refactor: Redis store to use functional options pattern

[appleboy]

• Replace all Redis store convenience methods with a functional options pattern for configuration
• Remove legacy methods for enabling and configuring the Redis store
• Add new methods and types for Redis configuration via options (e.g., WithRedisAddr, WithRedisAuth, WithRedisCache, WithRedisPool, WithRedisKeyPrefix)
• Update documentation and examples to use the functional options API for Redis setup
• Refactor initialization logic to use a unified EnableRedisStore method and helper for fallback
• Simplify token response generation by making generateTokenResponse return just the response
• Update all tests and test helpers to cover the new options-based Redis configuration API
• Remove explicit Redis config struct manipulation in examples and tests; use options instead
• Translate all related README sections in English, Simplified Chinese, and Traditional Chinese
• Improve clarity and maintainability of Redis middleware integration

Summary by CodeRabbit

• New Features

  • Introduced functional options for Redis configuration (WithRedisAddr, WithRedisAuth, WithRedisCache, WithRedisPool, WithRedisKeyPrefix).
  • EnableRedisStore now accepts options for flexible setup and gracefully falls back to in-memory if Redis init fails.

• Refactor

  • Removed legacy Redis setup methods in favor of the new options-based API.

• Documentation

  • Updated EN/zh-CN/zh-TW READMEs with a recommended functional options section, available options, and revised examples.

• Tests

  • Updated tests to validate the new options-based Redis configuration.

• Chores

  • Updated example apps to use the new options pattern.

[gemini-code-assist]

Summary of Changes

Hello @appleboy, I'm Gemini Code Assist¹! I'm currently reviewing this pull request and will post my feedback shortly. In the meantime, here's a summary to help you and other reviewers quickly get up to speed!

This pull request significantly refactors the Redis store configuration within the gin-jwt middleware by adopting a functional options pattern. This change aims to enhance the API's flexibility, readability, and maintainability, allowing users to configure Redis with a more expressive and extensible approach. It deprecates and removes several older, less flexible configuration methods, streamlining the setup process for Redis integration.

Highlights

• Functional Options Pattern: Redis store configuration has been refactored to use a functional options pattern, providing a more flexible and cleaner API for setup.
• Deprecated Methods Removal: All previous convenience methods for enabling and configuring the Redis store (e.g., EnableRedisStoreWithAddr, SetRedisClientSideCache) have been removed to streamline the API.
• New Configuration Options: New functional options like WithRedisAddr, WithRedisAuth, WithRedisCache, WithRedisPool, and WithRedisKeyPrefix are introduced for granular control over Redis settings.
• Simplified Token Response: The generateTokenResponse method now directly returns a gin.H map, removing the error return and simplifying its usage in LoginResponse and RefreshResponse.
• Unified Redis Initialization: The internal logic for enabling and initializing the Redis store has been unified under a new EnableRedisStore method and an initializeRedisStore helper, including a fallback mechanism to an in-memory store if Redis connection fails.
• Documentation and Examples Update: All relevant documentation (English, Simplified Chinese, Traditional Chinese) and examples have been updated to reflect the new functional options API.
• Test Suite Refactoring: The test suite has been refactored to remove tests for the old convenience methods and add comprehensive tests for the new functional options-based Redis configuration.

Using Gemini Code Assist

The full guide for Gemini Code Assist can be found on our documentation page, here are some quick tips.

Invoking Gemini

You can request assistance from Gemini at any point by creating a comment using either /gemini <command> or @gemini-code-assist <command>. Below is a summary of the supported commands on the current page.

Feature	Command	Description
Code Review	/gemini review	Performs a code review for the current pull request in its current state.
Pull Request Summary	/gemini summary	Provides a summary of the current pull request in its current state.
Comment	@gemini-code-assist	Responds in comments when explicitly tagged, both in pull request comments and review comments.
Help	/gemini help	Displays a list of available commands.

Customization

To customize Gemini Code Assist for GitHub experience, repository maintainers can create a configuration file and/or provide a custom code review style guide (such as PEP-8 for Python) by creating and adding files to a .gemini/ folder in the base of the repository. Detailed instructions can be found here.

