35 lines
828 B
Go
35 lines
828 B
Go
package middleware
|
|
|
|
import (
|
|
"net/http"
|
|
"strings"
|
|
|
|
"0451meishiditu/backend/internal/auth"
|
|
"0451meishiditu/backend/internal/config"
|
|
"0451meishiditu/backend/internal/resp"
|
|
|
|
"github.com/gin-gonic/gin"
|
|
)
|
|
|
|
func AdminJWT(cfg config.Config) gin.HandlerFunc {
|
|
return func(c *gin.Context) {
|
|
h := strings.TrimSpace(c.GetHeader("Authorization"))
|
|
if !strings.HasPrefix(strings.ToLower(h), "bearer ") {
|
|
resp.Fail(c, http.StatusUnauthorized, "missing token")
|
|
c.Abort()
|
|
return
|
|
}
|
|
token := strings.TrimSpace(h[len("bearer "):])
|
|
claims, err := auth.ParseAdminToken(cfg.JWTSecret, token)
|
|
if err != nil {
|
|
resp.Fail(c, http.StatusUnauthorized, "invalid token")
|
|
c.Abort()
|
|
return
|
|
}
|
|
c.Set("admin_id", claims.AdminID)
|
|
c.Set("admin_username", claims.Username)
|
|
c.Set("admin_role", claims.Role)
|
|
c.Next()
|
|
}
|
|
}
|