using Azure.Core;
using Furion;
using Furion.DatabaseAccessor;
using Furion.DataEncryption;
using Furion.FriendlyException;
using Microsoft.AspNetCore.Http;
using Microsoft.EntityFrameworkCore;
using Microsoft.Extensions.Options;
using Microsoft.IdentityModel.Tokens;
using Newtonsoft.Json;
using System;
using System.Collections.Generic;
using System.IdentityModel.Tokens.Jwt;
using System.Linq;
using System.Security.Claims;
using System.Text;
using System.Threading.Tasks;
namespace FlexJobApi.Core
{
public static class JwtUtils
{
///
/// 生成用户令牌
///
///
///
public static void GenerateToken(this CurrentLogier logier)
{
var httpContextAccessor = App.GetService();
// 生成 token
logier.AccessToken = JWTEncryption.Encrypt(new Dictionary()
{
{ "Id", logier.Id },
{ "Avatar",logier.Avatar },
{ "Name",logier.Name },
{ "UserName",logier.UserName },
{ "PhoneNumber",logier.PhoneNumber },
{ "Level",logier.Level },
{ "Type",logier.Type },
{ "ClientType",logier.ClientType },
{ "EnterpriseId",logier.EnterpriseId },
});
// 获取刷新 token
logier.RefreshToken = JWTEncryption.GenerateRefreshToken(logier.AccessToken, 60 * 24);
// 设置响应报文头
if (httpContextAccessor.HttpContext != null)
{
httpContextAccessor.HttpContext.Response.Headers["access-token"] = logier.AccessToken;
httpContextAccessor.HttpContext.Response.Headers["x-access-token"] = logier.RefreshToken;
}
}
///
/// 获取当前登录用户
///
///
///
///
///
public static LoginCommandCallback GetCurrentLogier(this User user, EnumClientType clientType, string session_key = null)
{
var logier = new CurrentLogier
{
Id = user.Id,
Avatar = user.Avatar,
Name = user.Name,
UserName = user.UserName,
PhoneNumber = user.PhoneNumber,
Level = user.Level,
Type = user.Type,
ClientType = clientType,
EnterpriseId = user.EnterpriseId,
};
GenerateToken(logier);
return new LoginCommandCallback
{
Id = logier.Id,
AccessToken = logier.AccessToken,
RefreshToken = logier.RefreshToken,
SessionKey = session_key,
IsBindPhoneNumber = logier.PhoneNumber.IsNotNull()
};
}
public static async Task GetCurrentLogier(this string accessToken)
{
if (accessToken.IsNotNull())
{
var claims = JWTEncryption.ReadJwtToken(accessToken)?.Claims;
if (claims != null)
{
var claimIdentity = new ClaimsIdentity("AuthenticationTypes.Federation");
claimIdentity.AddClaims(claims);
var claimsPrincipal = new ClaimsPrincipal(claimIdentity);
var userId = claimsPrincipal.FindFirstValue("Id").ToGuid();
var clientType = claimsPrincipal.FindFirstValue("ClientType").ToEnum();
if (userId.HasValue && clientType.HasValue)
{
var user = await Db.GetRepository().AsQueryable().AsNoTracking()
.Where(it => it.Id == userId)
.FirstOrDefaultAsync();
if (user != null)
{
var logier = user.GetCurrentLogier(clientType.Value);
return logier;
}
}
}
}
return null;
}
///
/// 获取当前登录用户
///
///
public static CurrentLogier GetCurrentLogier()
{
if (App.User != null && App.User.Identity.IsAuthenticated)
{
var logier = new CurrentLogier();
logier.Id = App.User.FindFirstValue("Id").ToGuid("缺失用户Id,请重新登录").Value;
logier.Level = App.User.FindFirstValue("Level")?.ToInt() ?? 0;
logier.Avatar = App.User.FindFirstValue("Avatar");
logier.Name = App.User.FindFirstValue("Name");
logier.UserName = App.User.FindFirstValue("UserName");
logier.PhoneNumber = App.User.FindFirstValue("PhoneNumber");
logier.Type = App.User.FindFirstValue("Type").ToEnum("缺失用户类型,请重新登录").Value;
logier.ClientType = App.User.FindFirstValue("ClientType").ToEnum("缺失客户端类型,请重新登录").Value;
logier.EnterpriseId = App.User.FindFirstValue("EnterpriseId").ToGuid();
return logier;
}
return null;
}
}
}