as is

StopShopping.Api/Routes/User.cs

@@ -1,4 +1,5 @@
 using Microsoft.Extensions.Options;
+using Microsoft.Net.Http.Headers;
 using StopShopping.Services;
 using StopShopping.Services.Extensions;
 using StopShopping.Services.Models.Req;
@@ -28,6 +29,18 @@ public static class User
         return routes;
     }
 
+    public static RouteGroupBuilder MapUserAnonymous(this RouteGroupBuilder routes)
+    {
+        routes.MapPost("/user/refreshtoken", RefreshTokenAsync)
+            .Produces<ApiResponse<AccessToken>>()
+            .WithTags(OpenApiTags.用户.ToString());
+
+        routes.MapPost("/user/signout", SignOutAsync)
+            .WithTags(OpenApiTags.用户.ToString());
+
+        return routes;
+    }
+
     private static async Task<ApiResponse> SignUpAsync(
         SignUpParams model,
         IUserService userService)
@@ -41,8 +54,8 @@ public static class User
             SignInParams model,
             IUserService userService,
             HttpContext httpContext,
-            IWebHostEnvironment env,
-            IOptions<AppOptions> options)
+            IOptions<AppOptions> options,
+            IWebHostEnvironment env)
     {
         var result = await userService.SignInAsync(model);
         var resp = new ApiResponse<SignInUser>
@@ -73,7 +86,7 @@ public static class User
         var resp = await userService.ChangePasswordAsync(model);
 
         if (resp.IsSucced)
-            await Common.SignOutAsync(httpContext, accessTokenService);
+            await SignOutAsync(httpContext, accessTokenService);
 
         return resp;
     }
@@ -92,4 +105,41 @@ public static class User
     {
         return await userService.EditAsync(model);
     }
+
+    private static async Task<IResult> RefreshTokenAsync(
+        HttpContext httpContext,
+        IAccessTokenService accessTokenService)
+    {
+        var refreshToken = httpContext.Request.Cookies[HttpExtensions.REFRESH_TOKEN_COOKIE_KEY];
+        if (string.IsNullOrWhiteSpace(refreshToken))
+            return Results.Unauthorized();
+
+        var accessToken = await accessTokenService.GenerateAccessTokenAsync(refreshToken);
+        if (null == accessToken)
+            return Results.Unauthorized();
+
+        return Results.Ok(new ApiResponse<AccessToken>(accessToken));
+    }
+
+    public static async Task<ApiResponse> SignOutAsync(
+            HttpContext httpContext,
+            IAccessTokenService accessTokenService)
+    {
+        var accessTokenHeader = httpContext.Request.Headers[HeaderNames.Authorization];
+        if (accessTokenHeader.Count != 0)
+        {
+            var accessToken = accessTokenHeader.First()!.Split(" ").Last();
+            if (!string.IsNullOrWhiteSpace(accessToken))
+                await accessTokenService.AddAccessTokenBlacklistAsync(accessToken);
+        }
+
+        var refreshToken = httpContext.Request.Cookies[HttpExtensions.REFRESH_TOKEN_COOKIE_KEY];
+        if (!string.IsNullOrWhiteSpace(refreshToken))
+        {
+            await accessTokenService.RevokeRefreshTokenAsync(refreshToken);
+            httpContext.Response.Cookies.Delete(HttpExtensions.REFRESH_TOKEN_COOKIE_KEY);
+        }
+
+        return ApiResponse.Succed();
+    }
 }