/
service.go
137 lines (109 loc) · 3.02 KB
/
service.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
// Copyright 2016 polaris. All rights reserved.
// Use of this source code is governed by a MIT-style
// license that can be found in the LICENSE file.
// http://studygolang.com
// Author:polaris polaris@studygolang.com
package luna
import (
"errors"
"reflect"
"sort"
"strconv"
"time"
"github.com/polaris1119/goutils"
"github.com/twinj/uuid"
)
type Callback func(map[string]interface{}, interface{}) error
// CheckAuth 验证通过,调用 callback,否则返回 error
func CheckAuth(args map[string]interface{}, reply interface{}, callback Callback) error {
var err error
if DefaultService.CheckAuth != nil {
if err = DefaultService.CheckAuth(args); err == nil {
return doCallback(args, reply, callback)
}
} else {
if err = DefaultService.checkAuth(args); err == nil {
return doCallback(args, reply, callback)
}
}
return err
}
func doCallback(args map[string]interface{}, reply interface{}, callback Callback) error {
if callback != nil {
if reflect.TypeOf(reply).Kind() != reflect.Ptr {
return errors.New("argument:reply must be pointer")
}
return callback(args, reply)
}
return nil
}
type Service struct {
// 摘要算法用的盐(不区分不同原来)
CommonSalt string
// 区分不同来源的盐,只有在 CommonSalt 是空时有效
// key 的值从 from 参数获取
FromSalt map[string]string
// 权限校验函数
CheckAuth func(map[string]interface{}) error
}
var DefaultService = new(Service)
func (s *Service) checkAuth(args map[string]interface{}) error {
if sign, ok := args["sign"]; !ok {
return errors.New("没有传递签名信息")
} else {
delete(args, "sign")
// TODO:timestamp 校验
if _, ok := args["timestamp"]; !ok {
return errors.New("缺少timestamp")
}
// TODO:nonce 校验
if _, ok := args["nonce"]; !ok {
return errors.New("缺少nonce")
}
// 如果使用了 FromSalt,必须有 from 参数
if s.CommonSalt == "" {
if _, ok := args["from"]; !ok {
return errors.New("缺少from参数")
}
}
newSign := s.GenSign(args)
if sign != newSign {
return errors.New("签名不合法")
}
}
return nil
}
func (s *Service) GenSign(args map[string]interface{}) string {
keys := make([]string, 0, len(args))
for k := range args {
keys = append(keys, k)
}
sort.Sort(sort.StringSlice(keys))
buffer := goutils.NewBuffer()
for _, k := range keys {
buffer.Append(k).Append("=").Append(goutils.ConvertString(args[k]))
}
if s.CommonSalt != "" {
buffer.Append(s.CommonSalt)
} else {
if from, ok := args["from"]; ok {
if salt, ok := s.FromSalt[goutils.ConvertString(from)]; ok {
buffer.Append(salt)
}
}
}
return goutils.Md5(buffer.String())
}
func FillRequireArgs(args map[string]interface{}) map[string]interface{} {
if args == nil {
args = make(map[string]interface{})
}
if _, ok := args["timestamp"]; !ok {
args["timestamp"] = strconv.FormatInt(time.Now().Unix(), 10)
}
if _, ok := args["nonce"]; !ok {
args["nonce"] = uuid.NewV4().String()
}
args["sign"] = DefaultService.GenSign(args)
return args
}