Ejemplo n.º 1
0
 /// <summary>
 /// 验证用户
 /// </summary>
 /// <param name="account"></param>
 /// <param name="password"></param>
 /// <returns></returns>
 public bool Validate(string account, string password)
 {
     if (string.IsNullOrWhiteSpace(account) ||
         string.IsNullOrWhiteSpace(password))
     {
         return(false);
     }
     password = StringFactory.HashBySolt(password);
     return(UserSecurityInfoRepo
            .Read()
            .Exists(us => us.Account.ToLower() == account.ToLower() &&
                    us.Password == password));
 }
Ejemplo n.º 2
0
        public void SetPassword(string account, string password)
        {
            if (string.IsNullOrWhiteSpace(account) ||
                string.IsNullOrWhiteSpace(password))
            {
                throw new Exception("设置密码时发生参数错误");
            }
            UserSecurityInfo securityInfo = UserSecurityInfoRepo
                                            .Read()
                                            .FirstOrDefault(us => us.Account.ToLower() == account.ToLower());

            if (securityInfo == null)
            {
                securityInfo    = new UserSecurityInfo();
                securityInfo.Id = StringFactory.NewGuid();
            }
            securityInfo.Account  = account;
            securityInfo.Password = StringFactory.HashBySolt(password);
            UserSecurityInfoRepo.Save(securityInfo);
        }
Ejemplo n.º 3
0
        /// <summary>
        /// 登陆
        /// </summary>
        /// <param name="parameter"></param>
        /// <returns></returns>
        public static UserState CreateState(AuthParameter parameter)
        {
            #region 检查参数
            if (parameter == null ||
                string.IsNullOrWhiteSpace(parameter.Type) ||
                string.IsNullOrWhiteSpace(parameter.Account))
            {
                return(null);
            }
            #endregion

            #region 验证身份
            if (parameter.Type == AuthType.PASSWORD &&
                !string.IsNullOrWhiteSpace(parameter.Password))
            {
                //通过密码验证
                bool validateResult = passport.Validate(parameter.Account, parameter.Password);
                if (!validateResult)
                {
                    return(null);
                }
            }
            else if (parameter.Type == AuthType.CLIENT &&
                     !string.IsNullOrWhiteSpace(parameter.AppKey) &&
                     !string.IsNullOrWhiteSpace(parameter.AppIp))
            {
                //通过信任的 App 验证
                App app = App.GetApp(parameter.AppKey);
                if (app == null ||
                    app.Secret != parameter.AppSecret)
                {//如果 app 不存在或 secret 错误,则返回 null ,验证失败
                    return(null);
                }
                else
                {
                    app.WhiteList = app.WhiteList ?? "";
                    var whiteList = app.WhiteList.Split(',')
                                    .Select(ip => (ip ?? "").Trim())
                                    .ToList();
                    whiteList.AddRange(new List <string> {
                        "localhost", "127.0.0.1", "::1"
                    });
                    var appIp = (parameter.AppIp ?? "").Trim();
                    if (!whiteList.Exists(ip => !string.IsNullOrWhiteSpace(ip) &&
                                          !string.IsNullOrWhiteSpace(appIp) &&
                                          ip == appIp))
                    {
                        return(null);
                    }
                }
            }
            else
            {
                return(null);
            }
            #endregion

            #region 检查用户状态
            var existUser = User.GetUser(parameter.Account);
            if (existUser == null || !existUser.IsActive)
            {
                return(null);
            }
            #endregion

            parameter.Device   = parameter.Device ?? "";
            parameter.DeviceId = parameter.DeviceId ?? "";
            parameter.Ip       = parameter.Ip ?? "";

            //检查在同一 DeviceId 下是否已存在状态
            UserState existUserState = UserState.GetState(parameter.Account, parameter.DeviceId);
            if (existUserState != null)
            {
                //利用当前类中 GetState 方法中写好的更新最后活动时间
                return(GetState(existUserState.Token));
            }

            //创建新用户会话状态开始
            //生成Token
            string    srcToken     = StringFactory.HashBySolt(StringFactory.NewGuid());
            UserState newUserState = new UserState();
            newUserState.Account    = parameter.Account;
            newUserState.LastActive = DateTime.Now;
            //--存储MD5后的Token,有数据库权限的人也不应该有查看别人会话密钥的权力
            newUserState.Token    = srcToken; //Encrypt.EncodeBySolt(srcToken);
            newUserState.Device   = parameter.Device;
            newUserState.DeviceId = parameter.DeviceId ?? parameter.Ip;
            newUserState.Ip       = parameter.Ip;
            newUserState.Save();
            //创建用户会话状态结束
            //向上层提供原Token
            newUserState.Token = srcToken;
            //
            return(newUserState);
        }