暂无

lg

2024-08-28 b0302c52519c650e24fb73e81ed93ff13c4516e2

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
using Microsoft.AspNetCore.Authorization;
using Microsoft.AspNetCore.Mvc.Authorization;
using Microsoft.AspNetCore.Mvc.Filters;
using Microsoft.AspNetCore.Mvc;
 
public class ApiAuthorizeAttribute : Attribute, IAuthorizationFilter
{
    public void OnAuthorization(AuthorizationFilterContext context)
    {
        string? token = context.HttpContext.Request.Headers["token"].FirstOrDefault()?.Split(' ').Last();
        if (string.IsNullOrEmpty(token)) token = "";
        if (HasAllowAnonymous(context) == false && token.Length < 5)
        {
            context.Result = new JsonResult(new { msg = "你无权做这些", code = 401 })
            {
                StatusCode = StatusCodes.Status401Unauthorized
            };
        }
    }
 
    private static bool HasAllowAnonymous(AuthorizationFilterContext context)
    {
        var filters = context.Filters;
        if (filters.OfType<IAllowAnonymousFilter>().Any())
        {
            return true;
        }
        var endpoint = context.HttpContext.GetEndpoint();
        return endpoint?.Metadata?.GetMetadata<IAllowAnonymous>() != null;
    }
}