FilesExpand file tree

 master

/

JwtHelper.cs

Copy path

Blame

More file actions

Blame

More file actions

Latest commit

 

History

History

History

112 lines (97 loc) · 3.83 KB

 master

/

JwtHelper.cs

Top

File metadata and controls

• Code
• Blame

112 lines (97 loc) · 3.83 KB

Raw

Copy raw file

Download raw file

Open symbols panel

Edit and raw actions

1

2

3

4

5

6

7

8

9

10

11

12

13

14

15

16

17

18

19

20

21

22

23

24

25

26

27

28

29

30

31

32

33

34

35

36

37

38

39

40

41

42

43

44

45

46

47

48

49

50

51

52

53

54

55

56

57

58

59

60

61

62

63

64

65

66

67

68

69

70

71

72

73

74

75

76

77

78

79

80

81

82

83

84

85

86

87

88

89

90

91

92

93

94

95

96

97

98

99

100

101

102

103

104

105

106

107

108

109

110

111

112

using Blog.Core.Common;

using Microsoft.IdentityModel.Tokens;

using System;

using System.Collections.Generic;

using System.IdentityModel.Tokens.Jwt;

using System.Linq;

using System.Security.Claims;

using System.Text;

using System.Threading.Tasks;

namespace Blog.Core.AuthHelper

{

public class JwtHelper

{

/// <summary>

/// 颁发JWT字符串

/// </summary>

/// <param name="tokenModel"></param>

/// <returns></returns>

public static string IssueJWT(TokenModelJWT tokenModel)

{

var dateTime = DateTime.UtcNow;

string iss = Appsettings.app(new string[] { "Audience", "Issuer" });

string aud = Appsettings.app(new string[] { "Audience", "Audience" });

string secret = Appsettings.app(new string[] { "Audience", "Secret" });

//var claims = new Claim[] //old

var claims = new List<Claim>

{

//下边为Claim的默认配置

new Claim(JwtRegisteredClaimNames.Jti, tokenModel.Uid.ToString()),

new Claim(JwtRegisteredClaimNames.Iat, $"{new DateTimeOffset(DateTime.Now).ToUnixTimeSeconds()}"),

new Claim(JwtRegisteredClaimNames.Nbf,$"{new DateTimeOffset(DateTime.Now).ToUnixTimeSeconds()}") ,

//这个就是过期时间，目前是过期100秒，可自定义，注意JWT有自己的缓冲过期时间

new Claim (JwtRegisteredClaimNames.Exp,$"{new DateTimeOffset(DateTime.Now.AddSeconds(100)).ToUnixTimeSeconds()}"),

new Claim(JwtRegisteredClaimNames.Iss,iss),

new Claim(JwtRegisteredClaimNames.Aud,aud),

//new Claim(ClaimTypes.Role,tokenModel.Role),//为了解决一个用户多个角色(比如：Admin,System)，用下边的方法

};

// 可以将一个用户的多个角色全部赋予；

// 作者：DX 提供技术支持；

claims.AddRange(tokenModel.Role.Split(',').Select(s => new Claim(ClaimTypes.Role, s)));

//秘钥 (SymmetricSecurityKey 对安全性的要求，密钥的长度太短会报出异常)

var key = new SymmetricSecurityKey(Encoding.UTF8.GetBytes(secret));

var creds = new SigningCredentials(key, SecurityAlgorithms.HmacSha256);

var jwt = new JwtSecurityToken(

issuer: iss,

claims: claims,

signingCredentials: creds);

var jwtHandler = new JwtSecurityTokenHandler();

var encodedJwt = jwtHandler.WriteToken(jwt);

return encodedJwt;

}

/// <summary>

/// 解析

/// </summary>

/// <param name="jwtStr"></param>

/// <returns></returns>

public static TokenModelJWT SerializeJWT(string jwtStr)

{

var jwtHandler = new JwtSecurityTokenHandler();

JwtSecurityToken jwtToken = jwtHandler.ReadJwtToken(jwtStr);

object role = new object(); ;

try

{

jwtToken.Payload.TryGetValue(ClaimTypes.Role, out role);

}

catch (Exception e)

{

Console.WriteLine(e);

throw;

}

var tm = new TokenModelJWT

{

Uid = (jwtToken.Id).ObjToInt(),

Role = role != null ? role.ObjToString() : "",

};

return tm;

}

}

/// <summary>

/// 令牌

/// </summary>

public class TokenModelJWT

{

/// <summary>

/// Id

/// </summary>

public long Uid { get; set; }

/// <summary>

/// 角色

/// </summary>

public string Role { get; set; }

/// <summary>

/// 职能

/// </summary>

public string Work { get; set; }

}

}