持久化Token

2026-02-06 05:30:05 +00:00 · 2019-12-20 23:58:09 +08:00
parent af146872fe
commit 70f0e92343
13 changed files with 82 additions and 55 deletions
--- a/pkg/mygin/auth.go
+++ b/pkg/mygin/auth.go
@@ -2,6 +2,7 @@ package mygin

 import (
 	"net/http"
+	"strings"
 	"time"

 	"github.com/gin-gonic/gin"
@@ -24,6 +25,7 @@ type AuthorizeOption struct {
 func Authorize(opt AuthorizeOption) func(*gin.Context) {
 	return func(c *gin.Context) {
 		token, err := c.Cookie(dao.Conf.Site.CookieName)
+		token = strings.TrimSpace(token)
 		var code uint64 = http.StatusForbidden
 		if opt.Guest {
 			code = http.StatusBadRequest
@@ -35,12 +37,18 @@ func Authorize(opt AuthorizeOption) func(*gin.Context) {
 			Link:  opt.Redirect,
 			Btn:   opt.Btn,
 		}
-		var isLogin bool
-		if err == nil {
-			isLogin = token == dao.Admin.Token && dao.Admin.Token != "" &&
-				dao.Admin.TokenExpired.After(time.Now())
+		if token != "" {
+
+		}
+		var isLogin bool
+		var u model.User
+		err = dao.DB.Where("token = ?", token).First(&u).Error
+		if err == nil {
+			isLogin = u.TokenExpired.After(time.Now())
+		}
+		if isLogin {
+			c.Set(model.CtxKeyAuthorizedUser, &u)
 		}
-		c.Set(model.CtxKeyIsUserLogin, isLogin)
 		// 已登录且只能游客访问
 		if isLogin && opt.Guest {
 			ShowErrorPage(c, commonErr, opt.IsPage)