tt

2025-08-29 03:01:25 +08:00 · 2022-02-25 17:11:17 +08:00
parent 9bd05abb2c
commit 8f3d679a57
897 changed files with 95731 additions and 0 deletions
--- a/hotgo-server/app/middleware/admin_auth.go
+++ b/hotgo-server/app/middleware/admin_auth.go
@@ -0,0 +1,127 @@
+//
+// @Link  https://github.com/bufanyun/hotgo
+// @Copyright  Copyright (c) 2022 HotGo CLI
+// @Author  Ms <133814250@qq.com>
+// @License  https://github.com/bufanyun/hotgo/blob/master/LICENSE
+//
+package middleware
+
+import (
+	"github.com/bufanyun/hotgo/app/com"
+	"github.com/bufanyun/hotgo/app/consts"
+	"github.com/bufanyun/hotgo/app/model"
+	"github.com/bufanyun/hotgo/app/utils"
+	"github.com/gogf/gf/v2/crypto/gmd5"
+	"github.com/gogf/gf/v2/errors/gcode"
+	"github.com/gogf/gf/v2/frame/g"
+	"github.com/gogf/gf/v2/net/ghttp"
+	"github.com/gogf/gf/v2/text/gstr"
+	"github.com/gogf/gf/v2/util/gconv"
+)
+
+//
+//  @Title  后台中间件
+//  @Description
+//  @Author  Ms <133814250@qq.com>
+//  @Param   r
+//
+func (s *sMiddleware) AdminAuth(r *ghttp.Request) {
+
+	var (
+		ctx           = r.Context()
+		user          = new(model.Identity)
+		authorization = com.Jwt.GetAuthorization(r)
+	)
+
+	// TODO  替换掉模块前缀
+	routerPrefix, _ := g.Cfg().Get(ctx, "router.admin.prefix", "/admin")
+	path := gstr.Replace(r.URL.Path, routerPrefix.String(), "", 1)
+
+	/// TODO  不需要验证登录的路由地址
+	if utils.Auth.IsExceptLogin(ctx, path) {
+		r.Middleware.Next()
+		return
+	}
+
+	if authorization == "" {
+		com.Response.JsonExit(r, gcode.CodeNotAuthorized.Code(), "请先登录！")
+		return
+	}
+
+	// TODO  获取jwtToken
+	jwtToken := consts.RedisJwtToken + gmd5.MustEncryptString(authorization)
+	jwtSign, _ := g.Cfg().Get(ctx, "jwt.sign", "hotgo")
+
+	data, ParseErr := com.Jwt.ParseToken(authorization, jwtSign.Bytes())
+	if ParseErr != nil {
+		com.Response.JsonExit(r, gcode.CodeNotAuthorized.Code(), "token不正确或已过期！", ParseErr.Error())
+	}
+
+	parseErr := gconv.Struct(data, &user)
+	if parseErr != nil {
+		com.Response.JsonExit(r, gcode.CodeNotAuthorized.Code(), "登录信息解析异常，请重新登录！", parseErr.Error())
+	}
+
+	// TODO  判断token跟redis的缓存的token是否一样
+	cache := com.Cache.New()
+	isContains, containsErr := cache.Contains(ctx, jwtToken)
+	if containsErr != nil {
+		com.Response.JsonExit(r, gcode.CodeNotAuthorized.Code(), "token无效！", containsErr.Error())
+		return
+	}
+	if !isContains {
+		com.Response.JsonExit(r, gcode.CodeNotAuthorized.Code(), "token已过期！")
+		return
+	}
+
+	// TODO  是否开启多端登录
+	if multiPort, _ := g.Cfg().Get(ctx, "jwt.multiPort", true); !multiPort.Bool() {
+		key := consts.RedisJwtUserBind + consts.AppAdmin + ":" + gconv.String(user.Id)
+		originJwtToken, originErr := cache.Get(ctx, key)
+		if originErr != nil {
+			com.Response.JsonExit(r, gcode.CodeNotAuthorized.Code(), "信息异常，请重新登录！", originErr.Error())
+			return
