44096069a7
- 发送端流式(R-iOS-4):新增 FileSource 抽象(web/src/features/transfer/source.ts),iOS 经 HTTP Range 惰性拉取(原生 WKURLSchemeHandler 认 Range 头 seek 回 206),整文件不进 WebView 内存;web/桌面经 fileSource 包装字节不变。p2p/relay/transfer 改吃 FileSource - 后台续传:iOS 26 BGContinuedProcessingTask(BackgroundTaskManager + AppDelegate 注册 + BGTaskSchedulerPermittedIdentifiers),引擎传输进度驱动系统进度 UI - APNs:后端 internal/apns(ES256 .p8 JWT + HTTP/2,仿 internal/push)+ push_subscriptions.platform 列 + POST /api/push/apns/register + transfer/message 未投递分支分流;原生 PushRegistry 授权 + 设备令牌经引擎桥 registerPush 上报;aps-environment + remote-notification 后台模式 - Share Extension:CDropShare appex 抓文件 → App Group 收件箱 → cdrop://share 深链唤主程序选设备发送(只交接、不跑引擎) - 控制中心剪贴板两控件:CDropWidgets widgetkit appex(ControlWidget + AppIntent + 纯原生 ClipboardClient REST);用专用 broker 设备会话(主程序经引擎 provisionWidgetSession 代铸独立 device_id 会话存 App Group,控件自刷不与引擎抢 refresh 轮换) - 真机分发预备:committed 签名改 ad-hoc 使模拟器 entitlement 生效;真机手动签名 scaffold(Signing.xcconfig 仅 device SDK 套 Manual + gitignore 的 Local.xcconfig 填 Team/profile)+ just ios-device / ios-devices 全 CLI 装机;包名改 net.commilitia.Commilitia-Drop(含 .share/.widgets,BG task 前缀同改);REALDEVICE.md 重写为门户 + CLI 装机手册 - I18n.swift 移 Shared/ 供三 target 共用;i18n 加 ios.bg/share/control.* 键 - ultracode 多 agent 审查修复(0 HIGH,2 MED + 7 LOW):分享 send 后留收件箱致重发→move 私有暂存;WidgetSession 锁屏文件保护→UntilFirstUserAuthentication;outgoing/安全作用域登出释放;控件 device_id 登出清理;并发控件 refresh CAS-before-clear;APNs 读 reason + prune bad token + bust 过期 JWT;APNSEnv 大小写归一;Share-ext completeRequest 挪进 open 回调
87 lines
3.1 KiB
Go
87 lines
3.1 KiB
Go
package jwtauth
|
|
|
|
import (
|
|
"context"
|
|
"strings"
|
|
)
|
|
|
|
// Claims is the authenticated identity for a request. In prod it is sourced from the
|
|
// Auth Broker at the edge: broker /verify authenticates the caller and injects X-Auth-*
|
|
// headers this process trusts (Caddy strips any client-supplied X-Auth-* at the trust
|
|
// boundary, so only the broker can set them). In dev it is synthesised from the dev token.
|
|
type Claims struct {
|
|
UserID string // X-Auth-Subject (Casdoor sub)
|
|
Name string // X-Auth-Name (display name); may be empty
|
|
Avatar string // X-Auth-Avatar (profile picture URL from the broker account); may be empty
|
|
Groups []string // X-Auth-Roles, comma-split
|
|
// Scope is the raw X-Auth-Scope: a global SSO user is "full"; a cdrop delegated
|
|
// session is "app:cdrop:<tier>". Tier() reads the capability grade off the end.
|
|
Scope string
|
|
// DeviceID is X-Auth-Meta: the cdrop device_id this session was minted for — the
|
|
// join key to the devices row. Empty for an unmanaged caller (e.g. a global SSO
|
|
// browser that never paired through cdrop).
|
|
DeviceID string
|
|
}
|
|
|
|
// ScopeTier returns the capability grade — the last colon-separated segment of a broker
|
|
// scope ("app:cdrop:guest" → "guest", "full" → "full"). A tierless scope is its own tier.
|
|
// Shared by Claims.Tier() and the session-list overlay so the two never diverge.
|
|
func ScopeTier(scope string) string {
|
|
if i := strings.LastIndex(scope, ":"); i >= 0 {
|
|
return scope[i+1:]
|
|
}
|
|
return scope
|
|
}
|
|
|
|
// Tier returns the capability grade off the caller's scope (see ScopeTier).
|
|
func (c *Claims) Tier() string {
|
|
return ScopeTier(c.Scope)
|
|
}
|
|
|
|
// Guest reports whether these claims came from a restricted guest session (a
|
|
// scan-login borrow). Guest sessions can transfer files but not manage devices,
|
|
// approve other devices, or mint long-lived tokens.
|
|
func (c *Claims) Guest() bool { return c.Tier() == "guest" }
|
|
|
|
type ctxKey int
|
|
|
|
const (
|
|
claimsCtxKey ctxKey = iota
|
|
deviceCtxKey
|
|
deviceTypeCtxKey
|
|
)
|
|
|
|
func ClaimsFromContext(ctx context.Context) (*Claims, bool) {
|
|
c, ok := ctx.Value(claimsCtxKey).(*Claims)
|
|
return c, ok
|
|
}
|
|
|
|
// ContextWithClaims attaches claims to a context — the inverse of ClaimsFromContext.
|
|
// The auth middleware uses this; it is also the seam handlers and tests use to inject
|
|
// claims directly.
|
|
func ContextWithClaims(ctx context.Context, c *Claims) context.Context {
|
|
return context.WithValue(ctx, claimsCtxKey, c)
|
|
}
|
|
|
|
func DeviceNameFromContext(ctx context.Context) (string, bool) {
|
|
n, ok := ctx.Value(deviceCtxKey).(string)
|
|
return n, ok
|
|
}
|
|
|
|
// ContextWithDeviceName attaches a device name to the context — the inverse of
|
|
// DeviceNameFromContext. Used by tests that exercise handlers directly without
|
|
// running the full auth middleware.
|
|
func ContextWithDeviceName(ctx context.Context, name string) context.Context {
|
|
return context.WithValue(ctx, deviceCtxKey, name)
|
|
}
|
|
|
|
// DeviceTypeFromContext returns the client-declared device type set by the auth
|
|
// middleware (browser / macos / windows / linux / ios), defaulting to "browser".
|
|
func DeviceTypeFromContext(ctx context.Context) string {
|
|
t, ok := ctx.Value(deviceTypeCtxKey).(string)
|
|
if !ok || t == "" {
|
|
return "browser"
|
|
}
|
|
return t
|
|
}
|