fix: 修复Authorization函数中JWT令牌提取逻辑，优化空格处理

2025-05-23 14:14:36 +08:00
parent 1228f5ea5b
commit 2f65fb08cf
1 changed files with 4 additions and 4 deletions
--- a/lib/core/ctx/ctx.go
+++ b/lib/core/ctx/ctx.go
@@ -139,11 +139,11 @@ func Authorization(r *http.Request) string {
 		return ""
 	}
 	// 拆分 Authorization 请求头，提取 JWT 令牌部分
-	arr := strings.Split(authHeader, constants.HEADER_PREFIX)
+	tokenStr := strings.Replace(authHeader, constants.HEADER_PREFIX, "", 1)
-	if len(arr) == 2 && arr[1] == "" {
+	if len(tokenStr) > 64 {
-		return ""
+		return strings.TrimSpace(tokenStr) // 去除可能存在的空格
 	}
-	return arr[1]
+	return ""
 }
 // ContextKey 定义自定义类型作为键