/// <summary> /// 颁发JWT字符串 /// </summary> /// <param name="tokenVm"></param> /// <returns></returns> public static string CreateToken(JwtTokenVm tokenVm) { // authentication successful so generate jwt token var tokenHandler = new JwtSecurityTokenHandler(); var jweIssuer = ConfigurationManager.GetAppSettings().JwtToken.Issuer; var key = Encoding.ASCII.GetBytes(jweIssuer); var sub = new ClaimsIdentity(); sub.AddClaim(new Claim(ClaimTypes.Name, tokenVm.UserName, "")); sub.AddClaim(new Claim(ClaimTypes.Role, string.Join(",", tokenVm.Role))); var tokenDescriptor = new SecurityTokenDescriptor { Subject = sub, Expires = tokenVm.Expires.ToUniversalTime(), IssuedAt = DateTime.Now.ToUniversalTime(), Issuer = tokenVm.UserName, SigningCredentials = new SigningCredentials(new SymmetricSecurityKey(key), SecurityAlgorithms.HmacSha256Signature) }; var token = tokenHandler.CreateToken(tokenDescriptor); var encodedJwt = tokenHandler.WriteToken(token); return(encodedJwt); }
/// <summary> /// 解析 /// </summary> /// <param name="jwtStr"></param> /// <returns></returns> public static JwtTokenVm ReadToken(string jwtStr) { var jwtHandler = new JwtSecurityTokenHandler(); JwtSecurityToken jwtToken = jwtHandler.ReadJwtToken(jwtStr); var role = new List <string>(); var value = new object(); var sdasda = jwtToken.Payload.TryGetValue(ClaimTypes.Role, out value); var tm = new JwtTokenVm { UserName = jwtToken.Id, Role = new string[] { }, }; return(tm); }