backend/internal/middleware/auth.go

package middleware

import (
	"carrotskin/internal/model"
	"net/http"
	"strings"

	"carrotskin/pkg/auth"
	
	"github.com/gin-gonic/gin"
)

// AuthMiddleware JWT认证中间件（注入JWT服务版本）
func AuthMiddleware(jwtService *auth.JWTService) gin.HandlerFunc {
	return gin.HandlerFunc(func(c *gin.Context) {
		authHeader := c.GetHeader("Authorization")
		if authHeader == "" {
			c.JSON(http.StatusUnauthorized, model.NewErrorResponse(
				model.CodeUnauthorized,
				"缺少Authorization头",
				nil,
			))
			c.Abort()
			return
		}

		// Bearer token格式
		tokenParts := strings.SplitN(authHeader, " ", 2)
		if len(tokenParts) != 2 || tokenParts[0] != "Bearer" {
			c.JSON(http.StatusUnauthorized, model.NewErrorResponse(
				model.CodeUnauthorized,
				"无效的Authorization头格式",
				nil,
			))
			c.Abort()
			return
		}

		token := tokenParts[1]
		claims, err := jwtService.ValidateToken(token)
		if err != nil {
			c.JSON(http.StatusUnauthorized, model.NewErrorResponse(
				model.CodeUnauthorized,
				"无效的token",
				err,
			))
			c.Abort()
			return
		}

		// 将用户信息存储到上下文中
		c.Set("user_id", claims.UserID)
		c.Set("username", claims.Username)
		c.Set("role", claims.Role)

		c.Next()
	})
}

// OptionalAuthMiddleware 可选的JWT认证中间件（注入JWT服务版本）
func OptionalAuthMiddleware(jwtService *auth.JWTService) gin.HandlerFunc {
	return gin.HandlerFunc(func(c *gin.Context) {
		authHeader := c.GetHeader("Authorization")
		if authHeader != "" {
			tokenParts := strings.SplitN(authHeader, " ", 2)
			if len(tokenParts) == 2 && tokenParts[0] == "Bearer" {
				token := tokenParts[1]
				claims, err := jwtService.ValidateToken(token)
				if err == nil {
					c.Set("user_id", claims.UserID)
					c.Set("username", claims.Username)
					c.Set("role", claims.Role)
				}
			}
		}
		c.Next()
	})
}
-												chore: 初始化仓库，排除二进制文件和覆盖率文件

											
										
										
											2025-11-28 23:30:49 +08:00
+								package middleware
 								import (
-												refactor: Update service and repository methods to use context

- Refactored multiple service and repository methods to accept context as a parameter, enhancing consistency and enabling better control over request lifecycles.
- Updated handlers to utilize context in method calls, improving error handling and performance.
- Cleaned up Dockerfile by removing unnecessary whitespace.

											
										
										
											2025-12-03 15:27:12 +08:00
+									"carrotskin/internal/model"
-												chore: 初始化仓库，排除二进制文件和覆盖率文件

											
										
										
											2025-11-28 23:30:49 +08:00
+									"net/http"
 									"strings"
 									"carrotskin/pkg/auth"
 									"github.com/gin-gonic/gin"
 								)
-												refactor: Update service and repository methods to use context

- Refactored multiple service and repository methods to accept context as a parameter, enhancing consistency and enabling better control over request lifecycles.
- Updated handlers to utilize context in method calls, improving error handling and performance.
- Cleaned up Dockerfile by removing unnecessary whitespace.

											
										
										
											2025-12-03 15:27:12 +08:00
+								// AuthMiddleware JWT认证中间件（注入JWT服务版本）
 								func AuthMiddleware(jwtService *auth.JWTService) gin.HandlerFunc {
-												chore: 初始化仓库，排除二进制文件和覆盖率文件

											
										
										
											2025-11-28 23:30:49 +08:00
+									return gin.HandlerFunc(func(c *gin.Context) {
 										authHeader := c.GetHeader("Authorization")
 										if authHeader == "" {
-												refactor: Update service and repository methods to use context

- Refactored multiple service and repository methods to accept context as a parameter, enhancing consistency and enabling better control over request lifecycles.
- Updated handlers to utilize context in method calls, improving error handling and performance.
- Cleaned up Dockerfile by removing unnecessary whitespace.

