Error code standardization

pkg/common/token_verify/jwt_token.go

@@ -3,25 +3,13 @@ package token_verify
 import (
 	"Open_IM/pkg/common/config"
 	"Open_IM/pkg/common/constant"
-	commonDB "Open_IM/pkg/common/db"
-	"Open_IM/pkg/common/log"
 	"Open_IM/pkg/common/tracelog"
 	"Open_IM/pkg/utils"
 	"context"
-	"time"
-
-	go_redis "github.com/go-redis/redis/v8"
 	"github.com/golang-jwt/jwt/v4"
+	"time"
 )
 
-//var (
-//	TokenExpired     = errors.New("token is timed out, please log in again")
-//	TokenInvalid     = errors.New("token has been invalidated")
-//	TokenNotValidYet = errors.New("token not active yet")
-//	TokenMalformed   = errors.New("that's not even a token")
-//	TokenUnknown     = errors.New("couldn't handle this token")
-//)
-
 type Claims struct {
 	UID      string
 	Platform string //login platform
@@ -41,57 +29,6 @@ func BuildClaims(uid, platform string, ttl int64) Claims {
 		}}
 }
 
-func DeleteToken(userID string, platformID int) error {
-	m, err := commonDB.DB.GetTokenMapByUidPid(userID, constant.PlatformIDToName(platformID))
-	if err != nil && err != go_redis.Nil {
-		return utils.Wrap(err, "")
-	}
-	var deleteTokenKey []string
-	for k, v := range m {
-		_, err = GetClaimFromToken(k)
-		if err != nil || v != constant.NormalToken {
-			deleteTokenKey = append(deleteTokenKey, k)
-		}
-	}
-	if len(deleteTokenKey) != 0 {
-		err = commonDB.DB.DeleteTokenByUidPid(userID, platformID, deleteTokenKey)
-		return utils.Wrap(err, "")
-	}
-	return nil
-}
-
-func CreateToken(userID string, platformID int) (string, int64, error) {
-	claims := BuildClaims(userID, constant.PlatformIDToName(platformID), config.Config.TokenPolicy.AccessExpire)
-	token := jwt.NewWithClaims(jwt.SigningMethodHS256, claims)
-	tokenString, err := token.SignedString([]byte(config.Config.TokenPolicy.AccessSecret))
-	if err != nil {
-		return "", 0, err
-	}
-	//remove Invalid token
-	m, err := commonDB.DB.GetTokenMapByUidPid(userID, constant.PlatformIDToName(platformID))
-	if err != nil && err != go_redis.Nil {
-		return "", 0, err
-	}
-	var deleteTokenKey []string
-	for k, v := range m {
-		_, err = GetClaimFromToken(k)
-		if err != nil || v != constant.NormalToken {
-			deleteTokenKey = append(deleteTokenKey, k)
-		}
-	}
-	if len(deleteTokenKey) != 0 {
-		err = commonDB.DB.DeleteTokenByUidPid(userID, platformID, deleteTokenKey)
-		if err != nil {
-			return "", 0, err
-		}
-	}
-	err = commonDB.DB.AddTokenFlag(userID, platformID, tokenString, constant.NormalToken)
-	if err != nil {
-		return "", 0, err
-	}
-	return tokenString, claims.ExpiresAt.Time.Unix(), err
-}
-
 func secret() jwt.Keyfunc {
 	return func(token *jwt.Token) (interface{}, error) {
 		return []byte(config.Config.TokenPolicy.AccessSecret), nil
@@ -122,44 +59,8 @@ func GetClaimFromToken(tokensString string) (*Claims, error) {
 	}
 }
 
