jwt插件配置
1.customer创建credential
curl -X POST http://localhost:8001/consumers/zj/jwt -H "Content-Type: application/x-www-form-urlencoded"
{"rsa_public_key":null,"id":"dcbd5c39-44eb-40dc-9667-db707b1ea33e","created_at":1629009026,"secret":"87WkVechcol9lLEKB2ui2QAhk1gS1HuR","key":"OslRGnMv8a2ARidUjo9Sm040biwTzB9d","tags":null,"consumer":{"id":"0f9d0639-85d2-4c8a-8216-f2ef6be8a1df"},"algorithm":"HS256"}
2.生成jwt token
jwt网页快速生成
注意:PAYLOAD里添加
"iss": "{对应credential的key}"
3.请求头添加authorization
curl --location --request GET 'http://127.0.0.1:8000/qq' \
--header 'Host: ji' \
--header 'authorization: Bearer eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzdWIiOiIxMjM0NTY3ODkwIiwibmFtZSI6IkpvaG4gRG9lIiwiaWF0IjoxNTE2MjM5MDIyLCJpc3MiOiJxZTJ5bXp0am96bVAyZkY5UGZUdUNQUFNnZHBGQmQ0biJ9.vPvhnoEspHBoDPLuT5UyZGWfj49Ezqu2P_JnTWood94'
- rsa非对称加密方式
openssl genrsa -out test.key 1024 #生成私钥文件
openssl rsa -in test.key -pubout -out test_pub.key #生成公钥文件
basic-auth插件配置
1.customer创建credential
curl -X POST http://localhost:8001/consumers/zj/basic-auth \
--data "username=aa" \
--data "password=bb"
{"password":"6c9778b2d7f9dc50b0ce2e80599cc80161dd9941","consumer":{"id":"0f9d0639-85d2-4c8a-8216-f2ef6be8a1df"},"id":"b307799d-af31-465d-9939-21456497f81f","tags":null,"username":"aa","created_at":1629009691}
2.base64编码
echo "aa:bb" | base64
YWE6YmIK
3.请求头添加Authorization
curl --location --request GET 'http://127.0.0.1:8000/qq' \
--header 'Host: ji' \
--header 'Authorization: Basic YWE6YmIK'
key-auth插件配置
curl --location --request GET 'http://127.0.0.1:8000/qq' \
--header 'Host: ji' \
--header 'kk{自定义}: ik1towWXTOwCAydTSZAKmaiqvRYaKVUF'