不知勿言
解析jwt 
            var path = context.HttpContext.Request.Path.Value;
            var tokenHeader = context.HttpContext.Request.Headers["Authorization"];

            var strToken = tokenHeader.ToString();
            if (strToken.Contains("Bearer "))
            {
                var jwtHandler = new JwtSecurityTokenHandler();
                try
                {
                    JwtSecurityToken jwtToken = jwtHandler.ReadJwtToken(strToken.Remove(0, 7)); //去除"Bearer "
                    var identity = new ClaimsIdentity(jwtToken.Claims);
                    var principal = new ClaimsPrincipal(identity);
                    context.HttpContext.User = principal;
                }
                catch
                {
                    _logger.Info(new Sino.Web.Logging.LogInfo() { Method = path, Argument = strToken, Description = "鉴权失败" });
                    throw new SinoException(ErrorCode.E100003, nameof(ErrorCode.E100003).GetCode());
                }
            }

 

posted on 2021-12-16 14:25  不知勿言  阅读(61)  评论(0编辑  收藏  举报

Copyright © 2024 不知勿言
Powered by .NET 8.0 on Kubernetes Powered By博客园