feat:开发

sunpengfei

2025-09-02 44c6adb7620d3e7ddec49a59035f094499113a6a

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
using FlexJobApi.Core.Entities.Common;
using Furion;
using Furion.Authorization;
using Furion.DatabaseAccessor;
using Furion.DataEncryption;
using Furion.DistributedIDGenerator;
using Microsoft.AspNetCore.Authorization;
using Microsoft.AspNetCore.Http;
using Microsoft.AspNetCore.Mvc;
using Microsoft.AspNetCore.Mvc.Controllers;
using Microsoft.Extensions.DependencyInjection;
using System;
using System.Collections.Generic;
using System.Diagnostics;
using System.IO;
using System.Threading.Tasks;
 
namespace FlexJobApi.Core;
 
public class JwtHandler : AppAuthorizeHandler
{
    public override async Task HandleAsync(AuthorizationHandlerContext context, DefaultHttpContext httpContext)
    {
        // 自动刷新 token
        if (JWTEncryption.AutoRefreshToken(context, context.GetCurrentHttpContext()))
        {
            await AuthorizeHandleAsync(context);
        }
        else
        {
 
            var resourceLog = new ResourceLog();
            resourceLog.CreatedTime = DateTimeOffset.Now;
            var stopwatch = Stopwatch.StartNew();
            var serviceScopeFactory = App.GetService<IServiceScopeFactory>();
            var serviceScope = serviceScopeFactory.CreateScope();
            var rep = serviceScope.ServiceProvider.GetRequiredService<IRepository<ResourceLog, LogDbContextLocator>>();
            resourceLog.Id = IDGen.NextID();
            resourceLog.TraceId = App.GetTraceId();
            resourceLog.Method = EnumUtils.GetEnum<EnumResourceMethod>(httpContext.Request.Method);
            resourceLog.Domain = $"{httpContext.Request.Scheme}://{httpContext.Request.Host}";
            resourceLog.Path = httpContext.Request.Path;
            resourceLog.ClientIpAddress = httpContext.GetRemoteIpAddressToIPv4();
            if (httpContext.Request.ContentType?.Contains("application/json") == true)
            {
                httpContext.Request.EnableBuffering(); // 允许多次读取
                var body = await new StreamReader(httpContext.Request.Body).ReadToEndAsync();
                httpContext.Request.Body.Position = 0; // 重置流位置
                resourceLog.Request = body;
            }
            else
            {
                resourceLog.Request = httpContext.Request.Query.ToJson();
            }
            resourceLog.RequestHeaders = httpContext.Request.Headers.ToJson();
 
            context.Fail();
 
            resourceLog.UpdatedTime = DateTimeOffset.Now;
            resourceLog.Response = new FriendlyResult<object>
            {
                TraceId = resourceLog.TraceId,
                Code = 401,
                Success = false,
                Timestamp = DateTime.Now.ToTimeStamp()
            }.ToJson();
            resourceLog.ResponseHeaders = httpContext.Response.Headers.ToJson();
            resourceLog.IsSuccess = false;
 
            stopwatch.Stop();
            resourceLog.ElapsedMilliseconds = stopwatch.ElapsedMilliseconds;
 
            await rep.InsertNowAsync(resourceLog);
        }
    }
 
    /// <summary>
    /// 验证管道，也就是验证核心代码
    /// </summary>
    /// <param name="context"></param>
    /// <param name="httpContext"></param>
    /// <returns></returns>
    public override Task<bool> PipelineAsync(AuthorizationHandlerContext context, DefaultHttpContext httpContext)
    {
        // 检查权限，如果方法是异步的就不用 Task.FromResult 包裹，直接使用 async/await 即可
        return Task.FromResult(true);
    }
}