Limitations & Feedback

Gemini Code Assist may make mistakes. Please leave feedback on any instances where its feedback is incorrect or counter productive. You can react with 👍 and 👎 on @gemini-code-assist comments. If you're interested in giving your feedback about your experience with Gemini Code Assist for Github and other Google products, sign up here.

You can also get AI-powered code generation, chat, as well as code reviews directly in the IDE at no cost with the Gemini Code Assist IDE Extension.

Footnotes

1. Review the Privacy Notices, Generative AI Prohibited Use Policy, Terms of Service, and learn how to configure Gemini Code Assist in GitHub here. Gemini can make mistakes, so double check it and use code with caution. ↩

[github-actions]

🚫 [Bearer] <go_lang_logger_leak> _{reported by reviewdog 🐶}

Leakage of information in logger message

Description

Information leakage through logger messages can result in data breaches. This vulnerability arises when dynamic data or variables, which may contain sensitive information, are included in log messages.

Remediations

• Do not include variables or dynamic data containing sensitive information in logger messages. This can inadvertently expose sensitive data.

  logger.info(f"User is: '{user.email}'") // unsafe

• Do sanitize or remove sensitive information from data before logging. Ensure that logged information does not contain any personal or confidential data.

[coderabbitai]

Walkthrough

Replaces legacy Redis configuration helpers with a new functional options API. Adds EnableRedisStore(opts ...RedisOption) and WithRedis* option builders, updates examples and docs, and refactors tests accordingly. Changes generateTokenResponse to return gin.H without error. Introduces Redis initialization with fallback to in-memory storage.

Changes

Cohort / File(s)	Summary
Docs: Redis configuration README.md, README.zh-CN.md, README.zh-TW.md	Rewrote Redis setup to use functional options. Added “Available Options/可用選項” listing WithRedisAddr/Auth/Cache/Pool/KeyPrefix. Updated examples to EnableRedisStore(opts...). Removed/de-emphasized legacy helpers.
Examples _example/redis_simple/main.go, _example/redis_store/main.go	Switched to functional options for Redis configuration. Removed direct/legacy store wiring and client-side cache setters. Adjusted handlers/logs; simplified store-info handler signature.
Core middleware (JWT) auth_jwt.go	Simplified token response path: generateTokenResponse now returns gin.H (error removed). Removed legacy public Redis helpers (EnableRedisStore*, SetRedisClientSideCache). Default initialization favors in-memory; response builders updated.
Redis integration (new options API) auth_jwt_redis.go	Added RedisOption type and option builders: WithRedisAddr/Auth/Cache/Pool/KeyPrefix. Added EnableRedisStore(opts ...RedisOption). Implemented initializeRedisStore with Redis attempt and in-memory fallback, with logging.
Unit tests: methods/options auth_jwt_methods_test.go	Replaced convenience-method tests with functional-options tests. Renamed to TestGinJWTMiddleware_FunctionalOptionsOnly. Validates defaults and option overrides via EnableRedisStore(WithRedis...).
Integration tests: Redis auth_jwt_redis_test.go	Renamed to TestGinJWTMiddleware_FunctionalOptions. Refactored helpers (removed middleware param). Configured Redis via functional options; updated expectations and labels.

Sequence Diagram(s)

sequenceDiagram
  autonumber
  actor Dev as App
  participant MW as GinJWTMiddleware
  participant Opts as RedisOptions
  participant Redis as Redis Server
  participant Mem as In-Memory Store

  Dev->>MW: Configure<br/>EnableRedisStore(WithRedisAddr/Auth/Cache/Pool/KeyPrefix)
  activate MW
  MW->>Opts: Apply options to RedisConfig
  note right of MW: Redis enabled flag set

  MW->>MW: initializeRedisStore()
  MW->>Redis: Connect + init store
  alt Redis init OK
    Redis-->>MW: Store ready
    note right of MW: Use Redis-backed refresh token store
  else Redis init fails
    Redis--x MW: Error
    MW->>Mem: Fallback initialize
    note right of MW: Use in-memory refresh token store
  end
  deactivate MW