+		}
+
+		if originJwtToken == nil || originJwtToken.IsEmpty() {
+			com.Response.JsonExit(r, gcode.CodeNotAuthorized.Code(), "token已过期！")
+			return
+		}
+
+		if jwtToken != originJwtToken.String() {
+			com.Response.JsonExit(r, gcode.CodeNotAuthorized.Code(), "账号已在其他地方登录！")
+			return
+		}
+	}
+
+	// TODO  保存到上下文
+	customCtx := &model.Context{}
+	if user != nil {
+		customCtx.User = &model.Identity{
+			Id:         user.Id,
+			Username:   user.Username,
+			Realname:   user.Realname,
+			Avatar:     user.Avatar,
+			Email:      user.Email,
+			Mobile:     user.Mobile,
+			VisitCount: user.VisitCount,
+			LastTime:   user.LastTime,
+			LastIp:     user.LastIp,
+			Role:       user.Role,
+			Exp:        user.Exp,
+			Expires:    user.Expires,
+			App:        user.App,
+		}
+	}
+	com.Context.SetUser(ctx, customCtx.User)
+	com.Context.SetModule(ctx, consts.AppAdmin)
+
+	//// TODO  验证路由访问权限
+	//verify := adminService.Role.Verify(ctx, customCtx.User.Id, path)
+	//if !verify {
+	//	com.Response.JsonExit(r, gcode.CodeSecurityReason.Code(), "你没有访问权限！")
+	//	return
+	//}
+
+	r.Middleware.Next()
+}
--- a/hotgo-server/app/middleware/api_auth.go
+++ b/hotgo-server/app/middleware/api_auth.go
@@ -0,0 +1,127 @@
+//
+// @Link  https://github.com/bufanyun/hotgo
+// @Copyright  Copyright (c) 2022 HotGo CLI
+// @Author  Ms <133814250@qq.com>
+// @License  https://github.com/bufanyun/hotgo/blob/master/LICENSE
+//
+package middleware
+
+import (
+	"github.com/bufanyun/hotgo/app/com"
+	"github.com/bufanyun/hotgo/app/consts"
+	"github.com/bufanyun/hotgo/app/model"
+	"github.com/bufanyun/hotgo/app/utils"
+	"github.com/gogf/gf/v2/crypto/gmd5"
+	"github.com/gogf/gf/v2/errors/gcode"
+	"github.com/gogf/gf/v2/frame/g"
+	"github.com/gogf/gf/v2/net/ghttp"
+	"github.com/gogf/gf/v2/text/gstr"
+	"github.com/gogf/gf/v2/util/gconv"
+)
+
+//
+//  @Title  接口中间件
+//  @Description
+//  @Author  Ms <133814250@qq.com>
+//  @Param   r
+//
+func (s *sMiddleware) ApiAuth(r *ghttp.Request) {
+
+	var (
+		ctx           = r.Context()
+		user          = new(model.Identity)
+		authorization = com.Jwt.GetAuthorization(r)
+	)
+
+	// TODO  替换掉模块前缀
+	routerPrefix, _ := g.Cfg().Get(ctx, "router.api.prefix", "/api")
+	path := gstr.Replace(r.URL.Path, routerPrefix.String(), "", 1)
+
+	/// TODO  不需要验证登录的路由地址
+	if utils.Auth.IsExceptLogin(ctx, path) {
+		r.Middleware.Next()
+		return
+	}
+
+	if authorization == "" {
+		com.Response.JsonExit(r, gcode.CodeNotAuthorized.Code(), "请先登录！")
+		return
+	}
+
+	// TODO  获取jwtToken
+	jwtToken := consts.RedisJwtToken + gmd5.MustEncryptString(authorization)
+	jwtSign, _ := g.Cfg().Get(ctx, "jwt.sign", "hotgo")
+
+	data, ParseErr := com.Jwt.ParseToken(authorization, jwtSign.Bytes())
+	if ParseErr != nil {
+		com.Response.JsonExit(r, gcode.CodeNotAuthorized.Code(), "token不正确或已过期！", ParseErr.Error())
