2024-01-24 16:07:54 +08:00
|
|
|
|
using System;
|
|
|
|
|
|
using System.Collections.Generic;
|
2024-06-28 00:14:15 +08:00
|
|
|
|
using System.Diagnostics;
|
2024-01-24 16:07:54 +08:00
|
|
|
|
using System.Linq;
|
|
|
|
|
|
using System.Text;
|
|
|
|
|
|
using System.Threading.Tasks;
|
|
|
|
|
|
using JetBrains.Annotations;
|
|
|
|
|
|
using Microsoft.AspNetCore.Authentication;
|
|
|
|
|
|
using Microsoft.AspNetCore.Builder;
|
|
|
|
|
|
using Microsoft.AspNetCore.Http;
|
|
|
|
|
|
using Volo.Abp.DependencyInjection;
|
|
|
|
|
|
using Volo.Abp.Security.Claims;
|
2025-06-29 19:34:09 +08:00
|
|
|
|
using Yi.Framework.Core.Authentication;
|
2024-01-24 16:07:54 +08:00
|
|
|
|
using Yi.Framework.Rbac.Domain.Managers;
|
|
|
|
|
|
using Yi.Framework.Rbac.Domain.Shared.Consts;
|
|
|
|
|
|
|
|
|
|
|
|
namespace Yi.Framework.Rbac.Domain.Authorization
|
|
|
|
|
|
{
|
2024-06-28 00:14:15 +08:00
|
|
|
|
[DebuggerStepThrough]
|
2024-01-24 16:07:54 +08:00
|
|
|
|
public class RefreshTokenMiddleware : IMiddleware, ITransientDependency
|
|
|
|
|
|
{
|
|
|
|
|
|
private AccountManager _accountManager;
|
2025-06-29 15:18:30 +08:00
|
|
|
|
|
2024-01-24 16:07:54 +08:00
|
|
|
|
public RefreshTokenMiddleware(AccountManager accountManager)
|
|
|
|
|
|
{
|
|
|
|
|
|
_accountManager = accountManager;
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
public async Task InvokeAsync(HttpContext context, RequestDelegate next)
|
|
|
|
|
|
{
|
|
|
|
|
|
var refreshToken = context.Request.Headers["refresh_token"].ToString();
|
|
|
|
|
|
if (!string.IsNullOrEmpty(refreshToken))
|
|
|
|
|
|
{
|
2025-06-29 15:18:30 +08:00
|
|
|
|
//Jwt鉴权失败,过期了,再去找刷新token,进行刷新处理,不用每次都去刷新
|
|
|
|
|
|
var bearerAuthResult = await context.AuthenticateAsync("Bearer");
|
|
|
|
|
|
if (!bearerAuthResult.Succeeded)
|
2024-01-24 16:07:54 +08:00
|
|
|
|
{
|
2025-06-29 15:18:30 +08:00
|
|
|
|
//每个用户的token刷新频率可以进行控制,防止刷新token当访问token使用
|
|
|
|
|
|
var authResult = await context.AuthenticateAsync(TokenTypeConst.Refresh);
|
|
|
|
|
|
//token鉴权刷新成功
|
|
|
|
|
|
if (authResult.Succeeded)
|
|
|
|
|
|
{
|
|
|
|
|
|
var userId = Guid.Parse(authResult.Principal.FindFirst(AbpClaimTypes.UserId).Value.ToString());
|
|
|
|
|
|
var access_Token = await _accountManager.GetTokenByUserIdAsync(userId);
|
|
|
|
|
|
var refresh_Token = _accountManager.CreateRefreshToken(userId);
|
|
|
|
|
|
context.Response.Headers["access_token"] = access_Token;
|
|
|
|
|
|
context.Response.Headers["refresh_token"] = refresh_Token;
|
2024-01-24 16:07:54 +08:00
|
|
|
|
|
2025-06-29 15:18:30 +08:00
|
|
|
|
//请求头替换,补充后续鉴权逻辑
|
|
|
|
|
|
context.Request.Headers["Authorization"] = "Bearer " + access_Token;
|
2025-06-29 19:34:09 +08:00
|
|
|
|
|
|
|
|
|
|
//刷新鉴权状态
|
|
|
|
|
|
context.RefreshAuthentication();
|
2025-06-29 15:18:30 +08:00
|
|
|
|
}
|
2024-01-24 16:07:54 +08:00
|
|
|
|
}
|
|
|
|
|
|
}
|
2025-06-29 15:18:30 +08:00
|
|
|
|
|
2024-01-24 16:07:54 +08:00
|
|
|
|
await next(context);
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
public static class RefreshTokenExtensions
|
|
|
|
|
|
{
|
|
|
|
|
|
public static IApplicationBuilder UseRefreshToken([NotNull] this IApplicationBuilder app)
|
|
|
|
|
|
{
|
|
|
|
|
|
app.UseMiddleware<RefreshTokenMiddleware>();
|
|
|
|
|
|
return app;
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
2025-06-29 15:18:30 +08:00
|
|
|
|
}
|
