lanhu/platform
2
0
Fork 0
Code Issues Actions Packages Releases 12 Activity
Files
1374757eabe4b4f45db7b5daad152ae21b36cbfb
platform/web/services/auth.go

104 lines
2.7 KiB
Go
Raw Normal View History

认证授权主要流程实现
2025-03-18 17:57:07 +08:00
package services
import (
"context"
"errors"
"platform/web/models"
)
var Auth = &authService{}
type AuthServiceError string
func (e AuthServiceError) Error() string {
return string(e)
}
type AuthServiceOauthError string
func (e AuthServiceOauthError) Error() string {
return string(e)
}
var (
ErrOauthInvalidRequest = AuthServiceOauthError("invalid_request")
ErrOauthInvalidClient = AuthServiceOauthError("invalid_client")
ErrOauthInvalidGrant = AuthServiceOauthError("invalid_grant")
ErrOauthInvalidScope = AuthServiceOauthError("invalid_scope")
ErrOauthUnauthorizedClient = AuthServiceOauthError("unauthorized_client")
ErrOauthUnsupportedGrantType = AuthServiceOauthError("unsupported_grant_type")
)
认证授权测试代码与业务代码质量修复
2025-03-22 16:37:24 +08:00
type authService struct{}
认证授权主要流程实现
2025-03-18 17:57:07 +08:00
// OauthAuthorizationCode 验证授权码
func (s *authService) OauthAuthorizationCode(ctx context.Context, client *models.Client, code, redirectURI, codeVerifier string) (*TokenDetails, error) {
// TODO: 从数据库验证授权码
return nil, errors.New("TODO")
}
// OauthClientCredentials 验证客户端凭证
认证授权测试代码与业务代码质量修复
2025-03-22 16:37:24 +08:00
func (s *authService) OauthClientCredentials(ctx context.Context, client *models.Client, scope ...string) (*TokenDetails, error) {
认证授权主要流程实现
2025-03-18 17:57:07 +08:00
var clientType PayloadType
switch client.Spec {
case 0:
clientType = PayloadClientConfidential
case 1:
clientType = PayloadClientPublic
case 2:
认证授权测试代码与业务代码质量修复
2025-03-22 16:37:24 +08:00
clientType = PayloadClientPublic
}
var permissions = make(map[string]struct{}, len(scope))
for _, item := range scope {
permissions[item] = struct{}{}
认证授权主要流程实现
2025-03-18 17:57:07 +08:00
}
// 保存会话并返回令牌
auth := AuthContext{
认证授权测试代码与业务代码质量修复
2025-03-22 16:37:24 +08:00
Permissions: permissions,
认证授权主要流程实现
2025-03-18 17:57:07 +08:00
Payload: Payload{
Id: client.ID,
完善登录与鉴权机制
2025-03-28 15:01:30 +08:00
Type: clientType,
Name: client.Name,
认证授权主要流程实现
2025-03-18 17:57:07 +08:00
},
}
// todo 数据库定义会话持续时间
token, err := Session.Create(ctx, auth)
if err != nil {
return nil, err
}
return token, nil
}
// OauthRefreshToken 验证刷新令牌
func (s *authService) OauthRefreshToken(ctx context.Context, client *models.Client, refreshToken string, scope ...[]string) (*TokenDetails, error) {
// TODO: 从数据库验证刷新令牌
完成白名单接口
2025-04-08 09:35:19 +08:00
details, err := Session.Refresh(ctx, refreshToken)
if err != nil {
return nil, err
}
return details, nil
认证授权主要流程实现
2025-03-18 17:57:07 +08:00
}
完善登录逻辑,登录接口统一到 /token
2025-04-23 19:01:08 +08:00
type OauthGrantType string
认证授权主要流程实现
2025-03-18 17:57:07 +08:00
const (
完善登录逻辑,登录接口统一到 /token
2025-04-23 19:01:08 +08:00
OauthGrantTypeAuthorizationCode = OauthGrantType("authorization_code")
OauthGrantTypeClientCredentials = OauthGrantType("client_credentials")
OauthGrantTypeRefreshToken = OauthGrantType("refresh_token")
OauthGrantTypePassword = OauthGrantType("password")
)
type OauthGrantLoginType string
const (
OauthGrantPasswordTypePassword = OauthGrantLoginType("password")
OauthGrantPasswordTypePhoneCode = OauthGrantLoginType("phone_code")
OauthGrantPasswordTypeEmailCode = OauthGrantLoginType("email_code")
认证授权主要流程实现
2025-03-18 17:57:07 +08:00
)
Reference in New Issue Copy Permalink