f

2026-02-02 13:15:13 +08:00
parent e30a5d3342
commit e44793c89e
15 changed files with 97 additions and 39 deletions
--- a/app/main/api/internal/middleware/authinterceptormiddleware.go
+++ b/app/main/api/internal/middleware/authinterceptormiddleware.go
@@ -5,6 +5,7 @@ import (
 	"net/http"

 	"xingfucha-server/app/main/api/internal/config"
+	"xingfucha-server/app/main/model"
 	jwtx "xingfucha-server/common/jwt"
 	"xingfucha-server/common/xerr"

@@ -18,12 +19,14 @@ const (
 )

 type AuthInterceptorMiddleware struct {
-	Config config.Config
+	Config    config.Config
+	UserModel model.UserModel
 }

-func NewAuthInterceptorMiddleware(c config.Config) *AuthInterceptorMiddleware {
+func NewAuthInterceptorMiddleware(c config.Config, userModel model.UserModel) *AuthInterceptorMiddleware {
 	return &AuthInterceptorMiddleware{
-		Config: c,
+		Config:    c,
+		UserModel: userModel,
 	}
 }

@@ -46,6 +49,15 @@ func (m *AuthInterceptorMiddleware) Handle(next http.HandlerFunc) http.HandlerFu
 			return
 		}

+		// 携带token的请求：校验用户是否被封禁（保证封禁即时生效）
+		if m.UserModel != nil && claims.UserId > 0 {
+			user, err := m.UserModel.FindOne(r.Context(), claims.UserId)
+			if err == nil && user.Disable == model.UserDisableBanned {
+				httpx.Error(w, xerr.NewErrCode(xerr.USER_DISABLED))
+				return
+			}
+		}
+
 		ctx := context.WithValue(r.Context(), jwtx.ExtraKey, claims)

 		// 使用新的上下文继续处理请求
--- a/app/main/api/internal/middleware/userauthinterceptormiddleware.go
+++ b/app/main/api/internal/middleware/userauthinterceptormiddleware.go
@@ -1,20 +1,22 @@
 package middleware

 import (
+	"net/http"
+
 	"xingfucha-server/app/main/model"
 	"xingfucha-server/common/ctxdata"
 	"xingfucha-server/common/xerr"
-	"net/http"

 	"github.com/pkg/errors"
 	"github.com/zeromicro/go-zero/rest/httpx"
 )

 type UserAuthInterceptorMiddleware struct {
+	UserModel model.UserModel
 }

-func NewUserAuthInterceptorMiddleware() *UserAuthInterceptorMiddleware {
-	return &UserAuthInterceptorMiddleware{}
+func NewUserAuthInterceptorMiddleware(userModel model.UserModel) *UserAuthInterceptorMiddleware {
+	return &UserAuthInterceptorMiddleware{UserModel: userModel}
 }

 func (m *UserAuthInterceptorMiddleware) Handle(next http.HandlerFunc) http.HandlerFunc {
@@ -28,6 +30,15 @@ func (m *UserAuthInterceptorMiddleware) Handle(next http.HandlerFunc) http.Handl
 			httpx.Error(w, errors.Wrapf(xerr.NewErrCode(xerr.USER_NEED_BIND_MOBILE), "token解析失败: %v", err))
 			return
 		}
+		user, err := m.UserModel.FindOne(r.Context(), claims.UserId)
+		if err != nil {
+			httpx.Error(w, errors.Wrapf(xerr.NewErrCode(ErrCodeUnauthorized), "用户不存在: %v", err))
+			return
+		}
+		if user.Disable == model.UserDisableBanned {
+			httpx.Error(w, xerr.NewErrCode(xerr.USER_DISABLED))
+			return
+		}
 		next(w, r)
 	}
 }