概要

生成jwt token

增加配置项

编辑config.go

$ vi ~/book/user/api/internal/config/config.go

新增jwt配置项后得到如下内容

package config

import (
  "github.com/tal-tech/go-zero/rest"
)

type Config struct {
  rest.RestConf
  Mysql struct {
    DataSource string
  }
  Auth struct {
    AccessSecret string
    AccessExpire int64
  }
}

编辑 user-api.yaml文件,增加Jwt配置后得到内容

Name: user-api
Host: 0.0.0.0
Port: 8888
Mysql:
  DataSource: user:password@tcp(127.0.0.1:3306)/gozero?charset=utf8mb4&parseTime=true&loc=Asia%2FShanghai
Auth:
  AccessSecret: ad879037-c7a4-4063-9236-6bfc35d54b7d
  AccessExpire: 86400

NOTE: userpassword需要替换为实际的值

修改loginlogic.go

增加方法getJwtToken

func (l *LoginLogic) getJwtToken(secretKey string, iat, seconds int64) (string, error) {
  claims := make(jwt.MapClaims)
  claims["exp"] = iat + seconds
  claims["iat"] = iat
  token := jwt.New(jwt.SigningMethodHS256)
  token.Claims = claims
  return token.SignedString([]byte(secretKey))
}

修改Login方法返回jwt token给客户端,最终代码为

package logic

import (
  "book/user/api/internal/svc"
  "book/user/api/internal/types"
  "book/user/model"
  "context"
  "time"

  "github.com/dgrijalva/jwt-go"
  "github.com/tal-tech/go-zero/core/logx"
)

type LoginLogic struct {
  logx.Logger
  ctx    context.Context
  svcCtx *svc.ServiceContext
}

func NewLoginLogic(ctx context.Context, svcCtx *svc.ServiceContext) LoginLogic {
  return LoginLogic{
    Logger: logx.WithContext(ctx),
    ctx:    ctx,
    svcCtx: svcCtx,
  }
}

func (l *LoginLogic) Login(req types.LoginReq) (*types.UserReply, error) {
  // 忽略逻辑校验
  userInfo, err := l.svcCtx.UserModel.FindOneByName(req.Username)
  switch err {
  case nil:
    if userInfo.Password != req.Password {
      return nil, errorIncorrectPassword
    }
    now := time.Now().Unix()
    accessExpire := l.svcCtx.Config.Auth.AccessExpire
    jwtToken, err := l.getJwtToken(l.svcCtx.Config.Auth.AccessSecret, now, accessExpire)
    if err != nil {
      return nil, err
    }

    return &types.UserReply{
      Id:       userInfo.Id,
      Username: userInfo.Name,
      Mobile:   userInfo.Mobile,
      Nickname: userInfo.Nickname,
      Gender:   userInfo.Gender,
      JwtToken: types.JwtToken{
        AccessToken:  jwtToken,
        AccessExpire: now + accessExpire,
        RefreshAfter: now + accessExpire/2,
      },
    }, nil
  case model.ErrNotFound:
    return nil, errorUsernameUnRegister
  default:
    return nil, err
  }
}

func (l *LoginLogic) getJwtToken(secretKey string, iat, seconds int64) (string, error) {
  claims := make(jwt.MapClaims)
  claims["exp"] = iat + seconds
  claims["iat"] = iat
  token := jwt.New(jwt.SigningMethodHS256)
  token.Claims = claims
  return token.SignedString([]byte(secretKey))
}

登录校验

启动user api服务,我们登录看看是否能够达到我们预期值

curl -i -X POST \
  http://127.0.0.1:8888/user/login \
  -H 'cache-control: no-cache' \
  -H 'content-type: application/json' \
  -d '{
        "username":"admin",
        "password":"666666"
}'