MTP2.0_New
/
MTP20_IF


			
				
					
						
						
							123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475
							package token

import (
	"errors"
	"fmt"
	"mtp2_if/config"
	"mtp2_if/global/e"
	"mtp2_if/rediscli"
	"net/http"
	"strings"

	"github.com/gin-gonic/gin"
)

// CheckToken Token校验
func CheckToken(loginid string, token string) error {
	key := fmt.Sprintf("monitor:online_loginid::%s", loginid)
	field := "Token"

	realToken, err := rediscli.GetRedisClient().HGet(key, field).Result()
	if err != nil {
		return err
	}

	if realToken != token {
		return errors.New("token is invalid")
	}

	return nil
}

// Auth Token校验中间件
func Auth() gin.HandlerFunc {
	return func(c *gin.Context) {
		if config.SerCfg.GetDebugMode() {
			c.Next()
			return
		}

		var code int
		var data interface{}

		code = e.SUCCESS
		token := c.GetHeader("Authorization")
		if token == "" {
			// Token缺失
			code = e.ERROR_AUTH_CHECK_TOKEN_MISSING
		} else {
			// 获取loginid
			s := strings.Split(token, "_")
			loginid := s[0]
			if err := CheckToken(loginid, token); err != nil {
				// Token错误
				code = e.ERROR_AUTH_CHECK_TOKEN_FAIL
			}
		}

		// Token检验失败
		if code != e.SUCCESS {
			c.JSON(http.StatusUnauthorized, gin.H{
				"code": code,
				"msg":  e.GetMsg(code),
				"data": data,
			})

			c.Abort()
			return
		}

		// FIXME: - 针对POST接口，应判断传入TOKEN对应的用户是否正确（比如判断UserID或AccountID是否对得上等），后期处理

		// Token检验成功
		c.Next()
	}
}