
ASP Net Core 2.2 仅向需要授权的方法添加储物柜图标


我已经在我的 Web API 项目中实现了 swagger。我正在使用 JWT 授权,并[Authorize]在需要它的方法上使用属性。


services.AddSwaggerGen(c =>


    // Other swagger options

    c.AddSecurityDefinition("Bearer", new ApiKeyScheme


        In = "header",

        Description = "Please enter into field the word 'Bearer' following by space and your JWT token",

        Name = "Authorization",

        Type = "apiKey"


    c.AddSecurityRequirement(new Dictionary<string, IEnumerable<string>>


        { "Bearer", Enumerable.Empty<string>() },


    // Other swagger options



它在 swagger 中添加了一个新按钮 - 授权。











浏览 139回答 3


因为距离我问这个问题已经过去一个多月了。我是这样做的。我从 中删除了以下代码Startup.cs:c.AddSecurityDefinition("Bearer", new ApiKeyScheme{&nbsp; &nbsp; In = "header",&nbsp; &nbsp; Description = "Please enter into field the word 'Bearer' following by space and your JWT token",&nbsp; &nbsp; Name = "Authorization",&nbsp; &nbsp; Type = "apiKey"});c.AddSecurityRequirement(new Dictionary<string, IEnumerable<string>>{&nbsp; &nbsp; { "Bearer", Enumerable.Empty<string>() },});我添加了以下一项:c.OperationFilter<AddAuthHeaderOperationFilter>();当然还有AddAuthHeaderOperationFilter.cs:&nbsp; &nbsp; public class AddAuthHeaderOperationFilter : IOperationFilter&nbsp; &nbsp; {&nbsp; &nbsp; &nbsp; &nbsp; private readonly IHttpContextAccessor httpContextAccessor;&nbsp; &nbsp; &nbsp; &nbsp; public AddAuthHeaderOperationFilter(IHttpContextAccessor httpContextAccessor)&nbsp; &nbsp; &nbsp; &nbsp; {&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; this.httpContextAccessor = httpContextAccessor;&nbsp; &nbsp; &nbsp; &nbsp; }&nbsp; &nbsp; &nbsp; &nbsp; public void Apply(Operation operation, OperationFilterContext context)&nbsp; &nbsp; &nbsp; &nbsp; {&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; var filterDescriptor = context.ApiDescription.ActionDescriptor.FilterDescriptors;&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; var isAuthorized = filterDescriptor.Select(filterInfo => filterInfo.Filter).Any(filter => filter is AuthorizeFilter);&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; var allowAnonymous = filterDescriptor.Select(filterInfo => filterInfo.Filter).Any(filter => filter is IAllowAnonymousFilter);&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; if (isAuthorized && !allowAnonymous)&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; {&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; if (operation.Parameters == null)&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; operation.Parameters = new List<IParameter>();&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; operation.Parameters.Add(new NonBodyParameter&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; {&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; Name = "Authorization",&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; In = "header",&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; Description = "JWT access token",&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; Required = true,&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; Type = "string",&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; //Default = $"Bearer {token}"&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; });&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; operation.Responses.Add("401", new Response { Description = "Unauthorized" });&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; operation.Responses.Add("403", new Response { Description = "Forbidden" });&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; operation.Security = new List<IDictionary<string, IEnumerable<string>>>();&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; //Add JWT bearer type&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; operation.Security.Add(new Dictionary<string, IEnumerable<string>>&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; {&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; { "Bearer", new string[] { } }&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; });&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; }&nbsp; &nbsp; &nbsp; &nbsp; }&nbsp; &nbsp; }很快,这个OperationFilter类只将储物柜图标添加到需要授权的方法中。不过储物柜总是打开的。所以这不是完美的解决方案,但目前还可以。它看起来是这样的:


