⚡ implement email verification feature, add captcha validation middleware, and enhance user authentication flow

2025-09-05 16:56:22 +00:00 · 2025-07-22 08:50:16 +08:00
parent 6187425df6
commit a0d215fa2e
26 changed files with 844 additions and 50 deletions
--- a/pkg/utils/captcha.go
+++ b/pkg/utils/captcha.go
@ -0,0 +1,93 @@
+package utils
+
+import (
+	"fmt"
+	"github.com/snowykami/neo-blog/pkg/constant"
+	"resty.dev/v3"
+)
+
+type captchaUtils struct{}
+
+var Captcha = captchaUtils{}
+
+type CaptchaConfig struct {
+	Type       string
+	SiteSecret string // Site secret key for the captcha service
+	SecretKey  string // Secret key for the captcha service
+}
+
+func (c *captchaUtils) GetCaptchaConfigFromEnv() *CaptchaConfig {
+	return &CaptchaConfig{
+		Type:       Env.Get("CAPTCHA_TYPE", "disable"),
+		SiteSecret: Env.Get("CAPTCHA_SITE_SECRET", ""),
+		SecretKey:  Env.Get("CAPTCHA_SECRET_KEY", ""),
+	}
+}
+
+// VerifyCaptcha 根据提供的配置和令牌验证验证码
+func (c *captchaUtils) VerifyCaptcha(captchaConfig *CaptchaConfig, captchaToken string) (bool, error) {
+	restyClient := resty.New()
+	switch captchaConfig.Type {
+	case constant.CaptchaTypeDisable:
+		return true, nil
+	case constant.CaptchaTypeHCaptcha:
+		result := make(map[string]any)
+		resp, err := restyClient.R().
+			SetFormData(map[string]string{
+				"secret":   captchaConfig.SecretKey,
+				"response": captchaToken,
+			}).SetResult(&result).Post("https://hcaptcha.com/siteverify")
+		if err != nil {
+			return false, err
+		}
+		if resp.IsError() {
+			return false, nil
+		}
+		fmt.Printf("%#v\n", result)
+		if success, ok := result["success"].(bool); ok && success {
+			return true, nil
+		} else {
+			return false, nil
+		}
+	case constant.CaptchaTypeTurnstile:
+		result := make(map[string]any)
+		resp, err := restyClient.R().
+			SetFormData(map[string]string{
+				"secret":   captchaConfig.SecretKey,
+				"response": captchaToken,
+			}).SetResult(&result).Post("https://challenges.cloudflare.com/turnstile/v0/siteverify")
+		if err != nil {
+			return false, err
+		}
+		if resp.IsError() {
+			return false, nil
+		}
+		fmt.Printf("%#v\n", result)
+		if success, ok := result["success"].(bool); ok && success {
+			return true, nil
+		} else {
+			return false, nil
+		}
+	case constant.CaptchaTypeReCaptcha:
+		result := make(map[string]any)
+		resp, err := restyClient.R().
+			SetFormData(map[string]string{
+				"secret":   captchaConfig.SecretKey,
+				"response": captchaToken,
+			}).SetResult(&result).Post("https://www.google.com/recaptcha/api/siteverify")
+		if err != nil {
+			return false, err
+		}
+		if resp.IsError() {
+			return false, nil
+		}
+		fmt.Printf("%#v\n", result)
+		if success, ok := result["success"].(bool); ok && success {
+			return true, nil
+		} else {
+			return false, nil
+		}
+	default:
+		return false, fmt.Errorf("invalid captcha type: %s", captchaConfig.Type)
+	}
+}