堆栈内存溢出
  简体   繁体   English

如何基于OAuth保护WCF Rest服务

[英]How to secure wcf rest services based on OAuth

 原文  2016-07-04 14:34:18       c#/ rest/ wcf/ oauth

问题描述

I need to secure wcf services based on OAuth. 我需要保护基于OAuth的WCF服务。 In this case Java application is passing me a token which i need to validate based on Oauth in .Net layer and if token is passed then need to call wcf services. 在这种情况下,Java应用程序向我传递了一个令牌,我需要基于.Net层中的Oauth进行验证,如果传递了令牌,则需要调用wcf服务。

I have checked several examples based on OAuth but not got any idea to achieve this . 我已经检查了几个基于OAuth的示例,但不知道要实现这一目标。 Please help me how to achieve this based on OAuth in .net. 请帮助我如何基于.net中的OAuth实现此目标。

1 个解决方案

解决方案1
 2 已采纳  2016-07-06 09:39:22

Finally i solved this by below implementation 最后我通过以下实现解决了这个问题 

var authHeader = WebOperationContext.Current.IncomingRequest.Headers.GetValues("Authorization");
                if (authHeader == null || authHeader.Length == 0)
                {
                    throw new WebFaultException(HttpStatusCode.Unauthorized);
                }
                NameValueCollection outgoingQueryString = HttpUtility.ParseQueryString(String.Empty);

                var parts = authHeader[0].Split(' ');
                if (parts[0] == "Bearer")
                {
                    string token = parts[1];

                    outgoingQueryString.Add("token", token);
                    byte[] postdata = Encoding.ASCII.GetBytes(outgoingQueryString.ToString());

                    var result = string.Empty;
                    var httpWebRequest = (HttpWebRequest)WebRequest.Create(oauthConfiguration.Setting.CheckUrl);
                    httpWebRequest.ContentType = "application/x-www-form-urlencoded";
                    httpWebRequest.Method = "POST";
                    httpWebRequest.Headers.Add("Authorization", GetAuthorizationHeader(oauthConfiguration.Setting.ClientId, oauthConfiguration.Setting.ClientSecret));
                    httpWebRequest.ContentLength = postdata.Length;
                    using (Stream postStream = httpWebRequest.GetRequestStream())
                    {
                        postStream.Write(postdata, 0, postdata.Length);
                        postStream.Flush();
                        postStream.Close();
                    }

                    var response = (HttpWebResponse)httpWebRequest.GetResponse();
                    var responseString = new StreamReader(response.GetResponseStream()).ReadToEnd();

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 如何使用WCF异步使用基于REST的服务? - How to consume REST-based services asynchronously with WCF? 如何在wcf数据服务中执行基于大量基于rest的url? - how to execute huge rest based url in wcf data services? 如何保护我的WCF数据服务服务 - how to secure my WCF Data Service services 如何从WCF Rest服务返回数据表? - How to return datatable form wcf rest services? 从PHP消费基于REST的WCF服务的最佳实践是什么? - What are the best practices for consuming REST based WCF services from PHP? WCF OAuth-不使用RESTFUL服务 - WCF OAuth - Not using RESTFUL services 使用WCF REST服务上传文件 - uploading a file with WCF REST Services WCF REST服务中的全局变量 - Global variables in WCF REST services 单元测试WCF REST服务 - Unit Testing WCF REST Services 如何在WCF Rest服务中通过不带URI的POST发送数据 - How to send data over POST without URI in WCF rest services
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM