登录 注册
开源 企业版 高校版 私有云 Gitee AI NEW
扫描微信二维码支付
取消
支付完成
Watch
不关注 关注所有动态 仅关注版本发行动态 关注但不提醒动态
1 Star 0 Fork 0

Lau / Lau

代码 Issues 0 Pull Requests 0 Wiki 统计 流水线
服务
加入 Gitee
与超过 1200万 开发者一起发现、参与优秀开源项目,私有仓库也完全免费 :)
免费加入
克隆/下载
jwt.go 2.52 KB
一键复制 编辑 原始数据 按行查看 历史
Lau 提交于 2020-09-13 00:26 . minor changes
123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118
// Copyright (c) 2020 Lau All rights reserved.

// Use of this source code is governed by MIT License that can be found in the LICENSE file.

// Author: Lau <lauj@foxmail.com>

package helper



import (

	"crypto/hmac"

	"crypto/md5"

	"crypto/sha256"

	"encoding/base64"

	"hash"

	"sort"

	"strings"

	"time"

)



type jwtData map[string]string



func (a jwtData) bytes() []byte {

	var keys []string

	var content string

	for k, _ := range a {

		keys = append(keys, k)

	}

	sort.Strings(keys)

	var sep string

	for _, k := range keys {

		content += sep + k + "=" + a[k]

		sep = ","

	}

	return []byte(content)

}



func parseAccessData(data string) jwtData {

	result := make(jwtData)

	parts := strings.Split(data, ",")

	for _, item := range parts {

		item := strings.Split(item, "=")

		result[item[0]] = item[1]

	}

	return result

}



type jwt struct {

	key    string

	header jwtData

}



func newJwt(key string) *jwt {

	return &jwt{key: key, header: jwtData{"alg": "sha256"}}

}



func (a jwt) signature(data string) string {

	key := []byte(a.key)

	var f func() hash.Hash

	switch a.header["alg"] {

	case "sha256":

		f = sha256.New

	case "md5":

		f = md5.New

	default:

		f = sha256.New

	}

	mac := hmac.New(f, key)

	mac.Write([]byte(data))

	return base64.URLEncoding.EncodeToString(mac.Sum(nil))

}



func (a jwt) getToken(payload jwtData) string {

	b64Header := base64.URLEncoding.EncodeToString(a.header.bytes())

	b64Payload := base64.URLEncoding.EncodeToString(payload.bytes())

	data := b64Header + "." + b64Payload

	return data + "." + a.signature(data)

}



func VerifyJWT(key, token string) (jwtData, bool) {

	tokens := strings.Split(token, ".")

	if len(tokens) != 3 {

		return nil, false

	}

	var b64DecodeHeader, decodePayload []byte

	var err error

	if b64DecodeHeader, err = base64.URLEncoding.DecodeString(tokens[0]); err != nil {

		return nil, false

	}

	b64Header := parseAccessData(string(b64DecodeHeader))

	if _, ok := b64Header["alg"]; !ok {

		return nil, false

	}

	if decodePayload, err = base64.URLEncoding.DecodeString(tokens[1]); err != nil {

		return nil, false

	}

	payload := parseAccessData(string(decodePayload))

	now := time.Now().Format("2006-01-02 15:04:05")

	// create time

	if iat, ok := payload["createTime"]; ok {

		if iat > now {

			return nil, false

		}

	}

	// expire time

	if exp, ok := payload["expireTime"]; ok {

		if exp < now {

			return nil, false

		}

	}

	a := newJwt(key)

	if a.signature(tokens[0]+"."+tokens[1]) != tokens[2] {

		return nil, false

	}

	return payload, true

}



// JWT

func JWT(key string, payload jwtData) string {

	a := newJwt(key)

	return a.getToken(payload)

}
Go
1
https://gitee.com/lauj/lau.git
git@gitee.com:lauj/lau.git
lauj
lau
Lau
v1.1.1
点此查找更多帮助

搜索帮助

Git 命令在线学习 如何在 Gitee 导入 GitHub 仓库
Git 仓库基础操作
企业版和社区版功能对比
SSH 公钥设置
如何处理代码冲突
仓库体积过大,如何减小?
如何找回被删除的仓库数据
Gitee 产品配额说明
GitHub仓库快速导入Gitee及同步更新
什么是 Release(发行版)
将 PHP 项目自动发布到 packagist.org
仓库举报
回到顶部