c#中token的使用方法

最新推荐文章于 2024-01-02 11:37:06 发布

DarkAfraid

最新推荐文章于 2024-01-02 11:37:06 发布

阅读量1.2w

点赞数 8

分类专栏： C# 文章标签： C#

本文链接：https://blog.csdn.net/DarkAfraid/article/details/103179070

版权

C# 专栏收录该内容

3 篇文章 0 订阅

订阅专栏

c#中token的使用

token的存在意义
使用方法

token的存在意义

这是我初略了解的token的存在意义

用户使用用户名密码来请求服务器
服务器进行验证用户的信息
服务器通过验证发送给用户一个token
客户端存储token，并在每次请求时附送上这个token值
服务端验证token值，并返回数据

使用方法

先安装一个JWT，注意NetFramework的版本

创建一个工具类TokenInfo.cs

using JWT;
using JWT.Algorithms;
using JWT.Serializers;
using System;
using System.Collections.Generic;
using System.Web;
using System.Web.Script.Serialization;

namespace ProjectLYG.Common
{
    public class TokenInfo
    {
        public TokenInfo()
        {
            UserName = "j";
            Pwd = "123456";
        }
        public string UserName { get; set; }
        public string Pwd { get; set; }
    }

    public class TokenHelper
    {
        public static string SecretKey = "bqsid123k12s0h1d3uhf493fh02hdd102h9s3h38ff";//这个服务端加密秘钥 属于私钥
        private static JavaScriptSerializer myJson = new JavaScriptSerializer();
        /// <summary>
        /// 生成Token
        /// </summary>
        /// <param name="M"></param>
        /// <returns></returns>
        public static string GenToken(TokenInfo M)
        {
            var payload = new Dictionary<string, dynamic>
            {
                {"UserName", M.UserName},//用于存放当前登录人账户信息
                {"UserPwd", M.Pwd}//用于存放当前登录人登录密码信息
            };
            IJwtAlgorithm algorithm = new HMACSHA256Algorithm();
            IJsonSerializer serializer = new JsonNetSerializer();
            IBase64UrlEncoder urlEncoder = new JwtBase64UrlEncoder();
            IJwtEncoder encoder = new JwtEncoder(algorithm, serializer, urlEncoder);
            return encoder.Encode(payload, SecretKey);
        }
        /// <summary>
        /// 验证Token
        /// </summary>
        /// <returns></returns>
        public static string DecodeToken()
        {
            //获取request中的token
            string token = HttpContext.Current.Request.Headers["Authorization"];
            //去掉前面的Bearer
            if (token != null && token.StartsWith("Bearer"))
                token = token.Substring("Bearer ".Length).Trim();
            try
            {
                var json = GetTokenJson(token);
                TokenInfo info = myJson.Deserialize<TokenInfo>(json);
                return "Token is true";
            }
            catch (TokenExpiredException)
            {
                return "Token has expired";
            }
            catch (SignatureVerificationException)
            {
                return "Token has invalid signature";
            }
        }

        public static string GetTokenJson(string token)
        {
            try
            {
                IJsonSerializer serializer = new JsonNetSerializer();
                IDateTimeProvider provider = new UtcDateTimeProvider();
                IJwtValidator validator = new JwtValidator(serializer, provider);
                IBase64UrlEncoder urlEncoder = new JwtBase64UrlEncoder();
                IJwtDecoder decoder = new JwtDecoder(serializer, validator, urlEncoder);
                var json = decoder.Decode(token, SecretKey, verify: true);
                return json;
            }
            catch (Exception)
            {
                throw;
            }
        }
    }
}

使用方法

 				//生成Token
                TokenInfo tokenInfo = new TokenInfo();
                tokenInfo.Pwd = password;
                tokenInfo.UserName = tel;
                string token = TokenHelper.GenToken(tokenInfo);
                ........
                 //token验证
                string tokenInfo = TokenHelper.DecodeToken();
                ........