zradmin开源项目
官方地址:http://www.izhaorui.cn/doc/
swagger引用
public static class SwaggerExtension { /// <summary> /// /// </summary> /// <param name="app"></param> public static void UseSwagger(this IApplicationBuilder app) { app.UseSwagger(c => { c.RouteTemplate = "swagger/{documentName}/swagger.json"; c.PreSerializeFilters.Add((swaggerDoc, httpReq) => { var url = $"{httpReq.Scheme}://{httpReq.Host.Value}"; var referer = httpReq.Headers["Referer"].ToString(); if (referer.Contains(GlobalConstant.DevApiProxy)) url = referer.Substring(0, referer.IndexOf(GlobalConstant.DevApiProxy, StringComparison.InvariantCulture) + GlobalConstant.DevApiProxy.Length - 1); swaggerDoc.Servers = new List<OpenApiServer> { new OpenApiServer { Url = url } }; }); }); app.UseSwaggerUI(c => { c.SwaggerEndpoint("v1/swagger.json", "ZrAdmin v1"); c.DocExpansion(Swashbuckle.AspNetCore.SwaggerUI.DocExpansion.None); }); } public static void AddSwaggerConfig(this IServiceCollection services) { if (services == null) throw new ArgumentNullException(nameof(services)); IWebHostEnvironment hostEnvironment = App.GetRequiredService<IWebHostEnvironment>(); services.AddSwaggerGen(c => { c.SwaggerDoc("v1", new OpenApiInfo { Title = "ZrAdmin.NET Api - .NET5", Version = "v1", Description = "", }); try { //添加文档注释 hostEnvironment.ContentRootPath var basePath = Path.GetDirectoryName(typeof(Program).Assembly.Location);//获取应用程序所在目录(绝对,不受工作目录影响,建议采用此方法获取路径) c.IncludeXmlComments(Path.Combine(basePath, "ZRAdmin.xml"), true); c.IncludeXmlComments(Path.Combine(basePath, "ZR.Model.xml"), true); } catch (Exception ex) { Console.WriteLine("swagger 文档加载失败" + ex.Message); } //参考文章:http://www.zyiz.net/tech/detail-134965.html //需要安装包Swashbuckle.AspNetCore.Filters // 开启权限小锁 需要在对应的Action上添加[Authorize]才能看到 c.OperationFilter<AddResponseHeadersFilter>(); c.OperationFilter<AppendAuthorizeToSummaryOperationFilter>(); //在header 中添加token,传递到后台 c.OperationFilter<SecurityRequirementsOperationFilter>(); c.AddSecurityDefinition(JwtBearerDefaults.AuthenticationScheme, new OpenApiSecurityScheme { In = ParameterLocation.Header, Description = "请输入Login接口返回的Token,前置Bearer。示例:Bearer {Token}", Name = "Authorization",//jwt默认的参数名称, Type = SecuritySchemeType.ApiKey, //指定ApiKey BearerFormat = "JWT",//标识承载令牌的格式 该信息主要是出于文档目的 Scheme = JwtBearerDefaults.AuthenticationScheme//授权中要使用的HTTP授权方案的名称 }); c.AddSecurityRequirement(new OpenApiSecurityRequirement { { new OpenApiSecurityScheme { Reference = new OpenApiReference { Type = ReferenceType.SecurityScheme, Id = "Bearer" } }, new List<string>() } }); }); } }
jwt的封装
public class JwtUtil { /// <summary> /// 获取用户身份信息 /// </summary> /// <param name="httpContext"></param> /// <returns></returns> public static LoginUser GetLoginUser(HttpContext httpContext) { string token = httpContext.GetToken(); if (!string.IsNullOrEmpty(token)) { return ValidateJwtToken(ParseToken(token)); } return null; } /// <summary> /// 生成token /// </summary> /// <param name="claims"></param> /// <param name="jwtSettings"></param> /// <returns></returns> public static string GenerateJwtToken(List<Claim> claims, JwtSettings jwtSettings) { var authTime = DateTime.Now; var expiresAt = authTime.AddMinutes(jwtSettings.Expire); var