恢复被删除的代码

2026-02-25 11:52:11 +08:00
parent 1f9eee0fd7
commit 44f995a5a3
77 changed files with 10340 additions and 6 deletions
--- a/soul-api/internal/middleware/admin_auth.go
+++ b/soul-api/internal/middleware/admin_auth.go
@@ -0,0 +1,27 @@
+package middleware
+
+import (
+	"net/http"
+
+	"soul-api/internal/auth"
+	"soul-api/internal/config"
+
+	"github.com/gin-gonic/gin"
+)
+
+// AdminAuth 管理端鉴权：校验 JWT（Authorization: Bearer 或 Cookie admin_session），未登录返回 401
+func AdminAuth() gin.HandlerFunc {
+	return func(c *gin.Context) {
+		cfg := config.Get()
+		if cfg == nil {
+			c.Next()
+			return
+		}
+		token := auth.GetAdminJWTFromRequest(c.Request)
+		if _, ok := auth.ParseAdminJWT(token, cfg.AdminSessionSecret); !ok {
+			c.AbortWithStatusJSON(http.StatusUnauthorized, gin.H{"success": false, "error": "未授权访问，请先登录"})
+			return
+		}
+		c.Next()
+	}
+}