  Dev->>MW: Login/Refresh
  MW->>MW: generateTokenResponse(token, expire) -> gin.H
  MW-->>Dev: JSON response

Loading

Estimated code review effort

🎯 4 (Complex) | ⏱️ ~60 minutes

Possibly related PRs

• feat: add RFC 6749 compliant refresh token flow and pluggable store #350 — Overlaps on refresh-token storage with Redis backend; both touch Redis-enabled store plumbing.
• feat: integrate Redis as configurable refresh token store #353 — Earlier Redis config/convenience methods replaced here by functional options; direct API successor.
• feat: refactor JWT token handling and support programmatic generation #352 — Both modify token response generation paths in auth_jwt.go.

Poem

A rabbit taps keys with a quiet delight,
Options now blossom where helpers took flight.
Redis or memory, we choose on the run,
Tokens hop safely, the login is done.
With swift little paws and configs that sing,
I twitch my nose—what a functional spring! 🐇✨

Pre-merge checks and finishing touches

❌ Failed checks (1 warning)

Check name	Status	Explanation	Resolution
Docstring Coverage	⚠️ Warning	Docstring coverage is 33.33% which is insufficient. The required threshold is 80.00%.	You can run @coderabbitai generate docstrings to improve docstring coverage.

✅ Passed checks (2 passed)

Check name	Status	Explanation
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.
Title Check	✅ Passed	The title succinctly and accurately summarizes the primary change of refactoring the Redis store to use a functional options pattern, matching the core modifications across code, documentation, and tests.

✨ Finishing touches

• 📝 Generate docstrings

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Post copyable unit tests in a comment
• Commit unit tests in branch redis2

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[gemini-code-assist]

Code Review

This is an excellent pull request that significantly improves the library's API by refactoring the Redis store configuration to use a functional options pattern. The changes are consistently applied across the codebase, including documentation in all languages, examples, and tests. The new API is much cleaner and more extensible. I've added a couple of suggestions to improve a log message for accuracy and to restore some dynamic functionality in one of the examples that was lost during the refactor. Overall, great work.

[gemini-code-assist]

To allow storeInfoHandler to access the middleware state and provide dynamic information, you should pass the authMiddleware instance to it. This is a companion change to my other comment on storeInfoHandler.

Suggested change

	auth.GET("/store-info", storeInfoHandler())
	auth.GET("/store-info", storeInfoHandler(authMiddleware))

[gemini-code-assist]

The storeInfoHandler has been simplified to return a static response. This removes the dynamic aspect of the example, which previously demonstrated how to inspect the token store type and count. It would be more informative to retain the dynamic behavior to better showcase the library's capabilities, even with the new configuration pattern.

func storeInfoHandler(mw *jwt.GinJWTMiddleware) gin.HandlerFunc {
	return func(c *gin.Context) {
		storeType := "memory"
		if mw.UseRedisStore {
			// This is a simplification. In a real app, you might want to check the actual type.
			storeType = "redis"
		}

		count, err := mw.RefreshTokenStore.Count()
		if err != nil {
			c.JSON(http.StatusInternalServerError, gin.H{"error": err.Error()})
			return
		}

		c.JSON(http.StatusOK, gin.H{
			"store_type":  storeType,
			"token_count": count,
			"message":     "Token store information",
		})
	}
}

[gemini-code-assist]

The log message unconditionally states that client-side caching is enabled. However, caching can be disabled by setting the cache size to 0. The log message should reflect the actual cache status to avoid confusion during debugging.

} else {
			if redisConfig.CacheSize > 0 {
				log.Println("Successfully connected to Redis store with client-side cache enabled")
			} else {
				log.Println("Successfully connected to Redis store")
			}
			mw.RefreshTokenStore = redisStore
		}

[coderabbitai]

Actionable comments posted: 1

Caution

Some comments are outside the diff and can’t be posted inline due to platform limitations.

⚠️ Outside diff range comments (1)

_example/redis_store/main.go (1)

103-107: Avoid logging full JWT claims in examples.

