Inicio Explorar Axuda
Iniciar sesión
urbanu619
/
lucky_bot
1
0
Fork 0
Ficheiros Incidencias 0 Pull Requests 0 Wiki
Árbore: 8d4dceef6d
Ramas Etiquetas
lucky_bot
/
magic_admin
/
base
/
engine
/
middleware
/
auth.go

auth.go 985 B
Histórico Raw

12345678910111213141516171819202122232425262728293031323334353637 
  1. package middleware
    2. 

  2. 

  3. import (
    4. 

  4. 	"fmt"
    5. 

  5. 	"github.com/gin-gonic/gin"
    6. 

  6. 	"github.com/samber/lo"
    7. 

  7. 	"go_server/base/core"
    8. 

  8. 	"go_server/model/common/response"
    9. 

  9. 	"go_server/model/system"
    10. 

  10. 	"net/http"
    11. 

  11. 	"strings"
    12. 

  12. )
    13. 

  13. 

  14. func Auth() gin.HandlerFunc {
    15. 

  15. 	return func(c *gin.Context) {
    16. 

  16. 		path := c.Request.URL.Path
    17. 

  17. 		// /proxy/*path
    18. 

  18. 		// /api/app/login/check
    19. 

  19. 		// /api/sys/user/find
    20. 

  20. 		api, err := system.NewApis().FindOrCreateAuth(core.MainDb(), path, c.Request.Method)
    21. 

  21. 		if err == nil {
    22. 

  22. 			// 必须存在用户ID 角色ID
    23. 

  23. 			roleId := c.GetInt64("roleId")
    24. 

  24. 			var role *system.Role
    25. 

  25. 			core.MainDb().Model(&system.Role{}).Where("id", roleId).First(&role)
    26. 

  26. 			if role.Apis != "*" {
    27. 

  27. 				authsList := strings.Split(role.Apis, ",") // 通过缓存获取角色配置的权限
    28. 

  28. 				if !lo.Contains(authsList, fmt.Sprintf("%d", api.ID)) {
    29. 

  29. 					c.AbortWithStatusJSON(http.StatusUnauthorized, response.ErrorObjByCode(response.ResponseCodeInsufficientAuthority))
    30. 

  30. 					return
    31. 

  31. 				}
    32. 

  32. 			}
    33. 

  33. 		}
    34. 

  34. 		// 继续执行
    35. 

  35. 		c.Next()
    36. 

  36. 	}
    37. 

  37. }
    38.