登录控制器
登录控制器的代码
public class LoginController : BaseController
{
#region 服务依赖
private readonly ITokenService tokenHelper;
public LoginController(ITokenService _tokenHelper)
{
tokenHelper = _tokenHelper;
}
#endregion
public ActionResult Login(LoginParaModel paraModel)
{
//根据用户名和密码去数据库查询,判断用户是否存在,判断密码是否正确
if (paraModel.UserLoginName == "NoUser")
{
throw new Exception("当前用户不存在");
}
//带额外数据的JWT
//TnToken tnToken = tokenHelper.CreateToken(keyValuePairs);
//不带额外数据的JWT
LoginViewModel viewModel = tokenHelper.CreateToken();
//返回前端
return JsonResult(viewModel);
}
}
登录控制器的参数模型
public class LoginParaModel
{
/// <summary>
/// 用户登录名称
/// </summary>
[Required]
public string UserLoginName { get; set; }
/// <summary>
/// 登录密码
/// </summary>
[Required]
public string PassWord { get; set; }
}
登录控制器的返回值模型
public class LoginViewModel
{
/// <summary>
/// JsonWebToken字符串
/// </summary>
public string TokenStr { get; set; }
/// <summary>
/// JWT有效期
/// </summary>
public DateTime Expires { get; set; }
}
Token服务
Token服务接口
public interface ITokenService
{
/// <summary>
/// 将一个Model作为额外数据,生成token
/// </summary>
/// <typeparam name="T"></typeparam>
/// <param name="user"></param>
/// <returns></returns>
LoginViewModel CreateToken<T>(T user) where T : class;
/// <summary>
/// 创建 TOKEN 无负载数据
/// </summary>
/// <returns></returns>
LoginViewModel CreateToken();
}
Token服务实例
public class TokenService : ITokenService
{
#region 依赖注入
private readonly IOptions<JwtConfig> _options;
public TokenService(IOptions<JwtConfig> options)
{
_options = options;
}
#endregion
//创建 TOKEN 无负载数据
public LoginViewModel CreateToken()
{
List<Claim> claims = new List<Claim>();
return CreateToken(claims);
}
/// <summary>
/// 将一个Model作为额外数据,生成token
/// </summary>
/// <typeparam name="T"></typeparam>
/// <param name="user"></param>
/// <returns></returns>
public LoginViewModel CreateToken<T>(T user) where T : class
{
//携带的额外数据,类似一个键值对
List<Claim> claims = new List<Claim>();
//填充负载数据的键值对
foreach (var item in user.GetType().GetProperties())
{
object obj = item.GetValue(user);
string value = "";
if (obj != null)
value = obj.ToString();
claims.Add(new Claim(item.Name, value));
}
//创建token
return CreateToken(claims);
}
private LoginViewModel CreateToken(List<Claim> claims)
{
var now = DateTime.Now; var expires = now.Add(TimeSpan.FromMinutes(_options.Value.AccessTokenExpiresMinutes));
var token = new JwtSecurityToken(
issuer: _options.Value.Issuer,//Token发布者
audience: _options.Value.Audience,//Token接受者
claims: claims,//携带的负载数据
notBefore: now,//当前时间token生成时间
expires: expires,//过期时间
signingCredentials: new SigningCredentials(
new SymmetricSecurityKey(Encoding.UTF8.GetBytes(_options.Value.IssuerSigningKey)), SecurityAlgorithms.HmacSha256));
return new LoginViewModel { TokenStr = new JwtSecurityTokenHandler().WriteToken(token), Expires = expires };
}
}
appsettings.json中添加相关配置
//JsonWebToken配置
"JsonWebToken": {
"Issuer": "Wu-Tian", //Token发布者
"Audience": "UX", //Token接受者
"IssuerSigningKey": "ThisIsIssuerSigningKey", //签名秘钥(拿到秘钥就可以构建服务器认可的token)
"AccessTokenExpiresMinutes": "30" //过期时间(分钟)
}
appsettings.json中相关配置对应的模型
public class JwtConfig
{
/// <summary>
/// 发布者
/// </summary>
public string Issuer { get; set; }
/// <summary>
/// 接收者
/// </summary>
public string Audience { get; set; }
/// <summary>
/// 发布者秘钥
/// </summary>
public string IssuerSigningKey { get; set; }
/// <summary>
/// Token有效的分钟数
/// </summary>
public int AccessTokenExpiresMinutes { get; set; }
}
Startup.cs中添加相关服务
#region JsonWebToken服务相关
//JsonWebToken服务依赖注入
services.AddScoped(typeof(ITokenService), typeof(TokenService));
//读取配置文件配置的JsonWebToken相关配置
services.Configure<JwtConfig>(Configuration.GetSection("JsonWebToken"));
//启用JsonWebToken
services.AddAuthentication(Options =>
{
Options.DefaultAuthenticateScheme = JwtBearerDefaults.AuthenticationScheme;
Options.DefaultChallengeScheme = JwtBearerDefaults.AuthenticationScheme;
}).
AddJwtBearer();
#endregion
//使用认证中间件
app.UseAuthentication();