58码农网 > 码农学院 >

Golang - GraphQL - Auth Endpoints

用户投稿 发布于2024-05-18

Introduction

上一篇已经完成了 JWT 的部分功能
接着开始完善 JWT 功能

Sample Code

完成后的资料夹结构如下
http://img2.58codes.com/2024/20118878nqWqJQW9IB.png

CreateUser

schema.resolvers.go 实现 CreateUser funciotn

func (r *mutationResolver) CreateUser(ctx context.Context, input model.NewUser) (string, error) {var user users.Useruser.Username = input.Usernameuser.Password = input.Passworduser.Create()token, err := jwt.GenerateToken(user.Username)if err != nil{return "", err}return token, nil}

$ go run server.go 测试一下 CreateUser 能不能成功
打开 http://localhost:8080/ 输入

mutation {  createUser(input: {username: "user1", password: "123"})}

接着会得到一串 JWT string

{  "data": {    "createUser": "eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJleHAiOjE2ODM2MjU1ODcsInVzZXJuYW1lIjoidXNlcjEifQ.FUO8LH8G_FioVmVVMqVhQiqEndmbK_QIdq5KlHFWtwY"  }}

Login

这阶段开始实作当输入了正确的帐号密码,就会产生 JWT Token 给 user
internal/users/users.go 实作 Authenticate function
不过要注意一下...这段 Query 是练习做实验才用的,不然这样是有暴露密码的危险性

func (user *User) Authenticate() bool {statement, err := mig.Db.Prepare("select Password from Users WHERE Username = ?")if err != nil {log.Fatal(err)}row := statement.QueryRow(user.Username)var hashedPassword stringerr = row.Scan(&hashedPassword)if err != nil {if err == sql.ErrNoRows {return false} else {log.Fatal(err)}}return CheckPasswordHash(user.Password, hashedPassword)}

schema.resolvers.go 实作 Login function

func (r *mutationResolver) Login(ctx context.Context, input model.Login) (string, error) {var user users.Useruser.Username = input.Usernameuser.Password = input.Passwordcorrect := user.Authenticate()if !correct {// 1return "", &users.WrongUsernameOrPasswordError{}}token, err := jwt.GenerateToken(user.Username)if err != nil{return "", err}return token, nil}

internal/users/errors.go 处理错误回传

package userstype WrongUsernameOrPasswordError struct{}func (m *WrongUsernameOrPasswordError) Error() string {return "wrong username or password"}

schema.resolvers.go 处理 Refresh Token

func (r *mutationResolver) RefreshToken(ctx context.Context, input model.RefreshTokenInput) (string, error) {username, err := jwt.ParseToken(input.Token)if err != nil {return "", fmt.Errorf("access denied")}token, err := jwt.GenerateToken(username)if err != nil {return "", err}return token, nil}

Reference

https://www.howtographql.com/graphql-go/7-auth-endpoints/

打赏 点赞(111)

关于作者: 网站小编

码农网专注IT技术教程资源分享平台,学习资源下载网站,58码农网包含计算机技术、网站程序源码下载、编程技术论坛、互联网资源下载等产品服务,提供原创、优质、完整内容的专业码农交流分享平台。

相关文章

热门文章

1Golang - GraphQL - Auth Endpoints

点赞(415) 阅读(115)

2Golang - GraphQL - Logged in User

点赞(415) 阅读(56)

3【后端php之死而复生】会员管理系统 (1):系列文目标介绍,这段旅程中要学到

点赞(415) 阅读(70)

4Design Pattern - Strategy(策略模式),鸭子哌哌

点赞(415) 阅读(112)

5AWS EC2与CloudFront: 透过ACM申请免费凭证/Cloudflare管理DNS

点赞(415) 阅读(84)