minimal api 踢用户下线实现

2024-10-15 15:42:08 +08:00 · 2024-10-15 15:42:08 +08:00 · 74a0c8923c
parent 947d6dc6d1
commit 74a0c8923c
9 changed files with 99 additions and 48 deletions
--- a/IRaCIS.Core.API/Progranm.cs
+++ b/IRaCIS.Core.API/Progranm.cs
@ -149,6 +149,7 @@ builder.Services.AddMasaMinimalAPIs(options =>
    options.RouteHandlerBuilder= t=> {
        t.RequireAuthorization()
        .AddEndpointFilter<LimitUserRequestAuthorizationEndpointFilter>()
        .AddEndpointFilter<UnifiedApiResultEndpointFilter>()
        .WithGroupName("Institution");
    };
@ -191,27 +192,6 @@ app.UseStatusCodePages(async context =>
 //app.UseExceptionHandler();
 app.UseExceptionHandler(o => { });
 //这里没生效，原因未知，官方文档也是这种写法，也用了GlobalExceptionHandler 尝试，还是不行，怀疑框架bug
 //app.UseExceptionHandler(configure =>
 //{
 //    configure.Run(async context =>
 //    {
 //        var exceptionHandlerPathFeature = context.Features.Get<IExceptionHandlerPathFeature>();
 //var ex = exceptionHandlerPathFeature?.Error;
 //context.Response.ContentType = "application/json";
 //if (ex != null)
 //{
 //    var errorInfo = $"Exception: {ex.Message}[{ex.StackTrace}]" + (ex.InnerException != null ? $" InnerException: {ex.InnerException.Message}[{ex.InnerException.StackTrace}]" : "");
 //    await context.Response.WriteAsync(JsonConvert.SerializeObject(ResponseOutput.NotOk($"{ex?.Message}")));
 //    Log.Logger.Error(errorInfo);
 //}
 //    });
 //});
 #region 暂时废弃
 //app.UseMiddleware<MultiDiskStaticFilesMiddleware>();
--- a/IRaCIS.Core.Application/BusinessFilter/LegacyController/EncreptApiResultFilter.cs
+++ b/IRaCIS.Core.Application/BusinessFilter/LegacyController/EncreptApiResultFilter.cs
--- a/IRaCIS.Core.Application/BusinessFilter/LegacyController/LimitUserRequestAuthorization.cs
+++ b/IRaCIS.Core.Application/BusinessFilter/LegacyController/LimitUserRequestAuthorization.cs
@ -13,24 +13,10 @@ namespace IRaCIS.Core.Application.Filter;
-public class LimitUserRequestAuthorization : IAsyncAuthorizationFilter
+public class LimitUserRequestAuthorization(
    IFusionCache _fusionCache, IUserInfo _userInfo, IStringLocalizer _localizer,
    IOptionsMonitor<ServiceVerifyConfigOption> _verifyConfig) : IAsyncAuthorizationFilter
 {
    public IStringLocalizer _localizer { get; set; }
    private readonly IFusionCache _fusionCache;
    private readonly IUserInfo _userInfo;
    private readonly IOptionsMonitor<ServiceVerifyConfigOption> _verifyConfig;
    public LimitUserRequestAuthorization(IFusionCache fusionCache, IUserInfo userInfo, IStringLocalizer localizer, IOptionsMonitor<ServiceVerifyConfigOption> verifyConfig)
    {
        _fusionCache = fusionCache;
        _userInfo = userInfo;
        _verifyConfig = verifyConfig;
        _localizer = localizer;
    }
    public async Task OnAuthorizationAsync(AuthorizationFilterContext context)
    {
--- a/IRaCIS.Core.Application/BusinessFilter/LegacyController/ModelActionFilter
+++ b/IRaCIS.Core.Application/BusinessFilter/LegacyController/ModelActionFilter
--- a/IRaCIS.Core.Application/BusinessFilter/LegacyController/ModelBinding.cs
+++ b/IRaCIS.Core.Application/BusinessFilter/LegacyController/ModelBinding.cs
--- a/IRaCIS.Core.Application/BusinessFilter/LegacyController/TrialResourceFilter.cs
+++ b/IRaCIS.Core.Application/BusinessFilter/LegacyController/TrialResourceFilter.cs
--- a/IRaCIS.Core.Application/BusinessFilter/MinimalAPI/LimitUserRequestAuthorizationEndpointFilter.cs
+++ b/IRaCIS.Core.Application/BusinessFilter/MinimalAPI/LimitUserRequestAuthorizationEndpointFilter.cs
@ -0,0 +1,85 @@
 using IRaCIS.Core.Application.Helper;
 using Microsoft.AspNetCore.Authorization;
 using Microsoft.AspNetCore.Http;
 using Microsoft.AspNetCore.Mvc;
 using Microsoft.Extensions.Logging;
 using Microsoft.Extensions.Options;
 using System;
 using System.Collections.Generic;
 using System.Linq;
 using System.Text;
 using System.Threading.Tasks;
 namespace IRaCIS.Core.Application.Service.BusinessFilter;
 #region minimalapi 流程
 public class LimitUserRequestAuthorizationEndpointFilter(
    IFusionCache _fusionCache, IUserInfo _userInfo, IStringLocalizer _localizer,
    IOptionsMonitor<ServiceVerifyConfigOption> _verifyConfig) : IEndpointFilter
 {
    public async ValueTask<object?> InvokeAsync(EndpointFilterInvocationContext context, EndpointFilterDelegate next)
    {
        var minutes = _verifyConfig.CurrentValue.AutoLoginOutMinutes;
