64 lines
1.5 KiB
Go
64 lines
1.5 KiB
Go
package token
|
|
|
|
import (
|
|
"errors"
|
|
"fmt"
|
|
"time"
|
|
|
|
"github.com/dgrijalva/jwt-go"
|
|
)
|
|
|
|
const minSecretKeySize = 32
|
|
|
|
// JWTMaker JSON Web Token
|
|
type JWTMaker struct {
|
|
secretKey string
|
|
}
|
|
|
|
// NewJWTMaker 创建一个新的JWTMaker
|
|
func NewJWTMaker(secretKey string) (Maker, error) {
|
|
if len(secretKey) < minSecretKeySize {
|
|
return nil, fmt.Errorf("invalid key size: must be at least %d characters", minSecretKeySize)
|
|
}
|
|
return &JWTMaker{secretKey}, nil
|
|
}
|
|
|
|
// CreateToken 根据用户名和时间创建一个新的token
|
|
func (maker *JWTMaker) CreateToken(id string, username string, duration time.Duration) (string, *Payload, error) {
|
|
payload, err := NewPayload(id, username, duration)
|
|
if err != nil {
|
|
return "", payload, err
|
|
}
|
|
|
|
jwtToken := jwt.NewWithClaims(jwt.SigningMethodHS256, payload)
|
|
token, err := jwtToken.SignedString([]byte(maker.secretKey))
|
|
return token, payload, err
|
|
}
|
|
|
|
// VerifyToken checks if the token is valid or not
|
|
func (maker *JWTMaker) VerifyToken(token string) (*Payload, error) {
|
|
keyFunc := func(token *jwt.Token) (interface{}, error) {
|
|
_, ok := token.Method.(*jwt.SigningMethodHMAC)
|
|
if !ok {
|
|
return nil, ErrInvalidToken
|
|
}
|
|
return []byte(maker.secretKey), nil
|
|
}
|
|
|
|
jwtToken, err := jwt.ParseWithClaims(token, &Payload{}, keyFunc)
|
|
if err != nil {
|
|
verr, ok := err.(*jwt.ValidationError)
|
|
if ok && errors.Is(verr.Inner, ErrExpiredToken) {
|
|
return nil, ErrExpiredToken
|
|
}
|
|
return nil, ErrInvalidToken
|
|
}
|
|
|
|
payload, ok := jwtToken.Claims.(*Payload)
|
|
if !ok {
|
|
return nil, ErrInvalidToken
|
|
}
|
|
|
|
return payload, nil
|
|
}
|