1. 路由注册
v1.POST("user/login", api.UserLogin)
2. 接口编写
2.1 service层
type UserLoginService struct {
UserName string `form:"user_name" json:"user_name" binding:"required,min=5,max=15"`
Password string `form:"password" json:"password" binding:"required,min=8,max=16"`
}
func (service *UserLoginService) Login() serializer.Response {
...
}
2.2 api层
var userLoginService service.UserLoginService
c.ShouldBind(&userLoginService)
- 运行userLoginService对象的login方法
res := userLoginService.Login()
c.JSON(200, res)
func UserLogin(c *gin.Context) {
var userLoginService service.UserLoginService
if err := c.ShouldBind(&userLoginService); err == nil {
res := userLoginService.Login()
c.JSON(200, res)
} else {
c.JSON(400, ErrorResponse(err))
logging.Info(err)
}
}
2.3 service
if err := model.DB.Where("user_name=?", service.UserName).First(&user).Error; err != nil {
if gorm.IsRecordNotFoundError(err) {
logging.Info(err)
code = e.ErrorNotExistUser
return serializer.Response{
Status: code,
Msg: e.GetMsg(code),
}
}
logging.Info(err)
code = e.ErrorDatabase
return serializer.Response{
Status: code,
Msg: e.GetMsg(code),
}
}
func (user *User) CheckPassword(password string) bool {
err := bcrypt.CompareHashAndPassword([]byte(user.PasswordDigest), []byte(password))
return err == nil
}
if user.CheckPassword(service.Password) == false {
code = e.ErrorNotCompare
return serializer.Response{
Status: code,
Msg: e.GetMsg(code),
}
}
token, err := util.GenerateToken(service.UserName, service.Password, 0)
type Claims struct {
ID uint `json:"id"`
Username string `json:"username"`
Authority int `json:"authority"`
jwt.StandardClaims
}
- 生成token函数
我们传入用户的id,username和password以及authority权限加密成token,后续就可以进行身份的验证
func GenerateToken(id uint ,username, password string, authority int) (string, error) {
nowTime := time.Now()
expireTime := nowTime.Add(24 * time.Hour)
claims := Claims{
Username: username,
Password: password,
Authority: authority,
StandardClaims: jwt.StandardClaims{
ExpiresAt: expireTime.Unix(),
Issuer: "cmall",
},
}
tokenClaims := jwt.NewWithClaims(jwt.SigningMethodHS256, claims)
token, err := tokenClaims.SignedString(jwtSecret)
return token, err
}
func (service *UserLoginService) Login() serializer.Response {
var user model.User
code := e.SUCCESS
if err := model.DB.Where("user_name=?", service.UserName).First(&user).Error; err != nil {
if gorm.IsRecordNotFoundError(err) {
logging.Info(err)
code = e.ErrorNotExistUser
return serializer.Response{
Status: code,
Msg: e.GetMsg(code),
}
}
logging.Info(err)
code = e.ErrorDatabase
return serializer.Response{
Status: code,
Msg: e.GetMsg(code),
}
}
if user.CheckPassword(service.Password) == false {
code = e.ErrorNotCompare
return serializer.Response{
Status: code,
Msg: e.GetMsg(code),
}
}
token, err := util.GenerateToken(user.ID, service.UserName, 0)
if err != nil {
logging.Info(err)
code = e.ErrorAuthToken
return serializer.Response{
Status: code,
Msg: e.GetMsg(code),
}
}
return serializer.Response{
Status: code,
Data: serializer.TokenData{User: serializer.BuildUser(user), Token: token},
Msg: e.GetMsg(code),
}
}
3. 登陆测试
![在这里插入图片描述](https://i-blog.csdnimg.cn/blog_migrate/6b962e6849aa97a82d364bb1b2fca76e.png)