Printing claims with %#v may leak user info to logs. Remove or log minimal fields.

-    log.Printf("NoRoute claims: %#v\n", claims)
+    // Avoid logging full claims in production/examples.

♻️ Duplicate comments (1)

auth_jwt_redis.go (1)

79-85: Sanitize Redis error logging; avoid leaking details.

Log a generic message instead of interpolating the raw error. This aligns with the previous static-analysis warning.

-            log.Printf("Failed to connect to Redis: %v, falling back to in-memory store", err)
+            log.Print("Failed to connect to Redis; falling back to in-memory store")

🧹 Nitpick comments (20)

README.zh-TW.md (2)

339-346: Remove redundant MiddlewareInit after jwt.New.

jwt.New already calls MiddlewareInit(). Drop the extra call to avoid double init.

-    errInit := authMiddleware.MiddlewareInit()
-    if errInit != nil {
-        log.Fatal("authMiddleware.MiddlewareInit() Error:" + errInit.Error())
-    }
+    // No need to call MiddlewareInit() again; jwt.New() already did it.

---

350-359: Make refresh endpoint public (RFC 6749).

Don’t protect /auth/refresh_token with JWT. Define it before auth.Use(...) or outside the group.

auth := r.Group("/auth")
auth.GET("/refresh_token", authMiddleware.RefreshHandler) // public
auth.Use(authMiddleware.MiddlewareFunc())
{
    auth.GET("/hello", func(c *gin.Context) { /* ... */ })
}

README.md (2)

508-511: Remove redundant MiddlewareInit after jwt.New.

jwt.New invokes MiddlewareInit() internally. Avoid calling it twice.

-    errInit := authMiddleware.MiddlewareInit()
-    if errInit != nil {
-        log.Fatal("authMiddleware.MiddlewareInit() Error:" + errInit.Error())
-    }
+    // No manual MiddlewareInit() needed here.

---

516-524: Expose refresh endpoint without JWT.

Per RFC 6749 and earlier docs, the refresh endpoint should be public. Move it before auth.Use(...) or outside the group.

auth := r.Group("/auth")
auth.GET("/refresh_token", authMiddleware.RefreshHandler) // public
auth.Use(authMiddleware.MiddlewareFunc())
{
    auth.GET("/hello", /* ... */)
}

README.zh-CN.md (2)

343-346: 移除重复的 MiddlewareInit 调用。

jwt.New 已自动调用 MiddlewareInit()，无需再次调用。

-    errInit := authMiddleware.MiddlewareInit()
-    if errInit != nil {
-        log.Fatal("authMiddleware.MiddlewareInit() Error:" + errInit.Error())
-    }
+    // 无需重复调用 MiddlewareInit()。

---

350-359: 将刷新端点设为公开。

按 RFC 6749，刷新端点应为公开端点。请在 auth.Use(...) 之前定义，或放到分组外。

auth := r.Group("/auth")
auth.GET("/refresh_token", authMiddleware.RefreshHandler) // 公开
auth.Use(authMiddleware.MiddlewareFunc())
{
    auth.GET("/hello", /* ... */)
}

auth_jwt_redis.go (1)

84-85: Remove success log to reduce library log noise.

Libraries should avoid emitting info-level logs on success by default.

-            log.Println("Successfully connected to Redis store with client-side cache enabled")

_example/redis_store/main.go (2)

93-99: Drop duplicate MiddlewareInit.

jwt.New(middleware) already initializes the middleware.

-    errInit := authMiddleware.MiddlewareInit()
-
-    if errInit != nil {
-        log.Fatal("authMiddleware.MiddlewareInit() Error:" + errInit.Error())
-    }
+    // No need to call MiddlewareInit() again.

---

137-146: Reflect actual store status in /store-info.

Hardcoding "redis_enabled": true can mislead when fallback occurs. Detect from middleware.

