如何在Golang中保存会话

时间:2019-01-18 11:21:38

标签: session go gorilla

我正在尝试使用大猩猩会话和securecookie在golang后端中保存一个已记录的用户ID。

这是我的包裹会议:

package session

import (
    "fmt"
    "net/http"

    "github.com/gorilla/securecookie"
    "github.com/gorilla/sessions"
)

var store = sessions.NewCookieStore(securecookie.GenerateRandomKey(32))

//GetSessionLoggedID returns loggedID
func GetSessionLoggedID(r *http.Request) int {
    storeAuth, _ := store.Get(r, "authentication")
    if auth, ok := storeAuth.Values["loggedID"].(bool); ok && auth {
        return storeAuth.Values["loggedID"].(int)
    }
    fmt.Println("none found")
    return 0
}

//SetSessionLoggedID sets cookie session user ID
func SetSessionLoggedID(w http.ResponseWriter, r *http.Request, id int) {
    storeAuth, err := store.Get(r, "authentication")
    if err != nil {
        fmt.Println(err.Error())
    }
    storeAuth.Options = &sessions.Options{HttpOnly: true, Secure: true, MaxAge: 2628000, Path: "/"}
    storeAuth.Values["loggedID"] = id
    storeAuth.Save(r, w)
}

我还有另一个软件包,可以用来验证登录用户的电子邮件/密码。

这里是功能:

func (handler *UserHandler) checkPassword(w http.ResponseWriter, r *http.Request) {
    var body struct {
        Email    string
        Password string
    }
    err := json.NewDecoder(r.Body).Decode(&body)
    if err != nil {
        http.Error(w, err.Error(), http.StatusInternalServerError)
        return
    }
    loggedID, err := handler.UserUsecase.PasswordMatch(body.Email, body.Password)
    if err != nil || loggedID == 0 {
        http.Error(w, "Could not authenticate user", http.StatusUnauthorized)
        return
    }
    session.SetSessionLoggedID(w, r, loggedID)
    json.NewEncoder(w).Encode(struct {
        ID int `json:"id"`
    }{loggedID})
}

返回的ID是正确的ID。但是会话并没有像我希望的那样保存。

如果我在checkpassword函数的末尾添加session.GetSessionLoggedID(r),则会显示“未找到”。

我想念什么?

1 个答案:

答案 0 :(得分:4)

// watch this line
if auth, ok := storeAuth.Values["loggedID"].(bool); ok && auth {

storeAuth.Values["loggedID"]不是bool,所以okfalse,那么您会发现“未找到”

更改为

    if auth, ok := storeAuth.Values["loggedID"]; ok{
        return auth.(int)
    }
    fmt.Println("none found")