        if (_verifyConfig.CurrentValue.OpenLoginLimit)
        {
            // 如果此请求允许匿名访问，不进行处理
            var endpoint = context.HttpContext.GetEndpoint();
            if (endpoint?.Metadata?.GetMetadata<IAllowAnonymous>() != null)
            {
                return await next(context);
            }
            // 没有从请求中取到 token
            if (string.IsNullOrWhiteSpace(_userInfo.UserToken))
            {
                context.HttpContext.Response.ContentType = "application/json";
                return Results.Json(ResponseOutput.NotOk(_localizer["LimitUser_AuthTokenMissing"]), statusCode: StatusCodes.Status200OK);
            }
            // 获取缓存中的用户 token
            var cacheUserToken = await _fusionCache.GetOrDefaultAsync<string>(CacheKeys.UserToken(_userInfo.Id));
            // 缓存中没有取到 token
            if (string.IsNullOrWhiteSpace(cacheUserToken))
            {
                // 设置当前用户最新 token
                await _fusionCache.SetAsync(CacheKeys.UserToken(_userInfo.Id), _userInfo.UserToken, TimeSpan.FromDays(7));
                await _fusionCache.SetAsync(CacheKeys.UserAutoLoginOut(_userInfo.Id), DateTime.Now.ToString("yyyy-MM-dd HH:mm:ss"), TimeSpan.FromMinutes(minutes));
            }
            // 如果是同一个用户
            else if (cacheUserToken == _userInfo.UserToken)
            {
                var cacheTime = await _fusionCache.GetOrDefaultAsync<string>(CacheKeys.UserAutoLoginOut(_userInfo.Id));
                // 如果过期，自动登出
                if (string.IsNullOrEmpty(cacheTime))
                {
                    context.HttpContext.Response.ContentType = "application/json";
                    return Results.Json(ResponseOutput.NotOk(_localizer["LimitUser_AccountAuto_LoginOut"], ApiResponseCodeEnum.AutoLoginOut), statusCode: StatusCodes.Status403Forbidden);
                }
                else
                {
                    await _fusionCache.SetAsync(CacheKeys.UserAutoLoginOut(_userInfo.Id), DateTime.Now.ToString("yyyy-MM-dd HH:mm:ss"), TimeSpan.FromMinutes(minutes));
                }
            }
            else
            {
                // 如果账户在其他地方已登录，当前用户被迫下线
                context.HttpContext.Response.ContentType = "application/json";
                return Results.Json(ResponseOutput.NotOk(_localizer["LimitUser_AccountLoggedInElsewhere"], ApiResponseCodeEnum.LoginInOtherPlace), statusCode: StatusCodes.Status403Forbidden);
            }
        }
        // 如果通过授权，继续执行请求管道
        return await next(context);
    }
 }
 #endregion
--- a/IRaCIS.Core.Application/BusinessFilter/MinimalAPI/UnifiedApiResultEndpointFilter.cs
+++ b/IRaCIS.Core.Application/BusinessFilter/MinimalAPI/UnifiedApiResultEndpointFilter.cs
@ -1,4 +1,5 @@
 using Microsoft.AspNetCore.Http;
 using Microsoft.AspNetCore.Mvc;
 using Microsoft.Extensions.Logging;
 using System;
 using System.Collections.Generic;
@ -11,14 +12,8 @@ namespace IRaCIS.Core.Application.Service.BusinessFilter;
 #region minimalapi 流程
-public class UnifiedApiResultEndpointFilter : IEndpointFilter
+public class UnifiedApiResultEndpointFilter(ILogger<UnifiedApiResultEndpointFilter> _logger) : IEndpointFilter
 {
    private readonly ILogger _logger;
    public UnifiedApiResultEndpointFilter(ILogger<UnifiedApiResultFilter> logger)
    {
        _logger = logger;
    }
    public async ValueTask<object?> InvokeAsync(EndpointFilterInvocationContext context, EndpointFilterDelegate next)
    {
@ -37,8 +32,13 @@ public class UnifiedApiResultEndpointFilter : IEndpointFilter
            return ResponseOutput.Ok(tuple.Item1, tuple.Item2);
        }
-        if (result is IResponseOutput)
+        if (result is IResponseOutput responseOutput)
        {      
            if (!string.IsNullOrWhiteSpace(responseOutput.LocalizedInfo))
            {
                //统一在这里记录国际化的日志信息
                _logger.LogWarning($"{responseOutput.LocalizedInfo}");
            }
            return result;
        }
--- a/IRaCIS.Core.Application/TestService.cs
+++ b/IRaCIS.Core.Application/TestService.cs
@ -58,7 +58,7 @@ namespace IRaCIS.Core.Application.Service
        public IResponseOutput GetTest()
        {
-            throw new BusinessValidationFailedException("手动抛出的异常");
+            //throw new BusinessValidationFailedException("手动抛出的异常");
            return ResponseOutput.Ok(_userInfo.IP);
        }