NetCore 获取Token信息

第一步：配置Program.cs，注册认证

?

1 2 3 4 5 6 7 8 9 10 11 12 13 14

// 注册认证相关组件和配置defaultScheme为Bearer builder.Services.AddAuthentication("Bearer")     .AddJwtBearer("Bearer", options =>     {         // 指定要接入的授权服务器地址         options.Authority = "http://127.0.0.1:5001";         // 在验证token时，不验证Audience         options.TokenValidationParameters = new TokenValidationParameters         {             ValidateAudience = false         };         // 不适用Https         options.RequireHttpsMetadata = false;     });

 第二步：Program.cs　使用认证权限

?

1 2 3 4 5

//使用认证 app.UseAuthentication();   //使用授权 app.UseAuthorization();

 第三步：控制器加上权限特性

?

1 2 3 4 5 6

[HttpGet("get")] [Authorize]  public async Task<IActionResult> GetById([FromQuery] string id) {     ..... }

第四步：获取Token信息

?

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117

using Micro.Erp.IServices; using Micro.Erp.Utils; using Micro.Erp.DBFactory; using Micro.Erp.Models; using Microsoft.AspNetCore.Http; using Microsoft.AspNetCore.Identity; using Microsoft.IdentityModel.Tokens; using System.Security.Claims;   /*  var claims = HttpContext.User.Claims; //获取用户token var access_token = HttpContext.GetTokenAsync("access_token"); var accessToken = HttpContext.GetTokenAsync(OpenIdConnectParameterNames.AccessToken);   var refresh_token = HttpContext.GetTokenAsync("refresh_token"); var refreshToken = HttpContext.GetTokenAsync(OpenIdConnectParameterNames.RefreshToken);   //获取用户信息 var userId = HttpContext.User.FindFirst(ClaimTypes.NameIdentifier)?.Value; var username = HttpContext.User.FindFirst(d => d.Type == "preferred_username")?.Value; var roleName = HttpContext.User.FindFirst(ClaimTypes.Role)?.Value; var clientId = HttpContext.User.FindFirst(d => d.Type == "client_id")?.Value;   var user_id = HttpContext.User.FindFirst("http://schemas.xmlsoap.org/ws/2005/05/identity/claims/name")?.Value; var role_name = HttpContext.User.FindFirst(d => d.Type == "http://schemas.microsoft.com/ws/2008/06/identity/claims/role")?.Value;  */ namespace Micro.Erp.Services {     public class UserService : IUserService     {         private readonly IHttpContextAccessor _httpContextAccessor;         public UserService(IHttpContextAccessor httpContextAccessor)         {             _httpContextAccessor = httpContextAccessor;         }           /// <summary>         /// 获取当前登录客户端ID         /// </summary>         public async Task<string> GetClientIdAsync()         {             if (_httpContextAccessor.HttpContext.User.FindFirst(d => d.Type == "client_id") == null)             {                 throw new ResponseException($"未授权，操作失败");             }               if (string.IsNullOrEmpty(_httpContextAccessor.HttpContext.User.FindFirst(d => d.Type == "client_id")?.Value))             {                 throw new ResponseException($"您未登录，操作失败");             }             return _httpContextAccessor.HttpContext.User.FindFirst(d => d.Type == "client_id")?.Value;         }           /// <summary>         /// 判断当前登录用户是否为管理员         /// </summary>         public async Task<bool> IsAdminRoleAsync()         {             if (_httpContextAccessor.HttpContext.User.FindFirst(ClaimTypes.Role) == null)             {                 return false;             }             if (UserType.Admin.ToString() == _httpContextAccessor.HttpContext.User.FindFirst(ClaimTypes.Role)?.Value)             {                 return true;             }             return false;         }           /// <summary>         /// 判断当前登录用户是否为管理员         /// </summary>         public async Task<string> GetRoleIdAsync()         {             if (_httpContextAccessor.HttpContext.User.FindFirst(ClaimTypes.Role) == null)             {                 throw new ResponseException($"未授权，操作失败");             }               return _httpContextAccessor.HttpContext.User.FindFirst(ClaimTypes.Role)?.Value;         }           /// <summary>         /// 获取当前登录用户ID         /// </summary>         public async Task<string> GetUserIdAsync()         {             if (_httpContextAccessor.HttpContext.User.FindFirst(ClaimTypes.NameIdentifier) == null)             {                 throw new ResponseException($"您未登录，操作失败");             }             if (string.IsNullOrEmpty(_httpContextAccessor.HttpContext.User.FindFirst(ClaimTypes.NameIdentifier)?.Value))             {                 throw new ResponseException($"您未登录，操作失败");             }             return _httpContextAccessor.HttpContext.User.FindFirst(ClaimTypes.NameIdentifier)?.Value;         }           /// <summary>         /// 获取当前登录用户名         /// </summary>         public async Task<string?> GetUserNameAsync()         {               if (_httpContextAccessor.HttpContext.User == null)             {                 throw new ResponseException($"您未登录，操作失败");             }             if (string.IsNullOrEmpty(_httpContextAccessor.HttpContext.User.FindFirst(d => d.Type == "preferred_username")?.Value))             {                 throw new ResponseException($"您未登录，操作失败");             }             return _httpContextAccessor.HttpContext.User.FindFirst(d => d.Type == "preferred_username")?.Value;         }     } }