-func storeInfoHandler() gin.HandlerFunc {
+func storeInfoHandler(mw *jwt.GinJWTMiddleware) gin.HandlerFunc {
     return func(c *gin.Context) {
+        _, usingRedis := mw.RefreshTokenStore.(interface{ /* marker of Redis store type */ })
         c.JSON(200, gin.H{
             "configuration": "functional_options",
-            "redis_enabled": true,
+            "redis_enabled": mw.UseRedisStore,
+            "using_redis":   usingRedis,
             "message":       "Using functional options pattern for Redis configuration",
         })
     }
}

And register with: auth.GET("/store-info", storeInfoHandler(authMiddleware))

_example/redis_simple/main.go (1)

123-128: Remove redundant MiddlewareInit after jwt.New.

Initialization is already performed inside jwt.New.

-    errInit := authMiddleware.MiddlewareInit()
-    if errInit != nil {
-        log.Fatal("authMiddleware.MiddlewareInit() Error:" + errInit.Error())
-    }
+    // No manual MiddlewareInit() necessary here.

auth_jwt.go (3)

400-405: Use the provided HTTP status code.

Default LoginResponse ignores the code parameter. Respect it to keep behavior consistent with custom callers.

-            c.JSON(http.StatusOK, response)
+            c.JSON(code, response)

---

415-420: Use the provided HTTP status code.

Default RefreshResponse also ignores code. Use it.

-            c.JSON(http.StatusOK, response)
+            c.JSON(code, response)

---

1041-1053: Prevent negative expires_in due to clock skew.

Clamp to non-negative seconds for RFC 6749 compliance and stability.

 func (mw *GinJWTMiddleware) generateTokenResponse(c *gin.Context, token string, expire time.Time) gin.H {
-    response := gin.H{
-        "access_token": token,
-        "token_type":   "Bearer",
-        "expires_in":   int(time.Until(expire).Seconds()),
-    }
+    sec := int(time.Until(expire).Seconds())
+    if sec < 0 {
+        sec = 0
+    }
+    response := gin.H{
+        "access_token": token,
+        "token_type":   "Bearer",
+        "expires_in":   sec,
+    }

auth_jwt_redis_test.go (5)

83-109: Also cover fallback using functional options

This test validates fallback via legacy fields. Add a variant using EnableRedisStore(WithRedisAddr("invalid-host:6379")) to ensure fallback works with the new API as well.

Example subtest:

t.Run("RedisStoreFallback_WithFunctionalOptions", func(t *testing.T) {
  mw := &GinJWTMiddleware{
    Realm: "test zone", Key: []byte("secret key"),
    Timeout: time.Hour, MaxRefresh: 24 * time.Hour, IdentityKey: "id",
    Authenticator: testAuthenticator, PayloadFunc: testPayloadFunc,
  }
  mw.EnableRedisStore(WithRedisAddr("invalid-host:6379"))
  err := mw.MiddlewareInit()
  require.NoError(t, err)
  assert.NotNil(t, mw.inMemoryStore)
  assert.Equal(t, mw.inMemoryStore, mw.RefreshTokenStore)
})

---

271-275: Remove redundant EnableRedisStore call

You already set all options (including addr). Re-calling EnableRedisStore with only addr is unnecessary and may unintentionally alter earlier options depending on implementation.

-    // Test that it actually works (but use working address for actual initialization)
-    middleware.EnableRedisStore(WithRedisAddr(redisAddr)) // Reset to working address
     err := middleware.MiddlewareInit()
     assert.NoError(t, err, "configuration with all options should initialize successfully")

---

426-431: Reduce flakiness: increase wait beyond cache TTL

Cache TTL is 50ms; sleeping only 100ms can be flaky on slower CI. Bump to a safer margin.