tokenHandler = new JwtSecurityTokenHandler(); var key = Encoding.ASCII.GetBytes(jwtSettings.SecretKey); claims.Add(new Claim("Audience", jwtSettings.Audience)); claims.Add(new Claim("Issuer", jwtSettings.Issuer)); var tokenDescriptor = new SecurityTokenDescriptor { Subject = new ClaimsIdentity(claims), Issuer = jwtSettings.Issuer, Audience = jwtSettings.Audience, IssuedAt = authTime,//token生成时间 Expires = expiresAt, //NotBefore = authTime, TokenType = "Bearer", //对称秘钥,签名证书 SigningCredentials = new SigningCredentials(new SymmetricSecurityKey(key), SecurityAlgorithms.HmacSha256Signature) }; var token = tokenHandler.CreateToken(tokenDescriptor); return tokenHandler.WriteToken(token); } /// <summary> /// 验证Token /// </summary> /// <returns></returns> public static TokenValidationParameters ValidParameters() { JwtSettings jwtSettings = new(); AppSettings.Bind("JwtSettings", jwtSettings); if (jwtSettings == null || jwtSettings.SecretKey.IsEmpty()) { throw new Exception("JwtSettings获取失败"); } var key = Encoding.ASCII.GetBytes(jwtSettings.SecretKey); var tokenDescriptor = new TokenValidationParameters { ValidateIssuerSigningKey = true, ValidateIssuer = true, ValidateAudience = true, ValidIssuer = jwtSettings.Issuer, ValidAudience = jwtSettings.Audience, IssuerSigningKey = new SymmetricSecurityKey(key), ValidateLifetime = true,//是否验证Token有效期,使用当前时间与Token的Claims中的NotBefore和Expires对比 ClockSkew = TimeSpan.FromSeconds(30) //RequireExpirationTime = true,//过期时间 }; return tokenDescriptor; } /// <summary> /// 从令牌中获取数据声明 /// </summary> /// <param name="token">令牌</param> /// <returns></returns> public static IEnumerable<Claim> ParseToken(string token) { var tokenHandler = new JwtSecurityTokenHandler(); var validateParameter = ValidParameters(); token = token.Replace("Bearer ", ""); try { tokenHandler.ValidateToken(token, validateParameter, out SecurityToken validatedToken); var jwtToken = tokenHandler.ReadJwtToken(token); return jwtToken.Claims; } catch (Exception ex) { Console.WriteLine(ex.Message); // return null if validation fails return null; } } /// <summary> /// jwt token校验 /// </summary> /// <param name="jwtToken"></param> /// <returns></returns> public static LoginUser ValidateJwtToken(IEnumerable<Claim> jwtToken) { try { var userData = jwtToken.FirstOrDefault(x => x.Type == ClaimTypes.UserData).Value; var loginUser = JsonConvert.DeserializeObject<LoginUser>(userData); var permissions = CacheService.GetUserPerms(GlobalConstant.UserPermKEY + loginUser?.UserId); if (loginUser?.UserName == "admin") { permissions = new List<string>() { GlobalConstant.AdminPerm }; } if (permissions == null) return null; loginUser.Permissions = permissions; return loginUser; } catch (Exception ex) { Console.WriteLine(ex.Message); return null; } } /// <summary> ///组装Claims /// </summary> /// <param name="user"></param> /// <returns></returns> public static List<Claim> AddClaims(LoginUser user) { if (user?.Permissions.Count > 50) { user.Permissions = new List<string>(); } var claims = new List<Claim>() { new Claim(ClaimTypes.PrimarySid, user.UserId.ToString()), new Claim(ClaimTypes.Name, user.UserName), new Claim(ClaimTypes.UserData, JsonConvert.SerializeObject(user)) }; return claims; } }