+	}
+
+	parseErr := gconv.Struct(data, &user)
+	if parseErr != nil {
+		com.Response.JsonExit(r, gcode.CodeNotAuthorized.Code(), "登录信息解析异常，请重新登录！", parseErr.Error())
+	}
+
+	// TODO  判断token跟redis的缓存的token是否一样
+	cache := com.Cache.New()
+	isContains, containsErr := cache.Contains(ctx, jwtToken)
+	if containsErr != nil {
+		com.Response.JsonExit(r, gcode.CodeNotAuthorized.Code(), "token无效！", containsErr.Error())
+		return
+	}
+	if !isContains {
+		com.Response.JsonExit(r, gcode.CodeNotAuthorized.Code(), "token已过期！")
+		return
+	}
+
+	// TODO  是否开启多端登录
+	if multiPort, _ := g.Cfg().Get(ctx, "jwt.multiPort", true); !multiPort.Bool() {
+		key := consts.RedisJwtUserBind + consts.AppApi + ":" + gconv.String(user.Id)
+		originJwtToken, originErr := cache.Get(ctx, key)
+		if originErr != nil {
+			com.Response.JsonExit(r, gcode.CodeNotAuthorized.Code(), "信息异常，请重新登录！", originErr.Error())
+			return
+		}
+
+		if originJwtToken == nil || originJwtToken.IsEmpty() {
+			com.Response.JsonExit(r, gcode.CodeNotAuthorized.Code(), "token已过期！")
+			return
+		}
+
+		if jwtToken != originJwtToken.String() {
+			com.Response.JsonExit(r, gcode.CodeNotAuthorized.Code(), "账号已在其他地方登录！")
+			return
+		}
+	}
+
+	// TODO  保存到上下文
+	customCtx := &model.Context{}
+	if user != nil {
+		customCtx.User = &model.Identity{
+			Id:         user.Id,
+			Username:   user.Username,
+			Realname:   user.Realname,
+			Avatar:     user.Avatar,
+			Email:      user.Email,
+			Mobile:     user.Mobile,
+			VisitCount: user.VisitCount,
+			LastTime:   user.LastTime,
+			LastIp:     user.LastIp,
+			Role:       user.Role,
+			Exp:        user.Exp,
+			Expires:    user.Expires,
+			App:        user.App,
+		}
+	}
+	com.Context.SetUser(ctx, customCtx.User)
+	com.Context.SetModule(ctx, consts.AppApi)
+
+	//// TODO  验证路由访问权限
+	//verify := adminService.Role.Verify(ctx, customCtx.User.Id, path)
+	//if !verify {
+	//	com.Response.JsonExit(r, gcode.CodeSecurityReason.Code(), "你没有访问权限！")
+	//	return
+	//}
+
+	r.Middleware.Next()
+}
--- a/hotgo-server/app/middleware/handler_response.go
+++ b/hotgo-server/app/middleware/handler_response.go
@@ -0,0 +1,74 @@
+//
+// @Link  https://github.com/bufanyun/hotgo
+// @Copyright  Copyright (c) 2022 HotGo CLI
+// @Author  Ms <133814250@qq.com>
+// @License  https://github.com/bufanyun/hotgo/blob/master/LICENSE
+//
+package middleware
+
+import (
+	"github.com/bufanyun/hotgo/app/com"
+	"github.com/bufanyun/hotgo/app/consts"
+	"github.com/bufanyun/hotgo/app/utils"
+	"github.com/gogf/gf/v2/errors/gcode"
+	"github.com/gogf/gf/v2/errors/gerror"
+	"github.com/gogf/gf/v2/frame/g"
+	"github.com/gogf/gf/v2/net/ghttp"
+)
+
+//
+//  @Title  全局响应中间件
+//  @Description
+//  @Author  Ms <133814250@qq.com>
+//  @Param   r
+//