-func IsAppManagerAccess(token string, OpUserID string) bool {
-	claims, err := ParseToken(token, "")
-	if err != nil {
-		return false
-	}
-	if utils.IsContain(claims.UID, config.Config.Manager.AppManagerUid) && claims.UID == OpUserID {
-		return true
-	}
-	return false
-}
-
-func IsManagerUserID(OpUserID string) bool {
-	if utils.IsContain(OpUserID, config.Config.Manager.AppManagerUid) {
-		return true
-	} else {
-		return false
-	}
-}
-
-func CheckManagerUserID(ctx context.Context, userID string) error {
-	if utils.IsContain(userID, config.Config.Manager.AppManagerUid) {
-		return nil
-	}
-	return constant.ErrNoPermission.Wrap()
-}
-
-func CheckAccess(ctx context.Context, OpUserID string, OwnerUserID string) bool {
-	if utils.IsContain(OpUserID, config.Config.Manager.AppManagerUid) {
-		return true
-	}
-	if OpUserID == OwnerUserID {
-		return true
-	}
-	return false
-}
-
 func CheckAccessV3(ctx context.Context, ownerUserID string) (err error) {
-	opUserID := utils.OpUserID(ctx)
+	opUserID := tracelog.GetOpUserID(ctx)
 	defer func() {
 		tracelog.SetCtxInfo(ctx, utils.GetFuncName(1), err, "OpUserID", opUserID, "ownerUserID", ownerUserID)
 	}()
@@ -172,144 +73,13 @@ func CheckAccessV3(ctx context.Context, ownerUserID string) (err error) {
 	return constant.ErrIdentity.Wrap(utils.GetSelfFuncName())
 }
 
-func IsAppManagerUid(ctx context.Context) bool {
-	return utils.IsContain(utils.OpUserID(ctx), config.Config.Manager.AppManagerUid)
-}
-
 func CheckAdmin(ctx context.Context) error {
-	if utils.IsContain(utils.OpUserID(ctx), config.Config.Manager.AppManagerUid) {
+	if utils.IsContain(tracelog.GetOpUserID(ctx), config.Config.Manager.AppManagerUid) {
 		return nil
 	}
 	return constant.ErrIdentity.Wrap()
 }
 
