feat: update oss download url

pkg/common/errors.go

@@ -6,6 +6,7 @@ const (
 	CodeSuccess          = 200
 	CodeParamError       = 400
 	CodeUnauthorized     = 401
+	CodeTokenExpired     = 4011
 	CodeForbidden        = 403
 	CodeNotFound         = 404
 	CodeInvalidStatus    = 405
@@ -23,6 +24,7 @@ const (
 	CodeSuccessMsg          = "success"
 	CodeParamErrorMsg       = "param error"
 	CodeUnauthorizedMsg     = "unauthorized"
+	CodeTokenExpiredMsg     = "token expired"
 	CodeForbiddenMsg        = "forbidden"
 	CodeNotFoundMsg         = "not found"
 	CodeInvalidStatusMsg    = "invalid status"

pkg/common/middleware.go

@@ -4,6 +4,7 @@ import (
 	"context"
 	"net/http"
 	"strings"
+	"time"
 
 	"gitea.com/bitwsd/document_ai/pkg/constant"
 	"gitea.com/bitwsd/document_ai/pkg/jwt"
@@ -48,13 +49,24 @@ func AuthMiddleware(ctx *gin.Context) {
 func MustAuthMiddleware() gin.HandlerFunc {
 	return func(ctx *gin.Context) {
 		token := ctx.GetHeader("Authorization")
-		if token != "" {
-			token = strings.TrimPrefix(token, "Bearer ")
-			claims, err := jwt.ParseToken(token)
-			if err == nil {
-				ctx.Set(constant.ContextUserID, claims.UserId)
-			}
+		if token == "" {
+			ctx.JSON(http.StatusOK, ErrorResponse(ctx, CodeUnauthorized, CodeUnauthorizedMsg))
+			ctx.Abort()
+			return
 		}
+		token = strings.TrimPrefix(token, "Bearer ")
+		claims, err := jwt.ParseToken(token)
+		if err != nil || claims == nil {
+			ctx.JSON(http.StatusOK, ErrorResponse(ctx, CodeUnauthorized, CodeUnauthorizedMsg))
+			ctx.Abort()
+			return
+		}
+		if claims.ExpiresAt < time.Now().Unix() {
+			ctx.JSON(http.StatusOK, ErrorResponse(ctx, CodeTokenExpired, CodeTokenExpiredMsg))
+			ctx.Abort()
+			return
+		}
+		ctx.Set(constant.ContextUserID, claims.UserId)
 	}
 }
 

pkg/oss/policy.go

@@ -64,8 +64,7 @@ func GetPolicyToken() (string, error) {
 }
 
 func GetPolicyURL(ctx context.Context, path string) (string, error) {
-	// Create OSS client
-	client, err := oss.New(config.GlobalConfig.Aliyun.OSS.Endpoint, config.GlobalConfig.Aliyun.OSS.AccessKeyID, config.GlobalConfig.Aliyun.OSS.AccessKeySecret)
+	client, err := oss.New(config.GlobalConfig.Aliyun.OSS.Endpoint, config.GlobalConfig.Aliyun.OSS.AccessKeyID, config.GlobalConfig.Aliyun.OSS.AccessKeySecret, oss.UseCname(true))
 	if err != nil {
 		log.Error(ctx, "func", "GetPolicyURL", "msg", "create oss client failed", "error", err)
 		return "", err
@@ -151,7 +150,7 @@ func DownloadFile(ctx context.Context, ossPath string) (io.ReadCloser, error) {
 func GetDownloadURL(ctx context.Context, ossPath string) (string, error) {
 	endpoint := config.GlobalConfig.Aliyun.OSS.Endpoint
 
-	client, err := oss.New(endpoint, config.GlobalConfig.Aliyun.OSS.AccessKeyID, config.GlobalConfig.Aliyun.OSS.AccessKeySecret)
+	client, err := oss.New(endpoint, config.GlobalConfig.Aliyun.OSS.AccessKeyID, config.GlobalConfig.Aliyun.OSS.AccessKeySecret, oss.UseCname(true))
 	if err != nil {
 		log.Error(ctx, "func", "GetDownloadURL", "msg", "create oss client failed", "error", err)
 		return "", err
@@ -163,11 +162,13 @@ func GetDownloadURL(ctx context.Context, ossPath string) (string, error) {
 		return "", err
 	}
 
-	signURL, err := bucket.SignURL(ossPath, oss.HTTPGet, 60)
+	signURL, err := bucket.SignURL(ossPath, oss.HTTPGet, 3600)
 	if err != nil {
 		log.Error(ctx, "func", "GetDownloadURL", "msg", "get object failed", "error", err)
 		return "", err
 	}
 
+	signURL = strings.Replace(signURL, "http://", "https://", 1)
+
 	return signURL, nil
 }