-    time.Sleep(100 * time.Millisecond)
+    time.Sleep(300 * time.Millisecond)

---

328-337: Mark helpers as test helpers

Add t.Helper() at the top of helper funcs to improve failure locations.

 func testLoginAndRefreshFlow(t *testing.T, r *gin.Engine) {
+  t.Helper()
   // Test login
   ...
 }

 func testTokenPersistenceAcrossRequests(t *testing.T, r *gin.Engine) {
+  t.Helper()
   // Login and get refresh token
   ...
 }

 func testRedisStoreOperations(t *testing.T, middleware *GinJWTMiddleware) {
+  t.Helper()
   // Verify that Redis store is being used
   ...
 }

Also applies to: 366-375, 398-406

---

26-27: Pin Redis image for CI stability and add timeout

• Wrap container startup in context.WithTimeout (e.g., 2 min) and call t.Cleanup(cancel).
• Allow TEST_REDIS_IMAGE override; default to a pinned tag, e.g. "redis:8.2.2-alpine".

Apply these diffs:

 import (
   "context"
   "encoding/json"
   "fmt"
   "net/http"
   "net/http/httptest"
   "strings"
   "testing"
   "time"

   "github.com/appleboy/gin-jwt/v2/store"
   "github.com/gin-gonic/gin"
   gojwt "github.com/golang-jwt/jwt/v5"
   "github.com/stretchr/testify/assert"
   "github.com/stretchr/testify/require"
   "github.com/testcontainers/testcontainers-go/modules/redis"
+  "os"
 )

-func setupRedisContainerForJWT(t *testing.T) (*redis.RedisContainer, string, string) {
-   ctx := context.Background()
+func setupRedisContainerForJWT(t *testing.T) (*redis.RedisContainer, string, string) {
+   ctx, cancel := context.WithTimeout(context.Background(), 2*time.Minute)
+   t.Cleanup(cancel)
 
    // Start Redis container
-   redisContainer, err := redis.Run(ctx, "redis:8-alpine")
+   image := os.Getenv("TEST_REDIS_IMAGE")
+   if image == "" {
+       image = "redis:8.2.2-alpine"
+   }
+   redisContainer, err := redis.Run(ctx, image)
    require.NoError(t, err, "failed to start Redis container")

auth_jwt_methods_test.go (2)

14-29: Run subtests in parallel

These are pure unit tests; enable t.Parallel() to speed up the suite.

 t.Run("EnableRedisStoreDefault", func(t *testing.T) {
+  t.Parallel()
   middleware := &GinJWTMiddleware{

Repeat for other subtests in this file (SingleOption, MultipleOptions, CacheOptions, PoolOptions, KeyPrefix, AllOptions, MultipleEnableRedisStoreCalls, DefaultConfiguration).

---

185-213: Clarify semantics for repeated calls: merge vs reset

MultipleEnableRedisStoreCalls verifies overridden fields only. Add an assertion for a field not set in the second call (e.g., PoolSize or CacheTTL) to pin down whether subsequent calls reset config or preserve prior values. This prevents accidental behavior changes later.

Example:

// After first call also set a pool size:
middleware.EnableRedisStore(
  WithRedisAddr("first.redis.com:6379"),
  WithRedisAuth("first-pass", 1),
  WithRedisPool(30, time.Hour, 2*time.Hour),
)
// Second call without pool option:
middleware.EnableRedisStore(
  WithRedisAddr("second.redis.com:6379"),
  WithRedisAuth("second-pass", 2),
)
// Decide expected behavior, then assert either:
assert.Equal(t, 30, middleware.RedisConfig.PoolSize) // persist
// or
assert.Equal(t, 10, middleware.RedisConfig.PoolSize) // reset to default

📜 Review details

Configuration used: CodeRabbit UI

Review profile: CHILL

Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between daa117d and 228d0e2.

📒 Files selected for processing (9)

• README.md (3 hunks)
• README.zh-CN.md (3 hunks)
• README.zh-TW.md (3 hunks)
• _example/redis_simple/main.go (1 hunks)
• _example/redis_store/main.go (4 hunks)
• auth_jwt.go (5 hunks)
• auth_jwt_methods_test.go (7 hunks)
• auth_jwt_redis.go (1 hunks)
• auth_jwt_redis_test.go (9 hunks)

🧰 Additional context used

🧬 Code graph analysis (6)

_example/redis_simple/main.go (2)

auth_jwt_redis.go (1)

• WithRedisCache (29-34)

auth_jwt.go (1)

