v2.0

2025-11-12 04:03:44 +08:00 · 2022-11-24 23:37:34 +08:00
parent 4ffe54b6ac
commit 29bda0dcdd
1487 changed files with 97869 additions and 96539 deletions
--- a/server/internal/logic/middleware/api_auth.go
+++ b/server/internal/logic/middleware/api_auth.go
@@ -0,0 +1,49 @@
+// Package middleware
+// @Link  https://github.com/bufanyun/hotgo
+// @Copyright  Copyright (c) 2022 HotGo CLI
+// @Author  Ms <133814250@qq.com>
+// @License  https://github.com/bufanyun/hotgo/blob/master/LICENSE
+//
+package middleware
+
+import (
+	"github.com/gogf/gf/v2/errors/gcode"
+	"github.com/gogf/gf/v2/frame/g"
+	"github.com/gogf/gf/v2/net/ghttp"
+	"github.com/gogf/gf/v2/text/gstr"
+	"hotgo/internal/consts"
+	"hotgo/internal/library/response"
+	"hotgo/utility/auth"
+)
+
+// ApiAuth API鉴权中间件
+func (s *sMiddleware) ApiAuth(r *ghttp.Request) {
+
+	var (
+		ctx = r.Context()
+	)
+
+	// 替换掉模块前缀
+	routerPrefix, _ := g.Cfg().Get(ctx, "router.api.prefix", "/api")
+	path := gstr.Replace(r.URL.Path, routerPrefix.String(), "", 1)
+
+	/// 不需要验证登录的路由地址
+	if auth.IsExceptLogin(ctx, path) {
+		r.Middleware.Next()
+		return
+	}
+
+	if err := inspectAuth(r, consts.AppAdmin); err != nil {
+		response.JsonExit(r, gcode.CodeNotAuthorized.Code(), err.Error())
+		return
+	}
+
+	//// 验证路由访问权限
+	//verify := adminService.Role.Verify(ctx, customCtx.User.Id, path)
+	//if !verify {
+	//	response.JsonExit(r, gcode.CodeSecurityReason.Code(), "你没有访问权限！")
+	//	return
+	//}
+
+	r.Middleware.Next()
+}