Skip to main content
Version: 2.8.x(Latest)

JWT Authentication Example with GoFrame

Github Source:

This example demonstrates how to implement JWT (JSON Web Token) authentication in a GoFrame HTTP server using the package.


  • User login endpoint that generates JWT tokens
  • Protected routes using JWT middleware
  • Token validation and parsing
  • Example of accessing protected resources
  • Standard GoFrame project structure

Project Structure

├── api/
│ └── v1/
│ └── auth.go # API interface definitions
├── internal/
│ ├── controller/
│ │ └── auth.go # Business logic implementation
│ └── middleware/
│ └── jwt.go # JWT middleware
└── main.go # Entry point

API Endpoints

  1. Login: POST /login

    "username": "admin",
    "password": "password"
  2. Protected Resource: GET /api/protected

    • Requires Bearer token in Authorization header
    • Example: Authorization: Bearer your-token-here

Running the Example

  1. Start the server:

    go run main.go
  2. The server will start on port 8199

Testing the API

  1. Login to get a token:

    curl -X POST http://localhost:8199/login \
    -H "Content-Type: application/json" \
    -d '{"username":"admin","password":"password"}'
  2. Access protected endpoint:

    curl http://localhost:8199/api/protected \
    -H "Authorization: Bearer your-token-here"

Security Notes

  • In production, replace the hardcoded secret key with a secure value
  • Store user credentials in a database
  • Implement proper password hashing
  • Consider implementing refresh tokens
  • Add rate limiting for login attempts


For more detailed information about JWT implementation, please refer to the third-party component documentation: