Losita/smartmate
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
5038ec2fc535331ab9a36488fce5882a2521ec45
smartmate/backend/api/user.go
LoveLosita 5038ec2fc5 Version:0.0.2.dev.260203 
feat: implement redis-based logout and jwt middleware 🚀 feat: 实现基于 Redis 的登出机制与 JWT 中间件 🚀

Middleware Construction: Implemented JWTTokenAuth middleware for Gin, featuring structured claims parsing and active session validation. 🛡️
中间件构建:为 Gin 框架实现了 JWTTokenAuth 中间件,支持结构化 Claims 解析与活跃会话验证。🛡️

Redis Integration: Introduced Redis for high-performance state management. Integrated CacheDAO into the Dependency Injection (DI) chain. 
Redis 引入:引入 Redis 进行高性能状态管理。将 CacheDAO 成功集成至依赖注入 (DI) 调用链中。

Secure Logout Module: Developed the logout functional module using a Redis Blacklist mechanism. 🔐
安全登出模块:开发了基于 Redis 黑名单 机制的登出功能模块。🔐

Marked invalidated tokens by storing jti (JWT ID) in Redis with automatic TTL expiration.
通过在 Redis 中存储 jti(JWT 唯一标识)并设置自动 TTL 过期,实现 Token 的主动失效。

Added blacklist checkpoints in both AuthMiddleware and RefreshToken logic to prevent session resurrection.
在认证中间件与 Token 刷新逻辑中同步增设黑名单检查点,杜绝登出后的“死灰复燃”。

Architecture Refinement: Upgraded ValidateRefreshToken and Service-layer handlers to use type-safe struct assertions instead of raw MapClaims. 🏗️
架构精进:升级了 ValidateRefreshToken 与 Service 层处理器,改用类型安全的结构体断言取代原始的 MapClaims,提升了代码健壮性。🏗️
2026-02-03 16:53:16 +08:00

111 lines
3.2 KiB
Go
Raw Blame History

This file contains ambiguous Unicode characters
This file contains Unicode characters that might be confused with other characters. If you think that this is intentional, you can safely ignore this warning. Use the Escape button to reveal them.
// Package api 定义API接口层
// 包含所有对外暴露的HTTP接口定义
package api
import (
"errors"
"net/http"
"github.com/LoveLosita/smartflow/backend/model"
"github.com/LoveLosita/smartflow/backend/respond"
"github.com/LoveLosita/smartflow/backend/service"
"github.com/gin-gonic/gin"
)
type UserHandler struct {
// 伸出手:准备接住 Service
svc *service.UserService
}
// NewUserHandler组装 Handler 的“工厂”
func NewUserHandler(svc *service.UserService) *UserHandler {
return &UserHandler{
svc: svc, // 把传进来的 Service 揣进口袋里
}
}
// UserRegister 用户注册API
// 处理用户注册请求
func (api *UserHandler) UserRegister(c *gin.Context) {
var user model.UserRegisterRequest
err := c.ShouldBindJSON(&user)
if err != nil {
c.JSON(http.StatusBadRequest, respond.WrongParamType)
return
}
retUser, err := api.svc.UserRegister(user)
if err != nil {
switch {
case errors.Is(err, respond.InvalidName), errors.Is(err, respond.MissingParam),
errors.Is(err, respond.ParamTooLong): //如果是无效ID或者缺少参数的错误
c.JSON(http.StatusBadRequest, err)
return
default:
c.JSON(http.StatusInternalServerError, respond.InternalError(err))
return
}
}
c.JSON(http.StatusOK, respond.OKWithData(respond.Ok, retUser))
}
func (api *UserHandler) UserLogin(c *gin.Context) {
var req model.UserLoginRequest
err := c.ShouldBindJSON(&req)
if err != nil {
c.JSON(http.StatusOK, respond.WrongParamType)
return
}
tokens, err := api.svc.UserLogin(&req)
if err != nil {
switch {
case errors.Is(err, respond.WrongName), errors.Is(err, respond.WrongPwd): //如果是无效ID或者缺少参数的错误
c.JSON(http.StatusBadRequest, err)
return
default:
c.JSON(http.StatusInternalServerError, respond.InternalError(err))
return
}
}
c.JSON(http.StatusOK, respond.OKWithData(respond.Ok, tokens))
}
func (api *UserHandler) RefreshTokenHandler(c *gin.Context) {
var requestBody struct {
RefreshToken string `json:"old_refresh_token"`
}
if err := c.ShouldBindJSON(&requestBody); err != nil {
c.JSON(http.StatusBadRequest, respond.WrongParamType)
return
}
if requestBody.RefreshToken == "" {
c.JSON(http.StatusBadRequest, respond.MissingParam)
}
tokens, err := api.svc.RefreshTokenHandler(requestBody.RefreshToken)
if err != nil {
switch {
case errors.Is(err, respond.InvalidRefreshToken), errors.Is(err, respond.InvalidClaims),
errors.Is(err, respond.InvalidTokenSingingMethod), errors.Is(err, respond.UserLoggedOut): //如果是无效刷新令牌或者无效claims或者无效签名方法
c.JSON(http.StatusBadRequest, err)
return
default:
c.JSON(http.StatusInternalServerError, respond.InternalError(err))
}
}
c.JSON(http.StatusOK, respond.OKWithData(respond.Ok, tokens))
}
func (api *UserHandler) UserLogout(c *gin.Context) {
//1.从上下文中获取 jti 和 expireTime
claims, _ := c.Get("claims")
cl := claims.(*model.MyCustomClaims)
//2.调用 Service 层的 UserLogout 方法
err := api.svc.UserLogout(cl.Jti, cl.ExpiresAt.Time)
if err != nil {
c.JSON(http.StatusInternalServerError, respond.InternalError(err))
return
}
c.JSON(http.StatusOK, respond.Ok)
}
Reference in New Issue View Git Blame Copy Permalink