Forem: Shivam Pratap Singh The latest articles on Forem by Shivam Pratap Singh (@moodydev). https://forem.com/moodydev https://media2.dev.to/dynamic/image/width=90,height=90,fit=cover,gravity=auto,format=auto/https:%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Fuser%2Fprofile_image%2F3213270%2F3efd5f80-4e7b-4370-bc77-05535c89ee9a.jpg Forem: Shivam Pratap Singh https://forem.com/moodydev en go webdev series Shivam Pratap Singh Fri, 30 May 2025 11:16:25 +0000 https://forem.com/moodydev/go-webdev-series-l3a https://forem.com/moodydev/go-webdev-series-l3a <div class="ltag__link--embedded"> <div class="crayons-story "> <a href="https://dev.to/moodydev/gin-blog-app-part-1-1443" class="crayons-story__hidden-navigation-link">Gin Blog App Part 1</a> <div class="crayons-story__body crayons-story__body-full_post"> <div class="crayons-story__top"> <div class="crayons-story__meta"> <div class="crayons-story__author-pic"> <a href="/moodydev" class="crayons-avatar crayons-avatar--l "> <img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Fuser%2Fprofile_image%2F3213270%2F3efd5f80-4e7b-4370-bc77-05535c89ee9a.jpg" alt="moodydev profile" class="crayons-avatar__image"> </a> </div> <div> <div> <a href="/moodydev" class="crayons-story__secondary fw-medium m:hidden"> Shivam Pratap Singh </a> <div class="profile-preview-card relative mb-4 s:mb-0 fw-medium hidden m:inline-block"> Shivam Pratap Singh <div id="story-author-preview-content-2533095" class="profile-preview-card__content crayons-dropdown branded-7 p-4 pt-0"> <div class="gap-4 grid"> <div class="-mt-4"> <a href="/moodydev" class="flex"> <span class="crayons-avatar crayons-avatar--xl mr-2 shrink-0"> <img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Fuser%2Fprofile_image%2F3213270%2F3efd5f80-4e7b-4370-bc77-05535c89ee9a.jpg" class="crayons-avatar__image" alt=""> </span> <span class="crayons-link crayons-subtitle-2 mt-5">Shivam Pratap Singh</span> </a> </div> <div class="print-hidden"> Follow </div> <div class="author-preview-metadata-container"></div> </div> </div> </div> </div> <a href="https://dev.to/moodydev/gin-blog-app-part-1-1443" class="crayons-story__tertiary fs-xs"><time>May 27 '25</time><span class="time-ago-indicator-initial-placeholder"></span></a> </div> </div> </div> <div class="crayons-story__indention"> <h2 class="crayons-story__title crayons-story__title-full_post"> <a href="https://dev.to/moodydev/gin-blog-app-part-1-1443" id="article-link-2533095"> Gin Blog App Part 1 </a> </h2> <div class="crayons-story__tags"> <a class="crayons-tag crayons-tag--monochrome " href="/t/webdev"><span class="crayons-tag__prefix">#</span>webdev</a> <a class="crayons-tag crayons-tag--monochrome " href="/t/go"><span class="crayons-tag__prefix">#</span>go</a> <a class="crayons-tag crayons-tag--monochrome " href="/t/backend"><span class="crayons-tag__prefix">#</span>backend</a> <a class="crayons-tag crayons-tag--monochrome " href="/t/programming"><span class="crayons-tag__prefix">#</span>programming</a> </div> <div class="crayons-story__bottom"> <div class="crayons-story__details"> <a href="https://dev.to/moodydev/gin-blog-app-part-1-1443" class="crayons-btn crayons-btn--s crayons-btn--ghost crayons-btn--icon-left"> <div class="multiple_reactions_aggregate"> <span class="multiple_reactions_icons_container"> <span class="crayons_icon_container"> <img src="https://assets.dev.to/assets/sparkle-heart-5f9bee3767e18deb1bb725290cb151c25234768a0e9a2bd39370c382d02920cf.svg" width="18" height="18"> </span> </span> <span class="aggregate_reactions_counter">2<span class="hidden s:inline"> reactions</span></span> </div> </a> <a href="https://dev.to/moodydev/gin-blog-app-part-1-1443#comments" class="crayons-btn crayons-btn--s crayons-btn--ghost crayons-btn--icon-left flex items-center"> Comments <span class="hidden s:inline">Add Comment</span> </a> </div> <div class="crayons-story__save"> <small class="crayons-story__tertiary fs-xs mr-2"> 5 min read </small> <span class="bm-initial"> </span> <span class="bm-success"> </span> </div> </div> </div> </div> </div> </div> webdev go backend programming go web dev series Shivam Pratap Singh Fri, 30 May 2025 11:15:46 +0000 https://forem.com/moodydev/go-web-dev-series-5bdi https://forem.com/moodydev/go-web-dev-series-5bdi <div class="ltag__link--embedded"> <div class="crayons-story "> <a href="https://dev.to/moodydev/gin-blog-app-part-2-4ca9" class="crayons-story__hidden-navigation-link">Gin Blog App Part 2</a> <div class="crayons-story__body crayons-story__body-full_post"> <div class="crayons-story__top"> <div class="crayons-story__meta"> <div class="crayons-story__author-pic"> <a href="/moodydev" class="crayons-avatar crayons-avatar--l "> <img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Fuser%2Fprofile_image%2F3213270%2F3efd5f80-4e7b-4370-bc77-05535c89ee9a.jpg" alt="moodydev profile" class="crayons-avatar__image"> </a> </div> <div> <div> <a href="/moodydev" class="crayons-story__secondary fw-medium m:hidden"> Shivam Pratap Singh </a> <div class="profile-preview-card relative mb-4 s:mb-0 fw-medium hidden m:inline-block"> Shivam Pratap Singh <div id="story-author-preview-content-2544730" class="profile-preview-card__content crayons-dropdown branded-7 p-4 pt-0"> <div class="gap-4 grid"> <div class="-mt-4"> <a href="/moodydev" class="flex"> <span class="crayons-avatar crayons-avatar--xl mr-2 shrink-0"> <img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Fuser%2Fprofile_image%2F3213270%2F3efd5f80-4e7b-4370-bc77-05535c89ee9a.jpg" class="crayons-avatar__image" alt=""> </span> <span class="crayons-link crayons-subtitle-2 mt-5">Shivam Pratap Singh</span> </a> </div> <div class="print-hidden"> Follow </div> <div class="author-preview-metadata-container"></div> </div> </div> </div> </div> <a href="https://dev.to/moodydev/gin-blog-app-part-2-4ca9" class="crayons-story__tertiary fs-xs"><time>May 30 '25</time><span class="time-ago-indicator-initial-placeholder"></span></a> </div> </div> </div> <div class="crayons-story__indention"> <h2 class="crayons-story__title crayons-story__title-full_post"> <a href="https://dev.to/moodydev/gin-blog-app-part-2-4ca9" id="article-link-2544730"> Gin Blog App Part 2 </a> </h2> <div class="crayons-story__tags"> <a class="crayons-tag crayons-tag--monochrome " href="/t/webdev"><span class="crayons-tag__prefix">#</span>webdev</a> <a class="crayons-tag crayons-tag--monochrome " href="/t/programming"><span class="crayons-tag__prefix">#</span>programming</a> <a class="crayons-tag crayons-tag--monochrome " href="/t/go"><span class="crayons-tag__prefix">#</span>go</a> <a class="crayons-tag crayons-tag--monochrome " href="/t/beginners"><span class="crayons-tag__prefix">#</span>beginners</a> </div> <div class="crayons-story__bottom"> <div class="crayons-story__details"> <a href="https://dev.to/moodydev/gin-blog-app-part-2-4ca9#comments" class="crayons-btn crayons-btn--s crayons-btn--ghost crayons-btn--icon-left flex items-center"> Comments <span class="hidden s:inline">Add Comment</span> </a> </div> <div class="crayons-story__save"> <small class="crayons-story__tertiary fs-xs mr-2"> 3 min read </small> <span class="bm-initial"> </span> <span class="bm-success"> </span> </div> </div> </div> </div> </div> </div> webdev programming go beginners Gin Blog App Part 2 Shivam Pratap Singh Fri, 30 May 2025 11:11:26 +0000 https://forem.com/moodydev/gin-blog-app-part-2-4ca9 https://forem.com/moodydev/gin-blog-app-part-2-4ca9 <h1> Introduction </h1> <p>In Part 1, we built user authentication and JWT middleware. Now in Part 2, we’ll implement CRUD operations for blog posts, each protected by JWT authentication. Only the post owner can update/delete their post.