benchmark can work in secure mode

2025-09-19 05:59:23 +08:00 · 2019-02-15 00:09:19 -08:00
parent a3b0e39b06
commit 74fb237727
18 changed files with 233 additions and 179 deletions
--- a/weed/security/jwt.go
+++ b/weed/security/jwt.go
@@ -4,7 +4,6 @@ import (
 	"fmt"
 	"net/http"
 	"strings"
-
 	"time"

 	"github.com/chrislusf/seaweedfs/weed/glog"
@@ -57,10 +56,10 @@ func GetJwt(r *http.Request) EncodedJwt {

 func DecodeJwt(signingKey SigningKey, tokenString EncodedJwt) (token *jwt.Token, err error) {
 	// check exp, nbf
-	return jwt.Parse(string(tokenString), func(token *jwt.Token) (interface{}, error) {
+	return jwt.ParseWithClaims(string(tokenString), &SeaweedFileIdClaims{}, func(token *jwt.Token) (interface{}, error) {
 		if _, ok := token.Method.(*jwt.SigningMethodHMAC); !ok {
 			return nil, fmt.Errorf("unknown token method")
 		}
-		return signingKey, nil
+		return []byte(signingKey), nil
 	})
 }