Skip to content

A
apaas-meshproxy
Commit c03748b3 authored by 张亚松's avatar 张亚松
Browse files
Options

修改验证服务鉴权逻辑

parent 6da3d658
Hide whitespace changes
Inline Side-by-side
Showing with 22 additions and 19 deletions
src/handler/proxyhandler.go
View file @ c03748b3
......@@ -37,22 +37,6 @@ func Proxy(c *gin.Context) {
}
apiId := c.Param("apiid")
var apaasToken string
apaasToken = c.Query("apaasToken")
if apaasToken == "" {
apaasToken = c.GetHeader("Authorization")
}
if strings.HasPrefix(apaasToken, "Bearer ") {
apaasToken = strings.TrimPrefix(apaasToken, "Bearer ")
}
fmt.Println("apaasToken:", apaasToken)
if apaasToken == "" {
c.JSON(403, "Get Authorization Token failed")
return
}
//获取服务相关信息
proxyData, err := service.GetRealPath(applyId, apiId)
if err != nil {
......@@ -61,9 +45,28 @@ func Proxy(c *gin.Context) {
return
}
if proxyData.ApaasToken != apaasToken {
c.JSON(403, "invalid Authorization Token")
return
// 请求授权方式(0注册的服务无鉴权 1注册的服务通过静态token鉴权 2注册的服务通过动态token鉴权)
if proxyData.ReqAuthMthod != 0 {
var apaasToken string
apaasToken = c.Query("apaasToken")
if apaasToken == "" {
apaasToken = c.GetHeader("Authorization")
}
if strings.HasPrefix(apaasToken, "Bearer ") {
apaasToken = strings.TrimPrefix(apaasToken, "Bearer ")
}
fmt.Println("apaasToken:", apaasToken)
if apaasToken == "" {
c.JSON(403, "Get Authorization Token failed")
return
}
if proxyData.ApaasToken != apaasToken {
c.JSON(403, "invalid Authorization Token")
return
}
}
//proxyData.ReqUrl = "https://apaas3.wodcloud.com/iam/login/#/login"
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment