public static string generate(MessageRequest messageRequest, int expireMinute, string privateKeyPath)
{
MessageHeader messageHeader = messageRequest.messageHeader;
Parameter[] parameter = messageRequest.parameter;
string text = Guid.NewGuid().ToString();
string text2 = DateTime.Now.ToString("yyyy-MM-dd HH:mm:ss");
string text3 = DateTime.Now.AddMinutes((double)expireMinute).ToString("yyyy-MM-dd HH:mm:ss");
string messageType = messageHeader.messageType;
string userId = messageHeader.userId;
string userPwd = messageHeader.userPwd;
Random random = new Random();
string text4 = random.Next().ToString();
string text5 = Convert.ToBase64String(Encoding.GetEncoding("utf-8").GetBytes(text4));
if (messageType.Trim().Equals(string.Empty) || userId.Trim().Equals(string.Empty) || userPwd.Trim().Equals(string.Empty))
{
Exception ex = new Exception("消息请求对象MessageRequest的消息头MessageHeader所有字段都不可以为空");
throw ex;
}
string text6 = "<MsgRequest><MsgHeader><MessageID>" + text + "</MessageID>";
text6 = text6 + "<SendTime>" + text2 + "</SendTime>";
text6 = text6 + "<MessageType>" + messageType + "</MessageType>";
text6 = text6 + "<UserId>" + userId + "</UserId>";
text6 = text6 + "<UserPwd>" + userPwd + "</UserPwd>";
text6 = text6 + "<ExpireTime>" + text3 + "</ExpireTime>";
text6 = text6 + "<Nonce>" + text5 + "</Nonce>";
text6 += "</MsgHeader>";
if (parameter != null && parameter.Length > 0)
{
text6 += "<Parameter>";
for (int i = 0; i < parameter.Length; i++)
{
text6 += parameter[i].toString();
}
text6 += "</Parameter>";
}
else
{
text6 += "<Parameter/>";
}
text6 += "</MsgRequest>";
RSAEncrypt rSAEncrypt = new RSAEncrypt();
try
{
string text7 = rSAEncrypt.SignMD5WithRSA(text6, privateKeyPath);
text6 = text6.Replace("<UserPwd>" + userPwd + "</UserPwd>", "<UserPwd>" + text7 + "</UserPwd>");
}
catch (Exception ex2)
{
throw ex2;
}
return(text6);
}
public void RasEncryptTest()
{
RSAEncrypt Rsa = new RSAEncrypt();
Rsa.GenerateKeys("d://pems");
string s = "王进锋";
string s1 = "jfwang123";
var spwd = Rsa.Encrypt(s, "d://pems/RSA.Pub");
var s1pwd = Rsa.Encrypt(s1, "d://pems/RSA.Pub");
Assert.Equal(Rsa.Decrypt(spwd, "d://pems/RSA.Private"), s);
Assert.Equal(Rsa.Decrypt(s1pwd, "d://pems/RSA.Private"), s1);
}
public override async Task OnActionExecutionAsync(ActionExecutingContext context, ActionExecutionDelegate next)
{
var httpContext = context.HttpContext;
switch (httpContext.Request.Method)
{
case "GET":
{ //该请求暂时不验证签名
await base.OnActionExecutionAsync(context, next);
return;
}
}
var dataResult = new ApiResultModel(ErrorCodeType.ServerError);
try
{
var requestData = GetDataParamStr(httpContext);
#region 签名示例
//私匙签名 公匙验签
//var privateKeyFile = PlatformConfig.ContentRootPath + GlobalConfig.platformConfig.appData.sshPathPrivate;
//var localSign = SignatureKit.RSASignCharSet(requestData.Data, privateKeyFile, null, "RSA2");
//requestData.Sign = localSign;
//var urlEncodeLocalSign = WebUtility.UrlEncode(localSign);//数据签名
#endregion
var _check = ValidateSign(requestData.time);
//开始利用公匙验证签名有效性
var publicKeyFile = StaticConfig.ContentRootPath + StaticConfig.AppSettings.VerifySignature.PublicKeyFile;