• New (259-265)

auth_jwt_redis_test.go (3)

store/redis.go (1)

• RedisConfig (23-40)

auth_jwt_redis.go (5)

• WithRedisAddr (14-18)
• WithRedisAuth (21-26)
• WithRedisCache (29-34)
• WithRedisPool (37-43)
• WithRedisKeyPrefix (46-50)

auth_jwt.go (2)

• GinJWTMiddleware (27-188)
• IdentityKey (249-249)

auth_jwt_methods_test.go (3)

store/redis.go (1)

• RedisConfig (23-40)

auth_jwt_redis.go (5)

• WithRedisAddr (14-18)
• WithRedisAuth (21-26)
• WithRedisCache (29-34)
• WithRedisPool (37-43)
• WithRedisKeyPrefix (46-50)

auth_jwt.go (1)

• GinJWTMiddleware (27-188)

_example/redis_store/main.go (2)

auth_jwt.go (2)

• GinJWTMiddleware (27-188)
• New (259-265)

auth_jwt_redis.go (2)

• WithRedisAddr (14-18)
• WithRedisCache (29-34)

auth_jwt.go (1)

store/memory.go (1)

• NewInMemoryRefreshTokenStore (20-24)

auth_jwt_redis.go (2)

store/redis.go (3)

• RedisConfig (23-40)
• DefaultRedisConfig (43-55)
• NewRedisRefreshTokenStore (58-96)

auth_jwt.go (1)

• GinJWTMiddleware (27-188)

🔇 Additional comments (2)

auth_jwt_redis_test.go (1)

70-76: LGTM: helper flow now router-based

Passing the router instead of the middleware simplifies helper usage and matches the refactor.

auth_jwt_methods_test.go (1)

228-238: Defaults assertions look correct

The asserted defaults match store/redis.go comments: addr, password, DB, cache size/TTL, pool settings, and key prefix.

[coderabbitai]

⚠️ Potential issue | 🔴 Critical

🧩 Analysis chain

Verify WithRedisPool is actually applied in store client options.

Pool fields set here don’t appear used when building the Redis client in store.NewRedisRefreshTokenStore (per provided snippet). This would make the option a no-op.

Run to confirm usage across the repo:

---

🏁 Script executed:

#!/bin/bash
rg -n -C2 -g '!**/vendor/**' -e '\bPoolSize\b|\bConnMaxIdleTime\b|\bConnMaxLifetime\b'

Length of output: 4620

---

🏁 Script executed:

#!/bin/bash
# Locate the Redis refresh token store constructor
rg -n -C3 -g '!**/vendor/**' -e 'func NewRedisRefreshTokenStore'
# Inspect how the Redis client is initialized
rg -n -C3 -g '!**/vendor/**' -e 'redis\.NewClient'

Length of output: 370

---

🏁 Script executed:

#!/bin/bash
# Show implementation of NewRedisRefreshTokenStore
rg -n -C20 'func NewRedisRefreshTokenStore' -g 'store/redis.go'
# Show how redis client is initialized
rg -n -C10 'redis\.NewClient' -g 'store/redis.go'

Length of output: 1936

---

Apply Redis pool options in NewRedisRefreshTokenStore
The PoolSize, ConnMaxIdleTime and ConnMaxLifetime fields from RedisConfig (set via WithRedisPool) are never applied when building the rueidis.ClientOption in store/redis.go, making those options no-ops. Wire these fields into the client configuration or remove them.

🤖 Prompt for AI Agents

In auth_jwt_redis.go around lines 36 to 43, the RedisConfig pool fields set by
WithRedisPool are not applied when constructing the rueidis.ClientOption in
NewRedisRefreshTokenStore; update NewRedisRefreshTokenStore in store/redis.go to
wire config.PoolSize, config.ConnMaxIdleTime and config.ConnMaxLifetime into the
rueidis client options (or remove the unused config fields). Specifically, map
PoolSize to the rueidis client pool size option and map
ConnMaxIdleTime/ConnMaxLifetime to the corresponding connection idle and
lifetime options provided by rueidis so the WithRedisPool settings take effect.