![](/img/trans.png)
[英]How can i get JSON ARRAY value from POSTGRESQL(npgsql) table in dotnet core 5
[英]How can I get route attributes dotnet core 3?
我已將 dotnet core 2.2 升級到 3.preview 7。
所以在那之后,我無法獲得自定義屬性。
context.Resource
在 2.2 版中是AuthorizationFilterContext
類型,但在 3 版中是Microsoft.AspNetCore.Http.Endpoint
類型。
現在我無法從端點獲取屬性。
using Microsoft.AspNetCore.Authorization;
using Microsoft.AspNetCore.Mvc.Controllers;
using Microsoft.AspNetCore.Mvc.Filters;
using System;
using System.Collections.Generic;
using System.Linq;
using System.Reflection;
using System.Threading.Tasks;
namespace Gamma.Core.Security
{
public abstract class AttributeAuthorizationHandler<TRequirement, TAttribute>
: AuthorizationHandler<TRequirement> where TRequirement
: IAuthorizationRequirement where TAttribute : Attribute
{
Microsoft.AspNetCore.Http.IHttpContextAccessor _httpContextAccessor = null;
public AttributeAuthorizationHandler(Microsoft.AspNetCore.Http.IHttpContextAccessor httpContextAccessor)
{
_httpContextAccessor = httpContextAccessor;
}
protected override Task HandleRequirementAsync(AuthorizationHandlerContext context, TRequirement requirement)
{
var attributes = new List<TAttribute>();
var action = (context.Resource as AuthorizationFilterContext)?.ActionDescriptor as ControllerActionDescriptor;
if (context.Resource is Microsoft.AspNetCore.Http.Endpoint endpoint)
{
//endpoint.
}
if (action != null)
{
attributes.AddRange(GetAttributes(action.MethodInfo));
}
return HandleRequirementAsync(context, requirement, attributes);
}
protected abstract Task HandleRequirementAsync(AuthorizationHandlerContext context, TRequirement requirement, IEnumerable<TAttribute> attributes);
private static IEnumerable<TAttribute> GetAttributes(MemberInfo memberInfo)
{
return memberInfo.GetCustomAttributes(typeof(TAttribute), false).Cast<TAttribute>();
}
}
}
我能夠使用Brian's answer 中的ControllerActionDescriptor
從AuthorizationHandlerContext
獲取 .NET Core 3.1 中的自定義屬性。
private IEnumerable<TAttribute> GetAttributes<TAttribute>(AuthorizationHandlerContext authContext)
{
if (authContext.Resource is RouteEndpoint routeEndpoint)
{
var actionDescriptor = routeEndpoint.Metadata.OfType<ControllerActionDescriptor>().SingleOrDefault();
var attributes = actionDescriptor?.MethodInfo.GetCustomAttributes(typeof(TAttribute), false).Cast<TAttribute>();
return attributes;
}
return null;
}
尚未找到答案,但這可能會有所幫助:
https://docs.microsoft.com/en-us/aspnet/core/security/authorization/policies?view=aspnetcore-3.0有一節“在處理程序中訪問 MVC 請求上下文”,但這是錯誤的。
然而,在“反饋”下,他們的 2 個問題看起來與最有希望的答案相關,說將下面的代碼添加到AuthorizationHandler
。
這可以訪問controllerActionDescriptor
,但是正如您所看到的,我查看了各種屬性,但沒有一個給我當前的路由數據:
var controllerActionDescriptor = routeEndpoint.Metadata
.OfType<ControllerActionDescriptor>()
.SingleOrDefault();
if (controllerActionDescriptor != null)
{
var a = controllerActionDescriptor.AttributeRouteInfo;
var p = controllerActionDescriptor.Parameters;
var ep = controllerActionDescriptor.EndpointMetadata;
var r = controllerActionDescriptor.RouteValues;
}
從 .net 5 開始,上下文是HttpContext
protected override Task HandleRequirementAsync(AuthorizationHandlerContext context, TRequirement requirement)
{
if(context is HttpContext httContext){
var endpoint = context.GetEndPoint();
} else {
throw ... // let's see how things will move with next version of .net
}
}
我找到了一個解決方案,在 ConfigureServices 中將 IHttpContextAccessor 注冊到 IOC
services.AddSingleton<IHttpContextAccessor, HttpContextAccessor>();
然后在 AttributeAuthorizationHandler 中獲取它
public class AccountLoginAuthorizeHandler : AttributeAuthorizationHandler<AccountLoginAuthorizationRequirement, AccountLoginAttribute>
{
private readonly IHttpContextAccessor _httpContextAccessor;
public PermissionAuthorizeHandler(IHttpContextAccessor httpContextAccessor, IZaabeeRedisClient redisClient,
IOptions<LoginConfig> loginConfig)
{
_httpContextAccessor = httpContextAccessor ?? throw new ArgumentNullException(nameof(httpContextAccessor));
}
protected override Task HandleRequirementAsync(AuthorizationHandlerContext context, AccountLoginAuthorizationRequirement requirement, IEnumerable<AccountLoginAttribute> attributes)
{
if (context.Resource is AuthorizationFilterContext filterContext)
{
var httpContext = _httpContextAccessor.HttpContext;
//Do Something
}
else
//Do Something
context.Succeed(requirement);
return Task.CompletedTask;
}
}
聲明:本站的技術帖子網頁,遵循CC BY-SA 4.0協議,如果您需要轉載,請注明本站網址或者原文地址。任何問題請咨詢:yoyou2525@163.com.