Shulou(Shulou.com)06/03 Report--

This article is to share with you about how golang performs simple permissions authentication. The editor thinks it is very practical, so share it with you as a reference and follow the editor to have a look.

Use JWT for authentication

JSON Web Tokens (JWT) are a more modern approach to authentication.

As the web moves to a greater separation between the client and server, JWT provides a wonderful alternative to traditional cookie based authentication models.

JWTs provide a way for clients to authenticate every request without having to maintain a session or repeatedly pass login credentials to the server.

After the user registers, the server generates a JWT token and returns it to the browser. When the browser requests data from the server, the JWT token is sent to the server, and the server decodes it in the way defined in signature.

JWT acquires user information.

A JWT token consists of three parts:

1 header: tell us which algorithm to use and the type of token

2 Payload: must use sub key to specify user ID, and can also include other information such as email, username, etc.

3 Signature: used to ensure the authenticity of JWT. Different algorithms can be used

Package mainimport ("encoding/json"fmt"log"net/http"strings"time"github.com/codegangsta/negroni"github.com/dgrijalva/jwt-go"github.com/dgrijalva/jwt-go/request") const (SecretKey = "welcome -") func fatal (err Error) {if err! = nil {log.Fatal (err)} type UserCredentials struct {Username string `json: "username" `Password string `json: "password" `} type User struct {ID int `json: "id" `Name string `json: "name" `Username string `json: "username" `Password string `json: "password"`} type Response Struct {Data string `json: "data" `} type Token struct {Token string `json: "token"`} func StartServer () {http.HandleFunc ("/ login") LoginHandler) http.Handle ("/ resource", negroni.New (negroni.HandlerFunc (ValidateTokenMiddleware), negroni.Wrap (http.HandlerFunc (ProtectedHandler)),) log.Println ("Now listening...") Http.ListenAndServe (": 8087", nil)} func main () {StartServer ()} func ProtectedHandler (w http.ResponseWriter, r * http.Request) {response: = Response {"Gained access to protected resource"} JsonResponse (response, w)} func LoginHandler (w http.ResponseWriter) R * http.Request) {var user UserCredentials err: = json.NewDecoder (r.Body) .Decode (& user) if err! = nil {w.WriteHeader (http.StatusForbidden) fmt.Fprint (w) "Error in request") return} if strings.ToLower (user.Username)! = "someone" {if user.Password! = "p@ssword" {w.WriteHeader (http.StatusForbidden) fmt.Println ("Error logging in") fmt.Fprint (w "Invalid credentials") return}} token: = jwt.New (jwt.SigningMethodHS256) claims: = make (jwt.MapClaims) claims ["exp"] = time.Now (). Add (time.Hour * time.Duration (1)). Unix () claims ["iat"] = time.Now (). Unix () token .claims = claims if err! = nil {w.WriteHeader (http.StatusInternalServerError) fmt.Fprintln (w "Error extracting the key") fatal (err)} tokenString, err: = token.SignedString ([] byte (SecretKey)) if err! = nil {w.WriteHeader (http.StatusInternalServerError) fmt.Fprintln (w, "Error while signing the token") fatal (err)} response: = Token {tokenString} JsonResponse (response W)} func ValidateTokenMiddleware (w http.ResponseWriter, r * http.Request, next http.HandlerFunc) {token, err: = request.ParseFromRequest (r, request.AuthorizationHeaderExtractor, func (token * jwt.Token) (interface {}, error) {return [] byte (SecretKey) Nil}) if err = = nil {if token.Valid {next (w, r)} else {w.WriteHeader (http.StatusUnauthorized) fmt.Fprint (w "Token is not valid")} else {w.WriteHeader (http.StatusUnauthorized) fmt.Fprint (w, "Unauthorized access to this resource")}} func JsonResponse (response interface {}, w http.ResponseWriter) {json, err: = json.Marshal (response) if err! = nil {http.Error (w, err.Error () Http.StatusInternalServerError) return} w.WriteHeader (http.StatusOK) w.Header () Set ("Content-Type", "application/json") w.Write (json)}

Thank you for reading! This is the end of this article on "how to carry out simple authority authentication in golang". I hope the above content can be of some help to you, so that you can learn more knowledge. if you think the article is good, you can share it out for more people to see!

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.