
文件
克隆/下载
app.go 4.46 KB
一键复制 编辑 原始数据 按行查看 历史
Mr.Yu 提交于 2022-12-24 11:20 +08:00 . 对接钉钉第三方登录
123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209
package token



import (

	context "context"

	"encoding/json"

	"math/rand"

	"net/http"

	"net/url"

	"strings"

	"time"



	"github.com/infraboard/mcube/http/request"

)



const (

	AppName = "token"

)



type Service interface {

	// 颁发Token

	IssueToken(context.Context, *IssueTokenRequest) (*Token, error)

	// 撤销Token

	RevolkToken(context.Context, *RevolkTokenRequest) (*Token, error)

	// 切换Token空间

	ChangeNamespace(context.Context, *ChangeNamespaceRequest) (*Token, error)

	// 查询Token, 用于查询Token颁发记录, 也就是登陆日志

	QueryToken(context.Context, *QueryTokenRequest) (*TokenSet, error)

	// RPC

	RPCServer

}



func NewQueryTokenRequest() *QueryTokenRequest {

	return &QueryTokenRequest{

		Page: request.NewDefaultPageRequest(),

	}

}



func (req *QueryTokenRequest) SetPlatform(p PLATFORM) {

	req.Platform = &p

}



func (req *QueryTokenRequest) SetIsBlook(b bool) {

	req.IsBlock = &b

}



// ldap的用户命名

func NewLDAPIssueTokenRequest(username, password string) *IssueTokenRequest {

	req := NewIssueTokenRequest()

	req.GrantType = GRANT_TYPE_LDAP

	req.Username = username

	req.Password = password

	return req

}



func NewDingDingIssueTokenRequest(authcode, state string) *IssueTokenRequest {

	req := NewIssueTokenRequest()

	req.GrantType = GRANT_TYPE_DINGDING

	req.AuthCode = authcode

	req.State = state

	return req

}



func NewTokenSet() *TokenSet {

	return &TokenSet{

		Items: []*Token{},

	}

}



func (s *TokenSet) Add(item *Token) {

	s.Items = append(s.Items, item)

}



func NewToken(req *IssueTokenRequest) *Token {

	tk := &Token{

		AccessToken:      MakeBearer(24),

		RefreshToken:     MakeBearer(32),

		IssueAt:          time.Now().UnixMilli(),

		AccessExpiredAt:  req.ExpiredAt,

		RefreshExpiredAt: req.ExpiredAt * 4,

		GrantType:        req.GrantType,

		Type:             req.Type,

		Description:      req.Description,

		Status:           NewStatus(),

		Location:         req.Location,

	}

	switch req.GrantType {

	case GRANT_TYPE_PRIVATE_TOKEN:

		tk.Platform = PLATFORM_API

	default:

		tk.Platform = PLATFORM_WEB

	}

	return tk

}



func NewStatus() *Status {

	return &Status{

		IsBlock: false,

	}

}



func (t *Token) IsAccessTokenExpired() bool {

	// now > expired

	now := time.Now().UnixMilli()

	expired := t.IssueAt + t.AccessExpiredAt*1000

	return now > expired

}



func (t *Token) JsonFormat() string {

	dj, err := json.Marshal(t)

	if err != nil {

		panic(err)

	}

	return string(dj)

}



func ParseTokenFromJson(data []byte, tk *Token) error {

	return json.Unmarshal(data, tk)

}



func (t *Token) ToJson() string {

	dj, err := json.Marshal(t)

	if err != nil {

		panic(err)

	}

	return string(dj)

}



// MakeBearer https://tools.ietf.org/html/rfc6750#section-2.1

// b64token    = 1*( ALPHA / DIGIT /"-" / "." / "_" / "~" / "+" / "/" ) *"="

func MakeBearer(lenth int) string {

	charlist := "0123456789abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ"

	t := make([]string, lenth)

	rand.Seed(time.Now().UnixNano() + int64(lenth) + rand.Int63n(10000))

	for i := 0; i < lenth; i++ {

		rn := rand.Intn(len(charlist))

		w := charlist[rn : rn+1]

		t = append(t, w)

	}



	token := strings.Join(t, "")

	return token

}



// NewIssueTokenRequest 默认请求

func NewIssueTokenRequest() *IssueTokenRequest {

	return &IssueTokenRequest{

		// 单位秒

		ExpiredAt: 60 * 60,

	}

}



// NewRevolkTokenRequest 撤销Token请求

func NewRevolkTokenRequest() *RevolkTokenRequest {

	return &RevolkTokenRequest{}

}



// Authorization xxxxxxx

func GetTokenFromHTTPHeader(r *http.Request) string {

	auth := r.Header.Get("Authorization")

	info := strings.Split(auth, " ")

	if len(info) > 1 {

		return info[1]

	}



	return ""

}



func NewChangeNamespaceRequest() *ChangeNamespaceRequest {

	return &ChangeNamespaceRequest{}

}



func NewValidateTokenRequest(ak string) *ValidateTokenRequest {

	return &ValidateTokenRequest{

		AccessToken: ak,

	}

}



func NewDefaultToken() *Token {

	return &Token{

		Status:   NewStatus(),

		Location: NewLocation(),

	}

}



func NewLocation() *Location {

	return &Location{}

}



func NewDingDingAuthCodeIssueTokenRequest(authcode, state string) *IssueTokenRequest {

	req := NewIssueTokenRequest()

	req.AuthCode = authcode

	req.State = state

	req.GrantType = GRANT_TYPE_DINGDING

	return req

}



// 基于令牌创建HTTP Cookie 用于Web登陆场景

func (c *Token) SetCookie(w http.ResponseWriter) {

	http.SetCookie(w, &http.Cookie{

		Name:     "menter-access-token",

		Value:    url.QueryEscape(c.AccessToken),

		MaxAge:   0,

		Path:     "/",

		Domain:   "",

		SameSite: http.SameSiteDefaultMode,

		Secure:   false,

		HttpOnly: true,

	})

}
Loading...
马建仓 AI 助手
尝试更多
代码解读
代码找茬
代码优化
Go
1
https://gitee.com/go-course/go8.git
git@gitee.com:go-course/go8.git
go-course
go8
go8
6a8978f41a84
点此查找更多帮助

搜索帮助

Git 命令在线学习 如何在 Gitee 导入 GitHub 仓库
Git 仓库基础操作
企业版和社区版功能对比
SSH 公钥设置
如何处理代码冲突
仓库体积过大,如何减小?
如何找回被删除的仓库数据
Gitee 产品配额说明
GitHub仓库快速导入Gitee及同步更新
什么是 Release(发行版)
将 PHP 项目自动发布到 packagist.org
评论
仓库举报
回到顶部