File: experimental-handlers/jwt/main.go ~~~ // iris provides some basic middleware, most for your learning courve. // You can use any net/http compatible middleware with iris.FromStd wrapper. // // JWT net/http video tutorial for golang newcomers: https://www.youtube.com/watch?v=dgJFeqeXVKw // // This middleware is the only one cloned from external source: https://github.com/auth0/go-jwt-middleware // (because it used "context" to define the user but we don't need that so a simple iris.FromStd wouldn't work as expected.) package main // $ go get -u github.com/dgrijalva/jwt-go // $ go run main.go import ( "github.com/kataras/iris" "github.com/dgrijalva/jwt-go" jwtmiddleware "github.com/iris-contrib/middleware/jwt" ) func myHandler(ctx iris.Context) { user := ctx.Values().Get("jwt").(*jwt.Token) ctx.Writef("This is an authenticated request\n") ctx.Writef("Claim content:\n") ctx.Writef("%s", user.Signature) } func main() { app := iris.New() jwtHandler := jwtmiddleware.New(jwtmiddleware.Config{ ValidationKeyGetter: func(token *jwt.Token) (interface{}, error) { return []byte("My Secret"), nil }, // When set, the middleware verifies that tokens are signed with the specific signing algorithm // If the signing method is not constant the ValidationKeyGetter callback can be used to implement additional checks // Important to avoid security issues described here: https://auth0.com/blog/2015/03/31/critical-vulnerabilities-in-json-web-token-libraries/ SigningMethod: jwt.SigningMethodHS256, }) app.Use(jwtHandler.Serve) app.Get("/ping", myHandler) app.Run(iris.Addr("localhost:3001")) } // don't forget to look ../jwt_test.go to seee how to set your own custom claims ~~~