linux08 · May 4, 2019 18:54
diff --git a/jwtMiddleware.go b/jwtMiddleware.go
 func JwtVerify(next http.Handler) http.Handler {
 	return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {

 		var header = r.Header.Get("x-access-token") //Grab the token from the header

 		header = strings.TrimSpace(header)

 		if header == "" {
 			//Token is missing, returns with error code 403 Unauthorized
 			w.WriteHeader(http.StatusForbidden)
 			json.NewEncoder(w).Encode(Exception{Message: "Missing auth token"})
 			return
 		}
 		tk := &models.Token{}

 		_, err := jwt.ParseWithClaims(header, tk, func(token *jwt.Token) (interface{}, error) {
 			return []byte("secret"), nil
 		})

 		if err != nil {
 			w.WriteHeader(http.StatusForbidden)
 			json.NewEncoder(w).Encode(Exception{Message: err.Error()})
 			return
 		}

 		ctx := context.WithValue(r.Context(), "user", tk)
 		next.ServeHTTP(w, r.WithContext(ctx))
 	})
 }
	func JwtVerify(next http.Handler) http.Handler {
	return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {

	var header = r.Header.Get("x-access-token") //Grab the token from the header

	header = strings.TrimSpace(header)

	if header == "" {
	//Token is missing, returns with error code 403 Unauthorized
	w.WriteHeader(http.StatusForbidden)
	json.NewEncoder(w).Encode(Exception{Message: "Missing auth token"})
	return
	}
	tk := &models.Token{}

	_, err := jwt.ParseWithClaims(header, tk, func(token *jwt.Token) (interface{}, error) {
	return []byte("secret"), nil
	})

	if err != nil {
	w.WriteHeader(http.StatusForbidden)
	json.NewEncoder(w).Encode(Exception{Message: err.Error()})
	return
	}

	ctx := context.WithValue(r.Context(), "user", tk)
	next.ServeHTTP(w, r.WithContext(ctx))
	})
	}