堆栈内存溢出
  简体   繁体   English

IdentityServer4并调用自定义函数

[英]IdentityServer4 and calling a custom function

 原文  2017-02-07 15:49:42       c#/ identityserver4

问题描述

What I'm trying to achieve is this: set up an instance of IdentityServer4 that hands off authentication of a username/password to a function located in another .net assembly. 我要实现的目标是:设置IdentityServer4实例,该实例将用户名/密码的身份验证传递给位于另一个.net程序集中的函数。 I understand that OpenID Connect is one option but coming up with a custom IdP gives the impression of making a mountain out of a molehill. 我知道OpenID Connect是一种选择,但是提供自定义的IdP可以给人以摆脱困境的印象。

Are there any simple ways of achieving this using Identityserver? 是否有使用Identityserver实现此目的的简单方法?

1 个解决方案

解决方案1
 1 已采纳  2017-02-10 09:02:36

Yes. 是。 In your ConfigureServices method in Startup you need to register your own implementations of IProfileService and IResourceOwnerPasswordValidator . StartupConfigureServices方法中,您需要注册自己的IProfileServiceIResourceOwnerPasswordValidator For example: 例如: 

services.AddTransient<IProfileService, CustomProfileService>();
services.AddTransient<IResourceOwnerPasswordValidator, ResourceOwnerPasswordValidator>();

The ValidatedAsync method on the IResourceOwnerPasswordValidator is where you can then access the username/password and call your own assemblies for validation. 然后,您可以在IResourceOwnerPasswordValidator上使用ValidatedAsync方法访问用户名/密码并调用自己的程序集进行验证。 You then return a GrantValidationResult object from that method to indicate success/failure. 然后,您从该方法返回GrantValidationResult对象以指示成功/失败。 For example: 例如: 

public Task ValidateAsync(ResourceOwnerPasswordValidationContext context)
    {
        logWriter.Debug("Validating resource owner password: " + context.UserName);
        if (_userRepository.ValidatePassword(context.UserName, context.Password))
        {
            context.Result = new GrantValidationResult(context.UserName, "password");
            return Task.FromResult(0);
        }

        logWriter.Debug("Unauthorised resource owner password for: " + context.UserName);
        return Task.FromResult(new GrantValidationResult(TokenRequestErrors.UnauthorizedClient));
    }

The IProfileService is where you can set the claims on the context, for example by examining what has been requested (as defined in the ApiResource definition) and then make your own calls to whichever assemblies/repo you need to find out the details for those claims. IProfileService是您可以在上下文上设置声明的位置,例如,通过检查请求的内容(在ApiResource定义中定义),然后对需要的程序集/存储库进行自己的调用,以查找这些声明的详细信息。

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 在Identityserver 4中调用用于身份验证的自定义函数的问题 - Issue with calling custom function for authentication in Identityserver 4 将自定义参数添加到IdentityServer4身份验证请求 - Add Custom Parameter to IdentityServer4 Auth Request 未调用 IdentityServer4 自定义令牌请求验证程序 - IdentityServer4 Custom Token Request Validator Not Called 将 IdentityServer4 与自定义配置 DBContext 一起使用 - using IdentityServer4 with custom Configration DBContext 使用IdentityServer4在API中添加对访问的自定义声明 - Adding custom Claim for access in API with IdentityServer4 如何将自定义属性添加到IdentityServer4 PersistedGrantStore - How to add custom properties to the IdentityServer4 PersistedGrantStore IdentityServer4 中 RequestPasswordTokenAsync 时的自定义 JWT - Custom JWT when RequestPasswordTokenAsync in IdentityServer4 IdentityServer4:调用 Web api 时受众为空? - IdentityServer4: audience is empty when calling web api? IdentityServer4 LocalApi 与 .NET Core 3.1 中的自定义策略 - IdentityServer4 LocalApi with custom policy in .NET Core 3.1 IdentityServer4自定义AuthenticationHandler找不到用户的所有声明 - IdentityServer4 custom AuthenticationHandler can't find all claims for a user
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM