/
jwt.go
70 lines (61 loc) · 1.42 KB
/
jwt.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
/*
* Copyright (c) 2022-2024 Mikhail Knyazhev <markus621@yandex.com>. All rights reserved.
* Use of this source code is governed by a BSD 3-Clause license that can be found in the LICENSE file.
*/
package auth
import (
"fmt"
"time"
"go.osspkg.com/goppy/auth/jwt"
"go.osspkg.com/goppy/plugins"
"go.osspkg.com/goppy/random"
)
type (
// ConfigJWT jwt config model
ConfigJWT struct {
JWT []jwt.Config `yaml:"jwt"`
}
)
func (v *ConfigJWT) Default() {
if len(v.JWT) == 0 {
for i := 0; i < 5; i++ {
v.JWT = append(v.JWT, jwt.Config{
ID: random.String(8),
Key: random.String(33),
Algorithm: jwt.AlgHS256,
})
}
}
}
func (v *ConfigJWT) Validate() error {
if len(v.JWT) == 0 {
return fmt.Errorf("jwt config is empty")
}
for _, vv := range v.JWT {
if len(vv.ID) == 0 {
return fmt.Errorf("jwt key id is empty")
}
if len(vv.Key) < 32 {
return fmt.Errorf("jwt key less than 32 characters")
}
switch vv.Algorithm {
case jwt.AlgHS256, jwt.AlgHS384, jwt.AlgHS512:
default:
return fmt.Errorf("jwt algorithm not supported")
}
}
return nil
}
// WithJWT init jwt provider
func WithJWT() plugins.Plugin {
return plugins.Plugin{
Config: &ConfigJWT{},
Inject: func(conf *ConfigJWT) (JWT, error) {
return jwt.New(conf.JWT)
},
}
}
type JWT interface {
Sign(payload interface{}, ttl time.Duration) (string, error)
Verify(token string, payload interface{}) (*jwt.Header, error)
}