feat: 完成token刷新机制，支持多模式

2024-01-24 16:07:54 +08:00
parent 6b15aa9c8e
commit e614935693
4 changed files with 81 additions and 5 deletions
--- a/Yi.Abp.Net8/module/rbac/Yi.Framework.Rbac.Domain/Authorization/RefreshTokenMiddleware.cs
+++ b/Yi.Abp.Net8/module/rbac/Yi.Framework.Rbac.Domain/Authorization/RefreshTokenMiddleware.cs
@@ -0,0 +1,62 @@
+using System;
+using System.Collections.Generic;
+using System.Linq;
+using System.Text;
+using System.Threading.Tasks;
+using JetBrains.Annotations;
+using Microsoft.AspNetCore.Authentication;
+using Microsoft.AspNetCore.Builder;
+using Microsoft.AspNetCore.Http;
+using Volo.Abp.DependencyInjection;
+using Volo.Abp.Security.Claims;
+using Yi.Framework.Rbac.Domain.Managers;
+using Yi.Framework.Rbac.Domain.Shared.Consts;
+
+namespace Yi.Framework.Rbac.Domain.Authorization
+{
+    public class RefreshTokenMiddleware : IMiddleware, ITransientDependency
+    {
+        private AccountManager _accountManager;
+        public RefreshTokenMiddleware(AccountManager accountManager)
+        {
+
+            _accountManager = accountManager;
+        }
+
+        public async Task InvokeAsync(HttpContext context, RequestDelegate next)
+        {
+            var refreshToken = context.Request.Headers["refresh_token"].ToString();
+            if (!string.IsNullOrEmpty(refreshToken))
+            {
+                //每个用户的token刷新频率可以进行控制，防止刷新token当访问token使用
+                var authResult = await context.AuthenticateAsync(TokenTypeConst.Refresh);
+                //token鉴权刷新成功
+                if (authResult.Succeeded)
+                {
+                    var userId = Guid.Parse(authResult.Principal.FindFirst(AbpClaimTypes.UserId).Value.ToString());
+                    var access_Token = await _accountManager.GetTokenByUserIdAsync(userId);
+                    var refresh_Token = _accountManager.CreateRefreshToken(userId);
+                    context.Response.Headers["access_token"] = access_Token;
+                    context.Response.Headers["refresh_token"] = refresh_Token;
+
+
+                    //请求头替换，补充后续鉴权逻辑
+                    context.Request.Headers["Authorization"] = "Bearer " + access_Token;
+                }
+            }
+            await next(context);
+        }
+    }
+
+
+    public static class RefreshTokenExtensions
+    {
+        public static IApplicationBuilder UseRefreshToken([NotNull] this IApplicationBuilder app)
+        {
+            app.UseMiddleware<RefreshTokenMiddleware>();
+            return app;
+
+        }
+    }
+
+}