v1.1.0

分支 (9)

标签 (39)

管理

管理

main

feat/v10

dependabot/go_modules/github.com/gin-gonic/gin-1.9.0

dependabot/go_modules/github.com/tidwall/gjson-1.9.3

dependabot/go_modules/golang.org/x/net-0.7.0

feat/v9

master

develop

core

v10.0.2

v10.0.1

v10.0.0

v8.1.0

v8.0.1

v8.0.0

v7.0.1

v7.0.0

v6.4.4

v6.4.3

v6.4.2

v6.4.1

v6.4.0

v6.3.1

v6.3.0

v6.2.1

v6.2.0

v6.1.0

v5.2.3

v5.2.2

gin-admin
/
src
/
web
/
router
/
r_mw_session.go

package router

import (
	"fmt"
	"net/http"
	"strings"

	"github.com/LyricTian/gin-admin/src/service/mysql"
	"github.com/LyricTian/gin-admin/src/util"
	"github.com/LyricTian/gin-admin/src/web/context"
	"github.com/gin-gonic/gin"
	"github.com/go-session/gin-session"
	mysession "github.com/go-session/mysql"
	"github.com/go-session/session"
	"github.com/spf13/viper"
)

// SessionMiddleware session中间件
func SessionMiddleware(db *mysql.DB, allowPrefixes ...string) gin.HandlerFunc {
	sessionConfig := viper.GetStringMap("session")

	var opts []session.Option
	opts = append(opts, session.SetEnableSetCookie(false))
	opts = append(opts, session.SetEnableSIDInURLQuery(false))
	opts = append(opts, session.SetEnableSIDInHTTPHeader(true))
	opts = append(opts, session.SetSessionNameInHTTPHeader(util.T(sessionConfig["header_name"]).String()))
	opts = append(opts, session.SetSign(util.T(sessionConfig["sign"]).Bytes()))
	opts = append(opts, session.SetExpired(util.T(sessionConfig["expired"]).Int64()))

	if util.T(sessionConfig["store"]).String() == "mysql" {
		tableName := fmt.Sprintf("%s_%s",
			util.T(viper.GetStringMap("mysql")["table_prefix"]).String(),
			util.T(sessionConfig["table"]).String())
		opts = append(opts, session.SetStore(mysession.NewStoreWithDB(db.Db, tableName, 0)))
	}

	ginConfig := ginsession.DefaultConfig
	ginConfig.Skipper = func(c *gin.Context) bool {
		for _, prefix := range allowPrefixes {
			if strings.HasPrefix(c.Request.URL.Path, prefix) {
				return false
			}
		}
		return true
	}
	ginConfig.ErrorHandleFunc = func(c *gin.Context, err error) {
		ctx := context.NewContext(c)
		ctx.ResError(err, http.StatusInternalServerError)
	}

	return ginsession.NewWithConfig(ginConfig, opts...)
}

// VerifySessionMiddleware 验证session中间件
func VerifySessionMiddleware(skipPrefixes ...string) gin.HandlerFunc {
	return func(c *gin.Context) {
		ctx := context.NewContext(c)
		store := ginsession.FromContext(c)
		userID, ok := store.Get(util.SessionKeyUserID)

		if viper.GetString("run_mode") == util.DebugMode {
			if !ok || userID == nil {
				if rootUser := viper.GetStringSlice("system_root_user"); len(rootUser) > 0 {
					userID = rootUser[0]
				}
			}
			c.Set(util.SessionKeyUserID, userID)
			c.Next()
			return
		}

		if !ok || userID == nil {
			for _, prefix := range skipPrefixes {
				if strings.HasPrefix(c.Request.URL.Path, prefix) {
					c.Next()
					return
				}
			}

			ctx.ResError(fmt.Errorf("用户未登录"), http.StatusUnauthorized, 9999)
			return
		}
		c.Set(util.SessionKeyUserID, userID)
		c.Next()
	}
}