RefreshTokenMiddleware.cs
2.22 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
using System;
using System.Collections.Generic;
using System.Diagnostics;
using System.Linq;
using System.Text;
using System.Threading.Tasks;
using JetBrains.Annotations;
using Microsoft.AspNetCore.Authentication;
using Microsoft.AspNetCore.Builder;
using Microsoft.AspNetCore.Http;
using Volo.Abp.DependencyInjection;
using Volo.Abp.Security.Claims;
using Yi.Framework.Rbac.Domain.Managers;
using Yi.Framework.Rbac.Domain.Shared.Consts;
namespace Yi.Framework.Rbac.Domain.Authorization
{
[DebuggerStepThrough]
public class RefreshTokenMiddleware : IMiddleware, ITransientDependency
{
private AccountManager _accountManager;
public RefreshTokenMiddleware(AccountManager accountManager)
{
_accountManager = accountManager;
}
public async Task InvokeAsync(HttpContext context, RequestDelegate next)
{
var refreshToken = context.Request.Headers["refresh_token"].ToString();
if (!string.IsNullOrEmpty(refreshToken))
{
//每个用户的token刷新频率可以进行控制,防止刷新token当访问token使用
var authResult = await context.AuthenticateAsync(TokenTypeConst.Refresh);
//token鉴权刷新成功
if (authResult.Succeeded)
{
var userId = Guid.Parse(authResult.Principal.FindFirst(AbpClaimTypes.UserId).Value.ToString());
var access_Token = await _accountManager.GetTokenByUserIdAsync(userId);
var refresh_Token = _accountManager.CreateRefreshToken(userId);
context.Response.Headers["access_token"] = access_Token;
context.Response.Headers["refresh_token"] = refresh_Token;
//请求头替换,补充后续鉴权逻辑
context.Request.Headers["Authorization"] = "Bearer " + access_Token;
}
}
await next(context);
}
}
public static class RefreshTokenExtensions
{
public static IApplicationBuilder UseRefreshToken([NotNull] this IApplicationBuilder app)
{
app.UseMiddleware<RefreshTokenMiddleware>();
return app;
}
}
}