🎨 新增用户验证相关工具类

utils/sms/sms.go

@@ -0,0 +1,42 @@
+package sms
+
+// SMS短信服务
+import (
+	"encoding/json"
+	"git.echol.cn/loser/lckt/global"
+	"go.uber.org/zap"
+
+	smsApi "github.com/aliyun/alibaba-cloud-sdk-go/services/dysmsapi"
+)
+
+type message struct {
+	Code string `json:"code"`
+}
+
+func SendSMS(phone string, code string) bool {
+	var err error
+	smsConfig := global.GVA_CONFIG.SMS
+	client, err := smsApi.NewClientWithAccessKey("cn-qingdao", smsConfig.AccessKeyID, smsConfig.AccessKeySecret)
+	if err != nil {
+		global.GVA_LOG.Error("创建短信服务连接失败", zap.Error(err))
+		return false
+	}
+
+	mes := message{Code: code}
+	param, err := json.Marshal(mes)
+
+	request := smsApi.CreateSendSmsRequest()
+	request.Scheme = "https"
+	request.PhoneNumbers = phone                  //接收短信的手机号码
+	request.SignName = smsConfig.SignName         //短信签名名称
+	request.TemplateCode = smsConfig.TemplateCode //短信模板ID
+	request.TemplateParam = string(param)
+
+	response, err := client.SendSms(request)
+	if err != nil || response.Message != "OK" {
+		global.GVA_LOG.Error("发送短信失败", zap.Error(err))
+		return false
+	}
+
+	return true
+}

utils/user_jwt/claims.go

@@ -0,0 +1,104 @@
+package user_jwt
+
+import (
+	"git.echol.cn/loser/lckt/model/user"
+	"git.echol.cn/loser/lckt/model/user/request"
+	"net"
+	"time"
+
+	"git.echol.cn/loser/lckt/global"
+	systemReq "git.echol.cn/loser/lckt/model/user/request"
+	"github.com/gin-gonic/gin"
+)
+
+func ClearToken(c *gin.Context) {
+	// 增加cookie app-token 向来源的web添加
+	host, _, err := net.SplitHostPort(c.Request.Host)
+	if err != nil {
+		host = c.Request.Host
+	}
+
+	if net.ParseIP(host) != nil {
+		c.SetCookie("app-token", "", -1, "/", "", false, false)
+	} else {
+		c.SetCookie("app-token", "", -1, "/", host, false, false)
+	}
+}
+
+func SetToken(c *gin.Context, token string, maxAge int) {
+	// 增加cookie app-token 向来源的web添加
+	host, _, err := net.SplitHostPort(c.Request.Host)
+	if err != nil {
+		host = c.Request.Host
+	}
+
+	if net.ParseIP(host) != nil {
+		c.SetCookie("app-token", token, maxAge, "/", "", false, false)
+	} else {
+		c.SetCookie("app-token", token, maxAge, "/", host, false, false)
+	}
+}
+
+func GetToken(c *gin.Context) string {
+	token := c.Request.Header.Get("app-token")
+	if token == "" {
+		j := NewUserJWT()
+		token, _ = c.Cookie("app-token")
+		claims, err := j.ParseToken(token)
+		if err != nil {
+			global.GVA_LOG.Error("重新写入cookie token失败,未能成功解析token,请检查请求头是否存在app-token且claims是否为规定结构")
+			return token
+		}
+		SetToken(c, token, int((claims.ExpiresAt.Unix()-time.Now().Unix())/60))
+	}
+	return token
+}
+
+func GetClaims(c *gin.Context) (*systemReq.CustomClaims, error) {
+	token := GetToken(c)
+	j := NewUserJWT()
+	claims, err := j.ParseToken(token)
+	if err != nil {
+		global.GVA_LOG.Error("从Gin的Context中获取从jwt解析信息失败, 请检查请求头是否存在app-token且claims是否为规定结构")
+	}
+	return claims, err
+}
+
+// GetUserID 从Gin的Context中获取从jwt解析出来的用户ID
+func GetUserID(c *gin.Context) uint {
+	if claims, exists := c.Get("claims"); !exists {
+		if cl, err := GetClaims(c); err != nil {
+			return 0
+		} else {
+			return cl.BaseClaims.ID
+		}
+	} else {
+		waitUse := claims.(*systemReq.CustomClaims)
+		return waitUse.BaseClaims.ID
+	}
+}
+
+// GetNickName 从Gin的Context中获取从jwt解析出来的用户名
+func GetNickName(c *gin.Context) string {
+	if claims, exists := c.Get("claims"); !exists {
+		if cl, err := GetClaims(c); err != nil {
+			return ""
+		} else {
+			return cl.NickName
+		}
+	} else {
+		waitUse := claims.(*systemReq.CustomClaims)
+		return waitUse.NickName
+	}
+}
+
+func LoginToken(user user.User) (token string, claims request.CustomClaims, err error) {
+	j := NewUserJWT()
+	claims = j.CreateClaims(request.BaseClaims{
+		ID:       user.ID,
+		NickName: user.NickName,
+		Phone:    user.Phone,
+	})
+	token, err = j.CreateToken(claims)
+	return
+}

