whm
/
BookingHeChuan
2
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
You cannot select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
master
optimize
booking_auth_dev
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'd2834ce700'
${ noResults }
BookingHeChuan/Myshipping.Web.Core/Handlers/JwtHandler.cs

91 lines
2.9 KiB
C#
Raw Normal View History Unescape Escape

初始提交
2 years ago
using Furion;
using Furion.Authorization;
using Furion.DataEncryption;
修改命名空间
2 years ago
using Myshipping.Core;
using Myshipping.Core.Service;
初始提交
2 years ago
using Microsoft.AspNetCore.Authorization;
using Microsoft.AspNetCore.Http;
using System.Threading.Tasks;
字典前端问题
2 years ago
using Furion.Logging;
1
9 months ago
using System.Diagnostics;
初始提交
2 years ago
修改命名空间
2 years ago
namespace Myshipping.Web.Core;
初始提交
2 years ago
public class JwtHandler : AppAuthorizeHandler
{
1
9 months ago
//private ISysMenuService _sysMenuService;
1
9 months ago
1
9 months ago
//public JwtHandler(ISysMenuService sysMenuService)
//{
// _sysMenuService = sysMenuService;
//}
1
9 months ago
初始提交
2 years ago
/// <summary>
/// 重写 Handler 添加自动刷新
/// </summary>
/// <param name="context"></param>
/// <returns></returns>
public override async Task HandleAsync(AuthorizationHandlerContext context)
{
// 自动刷新Token
if (JWTEncryption.AutoRefreshToken(context, context.GetCurrentHttpContext()))
{
await AuthorizeHandleAsync(context);
}
else context.Fail(); // 授权失败
}
/// <summary>
/// 授权判断逻辑,授权通过返回 true否则返回 false
/// </summary>
/// <param name="context"></param>
/// <param name="httpContext"></param>
/// <returns></returns>
public override async Task<bool> PipelineAsync(AuthorizationHandlerContext context, DefaultHttpContext httpContext)
{
// 此处已经自动验证 Jwt Token的有效性了无需手动验证
return await CheckAuthorzieAsync(httpContext);
}
/// <summary>
/// 检查权限
/// </summary>
/// <param name="httpContext"></param>
/// <returns></returns>
1
9 months ago
private async Task<bool> CheckAuthorzieAsync(DefaultHttpContext httpContext)
初始提交
2 years ago
{
// 管理员跳过判断
if (UserManager.IsSuperAdmin) return true;
// 路由名称
var routeName = httpContext.Request.Path.Value.Substring(1).Replace("/", ":");
字典前端问题
2 years ago
//字典数据前端需要,允许获取
字典权限问题
2 years ago
if (routeName == "sysDictType:tree") return true;
字典前端问题
2 years ago
1
9 months ago
权限控制
2 years ago
if (routeName == "sysUser:tree") return true;
放开修改密码的权限(sysUser:updatePwd)
1 year ago
//用户修改密码权限:默认通过,即不需要给角色授权,也具有此权限
if (routeName == "sysUser:updatePwd") return true;
1
9 months ago
Stopwatch sw = Stopwatch.StartNew();
1
9 months ago
var _sysMenuService = App.GetService<ISysMenuService>();
1
9 months ago
var allPermission = await _sysMenuService.GetAllPermission();
httpContext.Response.Headers["CheckTimeCheckAuthorzie1"] = sw.ElapsedMilliseconds.ToString();
初始提交
2 years ago
if (!allPermission.Contains(routeName))
{
1
9 months ago
sw.Stop();
初始提交
2 years ago
return true;
}
// 获取用户权限集合按钮或API接口
1
9 months ago
var permissionList = await _sysMenuService.GetLoginPermissionList(UserManager.UserId);
httpContext.Response.Headers["CheckTimeCheckAuthorzie2"] = sw.ElapsedMilliseconds.ToString();
sw.Stop();
初始提交
2 years ago
// 检查授权
return permissionList.Contains(routeName);
}
}