</p> <h2> Database Model for Blog Posts </h2> <p>models/post.go<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>package models type Post struct { ID uint `json:"id" gorm:"primaryKey"` Title string `json:"title"` Content string `json:"content"` UserID uint `json:"user_id"` CreatedAt time.Time } </code></pre> </div> <p>Make sure this model is auto-migrated:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>db.AutoMigrate(&amp;models.Post{}) </code></pre> </div> <h2> Create Blog Post </h2> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>func CreatePost(c *gin.Context) { var post models.Post if err := c.ShouldBindJSON(&amp;post); err != nil { c.JSON(http.StatusBadRequest, gin.H{"error": err.Error()}) return } // Check if user exists var user models.User if err := config.DB.First(&amp;user, post.UserID).Error; err != nil { c.JSON(http.StatusNotFound, gin.H{"error": "User not found"}) return } if err := config.DB.Create(&amp;post).Error; err != nil { c.JSON(http.StatusInternalServerError, gin.H{"error": "Failed to create post"}) return } c.JSON(http.StatusCreated, post) } </code></pre> </div> <h2> Get All Posts &amp; Single Post </h2> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code> type PostResponse struct { ID uint `json:"id"` Title string `json:"title"` Content string `json:"content"` User SimpleUser `json:"user"` } // SimpleUser represents a simplified user structure for responses type SimpleUser struct { ID uint `json:"id"` Username string `json:"username"` } func GetPosts(c *gin.Context) { var posts []models.Post if err := config.DB.Preload("User").Find(&amp;posts).Error; err != nil { c.JSON(http.StatusInternalServerError, gin.H{"error": "Failed to fetch posts"}) return } // PostResponse represents the response structure for a post with user info var responsePosts []PostResponse for _, post := range posts { responsePosts = append(responsePosts, PostResponse{ ID: uint(post.ID), Title: post.Title, Content: post.Content, User: SimpleUser{ ID: post.User.ID, Username: post.User.Username, }, }) } c.JSON(http.StatusOK, responsePosts) } func GetPost(c *gin.Context) { idParam := c.Param("id") if idParam == "" { c.JSON(http.StatusBadRequest, gin.H{"error": "ID parameter is required"}) return } id, err := strconv.Atoi(idParam) if err != nil { c.JSON(http.StatusBadRequest, gin.H{"error": "Invalid ID"}) return } var post models.Post if err := config.DB.Preload("User").First(&amp;post, id).Error; err != nil { c.JSON(http.StatusNotFound, gin.H{"error": "Post not found"}) return } response := PostResponse{ ID: uint(post.ID), Title: post.Title, Content: post.Content, User: SimpleUser{ ID: post.User.ID, Username: post.User.Username, }, } c.JSON(http.StatusOK, response) } </code></pre> </div> <h2> Update Blog Post </h2> <p>Only the owner can update the post:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>func UpdatePost(c *gin.Context) { id, err := strconv.Atoi(c.Param("id")) if err != nil || id &lt;= 0 { c.JSON(http.StatusBadRequest, gin.H{"error": "Invalid post ID"}) return } var updatedPost models.Post if err := c.ShouldBindJSON(&amp;updatedPost); err != nil { c.JSON(http.StatusBadRequest, gin.H{"error": err.Error()}) return } var post models.Post if err := config.DB.First(&amp;post, id).Error; err != nil { c.JSON(http.StatusNotFound, gin.H{"error": "Post not found"}) return } if post.UserID != updatedPost.UserID { c.JSON(http.StatusUnauthorized, gin.H{"error": "You are not the author of this post"}) return } // Update the fields post.Title = updatedPost.Title post.Content = updatedPost.Content if err := config.DB.Save(&amp;post).Error; err != nil { c.JSON(http.StatusInternalServerError, gin.H{"error": "Failed to update post"}) return } c.JSON(http.StatusOK, post) } </code></pre> </div> <h2> Delete Blog Post </h2> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>func DeletePost(c *gin.Context) { id, err := strconv.Atoi(c.Param("id")) if err != nil || id &lt;= 0 { c.JSON(http.StatusBadRequest, gin.H{"error": "Invalid post ID"}) return } var payload struct { UserID uint `json:"user_id"` } if err := c.ShouldBindJSON(&amp;payload); err != nil { c.JSON(http.StatusBadRequest, gin.H{"error": err.Error()}) return } var post models.Post if err := config.DB.First(&amp;post, id).Error; err != nil { c.JSON(http.StatusNotFound, gin.H{"error": "Post not found"}) return } if post.UserID != payload.UserID { c.JSON(http.StatusUnauthorized, gin.H{"error": "You are not the author of this post"}) return } if err := config.DB.Delete(&amp;post).Error; err != nil { c.JSON(http.StatusInternalServerError, gin.H{"error": "Failed to delete post"}) return } c.JSON(http.StatusOK, gin.H{"message": "Post deleted"}) } </code></pre> </div> <h2> Protecting Routes with JWT </h2> <p>Update your routes/routes.go:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>auth := router.Group("/api") auth.Use(middleware.JWTAuthMiddleware()) auth.POST("/posts", handlers.CreatePost) auth.PUT("/posts/:id", handlers.UpdatePost) auth.DELETE("/posts/:id", handlers.DeletePost) // Public routes router.GET("/posts", handlers.GetPosts) router.GET("/posts/:id", handlers.GetPost) </code></pre> </div> <h2> Testing the Endpoints </h2> <p>Use Postman or ThunderClient:</p> <p>POST /api/posts → Add Bearer Token or Cookie<br> GET /posts → Public<br> PUT/DELETE /api/posts/:id → Must be owner</p> <h2> Next Part Preview </h2> <p>In Part 3</p> <p>Search &amp; filter by title/user<br> Pagination<br> User-specific blog dashboard<br> Deployment tips</p> <p>Follow the journey on <a href="https://dev.to/moodydev">Dev.to</a>, <a href="https://medium.com/@shivam.forapp" rel="noopener noreferrer">Medium</a>, and <a href="https://x.com/moodydev" rel="noopener noreferrer">X</a>. and <a href="https://x.com/AiMlDsDlEngg" rel="noopener noreferrer">X</a> -&gt; dont spam here i'm doin fun.</p> webdev programming go beginners Gin Blog App Part 1 Shivam Pratap Singh Tue, 27 May 2025 17:15:30 +0000 https://forem.com/moodydev/gin-blog-app-part-1-1443 https://forem.com/moodydev/gin-blog-app-part-1-1443 <p>Hey, I'm Shivam, I develop WebApps using NodeJs, Golang and sometimes Django too. Here I'm writing about how to use Gin and res-api-framework in Golang. Gin in popular golang frame work because of it's built-in fuctionality. </p> <ul> <li>What This Part Will Cover:</li> <li>Introduction to the series and what the final app will do</li> <li>Project setup (Go modules, folder structure)</li> <li>Installing Gin and other necessary packages</li> <li>Setting up SQLite with GORM</li> <li>Creating models (User, maybe Post as a preview)</li> <li>Implementing user signup and login with password hashing</li> <li>Basic testing using Postman or curl</li> </ul> <h2> Introduction </h2> <p>In this series I will explain everyting from setup to implementation, for coding part I will post in 3 parts and for explaination of code it will be a single and last part. this is a simple blog app where user can post, update and delete their post.</p> <h2> Project setup </h2> <p>create a folder stucture like this:</p> <p>gin-blog-api/<br> │<br> ├── go.mod<br> ├── go.sum<br> ├── main.go<br> │<br> ├── .env<br> │<br> ├── config/<br> │ └── db.go<br> │<br> ├── middleware/<br> │ └── middleware.go<br> │<br> ├── models/<br> │ └── user.go <br> │<br> ├── handlers/<br> │ └── auth.go<br> │<br> ├── routes/<br> │ └── routes.go<br> │<br> ├── utils/<br> │ └── jwt.go </p> <p>initialize go module<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>go mod init gin-blog-api </code></pre> </div> <h2> Installing Gin and other necessary packages </h2> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>go get github.com/gin-gonic/gin go get gorm.io/gorm go get gorm.io/driver/sqlite go get golang.org/x/crypto/bcrypt </code></pre> </div> <h2> Setting up SQLite with GORM </h2> <p>add followig in config/database.go<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>package config import ( "gin-blog-api/models" "log" "gorm.io/driver/sqlite" "gorm.io/gorm" ) var DB *gorm.DB func ConnectDatabase() { database, err := gorm.Open(sqlite.Open("blog.db"), &amp;gorm.Config{}) if err != nil { log.Fatal("Failed to connect to database!", err) } err = database.AutoMigrate(&amp;models.Post{}) if err != nil { log.Fatal("Migration failed!", err) } database.AutoMigrate(&amp;models.Post{}, &amp;models.User{}) DB = database } </code></pre> </div> <h2> Creating models </h2> <p>add following in models/users.go:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>type User struct { ID uint `gorm:"primaryKey"` Username string `gorm:"unique"` Email string `gorm:"unique"` Password string `gorm:"not null"` } </code></pre> </div> <h2> Implementing user signup and login with password hashing </h2> <p>add this in handlers/auth.go<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>package handlers import ( "fmt" "gin-blog-api/config" "gin-blog-api/models" "net/http" "gin-blog-api/utils" "github.com/gin-gonic/gin" "golang.org/x/crypto/bcrypt" ) func Signup(c *gin.Context) { var user models.User if err := c.ShouldBindJSON(&amp;user); err != nil { c.JSON(http.StatusBadRequest, gin.H{"error": err.Error()}) return } fmt.Println("RAW password received:", user.Password) if user.Password == "" { c.JSON(http.StatusBadRequest, gin.H{"error": "Password is required"}) return } hashedPassword, err := bcrypt.GenerateFromPassword([]byte(user.Password), bcrypt.DefaultCost) if err != nil { c.JSON(http.StatusInternalServerError, gin.H{"error": "Could not hash password"}) return } user.Password = string(hashedPassword) if err := config.DB.Create(&amp;user).Error; err != nil { c.JSON(http.StatusInternalServerError, gin.H{"error": "Could not create user"}) return } c.JSON(http.StatusCreated, gin.H{"message": "User created successfully"}) } func Login(c *gin.Context) { var loginData struct { Email string `json:"email"` Password string `json:"password"` } var user models.User if err := c.ShouldBindJSON(&amp;loginData); err != nil { c.JSON(http.StatusBadRequest, gin.H{"error": err.Error()}) return } if err := config.DB.Where("email = ?", loginData.Email).First(&amp;user).Error; err != nil { c.JSON(http.StatusUnauthorized, gin.H{"error": "Invalid email or password"}) return } if err := bcrypt.CompareHashAndPassword([]byte(user.Password), []byte(loginData.Password)); err != nil { c.JSON(http.StatusUnauthorized, gin.H{"error": "Invalid email or password"}) return } token, err := utils.GenerateJWT(user.ID) if err != nil { c.JSON(http.StatusInternalServerError, gin.H{"error": "Failed to generate token"}) return } c.SetCookie("token", token, 24*3600, "/", "localhost", false, true) c.JSON(http.StatusOK, gin.H{ "token": token, "user": gin.H{ "id": user.ID, "username": user.Username, "email": user.Email, }, }) } func Logout(c *gin.Context) { // For stateless JWT authentication, logout is handled on the client side. // Here we can just return a success message. c.SetCookie("token", "", -1, "/", "localhost", false, true) // Clear the cookie c.JSON(http.StatusOK, gin.H{"message": "Logged out successfully"}) } </code></pre> </div> <h3> creating JWT token </h3> <p>utils/jwt.go<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>package utils import ( "fmt" "log" "os" "time" "github.com/golang-jwt/jwt/v5" ) func GenerateJWT(userID uint) (string, error) { claims := jwt.MapClaims{ "user_id": userID, "exp": time.Now().Add(24 * time.Hour).Unix(), // 1 day expiry } log.Println("JWT_SECRET during sign:", os.Getenv("JWT_SECRET")) token := jwt.NewWithClaims(jwt.SigningMethodHS256, claims) return token.SignedString([]byte(os.Getenv("JWT_SECRET"))) } func ParseJWT(tokenStr string) (uint, error) { token, err := jwt.Parse(tokenStr, func(token *jwt.Token) (interface{}, error) { return []byte(os.Getenv("JWT_SECRET")), nil }) if err != nil { log.Println("JWT parse error:", err) return 0, fmt.Errorf("invalid or expired token") } if !token.Valid { log.Println("JWT invalid token") return 0, fmt.Errorf("invalid or expired token") } claims, ok := token.Claims.