{"id":1214,"date":"2025-03-24T08:52:35","date_gmt":"2025-03-23T23:52:35","guid":{"rendered":"https:\/\/dexall.co.jp\/articles\/?p=1214"},"modified":"2025-03-24T08:52:35","modified_gmt":"2025-03-23T23:52:35","slug":"%e3%80%90%e7%8f%be%e5%a0%b4%e3%81%a7%e4%bd%bf%e3%81%88%e3%82%8b%e3%80%91go%e3%81%aejwt%e5%ae%9f%e8%a3%85%e5%ae%8c%e5%85%a8%e8%a7%a3%e8%aa%ac%ef%bc%815%e3%81%a4%e3%81%ae%e3%83%99%e3%82%b9%e3%83%88","status":"publish","type":"post","link":"https:\/\/dexall.co.jp\/articles\/?p=1214","title":{"rendered":"\u3010\u73fe\u5834\u3067\u4f7f\u3048\u308b\u3011Go\u306eJWT\u5b9f\u88c5\u5b8c\u5168\u89e3\u8aac\uff015\u3064\u306e\u30d9\u30b9\u30c8\u30d7\u30e9\u30af\u30c6\u30a3\u30b9\u3092\u5fb9\u5e95\u89e3\u8aac"},"content":{"rendered":"\n<div class=\"toc\"><br \/>\n<b>Warning<\/b>:  Undefined array key \"is_admin\" in <b>\/home\/xs392991\/dexall.co.jp\/public_html\/articles\/wp-content\/themes\/sango-theme\/library\/gutenberg\/dist\/classes\/Toc.php<\/b> on line <b>116<\/b><br \/>\n<br \/>\n<b>Warning<\/b>:  Undefined array key \"is_category_top\" in <b>\/home\/xs392991\/dexall.co.jp\/public_html\/articles\/wp-content\/themes\/sango-theme\/library\/gutenberg\/dist\/classes\/Toc.php<\/b> on line <b>121<\/b><br \/>\n<br \/>\n<b>Warning<\/b>:  Undefined array key \"is_top\" in <b>\/home\/xs392991\/dexall.co.jp\/public_html\/articles\/wp-content\/themes\/sango-theme\/library\/gutenberg\/dist\/classes\/Toc.php<\/b> on line <b>128<\/b><br \/>\n    <div id=\"toc_container\" class=\"sgb-toc--bullets js-smooth-scroll\" data-dialog-title=\"\u76ee\u6b21\">\n      <p class=\"toc_title\">\u76ee\u6b21 <\/p>\n      <ul class=\"toc_list\">  <li class=\"first\">    <a href=\"#i-0\">JWT\u3068\u306f\uff1fGo\u3067\u306e\u6d3b\u7528\u30e1\u30ea\u30c3\u30c8\u3092\u89e3\u8aac<\/a>    <ul class=\"menu_level_1\">      <li class=\"first\">        <a href=\"#i-1\">JWT\uff08JSON Web Token\uff09\u306e\u57fa\u672c\u6982\u5ff5\u3068\u4ed5\u7d44\u307f<\/a>      <\/li>      <li>        <a href=\"#i-4\">Go\u30d7\u30ed\u30b8\u30a7\u30af\u30c8\u3067JWT\u3092\u63a1\u7528\u3059\u308b\u30e1\u30ea\u30c3\u30c8<\/a>      <\/li>      <li class=\"last\">        <a href=\"#i-9\">\u307e\u3068\u3081<\/a>      <\/li>    <\/ul>  <\/li>  <li>    <a href=\"#i-10\">Go\u3067\u306eJWT\u5b9f\u88c5\u624b\u9806<\/a>    <ul class=\"menu_level_1\">      <li class=\"first\">        <a href=\"#i-11\">\u5fc5\u8981\u306a\u30e9\u30a4\u30d6\u30e9\u30ea\u306e\u30a4\u30f3\u30b9\u30c8\u30fc\u30eb\u3068\u30bb\u30c3\u30c8\u30a2\u30c3\u30d7<\/a>      <\/li>      <li>        <a href=\"#i-12\">JWT\u30c8\u30fc\u30af\u30f3\u306e\u751f\u6210\u51e6\u7406\u306e\u5b9f\u88c5\u65b9\u6cd5<\/a>      <\/li>      <li class=\"last\">        <a href=\"#i-13\">\u30c8\u30fc\u30af\u30f3\u691c\u8a3c\u30ed\u30b8\u30c3\u30af\u306e\u5b9f\u88c5\u65b9\u6cd5<\/a>      <\/li>    <\/ul>  <\/li>  <li>    <a href=\"#i-14\">\u73fe\u5834\u3067\u4f7f\u3048\u308b5\u3064\u306e\u30d9\u30b9\u30c8\u30d7\u30e9\u30af\u30c6\u30a3\u30b9<\/a>    <ul class=\"menu_level_1\">      <li class=\"first\">        <a href=\"#i-15\">\u9069\u5207\u306a\u7f72\u540d\u30a2\u30eb\u30b4\u30ea\u30ba\u30e0\u306e\u9078\u629e\u65b9\u6cd5<\/a>      <\/li>      <li>        <a href=\"#i-17\">\u30bb\u30ad\u30e5\u30a2\u306a\u79d8\u5bc6\u9375\u306e\u7ba1\u7406\u65b9\u6cd5<\/a>      <\/li>      <li>        <a href=\"#i-18\">\u30c8\u30fc\u30af\u30f3\u306e\u6709\u52b9\u671f\u9650\u8a2d\u5b9a\u306e\u30d9\u30b9\u30c8\u30d7\u30e9\u30af\u30c6\u30a3\u30b9<\/a>      <\/li>      <li>        <a href=\"#i-19\">\u30ea\u30d5\u30ec\u30c3\u30b7\u30e5\u30c8\u30fc\u30af\u30f3\u306e\u5b9f\u88c5\u65b9\u6cd5<\/a>      <\/li>      <li class=\"last\">        <a href=\"#i-20\">JWT\u30d6\u30e9\u30c3\u30af\u30ea\u30b9\u30c8\u6a5f\u80fd\u306e\u5b9f\u88c5\u65b9\u6cd5<\/a>      <\/li>    <\/ul>  <\/li>  <li>    <a href=\"#i-21\">\u5b9f\u88c5\u6642\u306e\u6ce8\u610f\u70b9\u3068\u5bfe\u7b56<\/a>    <ul class=\"menu_level_1\">      <li class=\"first\">        <a href=\"#i-22\">\u3088\u304f\u3042\u308b\u8106\u5f31\u6027\u3068\u305d\u306e\u5bfe\u7b56\u65b9\u6cd5<\/a>      <\/li>      <li>        <a href=\"#i-25\">\u30d1\u30d5\u30a9\u30fc\u30de\u30f3\u30b9\u3092\u8003\u616e\u3057\u305f\u5b9f\u88c5\u306e\u30b3\u30c4<\/a>      <\/li>      <li class=\"last\">        <a href=\"#i-28\">\u30c6\u30b9\u30c8\u5b9f\u88c5\u306e\u30d9\u30b9\u30c8\u30d7\u30e9\u30af\u30c6\u30a3\u30b9<\/a>      <\/li>    <\/ul>  <\/li>  <li class=\"last\">    <a href=\"#i-31\">\u5b9f\u8df5\u7684\u306a\u30b5\u30f3\u30d7\u30eb\u30b3\u30fc\u30c9<\/a>    <ul class=\"menu_level_1\">      <li class=\"first\">        <a href=\"#i-32\">\u8a8d\u8a3c\u30b7\u30b9\u30c6\u30e0\u306e\u5168\u4f53\u8a2d\u8a08\u3068\u5b9f\u88c5\u4f8b<\/a>      <\/li>      <li>        <a href=\"#i-33\">\u30df\u30c9\u30eb\u30a6\u30a7\u30a2\u3068\u3057\u3066\u306e\u5b9f\u88c5\u4f8b<\/a>      <\/li>      <li class=\"last\">        <a href=\"#i-34\">\u30c6\u30b9\u30c8\u30b3\u30fc\u30c9\u306e\u5b9f\u88c5\u4f8b<\/a>      <\/li>    <\/ul>  <\/li><\/ul>\n      <a href=\"#\" class=\"sgb-toc-button js-toc-button\" rel=\"nofollow\" data-open-dialog=\"true\"><i class=\"fa fa-list\"><\/i><span class=\"sgb-toc-button__text\">\u76ee\u6b21\u3078<\/span><\/a>\n    <\/div><\/div><h2 class=\"wp-block-heading\" id=\"i-0\">JWT\u3068\u306f\uff1fGo\u3067\u306e\u6d3b\u7528\u30e1\u30ea\u30c3\u30c8\u3092\u89e3\u8aac<\/h2>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"i-1\">JWT\uff08JSON Web Token\uff09\u306e\u57fa\u672c\u6982\u5ff5\u3068\u4ed5\u7d44\u307f<\/h3>\n\n\n\n<p>JWT\u306f\u3001\u5f53\u4e8b\u8005\u9593\u3067\u5b89\u5168\u306b\u60c5\u5831\u3092\u9001\u4fe1\u3059\u308b\u305f\u3081\u306e\u3001\u30b3\u30f3\u30d1\u30af\u30c8\u3067\u81ea\u5df1\u5b8c\u7d50\u578b\u306e\u65b9\u6cd5\u3092\u5b9a\u7fa9\u3057\u305f\u958b\u653e\u6a19\u6e96\uff08RFC 7519\uff09\u3067\u3059\u3002<\/p>\n\n\n\n<h4 class=\"wp-block-heading\" id=\"i-2\">JWT\u306e\u69cb\u9020<\/h4>\n\n\n\n<p>JWT\u306f\u3001\u30c9\u30c3\u30c8\u3067\u533a\u5207\u3089\u308c\u305f3\u3064\u306e\u90e8\u5206\u3067\u69cb\u6210\u3055\u308c\u3066\u3044\u307e\u3059\uff1a<\/p>\n\n\n\n<ol class=\"wp-block-list\">\n<li><strong>\u30d8\u30c3\u30c0\u30fc\uff08Header\uff09<\/strong><\/li>\n<\/ol>\n\n\n\n<ul class=\"wp-block-list\">\n<li>\u30c8\u30fc\u30af\u30f3\u30bf\u30a4\u30d7\u3068\u30a2\u30eb\u30b4\u30ea\u30ba\u30e0\u3092\u6307\u5b9a<\/li>\n<\/ul>\n\n\n\n<pre class=\"EnlighterJSRAW\" data-enlighter-language=\"generic\" data-enlighter-theme=\"\" data-enlighter-highlight=\"\" data-enlighter-linenumbers=\"\" data-enlighter-lineoffset=\"\" data-enlighter-title=\"\" data-enlighter-group=\"\">   {\n     \"alg\": \"HS256\",\n     \"typ\": \"JWT\"\n   }<\/pre>\n\n\n\n<ol start=\"2\" class=\"wp-block-list\">\n<li><strong>\u30da\u30a4\u30ed\u30fc\u30c9\uff08Payload\uff09<\/strong><\/li>\n<\/ol>\n\n\n\n<ul class=\"wp-block-list\">\n<li>\u5b9f\u969b\u306e\u30c7\u30fc\u30bf\u3092\u542b\u3080\u90e8\u5206<\/li>\n\n\n\n<li>\u30af\u30ec\u30fc\u30e0\uff08\u8981\u6c42\uff09\u3092\u542b\u3080<\/li>\n<\/ul>\n\n\n\n<pre class=\"EnlighterJSRAW\" data-enlighter-language=\"generic\" data-enlighter-theme=\"\" data-enlighter-highlight=\"\" data-enlighter-linenumbers=\"\" data-enlighter-lineoffset=\"\" data-enlighter-title=\"\" data-enlighter-group=\"\">   {\n     \"sub\": \"1234567890\",\n     \"name\": \"John Doe\",\n     \"exp\": 1516239022\n   }<\/pre>\n\n\n\n<ol start=\"3\" class=\"wp-block-list\">\n<li><strong>\u7f72\u540d\uff08Signature\uff09<\/strong><\/li>\n<\/ol>\n\n\n\n<ul class=\"wp-block-list\">\n<li>\u30d8\u30c3\u30c0\u30fc\u3068\u30da\u30a4\u30ed\u30fc\u30c9\u306e\u6539\u3056\u3093\u3092\u9632\u3050<\/li>\n\n\n\n<li>\u79d8\u5bc6\u9375\u3092\u4f7f\u7528\u3057\u3066\u751f\u6210<\/li>\n<\/ul>\n\n\n\n<h4 class=\"wp-block-heading\" id=\"i-3\">JWT\u306e\u51e6\u7406\u30d5\u30ed\u30fc<\/h4>\n\n\n\n<ol class=\"wp-block-list\">\n<li>\u30e6\u30fc\u30b6\u30fc\u304c\u30ed\u30b0\u30a4\u30f3\u60c5\u5831\u3092\u9001\u4fe1<\/li>\n\n\n\n<li>\u30b5\u30fc\u30d0\u30fc\u304c\u8a8d\u8a3c\u3092\u884c\u3044\u3001JWT\u3092\u751f\u6210<\/li>\n\n\n\n<li>\u30af\u30e9\u30a4\u30a2\u30f3\u30c8\u304cJWT\u3092\u4fdd\u5b58<\/li>\n\n\n\n<li>\u4ee5\u964d\u306e\u30ea\u30af\u30a8\u30b9\u30c8\u3067JWT\u3092\u9001\u4fe1<\/li>\n\n\n\n<li>\u30b5\u30fc\u30d0\u30fc\u304cJWT\u3092\u691c\u8a3c\u3057\u3066\u8a8d\u8a3c\u3092\u884c\u3046<\/li>\n<\/ol>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"i-4\">Go\u30d7\u30ed\u30b8\u30a7\u30af\u30c8\u3067JWT\u3092\u63a1\u7528\u3059\u308b\u30e1\u30ea\u30c3\u30c8<\/h3>\n\n\n\n<h4 class=\"wp-block-heading\" id=\"i-5\">1. \u5805\u7262\u306a\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u6a5f\u80fd<\/h4>\n\n\n\n<ul class=\"wp-block-list\">\n<li><strong>\u6697\u53f7\u5316\u30e9\u30a4\u30d6\u30e9\u30ea\u306e\u5145\u5b9f<\/strong><\/li>\n\n\n\n<li>Go\u306e\u6a19\u6e96\u30e9\u30a4\u30d6\u30e9\u30ea<code>crypto<\/code>\u304c\u5f37\u529b\u306a\u6697\u53f7\u5316\u6a5f\u80fd\u3092\u63d0\u4f9b<\/li>\n\n\n\n<li>\u30b5\u30fc\u30c9\u30d1\u30fc\u30c6\u30a3\u30e9\u30a4\u30d6\u30e9\u30ea<code>golang-jwt<\/code>\u304c\u8c4a\u5bcc\u306a\u6a5f\u80fd\u3092\u63d0\u4f9b<\/li>\n\n\n\n<li><strong>\u578b\u5b89\u5168\u6027\u306b\u3088\u308b\u5b9f\u88c5\u30df\u30b9\u9632\u6b62<\/strong><\/li>\n\n\n\n<li>Go\u306e\u9759\u7684\u578b\u30b7\u30b9\u30c6\u30e0\u306b\u3088\u308a\u3001JWT\u306e\u51e6\u7406\u306b\u95a2\u3059\u308b\u591a\u304f\u306e\u30d0\u30b0\u3092\u672a\u7136\u306b\u9632\u6b62<\/li>\n\n\n\n<li>\u30b3\u30f3\u30d1\u30a4\u30eb\u6642\u306e\u30a8\u30e9\u30fc\u30c1\u30a7\u30c3\u30af\u3067\u5b89\u5168\u6027\u3092\u78ba\u4fdd<\/li>\n<\/ul>\n\n\n\n<h4 class=\"wp-block-heading\" id=\"i-6\">2. \u9ad8\u3044\u30d1\u30d5\u30a9\u30fc\u30de\u30f3\u30b9<\/h4>\n\n\n\n<ul class=\"wp-block-list\">\n<li><strong>\u52b9\u7387\u7684\u306a\u30e1\u30e2\u30ea\u7ba1\u7406<\/strong><\/li>\n\n\n\n<li>JWT\u306e\u691c\u8a3c\u51e6\u7406\u304c\u8efd\u91cf<\/li>\n\n\n\n<li>\u30ac\u30d9\u30fc\u30b8\u30b3\u30ec\u30af\u30b7\u30e7\u30f3\u306e\u5f71\u97ff\u3092\u6700\u5c0f\u9650\u306b\u6291\u5236<\/li>\n\n\n\n<li><strong>\u4e26\u884c\u51e6\u7406\u306e\u5bb9\u6613\u3055<\/strong><\/li>\n\n\n\n<li>Goroutine\u3092\u6d3b\u7528\u3057\u305f\u52b9\u7387\u7684\u306a\u30c8\u30fc\u30af\u30f3\u51e6\u7406<\/li>\n\n\n\n<li>\u5927\u91cf\u306e\u30ea\u30af\u30a8\u30b9\u30c8\u3092\u540c\u6642\u306b\u51e6\u7406\u53ef\u80fd<\/li>\n<\/ul>\n\n\n\n<h4 class=\"wp-block-heading\" id=\"i-7\">3. \u958b\u767a\u751f\u7523\u6027\u306e\u5411\u4e0a<\/h4>\n\n\n\n<ul class=\"wp-block-list\">\n<li><strong>\u30b7\u30f3\u30d7\u30eb\u306a\u5b9f\u88c5<\/strong><\/li>\n<\/ul>\n\n\n\n<pre class=\"EnlighterJSRAW\" data-enlighter-language=\"generic\" data-enlighter-theme=\"\" data-enlighter-highlight=\"\" data-enlighter-linenumbers=\"\" data-enlighter-lineoffset=\"\" data-enlighter-title=\"\" data-enlighter-group=\"\">  \/\/ JWT\u30c8\u30fc\u30af\u30f3\u751f\u6210\u306e\u4f8b\n  token := jwt.NewWithClaims(jwt.SigningMethodHS256, jwt.MapClaims{\n      \"user_id\": 123,\n      \"exp\":     time.Now().Add(time.Hour * 24).Unix(),\n  })<\/pre>\n\n\n\n<ul class=\"wp-block-list\">\n<li><strong>\u8c4a\u5bcc\u306a\u30df\u30c9\u30eb\u30a6\u30a7\u30a2<\/strong><\/li>\n\n\n\n<li>\u4e3b\u8981\u306aWeb\u30d5\u30ec\u30fc\u30e0\u30ef\u30fc\u30af\uff08Echo, Gin\u7b49\uff09\u3068\u306e\u5bb9\u6613\u306a\u7d71\u5408<\/li>\n\n\n\n<li>\u8a8d\u8a3c\u30d5\u30ed\u30fc\u306e\u6a19\u6e96\u5316\u304c\u5bb9\u6613<\/li>\n<\/ul>\n\n\n\n<h4 class=\"wp-block-heading\" id=\"i-8\">4. \u30b9\u30b1\u30fc\u30e9\u30d3\u30ea\u30c6\u30a3<\/h4>\n\n\n\n<ul class=\"wp-block-list\">\n<li><strong>\u30b9\u30c6\u30fc\u30c8\u30ec\u30b9\u8a8d\u8a3c<\/strong><\/li>\n\n\n\n<li>\u30bb\u30c3\u30b7\u30e7\u30f3\u7ba1\u7406\u304c\u4e0d\u8981<\/li>\n\n\n\n<li>\u6c34\u5e73\u30b9\u30b1\u30fc\u30ea\u30f3\u30b0\u304c\u5bb9\u6613<\/li>\n\n\n\n<li><strong>\u30de\u30a4\u30af\u30ed\u30b5\u30fc\u30d3\u30b9\u3068\u306e\u76f8\u6027<\/strong><\/li>\n\n\n\n<li>\u30b5\u30fc\u30d3\u30b9\u9593\u8a8d\u8a3c\u306e\u5b9f\u88c5\u304c\u7c21\u5358<\/li>\n\n\n\n<li>\u30c8\u30fc\u30af\u30f3\u30d9\u30fc\u30b9\u306e\u8a8d\u8a3c\u3067\u5206\u6563\u30b7\u30b9\u30c6\u30e0\u3092\u69cb\u7bc9\u53ef\u80fd<\/li>\n<\/ul>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"i-9\">\u307e\u3068\u3081<\/h3>\n\n\n\n<p>Go\u3067JWT\u3092\u63a1\u7528\u3059\u308b\u3053\u3068\u3067\u3001\u30bb\u30ad\u30e5\u30a2\u3067\u30b9\u30b1\u30fc\u30e9\u30d6\u30eb\u306a\u8a8d\u8a3c\u30b7\u30b9\u30c6\u30e0\u3092\u3001\u9ad8\u3044\u30d1\u30d5\u30a9\u30fc\u30de\u30f3\u30b9\u3068\u958b\u767a\u751f\u7523\u6027\u3067\u5b9f\u73fe\u3067\u304d\u307e\u3059\u3002\u7279\u306b\u3001\u30de\u30a4\u30af\u30ed\u30b5\u30fc\u30d3\u30b9\u30a2\u30fc\u30ad\u30c6\u30af\u30c1\u30e3\u3084\u30af\u30e9\u30a6\u30c9\u30cd\u30a4\u30c6\u30a3\u30d6\u306a\u74b0\u5883\u3067\u306e\u958b\u767a\u306b\u304a\u3044\u3066\u3001\u305d\u306e\u771f\u4fa1\u3092\u767a\u63ee\u3057\u307e\u3059\u3002<\/p>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"i-10\">Go\u3067\u306eJWT\u5b9f\u88c5\u624b\u9806<\/h2>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"i-11\">\u5fc5\u8981\u306a\u30e9\u30a4\u30d6\u30e9\u30ea\u306e\u30a4\u30f3\u30b9\u30c8\u30fc\u30eb\u3068\u30bb\u30c3\u30c8\u30a2\u30c3\u30d7<\/h3>\n\n\n\n<p>\u307e\u305a\u3001Go\u30d7\u30ed\u30b8\u30a7\u30af\u30c8\u3067JWT\u3092\u6271\u3046\u305f\u3081\u306b\u5fc5\u8981\u306a\u30e9\u30a4\u30d6\u30e9\u30ea\u3092\u30a4\u30f3\u30b9\u30c8\u30fc\u30eb\u3057\u307e\u3059\u3002\u6700\u3082\u5e83\u304f\u4f7f\u308f\u308c\u3066\u3044\u308b\u306e\u306f<code>github.com\/golang-jwt\/jwt<\/code>\u3067\u3059\u3002<\/p>\n\n\n\n<pre