public TokenDto BuildToken(UserInfo user)
{
var jwtSetting = JwtUtil.GetJwtSetting(configuration);
string token = GetToken(user.Id.ToString(), user.UserName, jwtSetting, jwtSetting.ExpireSeconds);
string refreshToken = GetToken(user.Id.ToString(), user.UserName, jwtSetting, jwtSetting.RefreshExpireSeconds);
return(new TokenDto()
{
UserName = user.UserName, UserId = user.Id.ToString(), Token = token, RefreshToken = refreshToken
});
}
public bool RefreshToken(TokenDto oldToken)
{
if (oldToken == null)
{
return(false);
}
if (string.IsNullOrEmpty(oldToken.RefreshToken))
{
return(false);
}
var jwtSetting = JwtUtil.GetJwtSetting(configuration);
TokenValidationParameters paras = new TokenValidationParameters()
{
ValidIssuer = jwtSetting.Issuer,
ValidAudience = jwtSetting.Audience,
ValidateAudience = true,
ValidateIssuer = true,
ValidateIssuerSigningKey = true,
IssuerSigningKey = new SymmetricSecurityKey(Encoding.UTF8.GetBytes(jwtSetting.SecretKey)),
ValidateLifetime = true,
//ClockSkew=TimeSpan.Zero
};
SecurityToken st = null;
try
{
new JwtSecurityTokenHandler().ValidateToken(oldToken.RefreshToken, paras, out st);
}
catch (Exception ex)
{
return(false);
}
//重新更新下Token
string token = GetToken(oldToken.UserId, oldToken.UserName, jwtSetting, jwtSetting.ExpireSeconds);
oldToken.Token = token;
return(true);
}
// This method gets called by the runtime. Use this method to add services to the container.
public void ConfigureServices(IServiceCollection services)
{
//配置验证失败返回结果
services.Configure <ApiBehaviorOptions>(options =>
{
options.InvalidModelStateResponseFactory = (context) =>
{
//StringBuilder errTxt = new StringBuilder();
//foreach (var item in context.ModelState.Values)
//{
// foreach (var error in item.Errors)
// {
// errTxt.Append(error.ErrorMessage + "|");
// }
//}
////ApiResp result = new ApiResp(ApiRespCode.F400000, errTxt.ToString().Substring(0, errTxt.Length - 1));
//return new JsonResult(new { Errors = errTxt.ToString().Substring(0, errTxt.Length - 1) });
return(ModelStateValidationFactory.CreateModelStateActionResult(context));
};
});
//配置数据库连接信息
services.AddDbContext <MyContext>((optionsBuilder) =>
{
optionsBuilder.UseSqlite(Configuration.GetConnectionString("db"));
});
//配置全局异常过滤器
//如果使用异常处理中间件,则无需该过滤器
services.AddControllers(options =>
{
//options.Filters.Add<GlobalExceptionFilter>();
});
services.AddScoped <UserRepository>();
services.AddScoped <UserService>();
services.AddScoped <TokenService>();
//配置Token验证规则
var jwtSetting = JwtUtil.GetJwtSetting(Configuration);
services.AddAuthentication(JwtBearerDefaults.AuthenticationScheme)
.AddJwtBearer((options) =>
{
options.TokenValidationParameters = new TokenValidationParameters
{
ValidateIssuer = true,
ValidIssuer = jwtSetting.Issuer,
ValidateAudience = true,
ValidAudience = jwtSetting.Audience,
ValidateIssuerSigningKey = true,
IssuerSigningKey = new SymmetricSecurityKey(Encoding.UTF8.GetBytes(jwtSetting.SecretKey)),
ValidateLifetime = true,
//添加此属性过期时间才生效
ClockSkew = TimeSpan.Zero
};
options.Events = new JwtBearerEvents()
{
//OnAuthenticationFailed = (context) =>
//{
// //if (typeof(SecurityTokenExpiredException) == context.Exception.GetType())
// //{
// // context.Response.Headers.Add("reason", "token expired");
// //}
// //return Task.CompletedTask;
//},
//Token验证失败的回调事件
OnChallenge = context =>
{
context.HandleResponse();
var content = JsonConvert.SerializeObject(new RespResult(Configs.BizStatusCode.TokenExpired));
context.Response.StatusCode = StatusCodes.Status200OK;
context.Response.ContentType = "application/json";
context.Response.WriteAsync(content);
return(Task.CompletedTask);
}
};
});
//配置允许跨域访问
services.AddCors(options =>
{
options.AddPolicy("any",
builder =>
{
builder.AllowAnyHeader()
.AllowAnyOrigin().AllowAnyMethod();
});
});
//配置entity和dto的映射规则
services.AddAutoMapper(this.GetType().Assembly);
}