如何用MVC ActionFilter(或其他东西)替换基本控制器
本文关键字:替换 控制器 其他 MVC 何用 ActionFilter | 更新日期: 2023-09-27 17:57:45
我正在努力改进我的MVC设计。在每个页面上,我都需要读取一个cookie,并在此基础上设置一个具有各种值的User对象(与身份验证无关)。
我目前所做的是让所有控制器从BaseController继承,并在BaseController中使用User对象。
public class BaseController : Controller
{
protected User thisUser { get; private set; }
protected override void Initialize(System.Web.Routing.RequestContext requestContext)
{
// ... read cookie, set values of thisUser
}
}
这是一个糟糕的设计吗?我喜欢它只定义User一次,但我已经阅读了ASP中基本控制器类的好候选者是什么的答案。NET MVC,如果有更好的方法,我愿意重做。但我绝对不想要在每个控制器上重复User thisUser = new User();的方法,而且我看不出如果没有基本控制器,我怎么能实现这样的方法。我找不到这样使用ActionFilters的好例子。
我还没有使用DI框架,但如果它能解决问题,我会使用的。如果这意味着将User作为参数传递到每个控制器或动作中,我不确定这是否是DRY赌注的改进。
我确信我遗漏了一些东西。任何帮助都将不胜感激。。。
创建接口
interface ICustomPrincipal : IPrincipal
{
int UserId { get; set; }
string FirstName { get; set; }
string LastName { get; set; }
}
CustomPrincipal
public class CustomPrincipal : ICustomPrincipal
{
public IIdentity Identity { get; private set; }
public bool IsInRole(string role) { return false; }
public CustomPrincipal(string email)
{
this.Identity = new GenericIdentity(email);
}
public int UserId { get; set; }
public string FirstName { get; set; }
public string LastName { get; set; }
}
CustomPrincipalSerializeModel-用于将自定义信息序列化到FormsAuthenticationTicket对象中的userdata字段中。
public class CustomPrincipalSerializeModel
{
public int UserId { get; set; }
public string FirstName { get; set; }
public string LastName { get; set; }
}
登录方法-使用自定义信息设置cookie
if (Membership.ValidateUser(viewModel.Email, viewModel.Password))
{
var user = userRepository.Users.Where(u => u.Email == viewModel.Email).First();
CustomPrincipalSerializeModel serializeModel = new CustomPrincipalSerializeModel();
serializeModel.UserId = user.Id;
serializeModel.FirstName = user.FirstName;
serializeModel.LastName = user.LastName;
JavaScriptSerializer serializer = new JavaScriptSerializer();
string userData = serializer.Serialize(serializeModel);
FormsAuthenticationTicket authTicket = new FormsAuthenticationTicket(
1,
viewModel.Email,
DateTime.Now,
DateTime.Now.AddMinutes(15),
false,
userData);
string encTicket = FormsAuthentication.Encrypt(authTicket);
HttpCookie faCookie = new HttpCookie(FormsAuthentication.FormsCookieName, encTicket);
Response.Cookies.Add(faCookie);
return RedirectToAction("Index", "Home");
}
Global.asax.cs-读取cookie并替换HttpContext。用户对象,这是通过覆盖PostAuthenticateRequest 来完成的
protected void Application_PostAuthenticateRequest(Object sender, EventArgs e)
{
HttpCookie authCookie = Request.Cookies[FormsAuthentication.FormsCookieName];
if (authCookie != null)
{
FormsAuthenticationTicket authTicket = FormsAuthentication.Decrypt(authCookie.Value);
JavaScriptSerializer serializer = new JavaScriptSerializer();
CustomPrincipalSerializeModel serializeModel = serializer.Deserialize<CustomPrincipalSerializeModel>(authTicket.UserData);
CustomPrincipal newUser = new CustomPrincipal(authTicket.Name);
newUser.UserId = serializeModel.UserId;
newUser.FirstName = serializeModel.FirstName;
newUser.LastName = serializeModel.LastName;
HttpContext.Current.User = newUser;
}
}
访问Razor视图
@((User as CustomPrincipal).Id)
@((User as CustomPrincipal).FirstName)
@((User as CustomPrincipal).LastName)
要获得完整答案,请使用以下主题:ASP。NET MVC-设置自定义IIdentity或IPrincipal