class=\"EnlighterJSRAW\" data-enlighter-language=\"generic\" data-enlighter-theme=\"\" data-enlighter-highlight=\"\" data-enlighter-linenumbers=\"\" data-enlighter-lineoffset=\"\" data-enlighter-title=\"\" data-enlighter-group=\"\">go get -u github.com\/golang-jwt\/jwt\/v5<\/pre>\n\n\n\n<p>\u30d7\u30ed\u30b8\u30a7\u30af\u30c8\u306e\u57fa\u672c\u69cb\u9020\u3092\u4ee5\u4e0b\u306e\u3088\u3046\u306b\u8a2d\u5b9a\u3057\u307e\u3059\uff1a<\/p>\n\n\n\n<pre class=\"EnlighterJSRAW\" data-enlighter-language=\"generic\" data-enlighter-theme=\"\" data-enlighter-highlight=\"\" data-enlighter-linenumbers=\"\" data-enlighter-lineoffset=\"\" data-enlighter-title=\"\" data-enlighter-group=\"\">\/\/ main.go\npackage main\n\nimport (\n    \"github.com\/golang-jwt\/jwt\/v5\"\n    \"time\"\n    \"errors\"\n)\n\n\/\/ \u30ab\u30b9\u30bf\u30e0\u30af\u30ec\u30fc\u30e0\u69cb\u9020\u4f53\u306e\u5b9a\u7fa9\ntype Claims struct {\n    UserID uint   `json:\"user_id\"`\n    Role   string `json:\"role\"`\n    jwt.RegisteredClaims\n}\n\n\/\/ \u74b0\u5883\u5909\u6570\u306a\u3069\u3067\u5b89\u5168\u306b\u7ba1\u7406\u3059\u3079\u304d\u79d8\u5bc6\u9375\nvar jwtSecret = []byte(\"your-secret-key\")<\/pre>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"i-12\">JWT\u30c8\u30fc\u30af\u30f3\u306e\u751f\u6210\u51e6\u7406\u306e\u5b9f\u88c5\u65b9\u6cd5<\/h3>\n\n\n\n<p>\u30c8\u30fc\u30af\u30f3\u751f\u6210\u306f\u4ee5\u4e0b\u306e\u30b9\u30c6\u30c3\u30d7\u3067\u884c\u3044\u307e\u3059\uff1a<\/p>\n\n\n\n<ol class=\"wp-block-list\">\n<li>\u30af\u30ec\u30fc\u30e0\u306e\u4f5c\u6210<\/li>\n\n\n\n<li>\u30c8\u30fc\u30af\u30f3\u306e\u7f72\u540d<\/li>\n\n\n\n<li>\u6587\u5b57\u5217\u5f62\u5f0f\u3078\u306e\u5909\u63db<\/li>\n<\/ol>\n\n\n\n<pre class=\"EnlighterJSRAW\" data-enlighter-language=\"generic\" data-enlighter-theme=\"\" data-enlighter-highlight=\"\" data-enlighter-linenumbers=\"\" data-enlighter-lineoffset=\"\" data-enlighter-title=\"\" data-enlighter-group=\"\">func GenerateToken(userID uint, role string) (string, error) {\n    \/\/ \u30c8\u30fc\u30af\u30f3\u306e\u6709\u52b9\u671f\u9650\u3092\u8a2d\u5b9a\uff08\u4f8b\uff1a24\u6642\u9593\uff09\n    expirationTime := time.Now().Add(24 * time.Hour)\n\n    \/\/ \u30af\u30ec\u30fc\u30e0\u3092\u4f5c\u6210\n    claims := &amp;Claims{\n        UserID: userID,\n        Role:   role,\n        RegisteredClaims: jwt.RegisteredClaims{\n            ExpiresAt: jwt.NewNumericDate(expirationTime),\n            IssuedAt:  jwt.NewNumericDate(time.Now()),\n            NotBefore: jwt.NewNumericDate(time.Now()),\n            Issuer:    \"your-application-name\",\n            Subject:   string(userID),\n        },\n    }\n\n    \/\/ \u30c8\u30fc\u30af\u30f3\u3092\u751f\u6210\u3057\u3066\u7f72\u540d\n    token := jwt.NewWithClaims(jwt.SigningMethodHS256, claims)\n\n    \/\/ \u7f72\u540d\u3055\u308c\u305f\u30c8\u30fc\u30af\u30f3\u6587\u5b57\u5217\u3092\u53d6\u5f97\n    tokenString, err := token.SignedString(jwtSecret)\n    if err != nil {\n        return \"\", err\n    }\n\n    return tokenString, nil\n}<\/pre>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"i-13\">\u30c8\u30fc\u30af\u30f3\u691c\u8a3c\u30ed\u30b8\u30c3\u30af\u306e\u5b9f\u88c5\u65b9\u6cd5<\/h3>\n\n\n\n<p>\u30c8\u30fc\u30af\u30f3\u306e\u691c\u8a3c\u306f\u4ee5\u4e0b\u306e\u30dd\u30a4\u30f3\u30c8\u306b\u6ce8\u610f\u3057\u3066\u5b9f\u88c5\u3057\u307e\u3059\uff1a<\/p>\n\n\n\n<ol class=\"wp-block-list\">\n<li>\u30c8\u30fc\u30af\u30f3\u306e\u69cb\u6587\u691c\u8a3c<\/li>\n\n\n\n<li>\u7f72\u540d\u306e\u691c\u8a3c<\/li>\n\n\n\n<li>\u30af\u30ec\u30fc\u30e0\u306e\u691c\u8a3c<\/li>\n<\/ol>\n\n\n\n<pre class=\"EnlighterJSRAW\" data-enlighter-language=\"generic\" data-enlighter-theme=\"\" data-enlighter-highlight=\"\" data-enlighter-linenumbers=\"\" data-enlighter-lineoffset=\"\" data-enlighter-title=\"\" data-enlighter-group=\"\">func ValidateToken(tokenString string) (*Claims, error) {\n    \/\/ \u30c8\u30fc\u30af\u30f3\u3092\u30d1\u30fc\u30b9\u3057\u3066\u691c\u8a3c\n    token, err := jwt.ParseWithClaims(\n        tokenString,\n        &amp;Claims{},\n        func(token *jwt.Token) (interface{}, error) {\n            \/\/ \u7f72\u540d\u65b9\u5f0f\u306e\u691c\u8a3c\n            if _, ok := token.Method.(*jwt.SigningMethodHMAC); !ok {\n                return nil, errors.New(\"unexpected signing method\")\n            }\n            return jwtSecret, nil\n        },\n    )\n\n    if err != nil {\n        return nil, err\n    }\n\n    \/\/ \u30af\u30ec\u30fc\u30e0\u3092\u53d6\u5f97\u3057\u3066\u691c\u8a3c\n    if claims, ok := token.Claims.(*Claims); ok &amp;&amp; token.Valid {\n        \/\/ \u8ffd\u52a0\u306e\u691c\u8a3c\u30ed\u30b8\u30c3\u30af\u3092\u3053\u3053\u306b\u5b9f\u88c5\n        \/\/ \u4f8b\uff1a\u30d6\u30e9\u30c3\u30af\u30ea\u30b9\u30c8\u30c1\u30a7\u30c3\u30af\u306a\u3069\n        return claims, nil\n    }\n\n    return nil, errors.New(\"invalid token\")\n}<\/pre>\n\n\n\n<p>\u5b9f\u969b\u306eWeb\u30a2\u30d7\u30ea\u30b1\u30fc\u30b7\u30e7\u30f3\u3067\u306e\u4f7f\u7528\u4f8b\uff1a<\/p>\n\n\n\n<pre class=\"EnlighterJSRAW\" data-enlighter-language=\"generic\" data-enlighter-theme=\"\" data-enlighter-highlight=\"\" data-enlighter-linenumbers=\"\" data-enlighter-lineoffset=\"\" data-enlighter-title=\"\" data-enlighter-group=\"\">\/\/ \u30df\u30c9\u30eb\u30a6\u30a7\u30a2\u3068\u3057\u3066\u5b9f\u88c5\u3059\u308b\u4f8b\nfunc AuthMiddleware(next http.HandlerFunc) http.HandlerFunc {\n    return func(w http.ResponseWriter, r *http.Request) {\n        \/\/ Authorization\u30d8\u30c3\u30c0\u30fc\u304b\u3089\u30c8\u30fc\u30af\u30f3\u3092\u53d6\u5f97\n        authHeader := r.Header.Get(\"Authorization\")\n        if authHeader == \"\" {\n            http.Error(w, \"Authorization header required\", http.StatusUnauthorized)\n            return\n        }\n\n        \/\/ \"Bearer \"\u30d7\u30ec\u30d5\u30a3\u30c3\u30af\u30b9\u3092\u9664\u53bb\n        tokenString := strings.TrimPrefix(authHeader, \"Bearer \")\n\n        \/\/ \u30c8\u30fc\u30af\u30f3\u3092\u691c\u8a3c\n        claims, err := ValidateToken(tokenString)\n        if err != nil {\n            http.Error(w, \"Invalid token\", http.StatusUnauthorized)\n            