third/dify-plus
1
0
Fork 0
mirror of https://github.com/YFGaia/dify-plus.git synced 2026-06-14 20:41:21 +08:00
Code Issues Packages Projects Releases Wiki Activity
Files
7ba4db888857b4d4e8dcf321030bdd046bb16288
dify-plus/admin/server/model/system/request/jwt.go
T
npc0-hue 7ba4db8888 fix: 修改管理端的请求api端的CSRF逻辑: 
需要 x-csrf-token header
需要 csrf_token cookie
两者必须一致,且是有效的JWT(包含 exp 和 sub=user_id)
2026-01-22 15:30:36 +08:00

40 lines
873 B
Go
Raw Blame History

package request
import (
"github.com/gofrs/uuid/v5"
jwt "github.com/golang-jwt/jwt/v4"
)
// Custom claims structure
type CustomClaims struct {
BaseClaims
BufferTime int64
jwt.RegisteredClaims
// Extend Start: add gaia token
UserId string `json:"user_id"`
Exp int64 `json:"exp"`
Sub string `json:"sub"`
Email string `json:"email,omitempty"`
// Extend Start: add gaia token
}
type BaseClaims struct {
UUID uuid.UUID
ID uint
Username string
NickName string
AuthorityId uint
// Extend Start: add gaia token
UserId string `json:"user_id,omitempty"`
Exp int64 `json:"exp,omitempty"`
Email string `json:"email,omitempty"`
Sub string `json:"sub,omitempty"`
// Extend Start: add gaia token
}
// CSRFClaims CSRF token claims (与Dify API兼容)
type CSRFClaims struct {
jwt.RegisteredClaims
Sub string `json:"sub"`
}
Reference in New Issue View Git Blame Copy Permalink