fix access token check validate bug

alireza-fa · Feb 19, 2024 · 8130a8a · 8130a8a
1 parent 3abb5fa
commit 8130a8a
Show file tree

Hide file tree

Showing 2 changed files with 9 additions and 9 deletions.
diff --git a/src/api/middlewares/auth.go b/src/api/middlewares/auth.go
@@ -6,7 +6,6 @@ import (
 	"github.com/alireza-fa/blog-go/src/api/helper"
 	"github.com/alireza-fa/blog-go/src/constants"
 	"github.com/alireza-fa/blog-go/src/services"
-	"github.com/golang-jwt/jwt/v5"
 	"net/http"
 	"strings"
 )
@@ -23,14 +22,6 @@ func Authentication(next http.Handler) http.Handler {
 			err = errors.New("token is required")
 		} else {
 			claimMap, err = tokenService.GetClaims(token[1])
-			if err != nil {
-				switch {
-				case errors.Is(err, jwt.ErrTokenExpired):
-					err = errors.New("token expired")
-				default:
-					err = errors.New("token is invalid")
-				}
-			}
 		}
 		if err != nil {
 			helper.BaseResponseWithError(w, nil, http.StatusUnauthorized, err)

diff --git a/src/services/token_service.go b/src/services/token_service.go
@@ -81,6 +81,15 @@ func (s *TokenService) VerifyAccessToken(token string) (*jwt.Token, error) {
 	if err != nil {
 		return nil, err
 	}
+	claims, ok := at.Claims.(jwt.MapClaims)
+	if !ok {
+		return nil, err
+	}
+	expire := claims[constants.ExpireTimeKey].(float64)
+	if expire < float64(time.Now().Unix()) {
+		return nil, errors.New("token is expired")
+	}
+
 	return at, nil
 }