NetCore 生成JWT
调用
private readonly IESP_UsersBLL _UsersBLL; private readonly IConfiguration _configuration; private JWTService _jwtService; public SysUserController(IConfiguration configuration, IESP_UsersBLL _IUsersBLL) { _UsersBLL = _IUsersBLL; _configuration = configuration; _jwtService = new JWTService(_configuration); } string strToken = ""; try { //根据用户编号生成JWT strToken = _jwtService.GenerateToken(users.UserId, users.Id.ToString().ToUpper(), users.Roles); //加入登录信息 _UsersBLL.AddUserLog(users, ip); } catch (Exception ex) { throw new MyArgumentException(106); }
生成JWT
public class JWTService { private readonly IConfiguration _configuration; public JWTService(IConfiguration configuration) { _configuration = configuration; } /// <summary> /// JWT生成 /// </summary> /// <param name="userId"></param> /// <param name="expireMinutes"></param> /// <returns></returns> public string GenerateToken(string userId, string userGuid = "",string roles="", int expireMinutes = 30) { var issuer = _configuration.GetValue<string>("JwtSettings:Issuer"); var signKey = _configuration.GetValue<string>("JwtSettings:SignKey"); //要加入到 JWT Token 中的Claims var claims = new List<Claim>(); // 在 RFC 7519 規格 claims.Add(new Claim(JwtRegisteredClaimNames.Iss, issuer)); claims.Add(new Claim(JwtRegisteredClaimNames.Sub, userId)); claims.Add(new Claim(JwtRegisteredClaimNames.Aud, "The Audience")); claims.Add(new Claim(JwtRegisteredClaimNames.Exp, DateTimeOffset.UtcNow.AddMinutes(expireMinutes).ToUnixTimeSeconds().ToString())); claims.Add(new Claim(JwtRegisteredClaimNames.Nbf, DateTimeOffset.UtcNow.ToUnixTimeSeconds().ToString())); claims.Add(new Claim(JwtRegisteredClaimNames.Iat, DateTimeOffset.UtcNow.ToUnixTimeSeconds().ToString())); claims.Add(new Claim(JwtRegisteredClaimNames.Jti, userGuid.ToString())); //角色 claims.Add(new Claim("roles", roles)); // claims.Add(new Claim("roles", "Users")); var userClaimsIdentity = new ClaimsIdentity(claims); // JWT签章 var securityKey = new SymmetricSecurityKey(Encoding.UTF8.GetBytes(signKey)); // HmacSha256 var signingCredentials = new SigningCredentials(securityKey, SecurityAlgorithms.HmacSha256Signature); // 建立 SecurityTokenDescriptor var tokenDescriptor = new SecurityTokenDescriptor { Issuer = issuer, NotBefore = DateTime.Now, IssuedAt = DateTime.Now, Subject = userClaimsIdentity, Expires = DateTime.Now.AddDays(1).AddMinutes(expireMinutes), SigningCredentials = signingCredentials }; //JWT securityToken 物件 var tokenHandler = new JwtSecurityTokenHandler(); var securityToken = tokenHandler.CreateToken(tokenDescriptor); var serializeToken = tokenHandler.WriteToken(securityToken); return serializeToken; } }
using Microsoft.IdentityModel.Tokens;
using System.IdentityModel.Tokens.Jwt;
using System.Reflection;
using System.Security.Claims;
program:
using Autofac; using Autofac.Extensions.DependencyInjection; using ESP.BLL; using ESP.BLL.CustomizeException; using ESP.JWT.Service; using Microsoft.AspNetCore.Authentication.JwtBearer; using Microsoft.AspNetCore.Authorization; using Microsoft.IdentityModel.Tokens; using Microsoft.OpenApi.Models; using System.Configuration; using System.IdentityModel.Tokens.Jwt; using System.Reflection; using System.Text; var builder = WebApplication.CreateBuilder(args); // Learn more about configuring Swagger/OpenAPI at https://aka.ms/aspnetcore/swashbuckle builder.Services.AddEndpointsApiExplorer(); //AutoFac容器注入 builder.Host.UseServiceProviderFactory(new AutofacServiceProviderFactory()); builder.Host.ConfigureContainer<ContainerBuilder>(builder => { Assembly assembly = Assembly.Load(ServiceCore.GetAssemblyName()); builder.RegisterAssemblyTypes(assembly) .AsImplementedInterfaces() .InstancePerDependency(); }); //2022-05-07 注册异常自定义过滤器 builder.Services.AddControllers(o => o.Filters.Add(typeof(CustomizeExceptionAttribute))); #region 读取配置信息 //注入JWT配置文件 builder.Services.Configure<JWTConfig>(builder.Configuration.GetSection("JWT")); JWTConfig config = new JWTConfig(); builder.Configuration.GetSection("JWT").Bind(config); #endregion builder.Services.AddControllers(); //2022-07-27 zny LOG4日志注册 builder.Services.AddLogging(cfg => { cfg.AddLog4Net(); }); var corsPolicyName = "_myAllowSpecificOrigins"; builder.Services.AddCors(options => { options.AddPolicy(name: corsPolicyName, builder => { /*builder.WithOrigins("http://localhost", "*") .AllowAnyHeader() .AllowAnyMethod();*/ builder.AllowAnyOrigin().AllowAnyMethod().AllowAnyHeader(); }); }); var app = builder.Build(); // Configure the HTTP request pipeline. if (app.Environment.IsDevelopment()) { app.UseDeveloperExceptionPage(); app.UseSwagger(); app.UseSwaggerUI(); app.UseSwaggerUI(c => c.SwaggerEndpoint("/swagger/v1/swagger.json", "OpenCore.JWT.Server v1")); } app.UseHttpsRedirection(); app.UseCors(corsPolicyName); app.MapControllers(); //下面的app添加这个 和这个长得很像 app.UseAuthorization(); app.UseAuthentication();//在前开户认证 app.UseAuthorization();//在后授权中间件 app.UseHttpsRedirection(); app.UseRouting(); app.UseEndpoints(endpoints => { endpoints.MapControllers(); }); app.Run();
"JwtSettings": {
"Issuer": "JwtAut**********",
"SignKey": "1Zl4h9*********************Eb"
},
运行项目自动打开 Swagger页面设置
浙公网安备 33010602011771号