using Microsoft.AspNetCore.Authentication ;
using Microsoft.AspNetCore.Authentication.JwtBearer ;
using Microsoft.AspNetCore.Http ;
using SqlSugar ;
using System ;
using System.Collections.Generic ;
using System.Linq ;
using System.Net.Http.Headers ;
using System.Text ;
using System.Threading.Tasks ;
namespace ReZero.SuperAPI
{
internal class InstanceManager
{
public static async Task WriteFileAsync ( HttpContext context , ZeroInterfaceList interInfo , object data )
{
var fileBytes = ( byte [ ] ) data ;
context . Response . ContentType = "application/octet-stream" ; // Or the appropriate MIME type for your file
context . Response . ContentLength = fileBytes . Length ;
var fileName = string . Format ( interInfo ! . CustomResultModel ! . GroupName , DateTime . Now . ToString ( "yyyyMMddHHmmss" ) ) ;
var contentDisposition = new ContentDispositionHeaderValue ( "attachment" ) ;
contentDisposition . FileName = fileName ;
context . Response . Headers . Add ( "Content-Disposition" , contentDisposition . ToString ( ) ) ;
// Write the file bytes to the response body
await context . Response . Body . WriteAsync ( fileBytes , 0 , fileBytes . Length ) ;
}
public static async Task < bool > AuthorizationAsync ( HttpContext context , InterfaceContext dynamicInterfaceContext )
{
// 添加对医保接口的特殊判断
var url = context . Request . Path . ToString ( ) . ToLower ( ) ;
if ( url . Contains ( "/medicalinsurancecontroller/" ) )
{
Console . WriteLine ( $"医保接口跳过JWT验证: {url}" ) ;
return true ;
}
if ( SuperAPIModule . _ apiOptions ! . InterfaceOptions ! . NoAuthorizationFunc ! = null )
{
if ( SuperAPIModule . _ apiOptions ! . InterfaceOptions ! . NoAuthorizationFunc ( dynamicInterfaceContext ) = = true )
{
return true ;
}
}
if ( SuperAPIModule . _ apiOptions ? . InterfaceOptions ? . Jwt ? . Enable ! = true )
{
return true ;
}
if ( context . Request . Path . ToString ( ) ? . ToLower ( ) = = PubConst . Jwt_TokenUrl )
{
return true ;
}
if ( SuperAPIModule . _ apiOptions ? . InterfaceOptions ? . Jwt ? . DisableSystemInterface = = true )
{
if ( dynamicInterfaceContext . InterfaceType = = InterfaceType . SystemApi )
{
context . Response . StatusCode = 4 0 1 ;
throw new Exception ( TextHandler . GetCommonText ( "系统接口被禁用无法访问,修改JWT参数DisableSystemInterface" , "If the system interface is disabled and cannot be accessed, modify the JWT parameter DisableSystemInterface" ) ) ;
}
}
if ( url . StartsWith ( "/public/" ) )
{
return true ;
}
var jsonClaims = SuperAPIModule . _ apiOptions ? . InterfaceOptions ? . Jwt . Claim ? ? new List < Configuration . ClaimItem > ( ) ; ;
var authHeader = context . Request . Headers [ "Authorization" ] . FirstOrDefault ( ) ;
if ( authHeader ! = null & & authHeader . StartsWith ( "Bearer " ) )
{
var token = authHeader . Split ( ' ' ) [ 1 ] ;
try
{
// 进行JWT令牌验证,例如使用Microsoft.AspNetCore.Authentication.JwtBearer包提供的验证器
var authResult = await context . AuthenticateAsync ( JwtBearerDefaults . AuthenticationScheme ) ;
if ( authResult . Succeeded )
{
var claims = authResult . Principal . Claims . ToList ( ) ;
foreach ( var claim in claims )
{
object value = claim . Value ;
var type = jsonClaims . FirstOrDefault ( it = > claim . Type ? . ToLower ( ) = = it . FieldName ? . ToLower ( ) ) ? . Type ;
if ( ! string . IsNullOrEmpty ( type ) )
{
value = UtilMethods . ConvertDataByTypeName ( type , value + "" ) ;
}
dynamicInterfaceContext . AttachClaimToHttpContext ( claim . Type , value ) ;
}
if ( claims . Any ( ) )
{
var userName = claims [ 0 ] . Value ;
var list = CacheManager < ZeroPermissionInfo > . Instance . GetList ( ) ;
if ( list . Any ( ) & & dynamicInterfaceContext ? . InterfaceType = = InterfaceType . DynamicApi )
{
var mappings = CacheManager < ZeroPermissionMapping > . Instance . GetList ( ) ;
if ( ! mappings
. Where ( it = > it . UserName ! . ToLower ( ) = = userName ? . ToLower ( ) )
. Where ( it = > it . InterfaceId = = dynamicInterfaceContext ? . InterfaceInfo ? . Id )
. Any ( ) )
{
throw new Exception ( TextHandler . GetCommonText ( "当前用户在【接口授权】中没有配置可以访问的接口权限 或者 清空所有【接口授权】中的数据" , "No interface permission is configured for the current user or the data in all interface permissions is cleared" ) ) ;
}
}
}
return true ;
}
else
{
// 用户未通过身份验证,可能需要进行一些处理,例如返回未经授权的错误
context . Response . StatusCode = 4 0 1 ;
throw new Exception ( TextHandler . GetCommonText ( "用户未通过身份验证" , "The user is not authenticated" ) ) ;
}
}
catch ( Exception ex )
{
// JWT验证失败
Console . WriteLine ( $"JWT验证失败详情: {ex.Message}" ) ;
context . Response . StatusCode = 4 0 1 ;
throw new Exception ( TextHandler . GetCommonText ( "JWT验证失败" , "JWT authentication failed" ) ) ;
}
}
else
{
// Authorization标头缺失或格式不正确
context . Response . StatusCode = 4 0 1 ;
throw new Exception ( TextHandler . GetCommonText ( "Authorization标头缺失或格式不正确" , "The Authorization header is missing or incorrectly formatted" ) ) ;
}
}
public static string GetActionTypeName ( ActionType actionType )
{
return $"ReZero.SuperAPI.{actionType}" ;
}
public static string GetActionTypeName ( DataModel dataModel )
{
return $"ReZero.SuperAPI.{dataModel.ActionType}" ;
}
public static string GetActionTypeElementName ( ActionType actionType )
{
return $"ReZero.SuperAPI.Element{actionType}" ;
}
public static string GetSaveInterfaceType ( ActionType actionType )
{
return $"ReZero.SuperAPI.SaveInterfaceList{actionType}" ;
}
public static void CheckActionType ( DataModel dataModel , Type actionType )
{
if ( actionType = = null )
{
throw new ArgumentException ( $"Invalid ActionType: {dataModel.ActionType}" ) ;
}
}
}
}
