mnt-ltd
/
moredoc
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'master'
${ noResults }
moredoc/biz/util.go

70 lines
2.0 KiB
Raw Permalink Blame History

package biz
import (
"context"
"errors"
"fmt"
"moredoc/middleware/auth"
"moredoc/model"
"net/http"
"github.com/gin-gonic/gin"
"google.golang.org/grpc/codes"
"google.golang.org/grpc/status"
)
var errorMessagePermissionDeniedFormat = "您没有权限访问【%s】"
func checkGinPermission(dbModel *model.DBModel, ctx *gin.Context) (userClaims *auth.UserClaims, statusCode int, err error) {
userClaims, statusCode, err = checkGinLogin(dbModel, ctx)
if err != nil {
return
}
if permission, yes := dbModel.CheckPermissionByUserId(userClaims.UserId, ctx.Request.URL.Path, ctx.Request.Method); !yes {
statusCode = http.StatusForbidden
item := permission.Title
if permission.Title == "" {
item = permission.Path
}
return userClaims, statusCode, fmt.Errorf(errorMessagePermissionDeniedFormat, item)
}
return
}
func checkGinLogin(dbModel *model.DBModel, ctx *gin.Context) (userClaims *auth.UserClaims, statusCode int, err error) {
var ok bool
userClaims, ok = ctx.Value(auth.CtxKeyUserClaims.String()).(*auth.UserClaims)
if !ok || dbModel.IsInvalidToken(userClaims.UUID) {
statusCode = http.StatusUnauthorized
return nil, statusCode, errors.New(ErrorMessageInvalidToken)
}
return
}
func checkGRPCPermission(dbModel *model.DBModel, ctx context.Context) (userClaims *auth.UserClaims, err error) {
userClaims, err = checkGRPCLogin(dbModel, ctx)
if err != nil {
return
}
fullMethod, _ := ctx.Value(auth.CtxKeyFullMethod).(string)
if permission, yes := dbModel.CheckPermissionByUserId(userClaims.UserId, fullMethod); !yes {
item := permission.Title
if item == "" {
item = permission.Path
}
return userClaims, fmt.Errorf(errorMessagePermissionDeniedFormat, item)
}
return
}
func checkGRPCLogin(dbModel *model.DBModel, ctx context.Context) (userClaims *auth.UserClaims, err error) {
var ok bool
userClaims, ok = ctx.Value(auth.CtxKeyUserClaims).(*auth.UserClaims)
if !ok || dbModel.IsInvalidToken(userClaims.UUID) {
return nil, status.Errorf(codes.Unauthenticated, ErrorMessageInvalidToken)
}
return
}
Reference in new issue View Git Blame Copy Permalink