return\n        }\n\n        \/\/ \u30b3\u30f3\u30c6\u30ad\u30b9\u30c8\u306b\u30e6\u30fc\u30b6\u30fc\u60c5\u5831\u3092\u8a2d\u5b9a\n        ctx := context.WithValue(r.Context(), \"user\", claims)\n        next.ServeHTTP(w, r.WithContext(ctx))\n    }\n}<\/pre>\n\n\n\n<p>\u3053\u306e\u30df\u30c9\u30eb\u30a6\u30a7\u30a2\u306f\u4ee5\u4e0b\u306e\u3088\u3046\u306b\u4f7f\u7528\u3057\u307e\u3059\uff1a<\/p>\n\n\n\n<pre class=\"EnlighterJSRAW\" data-enlighter-language=\"generic\" data-enlighter-theme=\"\" data-enlighter-highlight=\"\" data-enlighter-linenumbers=\"\" data-enlighter-lineoffset=\"\" data-enlighter-title=\"\" data-enlighter-group=\"\">func main() {\n    \/\/ \u4fdd\u8b77\u3055\u308c\u305f\u30a8\u30f3\u30c9\u30dd\u30a4\u30f3\u30c8\u306e\u8a2d\u5b9a\n    http.HandleFunc(\"\/api\/protected\",\n        AuthMiddleware(func(w http.ResponseWriter, r *http.Request) {\n            \/\/ \u8a8d\u8a3c\u6e08\u307f\u306e\u30ea\u30af\u30a8\u30b9\u30c8\u306e\u51e6\u7406\n            claims := r.Context().Value(\"user\").(*Claims)\n            fmt.Fprintf(w, \"Welcome User %d\", claims.UserID)\n        }),\n    )\n\n    log.Fatal(http.ListenAndServe(\":8080\", nil))\n}<\/pre>\n\n\n\n<p>\u3053\u306e\u3088\u3046\u306b\u5b9f\u88c5\u3059\u308b\u3053\u3068\u3067\u3001\u30bb\u30ad\u30e5\u30a2\u3067\u30b9\u30b1\u30fc\u30e9\u30d6\u30eb\u306a\u8a8d\u8a3c\u30b7\u30b9\u30c6\u30e0\u3092\u69cb\u7bc9\u3067\u304d\u307e\u3059\u3002\u6b21\u306e\u30bb\u30af\u30b7\u30e7\u30f3\u3067\u306f\u3001\u3053\u308c\u3089\u306e\u57fa\u672c\u5b9f\u88c5\u3092\u30d9\u30fc\u30b9\u306b\u3001\u3088\u308a\u5b9f\u8df5\u7684\u306a\u30d9\u30b9\u30c8\u30d7\u30e9\u30af\u30c6\u30a3\u30b9\u306b\u3064\u3044\u3066\u89e3\u8aac\u3057\u307e\u3059\u3002<\/p>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"i-14\">\u73fe\u5834\u3067\u4f7f\u3048\u308b5\u3064\u306e\u30d9\u30b9\u30c8\u30d7\u30e9\u30af\u30c6\u30a3\u30b9<\/h2>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"i-15\">\u9069\u5207\u306a\u7f72\u540d\u30a2\u30eb\u30b4\u30ea\u30ba\u30e0\u306e\u9078\u629e\u65b9\u6cd5<\/h3>\n\n\n\n<p>\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u3092\u78ba\u4fdd\u3059\u308b\u305f\u3081\u3001\u9069\u5207\u306a\u7f72\u540d\u30a2\u30eb\u30b4\u30ea\u30ba\u30e0\u306e\u9078\u629e\u306f\u91cd\u8981\u3067\u3059\u3002<\/p>\n\n\n\n<h4 class=\"wp-block-heading\" id=\"i-16\">\u63a8\u5968\u3055\u308c\u308b\u7f72\u540d\u30a2\u30eb\u30b4\u30ea\u30ba\u30e0<\/h4>\n\n\n\n<pre class=\"EnlighterJSRAW\" data-enlighter-language=\"generic\" data-enlighter-theme=\"\" data-enlighter-highlight=\"\" data-enlighter-linenumbers=\"\" data-enlighter-lineoffset=\"\" data-enlighter-title=\"\" data-enlighter-group=\"\">\/\/ \u975e\u63a8\u5968\u306e\u4f8b\ntoken := jwt.New(jwt.SigningMethodHS256) \/\/ HS256\u306f\u5c0f\u898f\u6a21\u30a2\u30d7\u30ea\u30b1\u30fc\u30b7\u30e7\u30f3\u3067\u306f\u554f\u984c\u306a\u3044\u304c\u3001\u5927\u898f\u6a21\u306a\u5834\u5408\u306f\u6ce8\u610f\n\n\/\/ \u63a8\u5968\u3055\u308c\u308b\u4f8b\ntoken := jwt.New(jwt.SigningMethodRS256) \/\/ RS256\u306f\u975e\u5bfe\u79f0\u6697\u53f7\u3067\u3001\u3088\u308a\u5b89\u5168<\/pre>\n\n\n\n<p>\u30a2\u30eb\u30b4\u30ea\u30ba\u30e0\u306e\u9078\u629e\u57fa\u6e96\uff1a<\/p>\n\n\n<div id=\"id-d5ce5ec9-d476-458b-8a4a-7a0a13e60cd1\">\n<figure class=\"wp-block-table\"><table class=\"has-fixed-layout\"><thead><tr><th>\u30a2\u30eb\u30b4\u30ea\u30ba\u30e0<\/th><th>\u7528\u9014<\/th><th>\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u30ec\u30d9\u30eb<\/th><th>\u51e6\u7406\u901f\u5ea6<\/th><\/tr><\/thead><tbody><tr><td>HS256<\/td><td>\u5c0f\u898f\u6a21\u30a2\u30d7\u30ea\u30b1\u30fc\u30b7\u30e7\u30f3<\/td><td>\u4e2d<\/td><td>\u9ad8\u901f<\/td><\/tr><tr><td>RS256<\/td><td>\u5927\u898f\u6a21\/\u5206\u6563\u30b7\u30b9\u30c6\u30e0<\/td><td>\u9ad8<\/td><td>\u4e2d\u7a0b\u5ea6<\/td><\/tr><tr><td>ES256<\/td><td>\u30e2\u30d0\u30a4\u30eb\/IoT<\/td><td>\u9ad8<\/td><td>\u9ad8\u901f<\/td><\/tr><\/tbody><\/table><\/figure>\n<\/div>\n\n\n<h3 class=\"wp-block-heading\" id=\"i-17\">\u30bb\u30ad\u30e5\u30a2\u306a\u79d8\u5bc6\u9375\u306e\u7ba1\u7406\u65b9\u6cd5<\/h3>\n\n\n\n<p>\u79d8\u5bc6\u9375\u306e\u7ba1\u7406\u306f\u4ee5\u4e0b\u306e\u30d9\u30b9\u30c8\u30d7\u30e9\u30af\u30c6\u30a3\u30b9\u306b\u5f93\u3044\u307e\u3059\uff1a<\/p>\n\n\n\n<pre class=\"EnlighterJSRAW\" data-enlighter-language=\"generic\" data-enlighter-theme=\"\" data-enlighter-highlight=\"\" data-enlighter-linenumbers=\"\" data-enlighter-lineoffset=\"\" data-enlighter-title=\"\" data-enlighter-group=\"\">\/\/ \u8a2d\u5b9a\u7ba1\u7406\u306e\u4f8b\ntype Config struct {\n    JWTSecret    string `env:\"JWT_SECRET,required\"`\n    JWTKeyPath   string `env:\"JWT_KEY_PATH,required\"`\n    JWTKeyRotationInterval time.Duration `env:\"JWT_KEY_ROTATION_INTERVAL\"`\n}\n\n\/\/ \u30ad\u30fc\u30ed\u30fc\u30c6\u30fc\u30b7\u30e7\u30f3\u6a5f\u80fd\u306e\u5b9f\u88c5\ntype KeyManager struct {\n    currentKey []byte\n    mutex      sync.RWMutex\n}\n\nfunc (km *KeyManager) RotateKey() error {\n    km.mutex.Lock()\n    defer km.mutex.Unlock()\n\n    \/\/ \u65b0\u3057\u3044\u30ad\u30fc\u306e\u751f\u6210\n    newKey := make([]byte, 32)\n    if _, err := rand.Read(newKey); err != nil {\n        return err\n    }\n\n    km.currentKey = newKey\n    return nil\n}<\/pre>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"i-18\">\u30c8\u30fc\u30af\u30f3\u306e\u6709\u52b9\u671f\u9650\u8a2d\u5b9a\u306e\u30d9\u30b9\u30c8\u30d7\u30e9\u30af\u30c6\u30a3\u30b9<\/h3>\n\n\n\n<pre class=\"EnlighterJSRAW\" data-enlighter-language=\"generic\" data-enlighter-theme=\"\" data-enlighter-highlight=\"\" data-enlighter-linenumbers=\"\" data-enlighter-lineoffset=\"\" data-enlighter-title=\"\" data-enlighter-group=\"\">type TokenManager struct {\n    AccessTokenDuration  time.Duration\n    RefreshTokenDuration time.Duration\n}\n\nfunc (tm *TokenManager) GenerateTokenPair(userID uint) (*TokenPair, error) {\n    \/\/ \u30a2\u30af\u30bb\u30b9\u30c8\u30fc\u30af\u30f3\uff08\u77ed\u671f\uff09\u306e\u751f\u6210\n    accessClaims := &amp;Claims{\n        UserID: userID,\n        RegisteredClaims: jwt.RegisteredClaims{\n            ExpiresAt: jwt.NewNumericDate(time.Now().Add(tm.AccessTokenDuration)),\n            NotBefore: jwt.NewNumericDate(time.Now()),\n        },\n    }\n\n    \/\/ \u30ea\u30d5\u30ec\u30c3\u30b7\u30e5\u30c8\u30fc\u30af\u30f3\uff08\u9577\u671f\uff09\u306e\u751f\u6210\n    refreshClaims := &amp;Claims{\n        UserID: userID,\n        RegisteredClaims: jwt.RegisteredClaims{\n            ExpiresAt: jwt.NewNumericDate(time.Now().Add(tm.RefreshTokenDuration)),\n            