我有这个功能来验证 JWT 令牌(不是中间件),它说:
package main
import (
"net/http"
"log"
"fmt"
"github.com/dgrijalva/jwt-go"
)
func ValidateToken(w http.ResponseWriter, r *http.Request) *jwt.Token {
//parse token
token, err := jwt.ParseFromRequest(r, func(token *jwt.Token) (interface{}, err error) {
return VerifyKey, nil
})
//validate token
if err != nil {
switch err.(type) {
//something went wrong during validation
case *jwt.ValidationError:
vErr := err.(*jwt.ValidationError)
switch vErr.Errors {
case jwt.ValidationErrorExpired:
w.WriteHeader(http.StatusUnauthorized)
fmt.Fprintln(w, "Token expired")
return nil
default:
w.WriteHeader(http.StatusInternalServerError)
fmt.Fprintln(w, "Error parsing token")
log.Printf("Validation error: %v\n", err)
return nil
}
//something …