+func (s *sMiddleware) HandlerResponse(r *ghttp.Request) {
+	r.Middleware.Next()
+
+	var (
+		ctx         = r.Context()
+		comResponse = com.Context.Get(ctx).ComResponse
+		code        = gcode.CodeOK.Code()
+		message     = "操作成功"
+		data        interface{}
+		err         error
+	)
+
+	if err := r.GetError(); err != nil {
+		g.Log().Print(ctx, err)
+		// 记录到自定义错误日志文件
+		//g.Log("exception").Error(err)
+		////返回固定的友好信息
+		//r.Response.ClearBuffer()
+		//r.Response.Writeln("服务器居然开小差了，请稍后再试吧！")
+	}
+
+	// TODO  已存在响应内容，且是comResponse返回的时，中断运行
+	if r.Response.BufferLength() > 0 && comResponse != nil {
+		return
+	}
+
+	if err = r.GetError(); err != nil {
+		// TODO  记录到自定义错误日志文件
+		g.Log("exception").Print(r.Context(), "exception:", err)
+
+		code = consts.CodeInternalError
+		message = "服务器居然开小差了，请稍后再试吧！"
+
+		// TODO  是否输出错误到页面
+		if debug, _ := g.Cfg().Get(ctx, "hotgo.debug", true); debug.Bool() {
+			data = utils.Charset.GetStack(err)
+		}
+
+	} else if data, err = r.GetHandlerResponse(); err != nil {
+		errCode := gerror.Code(err)
+		if errCode == gcode.CodeNil {
+			errCode = gcode.CodeInternalError
+		}
+		code = errCode.Code()
+		message = err.Error()
+	}
+
+	// TODO  返回固定的友好信息
+	com.Response.RJson(r, code, message, data)
+}
--- a/hotgo-server/app/middleware/middleware.go
+++ b/hotgo-server/app/middleware/middleware.go
@@ -0,0 +1,64 @@
+//
+// @Link  https://github.com/bufanyun/hotgo
+// @Copyright  Copyright (c) 2022 HotGo CLI
+// @Author  Ms <133814250@qq.com>
+// @License  https://github.com/bufanyun/hotgo/blob/master/LICENSE
+//
+package middleware
+
+import (
+	"github.com/bufanyun/hotgo/app/com"
+	"github.com/bufanyun/hotgo/app/model"
+	"github.com/gogf/gf/v2/frame/g"
+	"github.com/gogf/gf/v2/net/ghttp"
+	"github.com/gogf/gf/v2/util/grand"
+	"github.com/gogf/gf/v2/util/guid"
+	"go.opentelemetry.io/otel/trace"
+)
+
+type (
+	// sMiddleware is service struct of module Middleware.
+	sMiddleware struct{}
+)
+
+var (
+	// insMiddleware is the instance of service Middleware.
+	insMiddleware = sMiddleware{}
+)
+
+// Middleware returns the interface of Middleware service.
+func Instance() *sMiddleware {
+	return &insMiddleware
+}
+
+//
+//  @Title  初始化请求上下文
+//  @Description
+//  @Author  Ms <133814250@qq.com>
+//  @Param   r
+//
+func (s *sMiddleware) Ctx(r *ghttp.Request) {
+
+	spanCtx := trace.SpanContextFromContext(r.Context())
+
+	reqId := guid.S(grand.B(64))
+	if traceId := spanCtx.TraceID(); traceId.IsValid() {
+		reqId = traceId.String()
+	}
+
+	customCtx := &model.Context{
+		Data:    make(g.Map),
+		Request: r,
+		ReqId:   reqId,
+	}
+
+	com.Context.Init(r, customCtx)
+
+	r.Middleware.Next()
+}
+
+// CORS allows Cross-origin resource sharing.
+func (s *sMiddleware) CORS(r *ghttp.Request) {
+	r.Response.CORSDefault()
+	r.Middleware.Next()
+}