public async Task Invoke(HttpContext context)
{
await _next(context);
var contentType = context.Request.Headers["Content-Type"].FirstOrDefault()?.ToLower() ?? "";
if (contentType.Equals("application/json"))
{
if (context.Response.StatusCode == 404)
{
context.Response.StatusCode = 200;
await context.Response.WriteAsync(JsonHelper.Serialize(ApiResult.NotFound()), System.Text.Encoding.UTF8);
}
else if (context.Response.StatusCode == 401)
{
context.Response.StatusCode = 200;
await context.Response.WriteAsync(JsonHelper.Serialize(ApiResult.Anonymous()), System.Text.Encoding.UTF8);
}
}
else
{
if (context.Response.StatusCode == 404)
{
await context.Response.WriteAsync("404 Not Found", System.Text.Encoding.UTF8);
}
}
}
/// <summary>
/// Action执行前
/// </summary>
/// <param name="context"></param>
public void OnActionExecuting(ActionExecutingContext context)
{
#region 是否是API控制器
var isApiController = context.ActionDescriptor is Microsoft.AspNetCore.Mvc.Controllers.ControllerActionDescriptor;
if (!isApiController)
{
return;
}
var controllerActionDescriptor = context.ActionDescriptor as Microsoft.AspNetCore.Mvc.Controllers.ControllerActionDescriptor;
#endregion 是否是API控制器
#region 是否可以匿名访问
//var anonymous = false;
var permissionAttributes = controllerActionDescriptor.MethodInfo.GetCustomAttributes(inherit: true).Where(p => p.GetType().Equals(typeof(PermissionAttribute))).FirstOrDefault() as PermissionAttribute;
if (permissionAttributes != null)
{
//anonymous = permissionAttributes.Anonymous;
if (permissionAttributes.Anonymous)
{
return;
}
//开发环境下跳过权限验证
if (permissionAttributes.UnCheckWhenDevelopment && _hostEnvironment.IsDevelopment())
{
return;
}
}
//if (anonymous) return;
#endregion 是否可以匿名访问
#region 将用户信息附加到上下文中
var controller = context.Controller as BaseOpenApiController;
var tokenValue = context.HttpContext.Request.Headers[_config[GlobalVar.ConfigKeyPath_AuthenticationTokenKey]].FirstOrDefault()?.ToString() ?? "";
if (tokenValue.IsNull())
{
context.Result = new ObjectResult(ApiResult.Anonymous());
return;
}
string loginName = tokenValue;
if (_config.GetValue <bool>("Jwt:IsEnabled"))
{
var jwtObj = _jwtService.ParseToken <JwtTokenObject>(tokenValue);
if (jwtObj == null)
{
//Token无效,也有可能是过期了
context.Result = new ObjectResult(ApiResult.Anonymous());
return;
}
else
{
var payload = JsonHelper.Deserialize <Model.ResponseModel.LoginUserInfo>(jwtObj.json_data);
if (payload == null)
{
//Payload无效
context.Result = new ObjectResult(ApiResult.Anonymous());
return;
}
else
{
loginName = payload.LoginName;
}
}
}
var userEntity = _sysUserServices.GetModel(p => p.LoginName == loginName);
if (userEntity == null)
{
context.Result = new ObjectResult(ApiResult.Anonymous());
return;
}
if (!userEntity.Status)
{
context.Result = new ObjectResult(ApiResult.Anonymous());
return;
}
controller.CurrentUserInfo = new CurrentUserTickInfo()
{
UserId = userEntity.Id, UserName = userEntity.UserName, LoginName = userEntity.LoginName, ExpireTime = DateTime.Now.AddDays(3)
};
if (controller.CurrentUserInfo == null)
{
context.Result = new ObjectResult(ApiResult.Anonymous());
return;
}
#endregion 将用户信息附加到上下文中
#region 验证权限
//功能控制器名称
var refController = context.Controller.GetType().FullName;
//先不验证权限了,针对审核问题
//OpenAPI接口权限验证,子账号才验证权限
//if (permissionAttributes != null && controller.CurrentCookieUserInfo.UserType == 1)
//{
// if (permissionAttributes.AutoCheck && !string.IsNullOrWhiteSpace(permissionAttributes.OperationName))
// {
// //操作
// var operations = permissionAttributes.OperationName.Split(new string[] { ",", ";" }, StringSplitOptions.RemoveEmptyEntries).ToList();
// //权限
// var entityPrivHandler = _dbEC.Select<PrivHandler>().Where(p => p.RefController == refController).ToOne();
// if (entityPrivHandler == null)
// {
// context.Result = new ObjectResult(ApiResult.Error("权限Handler没有注册"));
// return;
// }
// string operationSql = $"select distinct PermitName from PrivUserPermit as A left join PrivPermit as B on A.PermitId = B.PermitId where A.UserId = {controller.CurrentCookieUserInfo.UserId} and B.HandlerId = {entityPrivHandler.HandlerId}";
// var userHaveOperationList = _dbEC.Ado.Query<string>(operationSql);
// if (userHaveOperationList.Count == 0)
// {
// context.Result = new ObjectResult(ApiResult.Forbidden());
// return;
// }
// var intersectLs = operations.Intersect(userHaveOperationList);
// if (intersectLs.Count() == 0)
// {
// context.Result = new ObjectResult(ApiResult.Forbidden());
// return;
// }
// }
//}
#endregion 验证权限
#region 自动填充请求实体中的用户信息
object postModelValue = context.ActionArguments.FirstOrDefault().Value;
if ((postModelValue as IEnumerable <object>) != null)
{
postModelValue = (postModelValue as IEnumerable <object>).ToList()[0];
}
//数据库实体对象
if (postModelValue is Model.BaseEntityStandard && context.HttpContext.Request.Method == "POST")
{
Model.BaseEntityStandard crudModel = (Model.BaseEntityStandard)postModelValue;
if (crudModel.Id < 1)
{
crudModel.CreatedUserId = controller.CurrentUserInfo.UserId;
crudModel.CreatedUserName = controller.CurrentUserInfo.UserName;
crudModel.UpdatedUserId = controller.CurrentUserInfo.UserId;
crudModel.UpdatedUserName = controller.CurrentUserInfo.UserName;
}
else
{
crudModel.UpdatedUserId = controller.CurrentUserInfo.UserId;
crudModel.UpdatedUserName = controller.CurrentUserInfo.UserName;
}
}
//ViewMode对象
if (postModelValue is Model.BaseRequestPostViewModel && context.HttpContext.Request.Method == "POST")
{
Model.BaseRequestPostViewModel reqModel = (Model.BaseRequestPostViewModel)postModelValue;
reqModel.CurrentUserId = controller.CurrentUserInfo.UserId;
reqModel.CurrentUserName = controller.CurrentUserInfo.UserName;
}
#endregion 自动填充请求实体中的用户信息
}