登录
首页 >  Golang >  Go问答

使用代码生成JWT授权令牌的方法

来源:stackoverflow

时间:2024-02-10 12:00:25 186浏览 收藏

推广推荐
免费电影APP ➜
支持 PC / 移动端,安全直达

学习Golang要努力,但是不要急!今天的这篇文章《使用代码生成JWT授权令牌的方法》将会介绍到等等知识点,如果你想深入学习Golang,可以关注我!我会持续更新相关文章的,希望对大家都能有所帮助!

问题内容

我正在寻找一种创建 jwt 的方法,我可以使用 postman 授予类型“授权代码”来获取该 jwt,并使用现有的回调 url(我无法修改/不允许使用 localhost)。

我想创建一个 nodejs / go 小型应用程序,它可以通过 postman 方式授权此流程。

据我所知,唯一的方法是在代码控制的窗口中运行重定向网址,并在登录后提取授权代码以获得正确的令牌。

似乎无法在登录页面后提取此代码...

如果有人能给我指出正确的方法:)

将添加一个我一直在玩的小js代码(使用puppeteer来模仿postman浏览器),自从“无效授权代码:2j3zn75hxnz4uw4jss3n8xhqpzvfa73y”以来失败,尽管此代码绝对是正确的。 p> 

const puppeteer = require('puppeteer');

const url = "URL"

const ENV = {}
const account = {
    username: "USERNAME", password: "PASSWORD"
}

// Sending a POST request with puppeteer, since I would like to do it from the browser instance itself, not axios.
async function gotoExtended(page, request) {
    const { url, method, headers, postData } = request;
    const cookies = await page.cookies()
    console.log(cookies)

    if (method !== 'GET' || postData || headers) {
        let wasCalled = false;
        await page.setRequestInterception(true);
        const interceptRequestHandler = async (request) => {
            try {
                if (wasCalled) {
                    return await request.continue();
                }

                wasCalled = true;
                const requestParams = {};

                if (method !== 'GET') requestParams.method = method;
                if (postData) requestParams.postData = postData;
                if (headers) requestParams.headers = headers;
                await request.continue(requestParams);
                await page.setRequestInterception(false);
            } catch (error) {
                console.error('Error while request interception', { error });
            }
        };

        await page.on('request', interceptRequestHandler);
    }

    return page.goto(url);
}


async function main() {
    const browser = await puppeteer.launch({headless: false});
    const page = await browser.newPage();
    let code;

    page.on('response', response => {
        const status = response.status()
        if ((status >= 300) && (status <= 399)) {
            console.log('Redirect from', response.url(), 'to', response.headers()['location'])
            if (response.url().includes('callback?code=')) {
                let str = response.url();
                code = str.split('callback?code=')[1];
                console.log(code)
            }
        }
    })

    await page.setViewport({width: 1200, height: 720});
    await page.goto(url, {waitUntil: 'networkidle0'}); // wait until page load
    await page.type('#j_username', account.username);
    await page.type('#j_password', account.password);
    // click and wait for navigation
    await Promise.all([page.click('#logOnFormSubmit'), page.waitForNavigation({waitUntil: 'networkidle0'}),]);

    const options = {
        headers: {
            "Content-Type": "application/x-www-form-urlencoded",
            "Authorization": "CORRECT - Base64 of ClientId:ClientSecret",
            "Accept": "*/*",
            "Cache-Control": "no-cache",
            "Accept-Encoding": "gzip, deflate, br"
        }
    }

    const data = `grant_type=authorization_code&code=${code}&redirect_uri=${ENV.redirectUri}&${ENV.clientId}`

    await gotoExtended(page, { url: ENV.authURL, method: 'POST', postData: data, headers: options.headers });

    console.log(await page.content());

    await browser.close();
}

main().then(() => console.log("End"));

谢谢

编辑

代码确实可以工作,所以这就是我在想的。只是需要一些调整。


正确答案


验证代码后 - 添加更新的代码以供将来使用。

require('dotenv').config()
const puppeteer = require("puppeteer");

const clientId = process.env.CLIENT_ID,
  clientSecret = process.env.CLIENT_SECRET,
  redirectUri = process.env.REDIRECT_URI,
  redirectUriEncoded = encodeURIComponent(redirectUri),
  authenticationUrl = process.env.AUTHENTICATION_URL,
  url = `${authenticationUrl}/oauth/authorize?response_type=code&client_id=${encodeURIComponent(
    clientId
  )}&redirect_uri=${redirectUriEncoded}`,
  username = process.env.USERNAME,
  password = process.env.PASSWORD;

async function gotoExtended(page, request) {
  const { url, method, headers, postData } = request;

  if (method !== "GET" || postData || headers) {
    let wasCalled = false;
    await page.setRequestInterception(true);
    const interceptRequestHandler = async (request) => {
      try {
        if (wasCalled) {
          return await request.continue();
        }

        wasCalled = true;
        const requestParams = {};

        if (method !== "GET") {
          requestParams.method = method;
        }
        if (postData) {
          requestParams.postData = postData;
        }
        if (headers) {
          requestParams.headers = headers;
        }
        await request.continue(requestParams);
      } catch (error) {
        console.error("Error while request interception", { error });
      }
    };

    await page.on("request", interceptRequestHandler);
  }

  return page.goto(url);
}

async function main() {
  console.log("***Start***");
  const browser = await puppeteer.launch({ headless: true });
  const page = await browser.newPage();
  let code;

  page.on("response", (response) => {
    const status = response.status();
    if (status >= 300 && status <= 399) {
      if (response.headers()["location"].includes("callback?code=")) {
        let str = response.headers()["location"];
        code = str.split("callback?code=")[1];
      }
    }
  });

  await page.goto(url, { waitUntil: "networkidle0" }); // wait until page load
  await page.type("#j_username", username);
  await page.type("#j_password", password);

  await Promise.all([
    page.click("#logOnFormSubmit"),
    page.waitForNavigation({ waitUntil: "networkidle0" }),
  ]);

  const encodedBase64Authorization = Buffer.from(
    `${clientId}:${clientSecret}`
  ).toString("base64");

  const options = {
    headers: {
      "Content-Type": "application/x-www-form-urlencoded",
      Authorization: `Basic ${encodedBase64Authorization}`,
      Accept: "*/*",
      "Cache-Control": "no-cache",
      "Accept-Encoding": "gzip, deflate, br",
    },
  };

  const data = `grant_type=authorization_code&code=${code}&redirect_uri=${redirectUriEncoded}&client_id=${clientId}`;

  await gotoExtended(page, {
    url: `${authenticationUrl}/oauth/token`,
    method: "POST",
    postData: data,
    headers: options.headers,
  });

  const { access_token } = await page.evaluate(() => {
    return JSON.parse(document.querySelector("body").innerText);
  });

  console.log(access_token);

  await browser.close();
}

main().then(() => console.log("***End***"));

本篇关于《使用代码生成JWT授权令牌的方法》的介绍就到此结束啦,但是学无止境,想要了解学习更多关于Golang的相关知识,请关注golang学习网公众号!

声明:本文转载于:stackoverflow 如有侵犯,请联系study_golang@163.com删除
相关阅读
更多>
最新阅读
更多>
课程推荐
更多>