//_check = _check ? SignatureKit.RSACheckContent(requestData.Data, requestData.Sign, publicKeyFile, "UTF-8", "RSA2") : false;
var rsa = new RSAEncrypt(RSAType.RSA2, Encoding.UTF8, null, publicKeyFile);
_check = _check ? rsa.Verify(requestData.Data, requestData.Sign) : false;
if (_check)
{
await base.OnActionExecutionAsync(context, next);
return;
}
}
catch (Exception ex)
{
typeof(VerifySignatureAttribute).Logger().LogError(ex);
dataResult.Result = ex;
await Response(httpContext, dataResult);
return;
}
dataResult.Code = ErrorCodeType.VerifySignatureError;
await Response(httpContext, dataResult);
}
public IActionResult Index()
{
var auth = HttpContext.AuthenticateAsync(CookieAuthenticationDefaults.AuthenticationScheme);
if (auth.Status.ToString() != "Faulted")
{
RedirectToPage("Index");
}
ViewBag.RsaKey = RSAEncrypt.GetKey();
//获得公钥和私钥
MemoryCacheHelper.Set(KeyModel.LoginKey, ViewBag.RsaKey);
return(View());
}
public static string generate(MessageRequest messageRequest, int expireMinute, string privateKeyPath, string esbPublicKeyPath)
{
string text = GenerateReqMsg.generate(messageRequest, expireMinute, privateKeyPath);
RSAEncrypt rSAEncrypt = new RSAEncrypt();
try
{
text = rSAEncrypt.EncryptPublicKey(text, esbPublicKeyPath);
}
catch (Exception ex)
{
throw ex;
}
return(text);
}
public void Encrypt(string val)
{
//RSACryptoServiceProvider oRSA = new RSACryptoServiceProvider();
//string privatekey = oRSA.ToXmlString(true);//私钥
//string publickey = oRSA.ToXmlString(false);//公钥
////这两个密钥需要保存下来
//byte[] messagebytes = Encoding.UTF8.GetBytes(val); //需要加密的数据
////公钥加密
//RSACryptoServiceProvider oRSA1 = new RSACryptoServiceProvider();
//oRSA1.FromXmlString(publickey); //加密要用到公钥所以导入公钥
//byte[] AOutput = oRSA1.Encrypt(messagebytes, false); //AOutput 加密以后的数据
var str = RSAEncrypt.Encrypt(val);
Console.WriteLine(str);
str = RSAEncrypt.Decrypt(val);
Console.WriteLine(str);
}
public Task CreateValueProviderAsync(ValueProviderFactoryContext context)
{
if (context == null)
{
throw new ArgumentNullException(nameof(context));
}
var request = context.ActionContext.HttpContext.Request;
WebParams webParams = new WebParams(request);
string encryptKey = "__encryptdata";
string encryptData = request.Query.ContainsKey(encryptKey) ? request.Query[encryptKey].ToString() : string.Empty;
if (encryptData.IsNullOrEmpty() && request.HasFormContentType)
{
encryptData = request.Form[encryptKey];
}
bool isEncryptDatas = webParams.ContainsKey(encryptKey);
bool isDecryptSucceed = false;
Exception decryptException = null;
IDictionary <string, string> dicDecryptDatas = new Dictionary <string, string>();
if (encryptData.IsNotNullOrEmpty())
{
try
{
//生成密钥
//string rsaKey = RSAEncrypt.GenerateKey();
string rsaKey = IFConfigReader.RSAPrivateKey;
//通过密钥创建对象
RSAEncrypt privateRSA = new RSAEncrypt(rsaKey);
//解密
string decryptData = privateRSA.Decrypt(encryptData);
//导出公钥
//string publicKey = privateRSA.ExportParameters(false);
//通过公钥加密
//RSAEncrypt publicRSA = new RSAEncrypt(publicKey);
foreach (var item in decryptData.Split('&'))
{
string[] values = item.Split('=');
dicDecryptDatas.Add(values[0], values[1]);
}
