orga0063
/
BootstrapAdmin11
4
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

重构代码:重写BootstrapAdminAuthorizeFilter逻辑,准备使用jwt认证方式保护webapi

This commit is contained in:
Argo-MacBookPro 2018-09-11 19:58:12 +08:00
parent fa80df6049
commit 56c21208a1
3 changed files with 11 additions and 16 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

18
Bootstrap.Admin/Controllers/Api/LoginController.cs
View File

@ -1,10 +1,7 @@
using Bootstrap.Security; using Bootstrap.Security;
using Longbow.Cache;
using Microsoft.AspNetCore.Authorization; using Microsoft.AspNetCore.Authorization;
using Microsoft.AspNetCore.Mvc; using Microsoft.AspNetCore.Mvc;
using Newtonsoft.Json.Linq; using Newtonsoft.Json.Linq;
using System;
using System.Linq;
namespace Bootstrap.Admin.Controllers.Api namespace Bootstrap.Admin.Controllers.Api
{ {
@ -17,12 +14,6 @@ namespace Bootstrap.Admin.Controllers.Api
[Route("api/[controller]")] [Route("api/[controller]")]
public class LoginController : Controller public class LoginController : Controller
{ {
[HttpGet]
public object Get()
{
var token = Request.Headers["Token"];
return new { UserName = User.Identity.Name, Token = token };
}
/// <summary> /// <summary>
/// ///
/// </summary> /// </summary>
@ -30,18 +21,17 @@ namespace Bootstrap.Admin.Controllers.Api
/// <returns></returns> /// <returns></returns>
[AllowAnonymous] [AllowAnonymous]
[HttpPost] [HttpPost]
public object Post([FromBody]JObject value) public ActionResult Post([FromBody]JObject value)
{ {
dynamic user = value; dynamic user = value;
string userName = user.userName; string userName = user.userName;
string password = user.password; string password = user.password;
if (BootstrapUser.Authenticate(userName, password)) if (BootstrapUser.Authenticate(userName, password))
{ {
var token = CacheManager.AddOrUpdate(string.Format("WebApi-{0}", userName), k => new { UserName = userName, Token = Guid.NewGuid().ToString() }, (k, info) => info, "WebApi"); var token = BootstrapAdminJwtTokenHandler.CreateToken(userName);
CacheManager.AddOrUpdate(token.Token, k => token, (k, info) => info, "Token"); return new JsonResult(new { token });
return token;
} }
return new { UserName = userName }; return new NoContentResult();
} }
/// <summary> /// <summary>
/// ///

1
Bootstrap.Admin/Startup.cs
View File

@ -79,7 +79,6 @@ namespace Bootstrap.Admin
app.UseCors(builder => builder.WithOrigins(Configuration["AllowOrigins"].Split(',', StringSplitOptions.RemoveEmptyEntries)).AllowAnyHeader().AllowAnyMethod().AllowCredentials()); app.UseCors(builder => builder.WithOrigins(Configuration["AllowOrigins"].Split(',', StringSplitOptions.RemoveEmptyEntries)).AllowAnyHeader().AllowAnyMethod().AllowCredentials());
app.UseHttpsRedirection(); app.UseHttpsRedirection();
app.UseStaticFiles(); app.UseStaticFiles();
app.UseCookiePolicy();
app.UseAuthentication(); app.UseAuthentication();
app.UseBootstrapRoleAuthorization(); app.UseBootstrapRoleAuthorization();
app.UseWebSocketHandler(options => options.UseAuthentication = true, WSHelper.WebSocketMessageHandler); app.UseWebSocketHandler(options => options.UseAuthentication = true, WSHelper.WebSocketMessageHandler);

6
Bootstrap.Admin/appsettings.json
View File

@ -15,6 +15,12 @@
"ConnectionStrings": { "ConnectionStrings": {
"ba": "Data Source=.;Initial Catalog=BootstrapAdmin;User ID=sa;Password=sa" "ba": "Data Source=.;Initial Catalog=BootstrapAdmin;User ID=sa;Password=sa"
}, },
"TokenValidateOption": {
"Issuer": "BA",
"Audience": "api",
"Expires": 5,
"SecurityKey": "BootstrapAdmin-V1.1"
},
"ApplicationName": "__bd__", "ApplicationName": "__bd__",
"ApplicationDiscriminator": "BootstrapAdmin", "ApplicationDiscriminator": "BootstrapAdmin",
"KeyPath": "D:\\App\\Web-App\\keys", "KeyPath": "D:\\App\\Web-App\\keys",