course/starbook/session-get-user-info #114

2024-12-09T09:38:18Z

giscus[bot]
bot Dec 9, 2024

course/starbook/session-get-user-info

用户信息接口需要登录后才能访问，并通过中间件统一验证Token的有效性。GoFrame框架提供了灵活的中间件机制，支持请求前后操作。通过Auth中间件验证HTTP请求中的Token，在Logic中解析Token获取用户信息，并通过定义Api和Controller调用控制器进行接口注册，实现用户信息接口的访问控制和权限认证。

https://goframe.org/course/starbook/session-get-user-info

Abner3721 · 2024-12-09T09:38:19Z

Abner3721
Dec 9, 2024 — with giscus

这个少步骤了，缺少account_new.go文件，和star/internal/controller/account
/account.go文件

2 replies

Abner3721 Dec 9, 2024 — with giscus

还缺少api/account/account.go这个文件

oldme-git Dec 17, 2024 — with giscus
Collaborator

这两个文件是自动生成的，用到才需编写

walkmiao · 2024-12-18T07:52:26Z

walkmiao
Dec 18, 2024 — with giscus

为什么我这个g.RequestFromCtx(ctx).Request 为 nil 和上面代码一致

0 replies

coinpwd · 2025-01-05T02:02:01Z

coinpwd
Jan 5, 2025 — with giscus

"star/utility"中并没有设置 jwtKey，配置了jwtkey的路径在	"star/internal/consts"

jwtKey = utility.JwtKey

0 replies

coinpwd · 2025-01-05T13:26:56Z

coinpwd
Jan 5, 2025 — with giscus

token signature is invalid: key is of invalid type: HMAC verify expects []byte
需要改 jwtKey = []byte(consts.JwtKey) // 确保密钥是 []byte 类型

0 replies

ichenyy · 2025-01-20T10:04:51Z

ichenyy
Jan 20, 2025 — with giscus

这句代码需要调整一下：

token, err := jwt.Parse(tokenString, func(token *jwt.Token) (interface{}, error) {  
       return jwtKey, nil  
})

改成：

token, err := jwt.Parse(tokenString, func(token *jwt.Token) (interface{}, error) {  
       return []byte(jwtKey), nil  
})

1 reply

Abner3721 Feb 3, 2025 — with giscus

这个教程咋各种问题，跟着教程都走不通。

Abner3721 · 2025-02-03T14:15:02Z

Abner3721
Feb 3, 2025 — with giscus

internal/logic/middleware/auth.go
这个文件的return consts.JwtKey, nil 地方应该改成切片的形式如：return []byte(consts.JwtKey), nil
整个文件代码如下：

package middleware

import (
"net/http"

"star/internal/consts"

"github.com/gogf/gf/v2/net/ghttp"
"github.com/golang-jwt/jwt/v5"

)

func Auth(r *ghttp.Request) {
var tokenString = r.Header.Get("Authorization")
token, err := jwt.Parse(tokenString, func(token *jwt.Token) (interface{}, error) {
return []byte(consts.JwtKey), nil
})
if err != nil || !token.Valid {
r.Response.WriteStatus(http.StatusForbidden)
r.Exit()
}
r.Middleware.Next()
}

/internal/logic/users/users_account.go

这个文件里面的代码consts.JwtKey 应该改成切片的形式如：[]byte(consts.JwtKey)
整个文件的代码如下：
package users

import (
"context"
"time"

"star/internal/consts"
"star/internal/dao"
"star/internal/model/entity"

"github.com/gogf/gf/v2/errors/gerror"
"github.com/gogf/gf/v2/frame/g"
"github.com/golang-jwt/jwt/v5"

)

type jwtClaims struct {
Id uint
Username string
jwt.RegisteredClaims
}

func (u *Users) Login(ctx context.Context, username, password string) (tokenString string, err error) {
var user entity.Users
err = dao.Users.Ctx(ctx).Where("username", username).Scan(&user)
if err != nil {
return "", gerror.New("用户名或密码错误")
}

if user.Id == 0 {
	return "", gerror.New("用户不存在")
}

// 将密码加密后与数据库中的密码进行比对
if user.Password != u.encryptPassword(password) {
	return "", gerror.New("用户名或密码错误")
}

// 生成token
uc := &jwtClaims{
	Id:       user.Id,
	Username: user.Username,
	RegisteredClaims: jwt.RegisteredClaims{
		ExpiresAt: jwt.NewNumericDate(time.Now().Add(6 * time.Hour)),
	},
}
token := jwt.NewWithClaims(jwt.SigningMethodHS256, uc)
return token.SignedString([]byte(consts.JwtKey))

}

func (u *Users) Info(ctx context.Context) (user *entity.Users, err error) {
tokenString := g.RequestFromCtx(ctx).Request.Header.Get("Authorization")
tokenClaims, _ := jwt.ParseWithClaims(tokenString, &jwtClaims{}, func(token *jwt.Token) (interface{}, error) {
return []byte(consts.JwtKey), nil
})

if claims, ok := tokenClaims.Claims.(*jwtClaims); ok && tokenClaims.Valid {
	err = dao.Users.Ctx(ctx).Where("id", claims.Id).Scan(&user)
}
return

}

0 replies

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

course/starbook/session-get-user-info #114

{{title}}

Replies: 6 comments 3 replies

{{title}}

{{title}}

{{title}}

{{title}}

{{title}}

{{title}}

{{title}}

{{title}}

{{title}}

Select a reply

course/starbook/session-get-user-info #114

giscus[bot] bot Dec 9, 2024

course/starbook/session-get-user-info

Replies: 6 comments · 3 replies

Abner3721 Dec 9, 2024 — with giscus

Abner3721 Dec 9, 2024 — with giscus

oldme-git Dec 17, 2024 — with giscus Collaborator

walkmiao Dec 18, 2024 — with giscus

coinpwd Jan 5, 2025 — with giscus

coinpwd Jan 5, 2025 — with giscus

ichenyy Jan 20, 2025 — with giscus

Abner3721 Feb 3, 2025 — with giscus

Abner3721 Feb 3, 2025 — with giscus

giscus[bot]
bot Dec 9, 2024

Replies: 6 comments 3 replies

Abner3721
Dec 9, 2024 — with giscus

oldme-git Dec 17, 2024 — with giscus
Collaborator

walkmiao
Dec 18, 2024 — with giscus

coinpwd
Jan 5, 2025 — with giscus

coinpwd
Jan 5, 2025 — with giscus

ichenyy
Jan 20, 2025 — with giscus

Abner3721
Feb 3, 2025 — with giscus