utils/user_jwt/user_jwt.go

@@ -0,0 +1,79 @@
+package user_jwt
+
+import (
+	"errors"
+	"git.echol.cn/loser/lckt/utils"
+	"time"
+
+	"git.echol.cn/loser/lckt/global"
+	"git.echol.cn/loser/lckt/model/user/request"
+	jwt "github.com/golang-jwt/jwt/v5"
+)
+
+type UserJWT struct {
+	SigningKey []byte
+}
+
+func NewUserJWT() *UserJWT {
+	return &UserJWT{
+		[]byte(global.GVA_CONFIG.JWT.SigningKey),
+	}
+}
+
+func (j *UserJWT) CreateClaims(baseClaims request.BaseClaims) request.CustomClaims {
+	bf, _ := utils.ParseDuration(global.GVA_CONFIG.JWT.BufferTime)
+	ep, _ := utils.ParseDuration(global.GVA_CONFIG.JWT.ExpiresTime)
+	claims := request.CustomClaims{
+		BaseClaims: baseClaims,
+		BufferTime: int64(bf / time.Second), // 缓冲时间1天 缓冲时间内会获得新的token刷新令牌 此时一个用户会存在两个有效令牌 但是前端只留一个 另一个会丢失
+		RegisteredClaims: jwt.RegisteredClaims{
+			Audience:  jwt.ClaimStrings{"LCKT"},                  // 受众
+			NotBefore: jwt.NewNumericDate(time.Now().Add(-1000)), // 签名生效时间
+			ExpiresAt: jwt.NewNumericDate(time.Now().Add(ep)),    // 过期时间 7天  配置文件
+			Issuer:    global.GVA_CONFIG.JWT.Issuer,              // 签名的发行者
+		},
+	}
+	return claims
+}
+
+// CreateToken 创建一个token
+func (j *UserJWT) CreateToken(claims request.CustomClaims) (string, error) {
+	token := jwt.NewWithClaims(jwt.SigningMethodHS256, claims)
+	return token.SignedString(j.SigningKey)
+}
+
+// CreateTokenByOldToken 旧token 换新token 使用归并回源避免并发问题
+func (j *UserJWT) CreateTokenByOldToken(oldToken string, claims request.CustomClaims) (string, error) {
+	v, err, _ := global.GVA_Concurrency_Control.Do("JWT:"+oldToken, func() (interface{}, error) {
+		return j.CreateToken(claims)
+	})
+	return v.(string), err
+}
+
+// ParseToken 解析 token
+func (j *UserJWT) ParseToken(tokenString string) (*request.CustomClaims, error) {
+	token, err := jwt.ParseWithClaims(tokenString, &request.CustomClaims{}, func(token *jwt.Token) (i interface{}, e error) {
+		return j.SigningKey, nil
+	})
+
+	if err != nil {
+		switch {
+		case errors.Is(err, jwt.ErrTokenExpired):
+			return nil, utils.TokenExpired
+		case errors.Is(err, jwt.ErrTokenMalformed):
+			return nil, utils.TokenMalformed
+		case errors.Is(err, jwt.ErrTokenSignatureInvalid):
+			return nil, utils.TokenSignatureInvalid
+		case errors.Is(err, jwt.ErrTokenNotValidYet):
+			return nil, utils.TokenNotValidYet
+		default:
+			return nil, utils.TokenInvalid
+		}
+	}
+	if token != nil {
+		if claims, ok := token.Claims.(*request.CustomClaims); ok && token.Valid {
+			return claims, nil
+		}
+	}
+	return nil, utils.TokenValid
+}