Merge pull request #20 from WeihanLi/dev

WeihanLi · web-flow · commit b377400a7e9d · 2022-03-15T19:55:38.000+08:00
1.2.0 preview 7
diff --git a/src/WeihanLi.Web.Extensions/Authorization/Jwt/JwtTokenOptions.cs b/src/WeihanLi.Web.Extensions/Authorization/Jwt/JwtTokenOptions.cs
@@ -73,7 +73,7 @@ public class JwtTokenOptions
 
     internal SigningCredentials SigningCredentials { get; set; }
 
-    internal TokenValidationParameters GetTokenValidationParameters(Action<TokenValidationParameters> parametersAction = null)
+    public TokenValidationParameters GetTokenValidationParameters(Action<TokenValidationParameters> parametersAction = null)
     {
         var parameters = new TokenValidationParameters
         {
diff --git a/src/WeihanLi.Web.Extensions/Authorization/Jwt/JwtTokenService.cs b/src/WeihanLi.Web.Extensions/Authorization/Jwt/JwtTokenService.cs
@@ -14,12 +14,21 @@ public class JwtTokenService : ITokenService
 {
     private readonly JwtSecurityTokenHandler _tokenHandler = new();
     private readonly JwtTokenOptions _tokenOptions;
-    private readonly Lazy<TokenValidationParameters> _lazyTokenValidationParameters;
+
+    private readonly Lazy<TokenValidationParameters> _lazyTokenValidationParameters,
+        _lazyRefreshTokenValidationParameters;
 
     public JwtTokenService(IOptions<JwtTokenOptions> tokenOptions)
     {
         _tokenOptions = tokenOptions.Value;
-        _lazyTokenValidationParameters = new(() => _tokenOptions.GetTokenValidationParameters());
+        _lazyTokenValidationParameters = new(() =>
+            _tokenOptions.GetTokenValidationParameters());
+        _lazyRefreshTokenValidationParameters = new(() =>
+            _tokenOptions.GetTokenValidationParameters(parameters =>
+            {
+                parameters.ValidAudience = GetRefreshTokenAudience();
+            })
+        );
     }
 
     public Task<TokenEntity> GenerateToken(params Claim[] claims)
@@ -32,13 +41,7 @@ public Task<TokenValidationResult> ValidateToken(string token)
 
     public virtual async Task<TokenEntity> RefreshToken(string refreshToken)
     {
-        // TODO: cache validation parameters
-        var validationParameters = _tokenOptions.GetTokenValidationParameters(parameters =>
-        {
-            parameters.ValidAudience = GetRefreshTokenAudience();
-        });
-
-        var refreshTokenValidateResult = await _tokenHandler.ValidateTokenAsync(refreshToken, validationParameters);
+        var refreshTokenValidateResult = await _tokenHandler.ValidateTokenAsync(refreshToken, _lazyRefreshTokenValidationParameters.Value);
         if (!refreshTokenValidateResult.IsValid)
         {
             throw new InvalidOperationException("Invalid RefreshToken", refreshTokenValidateResult.Exception);
@@ -54,7 +57,7 @@ protected virtual Task<string> GetRefreshToken(Claim[] claims)
             audience: GetRefreshTokenAudience(),
             claims: claims,
             notBefore: now.UtcDateTime,
-            expires: now.Add(_tokenOptions.ValidFor).UtcDateTime,
+            expires: now.Add(_tokenOptions.RefreshTokenValidFor).UtcDateTime,
             signingCredentials: _tokenOptions.SigningCredentials);
         var encodedJwt = _tokenHandler.WriteToken(jwt);
         return encodedJwt.WrapTask();

Original file line number	Diff line number	Diff line change
`@@ -73,7 +73,7 @@ public class JwtTokenOptions`
`73`	`73`
`74`	`74`	`internal SigningCredentials SigningCredentials { get; set; }`
`75`	`75`
`76`		`- internal TokenValidationParameters GetTokenValidationParameters(Action<TokenValidationParameters> parametersAction = null)`
	`76`	`+ public TokenValidationParameters GetTokenValidationParameters(Action<TokenValidationParameters> parametersAction = null)`
`77`	`77`	`{`
`78`	`78`	`var parameters = new TokenValidationParameters`
`79`	`79`	`{`