ASP.NET MVC WEB API OAuth2Authorize

2024-04-15 08:37•Java教程•阅读 1653

using System;

using System.Net;

using System.Security.Cryptography;

using System.Security.Cryptography.X509Certificates;

using System.Security.Principal;

using System.ServiceModel.Channels;

using System.Threading;

using System.Web.Http;

using System.Web.Http.Controllers;

using System.Web.Http.Filters;

using DotNetOpenAuth.OAuth2;

namespace ProjectName.Web.Controllers.ActionFilters

{

/// <summary>

/// ActionFilter to authorize requests using OAuth2

/// </summary>

public class OAuth2Authorize : AuthorizationFilterAttribute

{

/// <summary>

/// Called when [authorization].

/// </summary>

public override void OnAuthorization(HttpActionContext actionContext)

{

// get public / private key from certificate

var store = new X509Store(StoreLocation.LocalMachine);

store.Open(OpenFlags.ReadOnly);

var certCollection = store.Certificates;

var currentCerts = certCollection.Find(X509FindType.FindByTimeValid, DateTime.Now, false);

var signingCert = currentCerts.Find(X509FindType.FindBySubjectDistinguishedName, "CN=*.yourdomain.com, OU=Domain Control Validated, O=*.yourdomain.com", false);

var cert = signingCert[0];

store.Close();

var publicKey = (RSACryptoServiceProvider)cert.PublicKey.Key;

var privateKey = (RSACryptoServiceProvider)cert.PrivateKey;

using (var signing = publicKey)

using (var encrypting = privateKey)

{

base.OnAuthorization(actionContext);

// TODO FIXME dnoa doesn't support HttpRequestMessage - manually creating HttpRequestMessageProperty until they do

var request = new HttpRequestMessageProperty();

request.Headers[HttpRequestHeader.Authorization] = actionContext.Request.Headers.Authorization.ToString();

var requestUri = actionContext.Request.RequestUri;

var resourceServer = new ResourceServer(new StandardAccessTokenAnalyzer(signing, encrypting));

IPrincipal result;

var response = resourceServer.VerifyAccess(request, requestUri, out result);

if (response != null)

{

actionContext.Response = actionContext.ControllerContext.Request.CreateResponse(HttpStatusCode.Forbidden);

return;

}

var principal = null; // create your principal using result.Identity.Name if needed

Thread.CurrentPrincipal = principal;

}

上一篇 »Oauth2.0 协议简介及 php实例代码
下一篇 »使用 OAuth2-Server-php 在 Yii 框架上搭建 OAuth2 Server

ASP.NET MVC WEB API OAuth2Authorize

相关推荐

在PHP应用中简化OAuth2.0身份验证集成：OAuth 2.0 Client

使用 OAuth2-Server-php 在 Yii 框架上搭建 OAuth2 Server

AutoFac与ASP.NET MVC结合使用

ASP.NET MVC 1.1 _VS2010 & ASP.NET MVC 2 新特性

Razor语法&ActionResult&MVC Razor代码复用了解ASP.NET MVC几种ActionResult的本质：EmptyResult & ContentResult了解ASP.NET MVC几种ActionResult的本质：FileResult了解ASP.NET MVC几种ActionResult的本质：JavaScriptResult & JsonResult了解ASP.NET MVC几种ActionResult的本？

ASP.NET MVC异常处理 MVC过滤器详解MVC过滤器使用案例：统一处理异常顺道精简代码ASP.NET MVC下基于异常处理的完整解决方案

ASP.NET MVC preview 1升级到ASP.NET MVC preview 2的一些更改

asp.net mvc5 使用百度ueditor 本编辑器完整示例，三在IIS中多个应用程序使用多个ueditor对象