/// <summary>
///
/// </summary>
/// <param name="httpContext"></param>
/// <returns></returns>
public Task Invoke(HttpContext httpContext)
{
var headers = httpContext.Request.Headers;
//检测是否包含'Authorization'请求头,如果不包含返回context进行下一个中间件,用于访问不需要认证的API
if (!headers.ContainsKey("Authorization"))
{
return(_next(httpContext));
}
var tokenStr = headers["Authorization"];
try
{
string jwtStr = tokenStr.ToString().Trim();
//如何存在Authorization,但是和缓存的不一样,那就是被篡改了
if (!RayPIMemoryCache.Exists(jwtStr))
{
return(httpContext.Response.WriteAsync("非法请求"));
}
TokenModel tm = ((TokenModel)RayPIMemoryCache.Get(jwtStr));
//提取tokenModel中的Sub属性进行authorize认证
List <Claim> lc = new List <Claim>();
Claim c = new Claim(tm.Sub + "Type", tm.Sub);
lc.Add(c);
ClaimsIdentity identity = new ClaimsIdentity(lc);
ClaimsPrincipal principal = new ClaimsPrincipal(identity);
httpContext.User = principal;
return(_next(httpContext));
}
catch (Exception)
{
return(httpContext.Response.WriteAsync("token验证异常"));
}
}