更改为以下内容(进行了一些额外的样式编辑):public class AddAuthHeaderOperationFilter : IOperationFilter{    private readonly IHttpContextAccessor httpContextAccessor;    public AddAuthHeaderOperationFilter(IHttpContextAccessor httpContextAccessor)    {        this.httpContextAccessor = httpContextAccessor;    }    public void Apply(Operation operation, OperationFilterContext context)    {        var filterDescriptor = context.ApiDescription.ActionDescriptor.FilterDescriptors;        var isAuthorized = filterDescriptor.Select(filterInfo => filterInfo.Filter).Any(filter => filter is AuthorizeFilter);        var allowAnonymous = filterDescriptor.Select(filterInfo => filterInfo.Filter).Any(filter => filter is IAllowAnonymousFilter);        if (isAuthorized && !allowAnonymous)        {            if (operation.Parameters == null)                operation.Parameters = new List<IParameter>();            operation.Parameters.Add(new NonBodyParameter            {                Name = "Authorization",                In = "header",                Description = "JWT access token",                Required = true,                Type = "string"            });            operation.Responses.Add("401", new Response { Description = "Unauthorized" });            operation.Responses.Add("403", new Response { Description = "Forbidden" });            operation.Security = new List<IDictionary<string, IEnumerable<string>>>();            //Add JWT bearer type            operation.Security.Add(new Dictionary<string, IEnumerable<string>>            {                { "Bearer", new string[] { } }            });        }    }}编辑如果将 Authorization 标头定义为参数,Swagger UI 将拒绝发送该标头。因此,更好的选择可能是在 SwaggerGen 服务配置中创建安全定义(通常在 Startup.ConfigureServices 中):public void ConfigureServices(IServiceCollection services){    // Service configuration    services.AddSwaggerGen(c =>    {        // Configure Swagger        // "Bearer" is the name for this definition. Any other name could be used        c.AddSecurityDefinition("Bearer", new OpenApiSecurityScheme            {                Description = "Use bearer token to authorize",                Type = SecuritySchemeType.Http,                Scheme = "bearer",                BearerFormat = "JWT"            });    }}然后添加安全要求以及对操作定义的引用:public class AddAuthorizationHeaderOperationHeader : IOperationFilter{    public void Apply(OpenApiOperation operation, OperationFilterContext context)    {        var actionMetadata = context.ApiDescription.ActionDescriptor.EndpointMetadata;        var isAuthorized = actionMetadata.Any(metadataItem => metadataItem is AuthorizeAttribute);        var allowAnonymous = actionMetadata.Any(metadataItem => metadataItem is AllowAnonymousAttribute);        if (!isAuthorized || allowAnonymous)        {            return;        }        if (operation.Parameters == null)            operation.Parameters = new List<OpenApiParameter>();        operation.Security = new List<OpenApiSecurityRequirement>();        //Add JWT bearer type        operation.Security.Add(new OpenApiSecurityRequirement            {                {                    new OpenApiSecurityScheme                    {                                                    Reference = new OpenApiReference                        {                                                           Type = ReferenceType.SecurityScheme,                            // Definition name.                             // Should exactly match the one given in the service configuration                            Id = "Bearer"                        }                    }, new string[0]                }            }        );    }}


请按照以下步骤使用正确的挂锁来实施 Swagger -步骤1添加一个类并通过接口继承该类IOperationFilter。之后,实现接口Apply的方法定义IOperationFilter。要实现Apply方法,您需要两个类型为OpenApiOperation和的参数OpenApiOperation。public class AddSwaggerService : IOperationFilter&nbsp; &nbsp; {&nbsp; &nbsp; &nbsp;&nbsp; &nbsp; &nbsp; &nbsp; public void Apply(OpenApiOperation operation, OperationFilterContext context)&nbsp; &nbsp; &nbsp; &nbsp; {&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; var actionMetadata = context.ApiDescription.ActionDescriptor.EndpointMetadata;&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; var isAuthorized = actionMetadata.Any(metadataItem => metadataItem is AuthorizeAttribute);&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; var allowAnonymous = actionMetadata.Any(metadataItem => metadataItem is AllowAnonymousAttribute);&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; if (!isAuthorized || allowAnonymous)&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; {&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; return;&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; }&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; if (operation.Parameters == null)&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; operation.Parameters = new List<OpenApiParameter>();&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; operation.Security = new List<OpenApiSecurityRequirement>();&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp;&nbsp;&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; var security = new OpenApiSecurityRequirement&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; {&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; {&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; new OpenApiSecurityScheme&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; {&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; Reference = new OpenApiReference&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; {&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; Type = ReferenceType.SecurityScheme,&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp;&nbsp;&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; Id = "Bearer"&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; }&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; }, new List<string>()&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; }&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; };&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; //add security in here&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; operation.Security.Add(security);&nbsp; &nbsp; &nbsp; &nbsp; }第2步添加swagger Generation Service在ConfigureServices方法中Startup.cs。在此服务中,您需要添加我们在步骤 1 中实现的以下行。c.OperationFilter<AddSwaggerService>();&nbsp;public void ConfigureServices(IServiceCollection services)&nbsp; &nbsp; &nbsp; &nbsp; {//.........other Services.........//.........other Services.........//.........other Services.........services.AddSwaggerGen(c =>&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; c.SwaggerDoc(AppConstantKeys.APIName, new OpenApiInfo { Title = "title", Version = "APIVersion" });&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; c.OperationFilter<AddSwaggerService>();&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; c.AddSecurityDefinition("Bearer", new OpenApiSecurityScheme&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; {&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; Description ="SwaggerShortDescription",&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; Name = "HeaderName",&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; In = ParameterLocation.Header,&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; Type = SecuritySchemeType.ApiKey,&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; });&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; });//.........other Services.........//.........other Services.........//.........other Services.........}Step-3 在中间件管道中添加 swagger。public void Configure(IApplicationBuilder app, IWebHostEnvironment env)&nbsp; &nbsp; &nbsp; &nbsp; {//.........other middlewares.........//.........other middlewares.........//.........other middlewares.........//.........other middlewares.........&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; app.UseSwagger();&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; app.UseSwaggerUI(c =>&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; {&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; c.SwaggerEndpoint("/swagger/v1/swagger.json", "SwaggerUIName");&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; c.DocumentTitle = "SwaggerUITitle";&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; c.DocExpansion(DocExpansion.None);&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; c.RoutePrefix = string.Empty;&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; });//.........other middlewares.........//.........other middlewares.........//.........other middlewares.........//.........other middlewares.........}步骤4构建并运行。