isDecryptSucceed = true;
}
catch (Exception ex)
{
decryptException = ex;
isDecryptSucceed = false;
}
if (dicDecryptDatas.Count() > 0)
{
AddResultsToHttpContext(context, isEncryptDatas, isDecryptSucceed, decryptException, dicDecryptDatas);
return(AddValueProviderAsync(context, dicDecryptDatas));
}
}
AddResultsToHttpContext(context, isEncryptDatas, isDecryptSucceed, decryptException, dicDecryptDatas);
return(TaskCache.CompletedTask);
}
public async Task <ApiResult <string> > Login([FromBody] SysAdminLogin parm)
{
var apiRes = new ApiResult <string>()
{
statusCode = (int)ApiEnum.HttpRequestError
};
var token = "";
try
{
#region 1. 从缓存获取公钥私钥解密,再解密密码
//获得公钥私钥,解密
var rsaKey = MemoryCacheHelper.Get <List <string> >(KeyModel.LoginKey);
if (rsaKey == null)
{
apiRes.msg = "登录失败,请刷新浏览器再次登录";
return(apiRes);
}
//Ras解密密码
var ras = new RSAEncrypt(rsaKey[0], rsaKey[1]);
parm.password = ras.Decrypt(parm.password);
#endregion
#region 2. 判断用户登录次数限制以及过期时间
//获得用户登录限制次数
var configLoginCount = Convert.ToInt32(Appsettings.Configuration[KeyModel.LoginCount]);
//获得登录次数和过期时间
SysAdminLoginConfig loginConfig = MemoryCacheHelper.Get <SysAdminLoginConfig>(KeyModel.LoginCount) ?? new SysAdminLoginConfig();
if (loginConfig.Count != 0 && loginConfig.DelayMinute != null)
{
//说明存在过期时间,需要判断
if (DateTime.Now <= loginConfig.DelayMinute)
{
apiRes.msg = "您的登录以超过设定次数,请稍后再次登录~";
return(apiRes);
}
else
{
//已经过了登录的预设时间,重置登录配置参数
loginConfig.Count = 0;
loginConfig.DelayMinute = null;
}
}
#endregion
#region 3. 从数据库查询该用户
//查询登录结果
var dbres = _adminService.LoginAsync(parm).Result;
if (dbres.statusCode != 200)
{
//增加登录次数
loginConfig.Count += 1;
//登录的次数大于配置的次数,则提示过期时间
if (loginConfig.Count == configLoginCount)
{
var configDelayMinute = Convert.ToInt32(Appsettings.Configuration[KeyModel.LogindElayMinute]);
//记录过期时间
loginConfig.DelayMinute = DateTime.Now.AddMinutes(configDelayMinute);
apiRes.msg = "登录次数超过" + configLoginCount + "次,请" + configDelayMinute + "分钟后再次登录";
return(apiRes);
}
//记录登录次数,保存到session
MemoryCacheHelper.Set(KeyModel.LoginCount, loginConfig);
//提示用户错误和登录次数信息
apiRes.msg = dbres.msg + " 您还剩余" + (configLoginCount - loginConfig.Count) + "登录次数";
return(apiRes);
}
#endregion
#region 4. 设置Identity User信息
var user = dbres.data.admin;
var identity = new ClaimsPrincipal(
new ClaimsIdentity(new[]
{
new Claim(ClaimTypes.Sid, user.ID),
new Claim(ClaimTypes.Role, user.RoleId),
new Claim(ClaimTypes.Thumbprint, user.HeadPic),
new Claim(ClaimTypes.Name, user.RelName),
new Claim(ClaimTypes.WindowsAccountName, user.Account),
new Claim(ClaimTypes.UserData, user.LastLoginTime.ToString())
}, CookieAuthenticationDefaults.AuthenticationScheme)
);
if (Appsettings.Configuration[KeyModel.LoginSaveUser] == "Session")
{//如果保存用户类型是Session,则默认设置cookie退出浏览器 清空,并且保存用户信息
await HttpContext.SignInAsync(CookieAuthenticationDefaults.AuthenticationScheme, identity, new AuthenticationProperties
{
AllowRefresh = false
});
}
else
{
//根据配置保存浏览器用户信息,小时单位
var hours = int.Parse(Appsettings.Configuration[KeyModel.LoginCookieExpires]);
await HttpContext.SignInAsync(CookieAuthenticationDefaults.AuthenticationScheme, identity, new AuthenticationProperties