NotBefore: jwt.NewNumericDate(time.Now()),\n        },\n    }\n\n    \/\/ \u30c8\u30fc\u30af\u30f3\u30da\u30a2\u3092\u8fd4\u3059\n    return &amp;TokenPair{\n        AccessToken:  generateToken(accessClaims),\n        RefreshToken: generateToken(refreshClaims),\n    }, nil\n}<\/pre>\n\n\n\n<p>\u63a8\u5968\u3055\u308c\u308b\u6709\u52b9\u671f\u9650\u8a2d\u5b9a\uff1a<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>\u30a2\u30af\u30bb\u30b9\u30c8\u30fc\u30af\u30f3: 15\u5206\uff5e1\u6642\u9593<\/li>\n\n\n\n<li>\u30ea\u30d5\u30ec\u30c3\u30b7\u30e5\u30c8\u30fc\u30af\u30f3: 1\u9031\u9593\uff5e1\u30f6\u6708<\/li>\n<\/ul>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"i-19\">\u30ea\u30d5\u30ec\u30c3\u30b7\u30e5\u30c8\u30fc\u30af\u30f3\u306e\u5b9f\u88c5\u65b9\u6cd5<\/h3>\n\n\n\n<pre class=\"EnlighterJSRAW\" data-enlighter-language=\"generic\" data-enlighter-theme=\"\" data-enlighter-highlight=\"\" data-enlighter-linenumbers=\"\" data-enlighter-lineoffset=\"\" data-enlighter-title=\"\" data-enlighter-group=\"\">type TokenService struct {\n    tokenManager *TokenManager\n    userRepo     UserRepository\n}\n\nfunc (s *TokenService) RefreshTokens(refreshToken string) (*TokenPair, error) {\n    \/\/ \u30ea\u30d5\u30ec\u30c3\u30b7\u30e5\u30c8\u30fc\u30af\u30f3\u306e\u691c\u8a3c\n    claims, err := ValidateToken(refreshToken)\n    if err != nil {\n        return nil, err\n    }\n\n    \/\/ \u30e6\u30fc\u30b6\u30fc\u306e\u5b58\u5728\u78ba\u8a8d\u3068\u30b9\u30c6\u30fc\u30bf\u30b9\u30c1\u30a7\u30c3\u30af\n    user, err := s.userRepo.FindByID(claims.UserID)\n    if err != nil || !user.IsActive {\n        return nil, errors.New(\"invalid user\")\n    }\n\n    \/\/ \u65b0\u3057\u3044\u30c8\u30fc\u30af\u30f3\u30da\u30a2\u306e\u751f\u6210\n    return s.tokenManager.GenerateTokenPair(user.ID)\n}\n\n\/\/ \u30ea\u30d5\u30ec\u30c3\u30b7\u30e5\u30c8\u30fc\u30af\u30f3\u306e\u53d6\u308a\u6d88\u3057\u6a5f\u80fd\nfunc (s *TokenService) RevokeRefreshToken(token string) error {\n    return s.tokenManager.AddToBlacklist(token)\n}<\/pre>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"i-20\">JWT\u30d6\u30e9\u30c3\u30af\u30ea\u30b9\u30c8\u6a5f\u80fd\u306e\u5b9f\u88c5\u65b9\u6cd5<\/h3>\n\n\n\n<p>Redis\u3092\u4f7f\u7528\u3057\u305f\u30d6\u30e9\u30c3\u30af\u30ea\u30b9\u30c8\u7ba1\u7406\u306e\u4f8b\uff1a<\/p>\n\n\n\n<pre class=\"EnlighterJSRAW\" data-enlighter-language=\"generic\" data-enlighter-theme=\"\" data-enlighter-highlight=\"\" data-enlighter-linenumbers=\"\" data-enlighter-lineoffset=\"\" data-enlighter-title=\"\" data-enlighter-group=\"\">type BlacklistManager struct {\n    redis *redis.Client\n}\n\nfunc (bm *BlacklistManager) AddToBlacklist(token string, expiration time.Duration) error {\n    \/\/ \u30c8\u30fc\u30af\u30f3\u306e\u30cf\u30c3\u30b7\u30e5\u3092\u4fdd\u5b58\n    hash := sha256.Sum256([]byte(token))\n    key := fmt.Sprintf(\"blacklist:%x\", hash)\n\n    \/\/ Redis\u306b\u4fdd\u5b58\uff08\u30c8\u30fc\u30af\u30f3\u306e\u6709\u52b9\u671f\u9650\u3068\u540c\u3058\u671f\u9593\uff09\n    return bm.redis.Set(context.Background(), key, \"1\", expiration).Err()\n}\n\nfunc (bm *BlacklistManager) IsBlacklisted(token string) bool {\n    hash := sha256.Sum256([]byte(token))\n    key := fmt.Sprintf(\"blacklist:%x\", hash)\n\n    \/\/ Redis\u3067\u30c1\u30a7\u30c3\u30af\n    exists, _ := bm.redis.Exists(context.Background(), key).Result()\n    return exists &gt; 0\n}\n\n\/\/ \u30d0\u30ea\u30c7\u30fc\u30b7\u30e7\u30f3\u6642\u306b\u30d6\u30e9\u30c3\u30af\u30ea\u30b9\u30c8\u30c1\u30a7\u30c3\u30af\u3092\u8ffd\u52a0\nfunc ValidateTokenWithBlacklist(token string, bm *BlacklistManager) (*Claims, error) {\n    if bm.IsBlacklisted(token) {\n        return nil, errors.New(\"token is blacklisted\")\n    }\n\n    return ValidateToken(token)\n}<\/pre>\n\n\n\n<p>\u3053\u308c\u3089\u306e\u30d9\u30b9\u30c8\u30d7\u30e9\u30af\u30c6\u30a3\u30b9\u3092\u7d44\u307f\u5408\u308f\u305b\u308b\u3053\u3068\u3067\u3001\u30bb\u30ad\u30e5\u30a2\u3067\u904b\u7528\u3057\u3084\u3059\u3044\u8a8d\u8a3c\u30b7\u30b9\u30c6\u30e0\u3092\u69cb\u7bc9\u3067\u304d\u307e\u3059\u3002\u7279\u306b\u4ee5\u4e0b\u306e\u70b9\u306b\u6ce8\u610f\u3057\u3066\u304f\u3060\u3055\u3044\uff1a<\/p>\n\n\n\n<ol class=\"wp-block-list\">\n<li>\u74b0\u5883\u306b\u5fdc\u3058\u305f\u9069\u5207\u306a\u30a2\u30eb\u30b4\u30ea\u30ba\u30e0\u306e\u9078\u629e<\/li>\n\n\n\n<li>\u5b9a\u671f\u7684\u306a\u30ad\u30fc\u30ed\u30fc\u30c6\u30fc\u30b7\u30e7\u30f3\u306e\u5b9f\u65bd<\/li>\n\n\n\n<li>\u9069\u5207\u306a\u6709\u52b9\u671f\u9650\u306e\u8a2d\u5b9a<\/li>\n\n\n\n<li>\u30ea\u30d5\u30ec\u30c3\u30b7\u30e5\u30c8\u30fc\u30af\u30f3\u306e\u5b89\u5168\u306a\u7ba1\u7406<\/li>\n\n\n\n<li>\u30d6\u30e9\u30c3\u30af\u30ea\u30b9\u30c8\u6a5f\u80fd\u306e\u52b9\u7387\u7684\u306a\u5b9f\u88c5<\/li>\n<\/ol>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"i-21\">\u5b9f\u88c5\u6642\u306e\u6ce8\u610f\u70b9\u3068\u5bfe\u7b56<\/h2>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"i-22\">\u3088\u304f\u3042\u308b\u8106\u5f31\u6027\u3068\u305d\u306e\u5bfe\u7b56\u65b9\u6cd5<\/h3>\n\n\n\n<h4 class=\"wp-block-heading\" id=\"i-23\">1. None Algorithm Attack\u5bfe\u7b56<\/h4>\n\n\n\n<pre class=\"EnlighterJSRAW\" data-enlighter-language=\"generic\" data-enlighter-theme=\"\" data-enlighter-highlight=\"\" data-enlighter-linenumbers=\"\" data-enlighter-lineoffset=\"\" data-enlighter-title=\"\" data-enlighter-group=\"\">\/\/ \u8106\u5f31\u306a\u5b9f\u88c5\nfunc validateToken(tokenString string) (*Claims, error) {\n    token, err := jwt.Parse(tokenString, func(token *jwt.Token) (interface{}, error) {\n        return jwtSecret, nil  \/\/ \u30a2\u30eb\u30b4\u30ea\u30ba\u30e0\u30c1\u30a7\u30c3\u30af\u306a\u3057\uff01\n    })\n    \/\/ ...\n}\n\n\/\/ \u5b89\u5168\u306a\u5b9f\u88c5\nfunc validateToken(tokenString string) (*Claims, error) {\n    token, err := jwt.Parse(tokenString, func(token *jwt.Token) (interface{}, error) {\n        \/\/ \u30a2\u30eb\u30b4\u30ea\u30ba\u30e0\u306e\u660e\u793a\u7684\u306a\u691c\u8a3c\n        if _, ok := token.Method.(*jwt.SigningMethodHMAC); !ok {\n            return nil, fmt.Errorf(\"unexpected signing method: %v\", token.Header[\"alg\"])\n        }\n        return jwtSecret, nil\n    })\n    \/\/ ...