-
Notifications
You must be signed in to change notification settings - Fork 0
/
genjwt.go
54 lines (42 loc) · 1.22 KB
/
genjwt.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
package genjwt
import (
"crypto/rsa"
"encoding/base64"
"fmt"
"github.com/RangelReale/osin"
"github.com/dgrijalva/jwt-go"
"github.com/pborman/uuid"
)
// JWT access token generator
type AccessTokenGenJWT struct {
privateKey *rsa.PrivateKey
publicKey *rsa.PublicKey
}
func NewAccessTokenGenJWT(privatekeyPEM, publickeyPEM []byte) (osin.AccessTokenGen, error) {
var err error
var accessTokenGenJWT AccessTokenGenJWT
if accessTokenGenJWT.privateKey, err = jwt.ParseRSAPrivateKeyFromPEM(privatekeyPEM); err != nil {
return nil, err
}
if accessTokenGenJWT.publicKey, err = jwt.ParseRSAPublicKeyFromPEM(publickeyPEM); err != nil {
fmt.Printf("ERROR: %s\n", err)
return nil, err
}
return &accessTokenGenJWT, nil
}
func (c *AccessTokenGenJWT) GenerateAccessToken(data *osin.AccessData, generaterefresh bool) (
accesstoken string, refreshtoken string, err error) {
token := jwt.NewWithClaims(jwt.SigningMethodRS256, jwt.MapClaims{
"cid": data.Client.GetId(),
"exp": data.ExpireAt().Unix(),
})
accesstoken, err = token.SignedString(c.privateKey)
if err != nil {
return "", "", err
}
if generaterefresh {
rtoken := uuid.NewRandom()
refreshtoken = base64.RawURLEncoding.EncodeToString([]byte(rtoken))
}
return
}