-func GetUserIDFromToken(token string, operationID string) (bool, string, string) {
-	claims, err := ParseToken(token, operationID)
-	if err != nil {
-		log.Error(operationID, "ParseToken failed, ", err.Error(), token)
-		return false, "", err.Error()
-	}
-	log.Debug(operationID, "token claims.ExpiresAt.Second() ", claims.ExpiresAt.Unix())
-	return true, claims.UID, ""
-}
-
-func ParseUserIDFromToken(token string, operationID string) (string, error) {
-	claims, err := ParseToken(token, operationID)
-	if err != nil {
-		log.Error(operationID, "ParseToken failed, ", err.Error(), token)
-		return "", err
-	}
-	log.Debug(operationID, "token claims.ExpiresAt.Second() ", claims.ExpiresAt.Unix())
-	return claims.UID, nil
-}
-
-func GetUserIDFromTokenExpireTime(token string, operationID string) (bool, string, string, int64) {
-	claims, err := ParseToken(token, operationID)
-	if err != nil {
-		log.Error(operationID, "ParseToken failed, ", err.Error(), token)
-		return false, "", err.Error(), 0
-	}
-	return true, claims.UID, "", claims.ExpiresAt.Unix()
-}
-
-func ParseTokenGetUserID(token string, operationID string) (error, string) {
-	claims, err := ParseToken(token, operationID)
-	if err != nil {
-		return utils.Wrap(err, ""), ""
-	}
-	return nil, claims.UID
-}
-
-func ParseToken(tokensString, operationID string) (claims *Claims, err error) {
-	claims, err = GetClaimFromToken(tokensString)
-	if err != nil {
-		return nil, utils.Wrap(err, "")
-	}
-
-	m, err := commonDB.DB.GetTokenMapByUidPid(claims.UID, claims.Platform)
-	if err != nil {
-		log.NewError(operationID, "get token from redis err", err.Error(), claims.UID, claims.Platform)
-		return nil, utils.Wrap(constant.ErrTokenNotExist, "get token from redis err")
-	}
-	if m == nil {
-		log.NewError(operationID, "get token from redis err, not in redis ", "m is nil ", claims.UID, claims.Platform)
-		return nil, utils.Wrap(constant.ErrTokenNotExist, "get token from redis err")
-	}
-	if v, ok := m[tokensString]; ok {
-		switch v {
-		case constant.NormalToken:
-			log.NewDebug(operationID, "this is normal return ", *claims)
-			return claims, nil
-		case constant.KickedToken:
-			log.Error(operationID, "this token has been kicked by other same terminal ", constant.ErrTokenKicked)
-			return nil, utils.Wrap(constant.ErrTokenKicked, "this token has been kicked by other same terminal ")
-		default:
-			return nil, utils.Wrap(constant.ErrTokenUnknown, "")
-		}
-	}
-	log.NewError(operationID, "redis token map not find ", constant.ErrTokenNotExist, tokensString)
-	return nil, utils.Wrap(constant.ErrTokenNotExist, "redis token map not find")
-}
-
-//func MakeTheTokenInvalid(currentClaims *Claims, platformClass string) (bool, error) {
-//	storedRedisTokenInterface, err := db.DB.GetPlatformToken(currentClaims.UID, platformClass)
-//	if err != nil {
-//		return false, err
-//	}
-//	storedRedisPlatformClaims, err := ParseRedisInterfaceToken(storedRedisTokenInterface)
-//	if err != nil {
-//		return false, err
-//	}
-//	//if issue time less than redis token then make this token invalid
-//	if currentClaims.IssuedAt.Time.Unix() < storedRedisPlatformClaims.IssuedAt.Time.Unix() {
-//		return true, constant.TokenInvalid
-//	}
-//	return false, nil
-//}
-
 func ParseRedisInterfaceToken(redisToken interface{}) (*Claims, error) {
 	return GetClaimFromToken(string(redisToken.([]uint8)))
 }
-
-// Validation token, false means failure, true means successful verification
-func VerifyToken(token, uid string) (bool, error) {
-	claims, err := ParseToken(token, "")
-	if err != nil {
-		return false, utils.Wrap(err, "ParseToken failed")
-	}
-	if claims.UID != uid {
-		return false, constant.ErrTokenUnknown
-	}
-
-	log.NewDebug("", claims.UID, claims.Platform)
-	return true, nil
-}
-
-func WsVerifyToken(token, uid string, platformID string, operationID string) (bool, error, string) {
-	argMsg := "args: token: " + token + " operationID: " + operationID + " userID: " + uid + " platformID: " + constant.PlatformIDToName(utils.StringToInt(platformID))
-	claims, err := ParseToken(token, operationID)
-	if err != nil {
-		//if errors.Is(err, constant.ErrTokenUnknown) {
-		//	errMsg := "ParseToken failed ErrTokenUnknown " + err.Error()
-		//	log.Error(operationID, errMsg)
-		//}
-		//e := errors.Unwrap(err)
-		//if errors.Is(e, constant.ErrTokenUnknown) {
-		//	errMsg := "ParseToken failed ErrTokenUnknown " + e.Error()
-		//	log.Error(operationID, errMsg)
-		//}
-
-		errMsg := "parse token err " + err.Error() + argMsg
-		return false, utils.Wrap(err, errMsg), errMsg
-	}
-	if claims.UID != uid {
-		errMsg := " uid is not same to token uid " + argMsg + " claims.UID: " + claims.UID
-		return false, utils.Wrap(constant.ErrTokenDifferentUserID, errMsg), errMsg
-	}
-	if claims.Platform != constant.PlatformIDToName(utils.StringToInt(platformID)) {
-		errMsg := " platform is not same to token platform " + argMsg + " claims platformID: " + claims.Platform
-		return false, utils.Wrap(constant.ErrTokenDifferentPlatformID, errMsg), errMsg
-	}
-	log.NewDebug(operationID, utils.GetSelfFuncName(), " check ok ", claims.UID, uid, claims.Platform)
-	return true, nil, ""
-}