{
ExpiresUtc = DateTime.UtcNow.AddHours(hours),
IsPersistent = true,
AllowRefresh = false
});
}
#endregion
#region 5. 保存权限信息到缓存
if (dbres.data.menu != null)
{
var menuSaveType = Appsettings.Configuration[KeyModel.LoginAuthorize];
if (menuSaveType == "Redis")
{
RedisCacheHelper.Set(KeyModel.AdminMenu + "_" + dbres.data.admin.ID, dbres.data.menu);
}
else
{
MemoryCacheHelper.Set(KeyModel.AdminMenu + "_" + dbres.data.admin.ID, dbres.data.menu);
}
}
#endregion
#region 6. 生成token信息,并且返回给前端
token = JwtHelper.IssueToken(new TokenModel()
{
UserID = user.ID,
UserName = user.RelName,
UserAccount = user.Account,
Role = "AdminPolicy",
ProjectName = "DL.Admin"
});
MemoryCacheHelper.Del <string>(KeyModel.LoginKey);
MemoryCacheHelper.Del <string>(KeyModel.LoginCount);
#endregion
#region 7. 保存日志
var agent = HttpContext.Request.Headers["User-Agent"];
var log = new SysLog()
{
ID = Guid.NewGuid().ToString(),
CreateTime = DateTime.Now,
Layer = 1,
Message = "登录",
Url = "/Login/Login",
IP = _httpContextAccessor.HttpContext.Connection.RemoteIpAddress.ToString(),
Account = parm.loginname,
Browser = agent.ToString()
};
await _logService.AddAsync(log);
#endregion
}
catch (Exception ex)
{
apiRes.msg = ex.Message;
apiRes.statusCode = (int)ApiEnum.Error;
#region 保存日志
var agent = HttpContext.Request.Headers["User-Agent"];
var log = new SysLog()
{
ID = Guid.NewGuid().ToString(),
CreateTime = DateTime.Now,
Layer = 4,
Message = "登录失败!" + ex.Message,
Exception = ex.Message,
Url = "/Login/Login",
IP = _httpContextAccessor.HttpContext.Connection.RemoteIpAddress.ToString(),
Account = parm.loginname,
Browser = agent.ToString()
};
await _logService.AddAsync(log);
#endregion
}
apiRes.statusCode = (int)ApiEnum.Status;
apiRes.data = token;
return(apiRes);
}
public async Task <IActionResult> OnGetAsync(int id)
{
TripleDESCryptoServiceProvider TDES = new TripleDESCryptoServiceProvider();
RSACryptoServiceProvider RSA = new RSACryptoServiceProvider();
OnlineUsersHtml = "";
var ChatUsers = _dbContext.ChatUsers
.Include(s => s.User)
.Include(r => r.Chat);
foreach (ChatUser user in ChatUsers)
{
if (user.UserId == _userManager.GetUserId(User) && user.ChatRoomId == id)
{
ChatUser = user;
break;
}
}
CurrentRoom = _dbContext.ChatRooms.Find(id);
if (CurrentRoom == null)
{
RedirectToPage("./Index");
}
if (ChatUser == null)
{
TDES.GenerateKey();
ChatUser = new ChatUser()
{
User = await _userManager.GetUserAsync(User),
Chat = CurrentRoom,
IsAdmin = false,
DesKey = TDES.Key,
CommandInter = (int)ChatUser.Command.AddChatUser
};
_dbContext.ChatUsers.Add(ChatUser);
await _dbContext.SaveChangesAsync();
}
if (!Startup.clients.ContainsKey(ChatUser.ChatUserId))
{
Client = new TcpClient();
await Client.ConnectAsync(IPAddress.Parse("127.0.0.1"), 10140);
Startup.clients.Add(ChatUser.ChatUserId, Client);
Startup.userMsgBox.Add(ChatUser.ChatUserId, MsgHtml);
Stream = Startup.clients[ChatUser.ChatUserId].GetStream();
Writer = new StreamWriter(Stream)
{
AutoFlush = true
};
Reader = new StreamReader(Stream);
ChatUser.CommandInter = (int)ChatUser.Command.getRSAKey;
Input = JsonConvert.SerializeObject(ChatUser);
Writer.WriteLine(Input);
