gx/StopShopping
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

as is

Browse Source
This commit is contained in:
GaoXiang
2026-03-30 11:07:30 +08:00
parent 2c44b3a4b2
commit d4a8e71733
74 changed files with 1751 additions and 421 deletions
Download Patch File Download Diff File Expand all files Collapse all files

58
StopShopping.FileApi/Middlewares/InternalAccessOnlyMiddleware.cs Normal file
View File

@@ -0,0 +1,58 @@
using System.Net;
using Microsoft.AspNetCore.Mvc;
using StopShopping.FileApi.Extensions;
namespace StopShopping.FileApi.Middlewares;
public class InternalAccessOnlyMiddleware
{
public InternalAccessOnlyMiddleware(
RequestDelegate next,
IProblemDetailsService problemDetailsService,
ILogger<InternalAccessOnlyMiddleware> logger)
{
_next = next;
_problemService = problemDetailsService;
_logger = logger;
}
private readonly RequestDelegate _next;
private readonly IProblemDetailsService _problemService;
private readonly ILogger<InternalAccessOnlyMiddleware> _logger;
public async Task InvokeAsync(HttpContext httpContext)
{
var endpoint = httpContext.GetEndpoint();
if (null != endpoint)
{
var internalOnlyMetadata = endpoint.Metadata.GetMetadata<InternalOnlyMetadata>();
if (null != internalOnlyMetadata)
{
if (null == httpContext.Connection.RemoteIpAddress
|| !IPAddress.IsLoopback(httpContext.Connection.RemoteIpAddress))
{
var problemDetails = new ProblemDetails
{
Detail = $"remote ip: {httpContext.Connection.RemoteIpAddress}",
Instance = httpContext.Request.Path,
Status = StatusCodes.Status403Forbidden,
Title = "access denied, local access only."
};
httpContext.Response.StatusCode = StatusCodes.Status403Forbidden;
httpContext.Response.ContentType = "application/problem+json";
await _problemService.WriteAsync(new ProblemDetailsContext
{
HttpContext = httpContext,
ProblemDetails = problemDetails,
});
_logger.LogInformation("denied access: {Ip}", httpContext.Connection.RemoteIpAddress);
}
}
}
await _next(httpContext);
}
}