private static bool IsValidUser(
ClientSignData clientSign, ISignableData data, bool isLoginAction,
out ResponseBase response, out UserData user)
{
user = null;
if (!AppRoot.UserSet.IsReadied)
{
string message = "服务器用户集启动中,请稍后";
response = ResponseBase.NotExist(message);
return(false);
}
if (!Timestamp.IsInTime(clientSign.Timestamp))
{
response = ResponseBase.Expired();
return(false);
}
if (!string.IsNullOrEmpty(clientSign.LoginName))
{
user = AppRoot.UserSet.GetUser(clientSign.UserId);
}
if (user == null)
{
string message = "用户不存在";
response = ResponseBase.NotExist(message);
return(false);
}
if (isLoginAction)
{
if (!AppRoot.UserSet.CheckLoginTimes(clientSign.LoginName))
{
response = ResponseBase.Forbidden("对不起,您的尝试太过频繁");
return(false);
}
}
string mySign = HashUtil.CalcSign(user.LoginName, user.Password, clientSign.Timestamp, data);
if (clientSign.Sign != mySign)
{
string message = "签名错误:1. 可能因为登录名或密码错误;2. 可能因为软件版本过期需要升级软件。";
response = ResponseBase.Forbidden(message);
return(false);
}
response = null;
return(true);
}
public override void OnActionExecuting(HttpActionContext actionContext)
{
base.OnActionExecuting(actionContext);
var queryString = new NameValueCollection();
string query = actionContext.Request.RequestUri.Query;
if (!string.IsNullOrEmpty(query))
{
query = query.Substring(1);
string[] parts = query.Split('&');
foreach (var item in parts)
{
string[] pair = item.Split('=');
if (pair.Length == 2)
{
queryString.Add(pair[0], pair[1]);
}
}
}
long timestamp = 0;
string t = queryString["timestamp"];
if (!string.IsNullOrEmpty(t))
{
long.TryParse(t, out timestamp);
}
string loginName = queryString["loginName"];
if (!string.IsNullOrEmpty(loginName))
{
loginName = HttpUtility.UrlDecode(loginName);
}
ClientSignData clientSign = new ClientSignData(loginName, queryString["sign"], timestamp);
ISignableData data = null;
var actionDescripter = actionContext.ActionDescriptor;
var actionParameters = actionDescripter.GetParameters();
bool isLoginAction = actionDescripter.ActionName == nameof(UserController.Login) &&
actionDescripter.ControllerDescriptor.ControllerName == RpcRoot.GetControllerName <UserController>();
if (actionParameters.Count == 1 && typeof(ISignableData).IsAssignableFrom(actionParameters[0].ParameterType))
{
data = (ISignableData)actionContext.ActionArguments.First().Value;
}
string message = null;
bool isValid = IsValidUser(clientSign, data, isLoginAction, out ResponseBase response, out UserData user);
if (isValid)
{
isValid = OnAuthorization(user, out message);
}
if (!isValid)
{
if (response != null && !string.IsNullOrEmpty(message))
{
response.Description = message;
}
Type returnType = actionContext.ActionDescriptor.ReturnType;
var httpResponseMessage = new HttpResponseMessage(HttpStatusCode.OK);
if (returnType == typeof(HttpResponseMessage))
{
httpResponseMessage.Content = new ByteArrayContent(VirtualRoot.BinarySerializer.Serialize(response));
httpResponseMessage.Content.Headers.ContentType = new MediaTypeHeaderValue("image/jpg");
}
else
{
httpResponseMessage.Content = new StringContent(VirtualRoot.JsonSerializer.Serialize(response), Encoding.UTF8, "application/json");
}
actionContext.Response = httpResponseMessage;
}
else
{
actionContext.ControllerContext.RouteData.Values["_user"] = user;
}
}