shentun
/
peis
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
465 Commits
2 Branches
0 Tags
29 MiB
Tree: ce27aa9673
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'ce27aa9673'
${ noResults }
peis/src/Shentun.WebApi.Service/JwtMiddleware.cs

120 lines
4.1 KiB
Raw Normal View History

添加项目文件。
3 years ago
  1. using Microsoft.AspNetCore.Http;
  2. using Microsoft.Extensions.Caching.Memory;
  3. using Microsoft.Extensions.DependencyInjection;
  4. using Microsoft.Extensions.Logging;
  5. using Microsoft.IdentityModel.Tokens;
  6. using Shentun.Utilities;
  7. using Shentun.Utilities.Encrypt;
  8. using Shentun.Utilities.Enums;
  9. using System;
  10. using System.Collections.Generic;
  11. using System.IdentityModel.Tokens.Jwt;
  12. using System.Linq;
  13. using System.Security.Claims;
  14. using System.Threading.Tasks;
  16. namespace Shentun.WebApi.Service
  17. {
  18. /// <summary>
  19. /// 授权中间件
  20. /// </summary>
  21. public class JwtMiddleware
  22. {
  23. private readonly RequestDelegate _next;
  25. /// <summary>
  26. ///
  27. /// </summary>
  28. /// <param name="next"></param>
  29. public JwtMiddleware(RequestDelegate next)
  30. {
  31. _next = next;
  32. }
  34. /// <summary>
  35. ///
  36. /// </summary>
  37. /// <param name="httpContext"></param>
  38. /// <returns></returns>
  39. public Task Invoke(HttpContext httpContext)
  40. {
  41. //检测是否包含'Authorization'请求头,如果不包含则直接放行
  42. if (!httpContext.Request.Headers.ContainsKey("Authorization"))
  43. {
  45. return _next(httpContext);
  46. }
  48. var tokenHeader = httpContext.Request.Headers["Authorization"];
  50. JwtHelper jwtHelper = new JwtHelper();
  51. //if (!httpContext.Request.Headers.ContainsKey("SessionKey"))
  52. //{
  53. // throw new Exception("必须提供会话密匙键");
  54. //}
  56. //var sessionKey = httpContext.Request.Headers["SessionKey"].ToString();
  57. //var cache = httpContext.RequestServices.GetRequiredService<IMemoryCache>();
  59. //string securityKey;
  60. //if (!cache.TryGetValue(sessionKey, out securityKey))
  61. //{
  62. // throw new Exception("会话密匙键无效");
  63. //}
  65. //jwtHelper.SecurityKey = securityKey;
  66. //从令牌中获取token
  67. try
  68. {
  69. //var jwtConfig = new JwtConfig();
  70. //string securityKey = jwtConfig.SecurityKey.Substring(0,16);
  71. //tokenHeader = AESHelper.Decode(tokenHeader, securityKey);
  72. JwtSecurityToken jwtSecurityToken = jwtHelper.GetValidatedToken(tokenHeader);
  74. //授权
  75. var claims = jwtSecurityToken.Claims;
  76. var identity = new ClaimsIdentity(claims);
  77. var principal = new ClaimsPrincipal(identity);
  78. httpContext.User = principal;
  79. //设置最后访问时间
  80. var userId = httpContext.User.FindFirst(ClaimTypes.Sid).Value;
  81. var clientAppTypeStr = httpContext.User.FindFirst("ClientAppType").Value;
  83. if (!string.IsNullOrWhiteSpace(userId) && !string.IsNullOrWhiteSpace(clientAppTypeStr))
  84. {
  85. var cache = ServiceLocator.Instance.GetService<IMemoryCache>();
  86. if (cache != null)
  87. {
  88. //设置最后登录时间,缓存比token有效时间多10分钟
  89. //LogHelper.Logger.LogDebug($"clientAppType:{clientAppType}");
  90. ClientAppType clientAppType;
  91. if (Enum.TryParse(clientAppTypeStr, out clientAppType))
  92. {
  93. cache.Set<DateTime>($"userLastAccessKey{userId}", DateTime.UtcNow,
  94. TimeSpan.FromMinutes(10 + (int)jwtHelper.GetExpiration(clientAppType)));
  95. }
  96. }
  99. }
  101. }
  102. catch (Exception ex)
  103. {
  104. if (ex.Message.Contains("IDX10223"))
  105. {
  106. var response = httpContext.Response;
  107. response.ContentType = "application/json";
  108. response.StatusCode = 401;
  109. }
  110. else
  111. {
  112. throw ex;
  113. }
  114. }
  116. return _next(httpContext);
  117. }
  119. }
  120. }