											
										
										
											2025-12-03 15:27:12 +08:00
+											c.JSON(http.StatusUnauthorized, model.NewErrorResponse(
 												model.CodeUnauthorized,
 												"缺少Authorization头",
 												nil,
 											))
-												chore: 初始化仓库，排除二进制文件和覆盖率文件

											
										
										
											2025-11-28 23:30:49 +08:00
+											c.Abort()
 											return
 										}
 										// Bearer token格式
 										tokenParts := strings.SplitN(authHeader, " ", 2)
 										if len(tokenParts) != 2 || tokenParts[0] != "Bearer" {
-												refactor: Update service and repository methods to use context

- Refactored multiple service and repository methods to accept context as a parameter, enhancing consistency and enabling better control over request lifecycles.
- Updated handlers to utilize context in method calls, improving error handling and performance.
- Cleaned up Dockerfile by removing unnecessary whitespace.

											
										
										
											2025-12-03 15:27:12 +08:00
+											c.JSON(http.StatusUnauthorized, model.NewErrorResponse(
 												model.CodeUnauthorized,
 												"无效的Authorization头格式",
 												nil,
 											))
-												chore: 初始化仓库，排除二进制文件和覆盖率文件

											
										
										
											2025-11-28 23:30:49 +08:00
+											c.Abort()
 											return
 										}
 										token := tokenParts[1]
 										claims, err := jwtService.ValidateToken(token)
 										if err != nil {
-												refactor: Update service and repository methods to use context

- Refactored multiple service and repository methods to accept context as a parameter, enhancing consistency and enabling better control over request lifecycles.
- Updated handlers to utilize context in method calls, improving error handling and performance.
- Cleaned up Dockerfile by removing unnecessary whitespace.

											
										
										
											2025-12-03 15:27:12 +08:00
+											c.JSON(http.StatusUnauthorized, model.NewErrorResponse(
 												model.CodeUnauthorized,
 												"无效的token",
 												err,
 											))
-												chore: 初始化仓库，排除二进制文件和覆盖率文件

											
										
										
											2025-11-28 23:30:49 +08:00
+											c.Abort()
 											return
 										}
 										// 将用户信息存储到上下文中
 										c.Set("user_id", claims.UserID)
 										c.Set("username", claims.Username)
 										c.Set("role", claims.Role)
 										c.Next()
 									})
 								}
-												refactor: Update service and repository methods to use context

- Refactored multiple service and repository methods to accept context as a parameter, enhancing consistency and enabling better control over request lifecycles.
- Updated handlers to utilize context in method calls, improving error handling and performance.
- Cleaned up Dockerfile by removing unnecessary whitespace.

											
										
										
											2025-12-03 15:27:12 +08:00
+								// OptionalAuthMiddleware 可选的JWT认证中间件（注入JWT服务版本）
 								func OptionalAuthMiddleware(jwtService *auth.JWTService) gin.HandlerFunc {
-												chore: 初始化仓库，排除二进制文件和覆盖率文件

											
										
										
											2025-11-28 23:30:49 +08:00
+									return gin.HandlerFunc(func(c *gin.Context) {
 										authHeader := c.GetHeader("Authorization")
 										if authHeader != "" {
 											tokenParts := strings.SplitN(authHeader, " ", 2)
 											if len(tokenParts) == 2 && tokenParts[0] == "Bearer" {
 												token := tokenParts[1]
 												claims, err := jwtService.ValidateToken(token)
 												if err == nil {
 													c.Set("user_id", claims.UserID)
 													c.Set("username", claims.Username)
 													c.Set("role", claims.Role)
 												}
 											}
 										}
 										c.Next()
 									})
 								}