fix: support using bearer token to access protected resources (#364)

* fix: require signed in by bearer token. Signed-off-by: 0x2a <stevesough@gmail.com> * fix: utilize existing code refactoring functions Signed-off-by: 0x2a <stevesough@gmail.com> * fix: improve the bearer parese function Signed-off-by: 0x2a <stevesough@gmail.com>
2025-07-03 12:30:19 +08:00 · 2021-12-13 00:25:44 +08:00
parent 589c0404d2
commit 00ab156453
2 changed files with 36 additions and 0 deletions
--- a/routers/base.go
+++ b/routers/base.go
@ -16,9 +16,11 @@ package routers

 import (
 	"fmt"
+	"strings"

 	"github.com/astaxie/beego/context"
 	"github.com/casbin/casdoor/object"
+	"github.com/casbin/casdoor/util"
 )

 type Response struct {
@ -85,3 +87,29 @@ func setSessionUser(ctx *context.Context, user string) {
 	// https://github.com/beego/beego/issues/3445#issuecomment-455411915
 	ctx.Input.CruSession.SessionRelease(ctx.ResponseWriter)
 }
+
+func setSessionExpire(ctx *context.Context, ExpireTime int64) {
+	SessionData := struct{ ExpireTime int64 }{ExpireTime: ExpireTime}
+	err := ctx.Input.CruSession.Set("SessionData", util.StructToJson(SessionData))
+	if err != nil {
+		panic(err)
+	}
+	ctx.Input.CruSession.SessionRelease(ctx.ResponseWriter)
+}
+
+func parseBearer(ctx *context.Context) (*object.Claims, bool) {
+	bearer := ctx.Request.Header.Get("Authorization")
+	bearerList := strings.Split(bearer, " ")
+	if len(bearerList) != 2 {
+		return nil, false
+	}
+	prefix := bearerList[0]
+	if prefix != "Bearer" {
+		return nil, false
+	}
+	claims, err := object.ParseJwtToken(bearerList[1])
+	if err != nil {
+		return nil, false
+	}
+	return claims, true
+}