(jwt.MapClaims) if !ok { log.Println("JWT claims cast failed") return 0, fmt.Errorf("invalid token claims") } uidFloat, ok := claims["user_id"].(float64) if !ok { log.Println("user_id missing in claims") return 0, fmt.Errorf("user_id not found in token") } log.Println("Parsed user_id:", uidFloat) // save the user_id in context for later use if uidFloat &lt;= 0 { log.Println("Invalid user_id in claims:", uidFloat) return 0, fmt.Errorf("invalid user_id in token") } return uint(uidFloat), nil } </code></pre> </div> <h2> Main server file </h2> <p>/main.go<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>package main import ( "gin-blog-api/config" "gin-blog-api/routes" "github.com/gin-gonic/gin" "github.com/joho/godotenv" "log" ) func init() { err := godotenv.Load() if err != nil { log.Fatal("Error loading .env file") } } func main() { r := gin.Default() // Connect to the database config.ConnectDatabase() // Register routes routes.RegisterRoutes(r) // Start the server // Listen and serve on // http://localhost:8080 r.Run(":8080") } </code></pre> </div> <h2> Routing </h2> <p>routes/routes.go<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>package routes import ( "gin-blog-api/handlers" "gin-blog-api/middleware" "github.com/gin-gonic/gin" ) func RegisterRoutes(router *gin.Engine) { router.POST("/signup", handlers.Signup) router.POST("/login", handlers.Login) router.GET("/posts", handlers.GetPosts) router.GET("/posts/:id", handlers.GetPostByID) auth := router.Group("/") auth.Use(middleware.JWTAuthMiddleware()) { auth.POST("/posts", handlers.CreatePost) auth.PUT("/posts/:id", handlers.UpdatePost) auth.DELETE("/posts/:id", handlers.DeletePost) router.POST("/logout", handlers.Logout) } } </code></pre> </div> <h2> middleware to protect routes </h2> <p>middleware/auth.go<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>package middlewares import ( "gin-blog-api/utils" "net/http" "strings" "github.com/gin-gonic/gin" ) func JWTAuthMiddleware() gin.HandlerFunc { return func(c *gin.Context) { authHeader := c.GetHeader("Authorization") if authHeader == "" || !strings.HasPrefix(authHeader, "Bearer ") { c.AbortWithStatusJSON(http.StatusUnauthorized, gin.H{"error": "Authorization header missing or invalid"}) return } tokenString := strings.TrimPrefix(authHeader, "Bearer ") userID, err := utils.ParseJWT(tokenString) if err != nil { c.AbortWithStatusJSON(http.StatusUnauthorized, gin.H{"error": "Invalid or expired token"}) return } // Attach user ID to context c.Set("userID", userID) c.Next() } } </code></pre> </div> <h2> add .env </h2> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>JWT_SECRET=9ad4404902df5dde56b33bb7857e085b24b1903187d4a1b3d7c1b1526d4da4dba7de59dacb68424f52325c1e606b700653eab5c722da394d60b3d81c9de503a8 </code></pre> </div> <h2> Basic testing using Postman or curl </h2> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>http://localhost:8080/signup/ { "username":"codey-singh", "email":"ssp@yopmail.com", "password":"qwert1234" } response: { "message": "User created successfully" } http://localhost:8080/login/ { "email":"ssp@yopmail.com", "password":"qwert1234" } response: { "token": "eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9. eyJleHAiOjE3NDg0NDk0ODEsInVzZXJfaWQiOjM3MjAwMX0. hgI8nM5RrnnAkpbOfgM4cd0hdIXI9tCVfQAnAn5ahcc", "user": { "email": "ssp@yopmail.com", "id": 372001, "username": "codey-singh" } } http://localhost:8080/protected/ add: bearer + token in auth postman response: { "message": "Protected content", "user": 372001 } </code></pre> </div> <h2> Run command </h2> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>go run main.go<br> </code></pre> </div> <h1> <br> <br> <br> what is in next part:<br> </h1> <p>In next part i will setup a post model and functionality<br> In third part i will setup a user dashboard<br> and in final part i will proivde full code explaination <br> full github code will be public in third part.</p> webdev go backend programming