improvement: JWT

- upgraded github.com/golang-jwt/jwt from v4.5.0 to v5.2.1
- store key/value pair for all RegisteredClaims in the context

Author: pilinux

config/config.go

@@ -14,7 +14,7 @@ import (
 	"strings"
 	"time"
 
-	"github.com/golang-jwt/jwt/v4"
+	"github.com/golang-jwt/jwt/v5"
 	"github.com/joho/godotenv"
 	"golang.org/x/crypto/sha3"
 

example/controller/playgroundBasicAuth.go

@@ -1,6 +1,7 @@
 package controller
 
 import (
+	"fmt"
 	"net/http"
 
 	"github.com/gin-gonic/gin"
@@ -10,5 +11,10 @@ import (
 
 // AccessResource - can be accessed by basic auth
 func AccessResource(c *gin.Context) {
+	// print all claims in JWT
+	for k, v := range c.Keys {
+		fmt.Println("key:", k, "|", "value:", v)
+	}
+
 	grenderer.Render(c, gin.H{"message": "access granted!"}, http.StatusOK)
 }

go.mod

@@ -6,7 +6,7 @@ require (
 	github.com/flosch/pongo2/v6 v6.0.0
 	github.com/gin-gonic/gin v1.10.0
 	github.com/go-sql-driver/mysql v1.8.1
-	github.com/golang-jwt/jwt/v4 v4.5.0
+	github.com/golang-jwt/jwt/v5 v5.2.1
 	github.com/google/uuid v1.6.0
 	github.com/joho/godotenv v1.5.1
 	github.com/mediocregopher/radix/v4 v4.1.4

go.sum

@@ -38,8 +38,8 @@ github.com/go-sql-driver/mysql v1.8.1 h1:LedoTUt/eveggdHS9qUFC1EFSa8bU2+1pZjSRpv
 github.com/go-sql-driver/mysql v1.8.1/go.mod h1:wEBSXgmK//2ZFJyE+qWnIsVGmvmEKlqwuVSjsCm7DZg=
 github.com/goccy/go-json v0.10.2 h1:CrxCmQqYDkv1z7lO7Wbh2HN93uovUHgrECaO5ZrCXAU=
 github.com/goccy/go-json v0.10.2/go.mod h1:6MelG93GURQebXPDq3khkgXZkazVtN9CRI+MGFi0w8I=
-github.com/golang-jwt/jwt/v4 v4.5.0 h1:7cYmW1XlMY7h7ii7UhUyChSgS5wUJEnm9uZVTGqOWzg=
-github.com/golang-jwt/jwt/v4 v4.5.0/go.mod h1:m21LjoU+eqJr34lmDMbreY2eSTRJ1cv77w39/MY0Ch0=
+github.com/golang-jwt/jwt/v5 v5.2.1 h1:OuVbFODueb089Lh128TAcimifWaLhJwVflnrgM17wHk=
+github.com/golang-jwt/jwt/v5 v5.2.1/go.mod h1:pqrtFR0X4osieyHYxtmOUWsAWrfe1Q5UVIyoH402zdk=
 github.com/golang/snappy v0.0.1/go.mod h1:/XxbfmMg8lxefKM7IXC3fBNl/7bRcc72aCRzEWrmP2Q=
 github.com/golang/snappy v0.0.4 h1:yAGX7huGHXlcLOEtBnF4w7FQwA26wojNCwOYAEhLjQM=
 github.com/golang/snappy v0.0.4/go.mod h1:/XxbfmMg8lxefKM7IXC3fBNl/7bRcc72aCRzEWrmP2Q=

lib/middleware/jwt.go

@@ -14,7 +14,7 @@ import (
 	"time"
 
 	"github.com/gin-gonic/gin"
-	"github.com/golang-jwt/jwt/v4"
+	"github.com/golang-jwt/jwt/v5"
 	"github.com/google/uuid"
 )
 
@@ -119,6 +119,17 @@ func JWT() gin.HandlerFunc {
 			c.Set("expAccess", claims.ExpiresAt.Unix()) // in UTC
 			c.Set("iatAccess", claims.IssuedAt.Unix())  // in UTC
 			c.Set("jtiAccess", claims.ID)
+
+			// set values from RegisteredClaims
+			//
+			// token issuer
+			c.Set("iss", claims.Issuer)
+			//
+			// token subject
+			c.Set("sub", claims.Subject)
+			//
+			// token audience
+			c.Set("aud", claims.Audience)
 		}
 
 		c.Next()
@@ -189,6 +200,17 @@ func RefreshJWT() gin.HandlerFunc {
 			c.Set("expRefresh", claims.ExpiresAt.Unix()) // in UTC
 			c.Set("iatRefresh", claims.IssuedAt.Unix())  // in UTC
 			c.Set("jtiRefresh", claims.ID)
+
+			// set values from RegisteredClaims
+			//
+			// token issuer
+			c.Set("iss", claims.Issuer)
+			//
+			// token subject
+			c.Set("sub", claims.Subject)
+			//
+			// token audience
+			c.Set("aud", claims.Audience)
 		}
 
 		c.Next()

lib/middleware/jwt_test.go

@@ -10,7 +10,7 @@ import (
 	"testing"
 
 	"github.com/gin-gonic/gin"
-	"github.com/golang-jwt/jwt/v4"
+	"github.com/golang-jwt/jwt/v5"
 	"github.com/pilinux/gorest/lib/middleware"
 )