feat: 完成token刷新机制,支持多模式

This commit is contained in:
陈淳
2024-01-24 16:07:54 +08:00
parent 6b15aa9c8e
commit e614935693
4 changed files with 81 additions and 5 deletions

View File

@@ -0,0 +1,62 @@
using System;
using System.Collections.Generic;
using System.Linq;
using System.Text;
using System.Threading.Tasks;
using JetBrains.Annotations;
using Microsoft.AspNetCore.Authentication;
using Microsoft.AspNetCore.Builder;
using Microsoft.AspNetCore.Http;
using Volo.Abp.DependencyInjection;
using Volo.Abp.Security.Claims;
using Yi.Framework.Rbac.Domain.Managers;
using Yi.Framework.Rbac.Domain.Shared.Consts;
namespace Yi.Framework.Rbac.Domain.Authorization
{
public class RefreshTokenMiddleware : IMiddleware, ITransientDependency
{
private AccountManager _accountManager;
public RefreshTokenMiddleware(AccountManager accountManager)
{
_accountManager = accountManager;
}
public async Task InvokeAsync(HttpContext context, RequestDelegate next)
{
var refreshToken = context.Request.Headers["refresh_token"].ToString();
if (!string.IsNullOrEmpty(refreshToken))
{
//每个用户的token刷新频率可以进行控制防止刷新token当访问token使用
var authResult = await context.AuthenticateAsync(TokenTypeConst.Refresh);
//token鉴权刷新成功
if (authResult.Succeeded)
{
var userId = Guid.Parse(authResult.Principal.FindFirst(AbpClaimTypes.UserId).Value.ToString());
var access_Token = await _accountManager.GetTokenByUserIdAsync(userId);
var refresh_Token = _accountManager.CreateRefreshToken(userId);
context.Response.Headers["access_token"] = access_Token;
context.Response.Headers["refresh_token"] = refresh_Token;
//请求头替换,补充后续鉴权逻辑
context.Request.Headers["Authorization"] = "Bearer " + access_Token;
}
}
await next(context);
}
}
public static class RefreshTokenExtensions
{
public static IApplicationBuilder UseRefreshToken([NotNull] this IApplicationBuilder app)
{
app.UseMiddleware<RefreshTokenMiddleware>();
return app;
}
}
}