while (true)
{
if (Client.Available > 0)
{
string data = Reader.ReadLine();
ChatUser = JsonConvert.DeserializeObject <ChatUser>(data);
break;
}
}
ChatUser.CommandInter = (int)ChatUser.Command.AddChatUser;
ChatUser.DesKey = RSAEncrypt.Encrypt(ChatUser.DesKey, 2048, ChatUser.RsaKey);
Input = JsonConvert.SerializeObject(ChatUser);
Writer.WriteLine(Input);
}
MsgHtml = Startup.userMsgBox[ChatUser.ChatUserId];
var chatUsers = _dbContext.ChatUsers
.Include(s => s.User)
.Include(r => r.Chat)
.Where(u => u.ChatRoomId == CurrentRoom.ChatRoomId);
foreach (ChatUser user in chatUsers)
{
OnlineUsersHtml += "<div class='user'>" +
"<div class='avatar'>" +
"<img src ='" + user.User.Avatar + "' alt='User name'>" +
"<div class='status " + user.User.Status + "'></div>" +
"</div>" +
"<div class='name'>" + user.User.UserName + "</div>" +
"<div class='mood'>" + user.User.Mood + "</div>" +
"</div>";
}
Startup.ReceiveEvent = new Task(() => ReceiveData(ChatUser));
Startup.ReceiveEvent.Start();
return(Page());
}
public static void HandleClients(TcpClient client)
{
string publicKey;
string privateKey;
int KeySize = 2048;
RSAEncrypt.GenerateKeys(KeySize, out publicKey, out privateKey);
while (true)
{
if (client.Available > 0)
{
// Setup reader/writer stream
NetworkStream stream = client.GetStream();
StreamReader Reader = new StreamReader(stream);
StreamWriter Writer = new StreamWriter(stream)
{
AutoFlush = true
};
string data = Reader.ReadLine();
ChatUser chatUser = JsonConvert.DeserializeObject <ChatUser>(data);
if (chatUser.CommandInter == (int)ChatUser.Command.getRSAKey)
{
chatUser.RsaKey = publicKey;
list_clients.TryAdd(chatUser.ChatUserId, client);
chatUsers.Add(chatUser);
stream = list_clients[chatUser.ChatUserId].GetStream();
string Input = JsonConvert.SerializeObject(chatUser);
Writer.WriteLine(Input);
}
else if (chatUser.CommandInter == (int)ChatUser.Command.AddChatUser)
{
chatUser.DesKey = RSAEncrypt.Decrypt(chatUser.DesKey, KeySize, publicKey);
client = list_clients[chatUser.ChatUserId];
Console.WriteLine(chatUser.User.UserName + " entrou na sala " + chatUser.Chat.Name + "!");
chatUser.Message = Encrypt(chatUser.User.UserName + " entrou na sala " + chatUser.Chat.Name + "!", chatUser.DesKey);
Broadcast(chatUser);
}
else if (chatUser.CommandInter == (int)ChatUser.Command.DeleteChatUser)
{
client.Client.Shutdown(SocketShutdown.Both);
client.Close();
TcpClient tcpRemove;
list_clients.TryRemove(chatUser.ChatUserId, out tcpRemove);
ChatUser userToRemove = chatUsers.Find(c => c.ChatUserId == chatUser.ChatUserId);
chatUsers.Remove(userToRemove);
Console.WriteLine(chatUser.User.UserName + " saiu da sala " + chatUser.Chat.Name + "!");
chatUser.Message = Encrypt(chatUser.User.UserName + " saiu da sala " + chatUser.Chat.Name + "!", chatUser.DesKey);
Broadcast(chatUser);
break;
}
else if (chatUser.CommandInter == (int)ChatUser.Command.SendMessage)
{
// Decrypt the bytes to a string.
string messageDecrypted = Decrypt(chatUser.Message, chatUser.DesKey);
Console.WriteLine("Sala: " + chatUser.Chat.Name + "-" + chatUser.User.UserName + ": " + messageDecrypted);
Broadcast(chatUser);
}
}
}
}
