mayfly-go/server/pkg/req/permission_handler.go

package req

import (
	"encoding/json"
	"fmt"
	"mayfly-go/pkg/biz"
	"mayfly-go/pkg/cache"
	"mayfly-go/pkg/config"
	"mayfly-go/pkg/rediscli"
	"mayfly-go/pkg/utils/stringx"
	"time"
)

type Permission struct {
	NeedToken bool   // 是否需要token
	Code      string // 权限code
}

func NewPermission(code string) *Permission {
	return &Permission{NeedToken: true, Code: code}
}

var (
	permissionCodeRegistry PermissionCodeRegistry
)

func PermissionHandler(rc *Ctx) error {
	if permissionCodeRegistry == nil {
		if rediscli.GetCli() == nil {
			permissionCodeRegistry = new(DefaultPermissionCodeRegistry)
		} else {
			permissionCodeRegistry = new(RedisPermissionCodeRegistry)
		}
	}

	var permission *Permission
	if rc.Conf != nil {
		permission = rc.Conf.requiredPermission
	}
	// 如果需要的权限信息不为空，并且不需要token，则不返回错误，继续后续逻辑
	if permission != nil && !permission.NeedToken {
		return nil
	}
	tokenStr := rc.GinCtx.Request.Header.Get("Authorization")
	// header不存在则从查询参数token中获取
	if tokenStr == "" {
		tokenStr = rc.GinCtx.Query("token")
	}
	if tokenStr == "" {
		return biz.PermissionErr
	}
	loginAccount, err := ParseToken(tokenStr)
	if err != nil || loginAccount == nil {
		return biz.PermissionErr
	}
	// 权限不为nil，并且permission code不为空，则校验是否有权限code
	if permission != nil && permission.Code != "" {
		if !permissionCodeRegistry.HasCode(loginAccount.Id, permission.Code) {
			return biz.PermissionErr
		}
	}

	rc.LoginAccount = loginAccount
	return nil
}

// 保存用户权限code
func SavePermissionCodes(userId uint64, codes []string) {
	permissionCodeRegistry.SaveCodes(userId, codes)
}

// 删除用户权限code
func DeletePermissionCodes(userId uint64) {
	permissionCodeRegistry.Remove(userId)
}

// 设置权限code注册器
func SetPermissionCodeRegistery(pcr PermissionCodeRegistry) {
	permissionCodeRegistry = pcr
}

type PermissionCodeRegistry interface {
	// 保存用户权限code
	SaveCodes(userId uint64, codes []string)

	// 判断用户是否拥有该code的权限
	HasCode(userId uint64, code string) bool

	Remove(userId uint64)
}

type DefaultPermissionCodeRegistry struct {
	cache *cache.TimedCache
}

func (r *DefaultPermissionCodeRegistry) SaveCodes(userId uint64, codes []string) {
	if r.cache == nil {
		r.cache = cache.NewTimedCache(time.Minute*time.Duration(config.Conf.Jwt.ExpireTime), 5*time.Second)
	}
	r.cache.Put(fmt.Sprintf("%v", userId), codes)
}

func (r *DefaultPermissionCodeRegistry) HasCode(userId uint64, code string) bool {
	if r.cache == nil {
		return false
	}
	codes, found := r.cache.Get(fmt.Sprintf("%v", userId))
	if !found {
		return false
	}
	for _, v := range codes.([]string) {
		if v == code {
			return true
		}
	}
	return false
}

func (r *DefaultPermissionCodeRegistry) Remove(userId uint64) {
	r.cache.Delete(fmt.Sprintf("%v", userId))
}

type RedisPermissionCodeRegistry struct {
}

func (r *RedisPermissionCodeRegistry) SaveCodes(userId uint64, codes []string) {
	rediscli.Set(fmt.Sprintf("mayfly:%v:codes", userId), stringx.AnyToStr(codes), time.Minute*time.Duration(config.Conf.Jwt.ExpireTime))
}

func (r *RedisPermissionCodeRegistry) HasCode(userId uint64, code string) bool {
	str, err := rediscli.Get(fmt.Sprintf("mayfly:%v:codes", userId))
	if err != nil || str == "" {
		return false
	}

	var codes []string
	_ = json.Unmarshal([]byte(str), &codes)
	for _, v := range codes {
		if v == code {
			return true
		}
	}
	return false
}

func (r *RedisPermissionCodeRegistry) Remove(userId uint64) {
	rediscli.Del(fmt.Sprintf("mayfly:%v:codes", userId))
}
-												refactor: 包名变更ctx -> req

