suguo
/
nunu-layout-admin
1
0
Fork 0
Code Pull Requests Packages Releases Activity
nunu-layout-admin/internal/middleware/rbac.go

50 lines
1.2 KiB
Go
Raw Normal View History

feat: initialize project
2025-03-24 05:55:56 +00:00
package middleware
import (
"github.com/casbin/casbin/v2"
"github.com/duke-git/lancet/v2/convertor"
"github.com/gin-gonic/gin"
"net/http"
v1 "nunu-layout-admin/api/v1"
"nunu-layout-admin/internal/model"
"nunu-layout-admin/pkg/jwt"
)
func AuthMiddleware(e *casbin.SyncedEnforcer) gin.HandlerFunc {
return func(ctx *gin.Context) {
// 从上下文获取用户信息(假设通过 JWT 或其他方式设置)
v, exists := ctx.Get("claims")
if !exists {
v1.HandleError(ctx, http.StatusUnauthorized, v1.ErrUnauthorized, nil)
ctx.Abort()
return
}
uid := v.(*jwt.MyCustomClaims).UserId
if convertor.ToString(uid) == model.AdminUserID {
// 防呆设计超管跳过API权限检查
ctx.Next()
return
}
// 获取请求的资源和操作
sub := convertor.ToString(uid)
obj := model.ApiResourcePrefix + ctx.Request.URL.Path
act := ctx.Request.Method
// 检查权限
allowed, err := e.Enforce(sub, obj, act)
if err != nil {
v1.HandleError(ctx, http.StatusForbidden, v1.ErrForbidden, nil)
ctx.Abort()
return
}
if !allowed {
v1.HandleError(ctx, http.StatusForbidden, v1.ErrForbidden, nil)
ctx.Abort()
return
}
ctx.Next()
}
}