ASP.NETCoreAPI:身份验证弹出窗口在SwaggerUI中不显示
- 在Startup.cs文件中添加以下代码,以启用Swagger UI的身份验证弹出窗口:
services.AddSwaggerGen(options =>
{
options.SwaggerDoc("v1", new OpenApiInfo { Title = "API Name", Version = "v1" });
options.AddSecurityDefinition("Bearer", new OpenApiSecurityScheme
{
Description = "JWT Authorization header using the Bearer scheme. Example: "Authorization: Bearer {token}"",
Name = "Authorization",
In = ParameterLocation.Header,
Type = SecuritySchemeType.ApiKey,
Scheme = "Bearer"
});
options.OperationFilter
- 创建一个自定义AuthorizeCheckOperationFilter类,并添加以下代码:
public class AuthorizeCheckOperationFilter : IOperationFilter { public void Apply(OpenApiOperation operation, OperationFilterContext context) { var filterPipeline = context.ApiDescription.ActionDescriptor.FilterDescriptors; var isAuthorized = filterPipeline.Select(filterInfo => filterInfo.Filter).Any(filter => filter is AuthorizeFilter); var allowAnonymous = filterPipeline.Select(filterInfo => filterInfo.Filter).Any(filter => filter is IAllowAnonymousFilter);
if (isAuthorized && !allowAnonymous)
{
operation.Responses.Add("401", new OpenApiResponse { Description = "Unauthorized" });
operation.Responses.Add("403", new OpenApiResponse { Description = "Forbidden" });
operation.Security = new List
{
new OpenApiSecurityRequirement
{
{
new OpenApiSecurityScheme { Reference = new OpenApiReference { Type = ReferenceType.SecurityScheme, Id = "Bearer" } },
new string[] {}
}
}
};
}
}
}
- 在SwaggerUI的Configure方法中调用UseSwaggerUI方法,并将DocumentTitle和OAuth2RedirectUrl参数设置为相应的值:
app.UseSwaggerUI(c => { c.RoutePrefix = "swagger"; c.SwaggerEndpoint("/swagger/v1/swagger.json", "API Name"); c.DocumentTitle = "API Name"; c.OAuth2RedirectUrl("http://localhost:port/swagger/oauth2-redirect.html"); });
- 在身份验证完成后调用Swagger页面时,如果仍未看到身份验证弹出窗口,请关闭SwaggerUI,清除浏览器缓存,重新打开SwaggerUI并尝试重新调用Swagger页面。
注意:此方法默认使用JWT身份验证方案,如果使用其他身份验证方案,请相应更改代码。