											
										
										
											2023-01-14 16:29:52 +08:00
+								package req
-												feat: 目录及代码优化调整

											
										
										
											2021-03-24 17:18:39 +08:00
 								import (
-												feat: 支持redis缓存权限等信息

											
										
										
											2022-12-26 20:53:07 +08:00
+									"encoding/json"
-												feat: 增加后端权限控制

											
										
										
											2021-06-09 16:58:57 +08:00
+									"fmt"
-												refactor: 后端包结构重构、去除无用的文件

											
										
										
											2022-06-02 17:41:11 +08:00
+									"mayfly-go/pkg/biz"
 									"mayfly-go/pkg/cache"
 									"mayfly-go/pkg/config"
-												feat: 支持redis缓存权限等信息

											
										
										
											2022-12-26 20:53:07 +08:00
+									"mayfly-go/pkg/rediscli"
-												feat: 代码优化、机器计划任务完善

											
										
										
											2023-07-21 17:07:04 +08:00
+									"mayfly-go/pkg/utils/stringx"
-												feat: 增加后端权限控制

											
										
										
											2021-06-09 16:58:57 +08:00
+									"time"
-												feat: 目录及代码优化调整

											
										
										
											2021-03-24 17:18:39 +08:00
+								)
-												简单基于DDD重构，并实现机器文件及脚本管理

											
										
										
											2021-05-08 18:00:33 +08:00
+								type Permission struct {
-												feat: 增加后端权限控制

											
										
										
											2021-06-09 16:58:57 +08:00
+									NeedToken bool   // 是否需要token
 									Code      string // 权限code
-												feat: 目录及代码优化调整

											
										
										
											2021-03-24 17:18:39 +08:00
+								}
-												feat: 增加后端权限控制

											
										
										
											2021-06-09 16:58:57 +08:00
+								func NewPermission(code string) *Permission {
 									return &Permission{NeedToken: true, Code: code}
 								}
-												feat: 支持redis缓存权限等信息

											
										
										
											2022-12-26 20:53:07 +08:00
+								var (
 									permissionCodeRegistry PermissionCodeRegistry
 								)
-												refactor: 包名变更ctx -> req

											
										
										
											2023-01-14 16:29:52 +08:00
+								func PermissionHandler(rc *Ctx) error {
-												feat: 支持redis缓存权限等信息

											
										
										
											2022-12-26 20:53:07 +08:00
+									if permissionCodeRegistry == nil {
 										if rediscli.GetCli() == nil {
 											permissionCodeRegistry = new(DefaultPermissionCodeRegistry)
 										} else {
 											permissionCodeRegistry = new(RedisPermissionCodeRegistry)
 										}
 									}
-												refactor: 后端路由定义方式&请求参数绑定重构

											
										
										
											2023-07-08 20:05:55 +08:00
+									var permission *Permission
 									if rc.Conf != nil {
 										permission = rc.Conf.requiredPermission
 									}
-												feat: 支持redis缓存权限等信息

											
										
										
											2022-12-26 20:53:07 +08:00
+									// 如果需要的权限信息不为空，并且不需要token，则不返回错误，继续后续逻辑
 									if permission != nil && !permission.NeedToken {
 										return nil
 									}
 									tokenStr := rc.GinCtx.Request.Header.Get("Authorization")
 									// header不存在则从查询参数token中获取
 									if tokenStr == "" {
 										tokenStr = rc.GinCtx.Query("token")
 									}
 									if tokenStr == "" {
 										return biz.PermissionErr
 									}
 									loginAccount, err := ParseToken(tokenStr)
 									if err != nil || loginAccount == nil {
 										return biz.PermissionErr
 									}
 									// 权限不为nil，并且permission code不为空，则校验是否有权限code
 									if permission != nil && permission.Code != "" {
 										if !permissionCodeRegistry.HasCode(loginAccount.Id, permission.Code) {
 											return biz.PermissionErr
 										}
 									}
 									rc.LoginAccount = loginAccount
 									return nil
 								}
 								// 保存用户权限code
 								func SavePermissionCodes(userId uint64, codes []string) {
 									permissionCodeRegistry.SaveCodes(userId, codes)
 								}
 								// 删除用户权限code
 								func DeletePermissionCodes(userId uint64) {
 									permissionCodeRegistry.Remove(userId)
 								}
 								// 设置权限code注册器
 								func SetPermissionCodeRegistery(pcr PermissionCodeRegistry) {
 									permissionCodeRegistry = pcr
 								}
-												feat: 增加后端权限控制