\n}<\/pre>\n\n\n\n<h4 class=\"wp-block-heading\" id=\"i-24\">2. \u9069\u5207\u306a\u30af\u30ec\u30fc\u30e0\u691c\u8a3c<\/h4>\n\n\n\n<pre class=\"EnlighterJSRAW\" data-enlighter-language=\"generic\" data-enlighter-theme=\"\" data-enlighter-highlight=\"\" data-enlighter-linenumbers=\"\" data-enlighter-lineoffset=\"\" data-enlighter-title=\"\" data-enlighter-group=\"\">\/\/ \u30ab\u30b9\u30bf\u30e0\u691c\u8a3c\u30ed\u30b8\u30c3\u30af\u306e\u5b9f\u88c5\nfunc validateClaims(claims *Claims) error {\n    now := time.Now()\n\n    \/\/ \u5fc5\u9808\u30af\u30ec\u30fc\u30e0\u306e\u5b58\u5728\u30c1\u30a7\u30c3\u30af\n    if claims.UserID == 0 {\n        return errors.New(\"missing required claim: user_id\")\n    }\n\n    \/\/ \u6709\u52b9\u671f\u9650\u306e\u53b3\u5bc6\u306a\u30c1\u30a7\u30c3\u30af\n    if claims.ExpiresAt.Time.Before(now) {\n        return errors.New(\"token has expired\")\n    }\n\n    \/\/ NBF\uff08Not Before\uff09\u30c1\u30a7\u30c3\u30af\n    if claims.NotBefore != nil &amp;&amp; claims.NotBefore.Time.After(now) {\n        return errors.New(\"token is not yet valid\")\n    }\n\n    return nil\n}<\/pre>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"i-25\">\u30d1\u30d5\u30a9\u30fc\u30de\u30f3\u30b9\u3092\u8003\u616e\u3057\u305f\u5b9f\u88c5\u306e\u30b3\u30c4<\/h3>\n\n\n\n<h4 class=\"wp-block-heading\" id=\"i-26\">1. \u30c8\u30fc\u30af\u30f3\u691c\u8a3c\u306e\u30ad\u30e3\u30c3\u30b7\u30e5\u6226\u7565<\/h4>\n\n\n\n<pre class=\"EnlighterJSRAW\" data-enlighter-language=\"generic\" data-enlighter-theme=\"\" data-enlighter-highlight=\"\" data-enlighter-linenumbers=\"\" data-enlighter-lineoffset=\"\" data-enlighter-title=\"\" data-enlighter-group=\"\">type TokenCache struct {\n    cache    *lru.Cache\n    duration time.Duration\n}\n\nfunc NewTokenCache(size int, duration time.Duration) *TokenCache {\n    cache, _ := lru.New(size)\n    return &amp;TokenCache{\n        cache:    cache,\n        duration: duration,\n    }\n}\n\nfunc (tc *TokenCache) GetOrValidate(token string, validator func(string) (*Claims, error)) (*Claims, error) {\n    \/\/ \u30ad\u30e3\u30c3\u30b7\u30e5\u30c1\u30a7\u30c3\u30af\n    if claims, ok := tc.cache.Get(token); ok {\n        return claims.(*Claims), nil\n    }\n\n    \/\/ \u30d0\u30ea\u30c7\u30fc\u30b7\u30e7\u30f3\u5b9f\u884c\n    claims, err := validator(token)\n    if err != nil {\n        return nil, err\n    }\n\n    \/\/ \u30ad\u30e3\u30c3\u30b7\u30e5\u306b\u4fdd\u5b58\n    tc.cache.Add(token, claims)\n    return claims, nil\n}<\/pre>\n\n\n\n<h4 class=\"wp-block-heading\" id=\"i-27\">2. \u52b9\u7387\u7684\u306a\u30c8\u30fc\u30af\u30f3\u751f\u6210<\/h4>\n\n\n\n<pre class=\"EnlighterJSRAW\" data-enlighter-language=\"generic\" data-enlighter-theme=\"\" data-enlighter-highlight=\"\" data-enlighter-linenumbers=\"\" data-enlighter-lineoffset=\"\" data-enlighter-title=\"\" data-enlighter-group=\"\">\/\/ \u30c8\u30fc\u30af\u30f3\u751f\u6210\u306e\u30d7\u30fc\u30eb\u5316\nvar tokenBuilderPool = sync.Pool{\n    New: func() interface{} {\n        return jwt.NewWithClaims(jwt.SigningMethodHS256, &amp;Claims{})\n    },\n}\n\nfunc generateTokenEfficiently(claims *Claims) (string, error) {\n    \/\/ \u30d7\u30fc\u30eb\u304b\u3089\u30c8\u30fc\u30af\u30f3\u30d3\u30eb\u30c0\u30fc\u3092\u53d6\u5f97\n    token := tokenBuilderPool.Get().(*jwt.Token)\n    defer tokenBuilderPool.Put(token)\n\n    \/\/ \u30af\u30ec\u30fc\u30e0\u3092\u8a2d\u5b9a\n    token.Claims = claims\n\n    \/\/ \u7f72\u540d\u3057\u3066\u6587\u5b57\u5217\u3092\u8fd4\u3059\n    return token.SignedString(jwtSecret)\n}<\/pre>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"i-28\">\u30c6\u30b9\u30c8\u5b9f\u88c5\u306e\u30d9\u30b9\u30c8\u30d7\u30e9\u30af\u30c6\u30a3\u30b9<\/h3>\n\n\n\n<h4 class=\"wp-block-heading\" id=\"i-29\">1. \u30e2\u30c3\u30af\u6a5f\u80fd\u3092\u6d3b\u7528\u3057\u305f\u30c6\u30b9\u30c8<\/h4>\n\n\n\n<pre class=\"EnlighterJSRAW\" data-enlighter-language=\"generic\" data-enlighter-theme=\"\" data-enlighter-highlight=\"\" data-enlighter-linenumbers=\"\" data-enlighter-lineoffset=\"\" data-enlighter-title=\"\" data-enlighter-group=\"\">\/\/ \u30a4\u30f3\u30bf\u30fc\u30d5\u30a7\u30fc\u30b9\u306e\u5b9a\u7fa9\ntype TokenValidator interface {\n    ValidateToken(token string) (*Claims, error)\n}\n\n\/\/ \u30e2\u30c3\u30af\u306e\u5b9f\u88c5\ntype MockTokenValidator struct {\n    mock.Mock\n}\n\nfunc (m *MockTokenValidator) ValidateToken(token string) (*Claims, error) {\n    args := m.Called(token)\n    if args.Get(0) == nil {\n        return nil, args.Error(1)\n    }\n    return args.Get(0).(*Claims), args.Error(1)\n}\n\n\/\/ \u30c6\u30b9\u30c8\u30b1\u30fc\u30b9\nfunc TestAuthMiddleware(t *testing.T) {\n    mockValidator := new(MockTokenValidator)\n\n    \/\/ \u6b63\u5e38\u7cfb\u30c6\u30b9\u30c8\n    mockValidator.On(\"ValidateToken\", \"valid-token\").Return(&amp;Claims{\n        UserID: 1,\n    }, nil)\n\n    \/\/ \u30a8\u30e9\u30fc\u30b1\u30fc\u30b9\u306e\u30c6\u30b9\u30c8\n    mockValidator.On(\"ValidateToken\", \"invalid-token\").Return(nil, \n        errors.New(\"invalid token\"))\n\n    \/\/ \u30c6\u30b9\u30c8\u306e\u5b9f\u884c\n    \/\/ ...\n}<\/pre>\n\n\n\n<h4 class=\"wp-block-heading\" id=\"i-30\">2. \u7d71\u5408\u30c6\u30b9\u30c8\u306e\u5b9f\u88c5<\/h4>\n\n\n\n<pre class=\"EnlighterJSRAW\" data-enlighter-language=\"generic\" data-enlighter-theme=\"\" data-enlighter-highlight=\"\" data-enlighter-linenumbers=\"\" data-enlighter-lineoffset=\"\" data-enlighter-title=\"\" data-enlighter-group=\"\">func TestTokenLifecycle(t *testing.T) {\n    \/\/ \u30c6\u30b9\u30c8\u7528\u306e\u8a2d\u5b9a\n    config := &amp;Config{\n        AccessTokenDuration:  time.Minute,\n        RefreshTokenDuration: time.Hour,\n    }\n\n    \/\/ \u30c6\u30b9\u30c8\u30b1\u30fc\u30b9\u306e\u5b9a\u7fa9\n    tests := []struct {\n        name    string\n        userID  uint\n        wantErr bool\n    }{\n        {\"valid user\", 1, false},\n        {\"invalid user\", 0, true},\n    }\n\n    for _, tt := range tests {\n        t.Run(tt.name, func(t *testing.T) {\n            \/\/ \u30c8\u30fc\u30af\u30f3\u751f\u6210\n            tokenPair, err := generateTokenPair(tt.userID, config)\n            if (err != nil) != tt.wantErr {\n                t.Errorf(\"generateTokenPair() error = %v, wantErr %v\", err, tt.wantErr)\n                return\n            }\n\n            if !tt.wantErr {\n                \/\/ \u30c8\u30fc\u30af\u30f3\u691c\u8a3c\n                claims, err := ValidateToken(tokenPair.AccessToken)\n                if err != nil {\n                    t.Errorf(\"ValidateToken() error = %v\", err)\n                    return\n                }\n\n                \/\/ \u30af\u30ec\u30fc\u30e0\u306e\u691c\u8a3c\n                if claims.UserID != tt.userID {\n                    t.Errorf(\"Claims.UserID = %v, want %v\", claims.UserID, tt.userID)\n                }\n            }\n        })\n    }\n}<\/pre>\n\n\n\n<p>\u3053\u308c\u3089\u306e\u6ce8\u610f\u70b9\u3068\u5bfe\u7b56\u3092\u5b9f\u88c5\u3059\u308b\u3053\u3068\u3067\u3001\u3088\u308a\u5b89\u5168\u3067\u52b9\u7387\u7684\u306aJWT\u8a8d\u8a3c\u30b7\u30b9\u30c6\u30e0\u3092\u69cb\u7bc9\u3067\u304d\u307e\u3059\u3002\u7279\u306b\u4ee5\u4e0b\u306e\u70b9\u306b\u6ce8\u610f\u3092\u6255\u3046\u3053\u3068\u304c\u91cd\u8981\u3067\u3059\uff1a<\/p>\n\n\n\n<ol class=\"wp-block-list\">\n<li>\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u30db\u30fc\u30eb\u3068\u306a\u308b\u53ef\u80fd\u6027\u306e\u3042\u308b\u5b9f\u88c5\u30d1\u30bf\u30fc\u30f3\u306e\u56de\u907f<\/li>\n\n\n\n<li>\u30d1\u30d5\u30a9\u30fc\u30de\u30f3\u30b9\u3092\u8003\u616e\u3057\u305f\u30ad\u30e3\u30c3\u30b7\u30e5\u6226\u7565\u306e\u5c0e\u5165<\/li>\n\n\n\n<li>\u5305\u62ec\u7684\u306a\u30c6\u30b9\u30c8\u30b1\u30fc\u30b9\u306e\u4f5c\u6210\u3068\u5b9f\u884c<\/li>\n<\/ol>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"i-31\">\u5b9f\u8df5\u7684\u306a\u30b5\u30f3\u30d7\u30eb\u30b3\u30fc\u30c9<\/h2>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"i-32\">\u8a8d\u8a3c\u30b7\u30b9\u30c6\u30e0\u306e\u5168\u4f53\u8a2d\u8a08\u3068\u5b9f\u88c5\u4f8b<\/h3>\n\n\n\n<p>\u4ee5\u4e0b\u306b\u3001\u5b9f\u52d9\u3067\u4f7f\u3048\u308b\u8a8d\u8a3c\u30b7\u30b9\u30c6\u30e0\u306e\u5b8c\u5168\u306a\u5b9f\u88c5\u4f8b\u3092\u793a\u3057\u307e\u3059\uff1a<\/p>\n\n\n\n<pre class=\"EnlighterJSRAW\" data-enlighter-language=\"generic\" data-enlighter-theme=\"\" data-enlighter-highlight=\"\" data-enlighter-linenumbers=\"\" data-enlighter-lineoffset=\"\" data-enlighter-title=\"\" data-enlighter-group=\"\">\/\/ main.go\npackage main\n\nimport (\n    \"github.com\/gin-gonic\/gin\"\n    \"github.com\/redis\/go-redis\"\n    \"gorm.io\/gorm\"\n)\n\n\/\/ \u30a2\u30d7\u30ea\u30b1\u30fc\u30b7\u30e7\u30f3\u306e\u69cb\u6210\ntype App struct {\n    db          *gorm.DB\n    redis       *redis.Client\n    tokenService *TokenService\n    authHandler *AuthHandler\n}\n\n\/\/ \u30e6\u30fc\u30b6\u30fc\u30e2\u30c7\u30eb\ntype User struct {\n    gorm.Model\n    Email    string `gorm:\"unique;not null\"`\n    Password string `gorm:\"not null\"`\n}\n\n\/\/ \u30c8\u30fc\u30af\u30f3\u30b5\u30fc\u30d3\u30b9\ntype TokenService struct {\n    config       *Config\n    blacklist    *BlacklistManager\n    keyManager   *KeyManager\n}\n\n\/\/ \u8a8d\u8a3c\u30cf\u30f3\u30c9\u30e9\ntype AuthHandler struct {\n    tokenService *TokenService\n    userRepo     *UserRepository\n}\n\nfunc main() {\n    \/\/ \u30eb\u30fc\u30bf\u30fc\u306e\u8a2d\u5b9a\n    r := gin.Default()\n\n    \/\/ \u4f9d\u5b58\u95a2\u4fc2\u306e\u6ce8\u5165\n    app := initializeApp()\n\n    \/\/ \u30eb\u30fc\u30c8\u306e\u8a2d\u5b9a\n    api := r.Group(\"\/api\")\n    {\n        auth := api.Group(\"\/auth\")\n        {\n            auth.POST(\"\/register\", app.authHandler.Register)\n            auth.POST(\"\/login\", app.authHandler.Login)\n            auth.POST(\"\/refresh\", app.authHandler.RefreshToken)\n        }\n\n        \/\/ \u8a8d\u8a3c\u304c\u5fc5\u8981\u306a\u30eb\u30fc\u30c8\n        protected := api.Group(\"\/protected\")\n        protected.Use(app.authHandler.AuthMiddleware())\n        {\n            protected.GET(\"\/profile\", app.authHandler.GetProfile)\n            protected.PUT(\"\/profile\", app.authHandler.UpdateProfile)\n        }\n    }\n\n    r.Run(\":8080\")\n}\n\n\/\/ \u8a8d\u8a3c\u30cf\u30f3\u30c9\u30e9\u306e\u5b9f\u88c5\ntype AuthHandler struct {\n    tokenService *TokenService\n    userRepo     *UserRepository\n}\n\nfunc (h *AuthHandler) Register(c *gin.Context) {\n    var input struct {\n        Email    string `json:\"email\" binding:\"required,email\"`\n        Password string `json:\"password\" binding:\"required,min=8\"`\n    }\n\n    if err := c.ShouldBindJSON(&amp;input); err != nil {\n        c.JSON(400, gin.H{\"error\": err.Error()})\n        return\n    }\n\n    \/\/ \u30e6\u30fc\u30b6\u30fc\u4f5c\u6210\n    user, err := h.userRepo.Create(input.Email, input.Password)\n    if err != nil {\n        c.JSON(400, gin.H{\"error\": \"User already exists\"})\n        return\n    }\n\n    \/\/ \u30c8\u30fc\u30af\u30f3\u751f\u6210\n    tokens, err := h.tokenService.GenerateTokenPair(user.ID)\n    if err != nil {\n        c.JSON(500, gin.H{\"error\": \"Could not generate tokens\"})\n        return\n    }\n\n    c.JSON(200, tokens)\n}\n\nfunc (h *AuthHandler) Login(c *gin.Context) {\n    var input struct {\n        Email    string `json:\"email\" binding:\"required,email\"`\n        Password string `json:\"password\" binding:\"required\"`\n    }\n\n    if err := c.ShouldBindJSON(&amp;input); err != nil {\n        c.JSON(400, gin.H{\"error\": err.Error()})\n        return\n    }\n\n    \/\/ \u30e6\u30fc\u30b6\u30fc\u8a8d\u8a3c\n    user, err := h.userRepo.Authenticate(input.Email, input.Password)\n    if err != nil {\n        c.JSON(401, gin.H{\"error\": \"Invalid credentials\"})\n        return\n    }\n\n    \/\/ \u30c8\u30fc\u30af\u30f3\u751f\u6210\n    tokens, err := h.tokenService.GenerateTokenPair(user.ID)\n    if err != nil {\n        c.JSON(500, gin.H{\"error\": \"Could not generate tokens\"})\n        return\n    }\n\n    c.JSON(200, tokens)\n}\n\n\/\/ \u30df\u30c9\u30eb\u30a6\u30a7\u30a2\u306e\u5b9f\u88c5\nfunc (h *AuthHandler) AuthMiddleware() gin.HandlerFunc {\n    return func(c *gin.Context) {\n        token := c.GetHeader(\"Authorization\")\n        if token == \"\" {\n            c.JSON(401, gin.H{\"error\": \"Authorization header required\"})\n            c.Abort()\n            return\n        }\n\n        \/\/ \"Bearer \"\u30d7\u30ec\u30d5\u30a3\u30c3\u30af\u30b9\u3092\u9664\u53bb\n        token = strings.TrimPrefix(token, \"Bearer \")\n\n        \/\/ \u30c8\u30fc\u30af\u30f3\u691c\u8a3c\n        claims, err := h.tokenService.ValidateToken(token)\n        if err != nil {\n            c.JSON(401, gin.H{\"error\": \"Invalid token\"})\n            c.Abort()\n            return\n        }\n\n        \/\/ \u30b3\u30f3\u30c6\u30ad\u30b9\u30c8\u306b\u30e6\u30fc\u30b6\u30fc\u60c5\u5831\u3092\u8a2d\u5b9a\n        c.Set(\"userId\", claims.UserID)\n        c.Next()\n    }\n}<\/pre>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"i-33\">\u30df\u30c9\u30eb\u30a6\u30a7\u30a2\u3068\u3057\u3066\u306e\u5b9f\u88c5\u4f8b<\/h3>\n\n\n\n<pre class=\"EnlighterJSRAW\" data-enlighter-language=\"generic\" data-enlighter-theme=\"\" data-enlighter-highlight=\"\" data-enlighter-linenumbers=\"\" data-enlighter-lineoffset=\"\" data-enlighter-title=\"\" data-enlighter-group=\"\">\/\/ middleware\/auth.go\npackage