【新增】jwt授权认证方式，增加AES加密解密处理，防止前端进行渗透解密伪造Token可能存在。

2026-03-24 20:37:20 +08:00 · 2024-05-08 22:20:04 +08:00
parent 5be1f7789b
commit d517d0d064
10 changed files with 151 additions and 48 deletions
--- a/CoreCms.Net.Auth/Policys/JwtToken.cs
+++ b/CoreCms.Net.Auth/Policys/JwtToken.cs
@@ -19,7 +19,7 @@ namespace CoreCms.Net.Auth.Policys
    /// <summary>
    /// JWTToken生成类
    /// </summary>
-    public class JwtToken
+    public static class JwtToken
    {
        /// <summary>
        /// 获取基于JWT的Token
@@ -27,7 +27,7 @@ namespace CoreCms.Net.Auth.Policys
        /// <param name="claims">需要在登陆的时候配置</param>
        /// <param name="permissionRequirement">在startup中定义的参数</param>
        /// <returns></returns>
-        public static dynamic BuildJwtToken(Claim[] claims, PermissionRequirement permissionRequirement)
+        public static JwtTokenResponseJson BuildJwtToken(Claim[] claims, PermissionRequirement permissionRequirement)
        {
            var now = DateTime.Now;
            // 实例化JwtSecurityToken