											
										
										
											2021-06-09 16:58:57 +08:00
+								type PermissionCodeRegistry interface {
 									// 保存用户权限code
 									SaveCodes(userId uint64, codes []string)
 									// 判断用户是否拥有该code的权限
 									HasCode(userId uint64, code string) bool
 									Remove(userId uint64)
 								}
 								type DefaultPermissionCodeRegistry struct {
 									cache *cache.TimedCache
 								}
 								func (r *DefaultPermissionCodeRegistry) SaveCodes(userId uint64, codes []string) {
 									if r.cache == nil {
-												feat: 完善数据库信息保存以及项目、redis相关操作

											
										
										
											2021-07-28 18:03:19 +08:00
+										r.cache = cache.NewTimedCache(time.Minute*time.Duration(config.Conf.Jwt.ExpireTime), 5*time.Second)
-												feat: 增加后端权限控制

											
										
										
											2021-06-09 16:58:57 +08:00
+									}
 									r.cache.Put(fmt.Sprintf("%v", userId), codes)
 								}
 								func (r *DefaultPermissionCodeRegistry) HasCode(userId uint64, code string) bool {
 									if r.cache == nil {
 										return false
 									}
 									codes, found := r.cache.Get(fmt.Sprintf("%v", userId))
 									if !found {
 										return false
 									}
 									for _, v := range codes.([]string) {
 										if v == code {
 											return true
 										}
 									}
 									return false
 								}
 								func (r *DefaultPermissionCodeRegistry) Remove(userId uint64) {
 									r.cache.Delete(fmt.Sprintf("%v", userId))
 								}
-												feat: 支持redis缓存权限等信息

											
										
										
											2022-12-26 20:53:07 +08:00
+								type RedisPermissionCodeRegistry struct {
-												feat: 增加后端权限控制

											
										
										
											2021-06-09 16:58:57 +08:00
+								}
-												feat: 支持redis缓存权限等信息

											
										
										
											2022-12-26 20:53:07 +08:00
+								func (r *RedisPermissionCodeRegistry) SaveCodes(userId uint64, codes []string) {
-												feat: 代码优化、机器计划任务完善

											
										
										
											2023-07-21 17:07:04 +08:00
+									rediscli.Set(fmt.Sprintf("mayfly:%v:codes", userId), stringx.AnyToStr(codes), time.Minute*time.Duration(config.Conf.Jwt.ExpireTime))
-												feat: 增加后端权限控制

											
										
										
											2021-06-09 16:58:57 +08:00
+								}
-												feat: 支持redis缓存权限等信息

											
										
										
											2022-12-26 20:53:07 +08:00
+								func (r *RedisPermissionCodeRegistry) HasCode(userId uint64, code string) bool {
 									str, err := rediscli.Get(fmt.Sprintf("mayfly:%v:codes", userId))
 									if err != nil || str == "" {
 										return false
-												feat: 目录及代码优化调整

											
										
										
											2021-03-24 17:18:39 +08:00
+									}
-												feat: 支持redis缓存权限等信息

											
										
										
											2022-12-26 20:53:07 +08:00
 									var codes []string
 									_ = json.Unmarshal([]byte(str), &codes)
 									for _, v := range codes {
 										if v == code {
 											return true
-												feat: 增加后端权限控制

											
										
										
											2021-06-09 16:58:57 +08:00
+										}
 									}
-												feat: 支持redis缓存权限等信息

											
										
										
											2022-12-26 20:53:07 +08:00
+									return false
 								}
-												feat: 增加后端权限控制

											
										
										
											2021-06-09 16:58:57 +08:00
-												feat: 支持redis缓存权限等信息

											
										
										
											2022-12-26 20:53:07 +08:00
+								func (r *RedisPermissionCodeRegistry) Remove(userId uint64) {
 									rediscli.Del(fmt.Sprintf("mayfly:%v:codes", userId))
-												feat: 目录及代码优化调整

											
										
										
											2021-03-24 17:18:39 +08:00
+								}