灵活用工全新版本
blame | 历史 | 原始文档
zhengyiming
1 天以前 193fa41f6419b80f33dabad90ed65ed1e310add8 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88

using FlexJobApi.Core.Entities.Common;


using Furion;


using Furion.Authorization;


using Furion.DatabaseAccessor;


using Furion.DataEncryption;


using Furion.DistributedIDGenerator;


using Microsoft.AspNetCore.Authorization;


using Microsoft.AspNetCore.Http;


using Microsoft.AspNetCore.Mvc;


using Microsoft.AspNetCore.Mvc.Controllers;


using Microsoft.Extensions.DependencyInjection;


using System;


using System.Collections.Generic;


using System.Diagnostics;


using System.IO;


using System.Threading.Tasks;


 


namespace FlexJobApi.Core;


 


public class JwtHandler : AppAuthorizeHandler


{


    public override async Task HandleAsync(AuthorizationHandlerContext context, DefaultHttpContext httpContext)


    {


        // 自动刷新 token


        if (JWTEncryption.AutoRefreshToken(context, context.GetCurrentHttpContext()))


        {


            await AuthorizeHandleAsync(context);


        }


        else


        {


 


            var resourceLog = new ResourceLog();


            resourceLog.CreatedTime = DateTimeOffset.Now;


            var stopwatch = Stopwatch.StartNew();


            var serviceScopeFactory = App.GetService<IServiceScopeFactory>();


            var serviceScope = serviceScopeFactory.CreateScope();


            var rep = serviceScope.ServiceProvider.GetRequiredService<IRepository<ResourceLog, LogDbContextLocator>>();


            resourceLog.Id = IDGen.NextID();


            resourceLog.TraceId = App.GetTraceId();


            resourceLog.Method = EnumUtils.GetEnum<EnumResourceMethod>(httpContext.Request.Method);


            resourceLog.Domain = $"{httpContext.Request.Scheme}://{httpContext.Request.Host}";


            resourceLog.Path = httpContext.Request.Path;


            resourceLog.ClientIpAddress = httpContext.GetRemoteIpAddressToIPv4();


            if (httpContext.Request.ContentType?.Contains("application/json") == true)


            {


                httpContext.Request.EnableBuffering(); // 允许多次读取


                var body = await new StreamReader(httpContext.Request.Body).ReadToEndAsync();


                httpContext.Request.Body.Position = 0; // 重置流位置


                resourceLog.Request = body;


            }


            else


            {


                resourceLog.Request = httpContext.Request.Query.ToJson();


            }


            resourceLog.RequestHeaders = httpContext.Request.Headers.ToJson();


 


            context.Fail();


 


            resourceLog.UpdatedTime = DateTimeOffset.Now;


            resourceLog.Response = new FriendlyResult<object>


            {


                TraceId = resourceLog.TraceId,


                Code = 401,


                Success = false,


                Timestamp = DateTime.Now.ToTimeStamp()


            }.ToJson();


            resourceLog.ResponseHeaders = httpContext.Response.Headers.ToJson();


            resourceLog.IsSuccess = false;


 


            stopwatch.Stop();


            resourceLog.ElapsedMilliseconds = stopwatch.ElapsedMilliseconds;


 


            await rep.InsertNowAsync(resourceLog);


        }


    }


 


    /// <summary>


    /// 验证管道,也就是验证核心代码


    /// </summary>


    /// <param name="context"></param>


    /// <param name="httpContext"></param>


    /// <returns></returns>


    public override Task<bool> PipelineAsync(AuthorizationHandlerContext context, DefaultHttpContext httpContext)


    {


        // 检查权限,如果方法是异步的就不用 Task.FromResult 包裹,直接使用 async/await 即可


        return Task.FromResult(true);


    }


}