Skip to content

Commit

Permalink
fix: custom KeyFunc doesn't useful
Browse files Browse the repository at this point in the history
  • Loading branch information
Skyenought committed Oct 3, 2023
1 parent 8a8e45c commit 6feac52
Show file tree
Hide file tree
Showing 2 changed files with 39 additions and 3 deletions.
15 changes: 12 additions & 3 deletions auth_jwt.go
Original file line number Diff line number Diff line change
Expand Up @@ -572,11 +572,20 @@ func (mw *HertzJWTMiddleware) LogoutHandler(ctx context.Context, c *app.RequestC
func (mw *HertzJWTMiddleware) signedString(token *jwt.Token) (string, error) {
var tokenString string
var err error
if mw.usingPublicKeyAlgo() {
tokenString, err = token.SignedString(mw.privKey)
if mw.KeyFunc != nil {
key, err := mw.KeyFunc(token)
if err != nil {
return "", err
}
tokenString, err = token.SignedString(key)

Check failure on line 580 in auth_jwt.go

View workflow job for this annotation

GitHub Actions / staticcheck

[staticcheck] reported by reviewdog 🐶 this value of err is never used Raw Output: {"source":{"name":"staticcheck","url":"https://staticcheck.io"},"message":"this value of err is never used","code":{"value":"SA4006","url":"https://staticcheck.io/docs/checks#SA4006"},"location":{"path":"/data00/runner/hertz-contrib-sg-runner-04/jwt/jwt/auth_jwt.go","range":{"start":{"line":580,"column":3}}},"severity":"ERROR"}
} else {
tokenString, err = token.SignedString(mw.Key)
if mw.usingPublicKeyAlgo() {
tokenString, err = token.SignedString(mw.privKey)
} else {
tokenString, err = token.SignedString(mw.Key)
}
}

return tokenString, err
}

Expand Down
27 changes: 27 additions & 0 deletions auth_jwt_test.go
Original file line number Diff line number Diff line change
Expand Up @@ -1113,3 +1113,30 @@ func TestLogout(t *testing.T) {
assert.DeepEqual(t, http.StatusOK, w.Code)
assert.DeepEqual(t, fmt.Sprintf("%s=; domain=%s; path=/", cookieName, cookieDomain), w.Header().Get("Set-Cookie"))
}

func TestSignedStringWithKeyFunc(t *testing.T) {
var used string
mwWithoutKeyFunc, _ := New(&HertzJWTMiddleware{
Realm: "test zone",
Key: key,
Timeout: time.Hour,
Authenticator: defaultAuthenticator,
})
mw, _ := New(&HertzJWTMiddleware{
Realm: "test zone",
Key: key,
KeyFunc: func(*jwt.Token) (interface{}, error) {
used = "keyFunc"
return []byte("secret"), nil
},
Timeout: time.Hour,
Authenticator: defaultAuthenticator,
})
token := jwt.New(jwt.SigningMethodHS256)

// 调用要测试的函数
tokenString, _ := mw.signedString(token)
tokenStringWithoutKeyFunc, _ := mwWithoutKeyFunc.signedString(token)
assert.NotEqual(t, tokenString, tokenStringWithoutKeyFunc)
assert.DeepEqual(t, "keyFunc", used)
}

0 comments on commit 6feac52

Please sign in to comment.