middleware\n\nimport (\n    \"github.com\/gin-gonic\/gin\"\n)\n\ntype AuthConfig struct {\n    TokenService TokenService\n    SkipPaths   []string\n}\n\nfunc NewAuthMiddleware(config AuthConfig) gin.HandlerFunc {\n    return func(c *gin.Context) {\n        \/\/ \u30b9\u30ad\u30c3\u30d7\u30d1\u30b9\u306e\u30c1\u30a7\u30c3\u30af\n        path := c.Request.URL.Path\n        for _, skipPath := range config.SkipPaths {\n            if path == skipPath {\n                c.Next()\n                return\n            }\n        }\n\n        token := c.GetHeader(\"Authorization\")\n        if token == \"\" {\n            c.JSON(401, gin.H{\"error\": \"Authorization header required\"})\n            c.Abort()\n            return\n        }\n\n        \/\/ \u30c8\u30fc\u30af\u30f3\u691c\u8a3c\u3068\u30e6\u30fc\u30b6\u30fc\u60c5\u5831\u306e\u8a2d\u5b9a\n        claims, err := config.TokenService.ValidateAccessToken(token)\n        if err != nil {\n            c.JSON(401, gin.H{\"error\": err.Error()})\n            c.Abort()\n            return\n        }\n\n        c.Set(\"user\", claims)\n        c.Next()\n    }\n}<\/pre>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"i-34\">\u30c6\u30b9\u30c8\u30b3\u30fc\u30c9\u306e\u5b9f\u88c5\u4f8b<\/h3>\n\n\n\n<pre class=\"EnlighterJSRAW\" data-enlighter-language=\"generic\" data-enlighter-theme=\"\" data-enlighter-highlight=\"\" data-enlighter-linenumbers=\"\" data-enlighter-lineoffset=\"\" data-enlighter-title=\"\" data-enlighter-group=\"\">\/\/ auth_test.go\npackage auth\n\nimport (\n    \"testing\"\n    \"net\/http\/httptest\"\n    \"encoding\/json\"\n    \"github.com\/gin-gonic\/gin\"\n    \"github.com\/stretchr\/testify\/assert\"\n)\n\nfunc TestAuthFlow(t *testing.T) {\n    \/\/ \u30c6\u30b9\u30c8\u7528\u306e\u30b5\u30fc\u30d0\u30fc\u3068\u30af\u30e9\u30a4\u30a2\u30f3\u30c8\u306e\u8a2d\u5b9a\n    router := gin.Default()\n    authHandler := NewAuthHandler(mockTokenService{}, mockUserRepo{})\n\n    router.POST(\"\/auth\/register\", authHandler.Register)\n    router.POST(\"\/auth\/login\", authHandler.Login)\n\n    \/\/ \u767b\u9332\u30c6\u30b9\u30c8\n    t.Run(\"Register\", func(t *testing.T) {\n        w := httptest.NewRecorder()\n        req := httptest.NewRequest(\"POST\", \"\/auth\/register\", strings.NewReader(`{\n            \"email\": \"test@example.com\",\n            \"password\": \"password123\"\n        }`))\n\n        router.ServeHTTP(w, req)\n\n        assert.Equal(t, 200, w.Code)\n\n        var response struct {\n            AccessToken  string `json:\"access_token\"`\n            RefreshToken string `json:\"refresh_token\"`\n        }\n        err := json.NewDecoder(w.Body).Decode(&amp;response)\n        assert.NoError(t, err)\n        assert.NotEmpty(t, response.AccessToken)\n        assert.NotEmpty(t, response.RefreshToken)\n    })\n\n    \/\/ \u30ed\u30b0\u30a4\u30f3\u30c6\u30b9\u30c8\n    t.Run(\"Login\", func(t *testing.T) {\n        w := httptest.NewRecorder()\n        req := httptest.NewRequest(\"POST\", \"\/auth\/login\", strings.NewReader(`{\n            \"email\": \"test@example.com\",\n            \"password\": \"password123\"\n        }`))\n\n        router.ServeHTTP(w, req)\n\n        assert.Equal(t, 200, w.Code)\n\n        var response struct {\n            AccessToken  string `json:\"access_token\"`\n            RefreshToken string `json:\"refresh_token\"`\n        }\n        err := json.NewDecoder(w.Body).Decode(&amp;response)\n        assert.NoError(t, err)\n        assert.NotEmpty(t, response.AccessToken)\n        assert.NotEmpty(t, response.RefreshToken)\n    })\n}\n\n\/\/ \u30e2\u30c3\u30af\u306e\u5b9f\u88c5\ntype mockTokenService struct{}\ntype mockUserRepo struct{}\n\n\/\/ \u30e2\u30c3\u30af\u30e1\u30bd\u30c3\u30c9\u306e\u5b9f\u88c5\n\/\/ ...<\/pre>\n\n\n\n<p>\u3053\u306e\u30b5\u30f3\u30d7\u30eb\u30b3\u30fc\u30c9\u306f\u4ee5\u4e0b\u306e\u7279\u5fb4\u3092\u6301\u3063\u3066\u3044\u307e\u3059\uff1a<\/p>\n\n\n\n<ol class=\"wp-block-list\">\n<li>\u5b9f\u52d9\u3067\u5fc5\u8981\u306a\u5168\u3066\u306e\u6a5f\u80fd\u3092\u542b\u3080\u5b8c\u5168\u306a\u8a8d\u8a3c\u30b7\u30b9\u30c6\u30e0<\/li>\n\n\n\n<li>\u30af\u30ea\u30fc\u30f3\u30a2\u30fc\u30ad\u30c6\u30af\u30c1\u30e3\u306b\u57fa\u3065\u304f\u4f9d\u5b58\u95a2\u4fc2\u306e\u7ba1\u7406<\/li>\n\n\n\n<li>\u52b9\u7387\u7684\u306a\u30df\u30c9\u30eb\u30a6\u30a7\u30a2\u306e\u5b9f\u88c5<\/li>\n\n\n\n<li>\u5305\u62ec\u7684\u306a\u30c6\u30b9\u30c8\u30b1\u30fc\u30b9<\/li>\n<\/ol>\n\n\n\n<p>\u5b9f\u88c5\u6642\u306e\u30dd\u30a4\u30f3\u30c8\uff1a<\/p>\n\n\n\n<ol class=\"wp-block-list\">\n<li>\u9069\u5207\u306a\u30a8\u30e9\u30fc\u30cf\u30f3\u30c9\u30ea\u30f3\u30b0<\/li>\n\n\n\n<li>\u30d0\u30ea\u30c7\u30fc\u30b7\u30e7\u30f3\u306e\u5b9f\u88c5<\/li>\n\n\n\n<li>\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u5bfe\u7b56<\/li>\n\n\n\n<li>\u30b9\u30b1\u30fc\u30e9\u30d6\u30eb\u306a\u69cb\u9020\u8a2d\u8a08<\/li>\n\n\n\n<li>\u30c6\u30b9\u30c8\u5bb9\u6613\u6027\u306e\u78ba\u4fdd<\/li>\n<\/ol>\n","protected":false},"excerpt":{"rendered":"<p>Warning: Undefined array key &#8220;is_admin&#8221; in \/home\/xs392991\/dexall.co.jp\/public_html\/articles\/wp-content\/themes\/ &#8230; <\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[2],"tags":[],"class_list":{"0":"post-1214","1":"post","2":"type-post","3":"status-publish","4":"format-standard","6":"category-java","7":"nothumb"},"_links":{"self":[{"href":"https:\/\/dexall.co.jp\/articles\/index.php?rest_route=\/wp\/v2\/posts\/1214","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/dexall.co.jp\/articles\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/dexall.co.jp\/articles\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/dexall.co.jp\/articles\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/dexall.co.jp\/articles\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=1214"}],"version-history":[{"count":1,"href":"https:\/\/dexall.co.jp\/articles\/index.php?rest_route=\/wp\/v2\/posts\/1214\/revisions"}],"predecessor-version":[{"id":1215,"href":"https:\/\/dexall.co.jp\/articles\/index.php?rest_route=\/wp\/v2\/posts\/1214\/revisions\/1215"}],"wp:attachment":[{"href":"https:\/\/dexall.co.jp\/articles\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=1214"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/dexall.co.jp\/articles\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=1214"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/dexall.co.jp\/articles\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=1214"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}