stackoom
  简体   繁体   中英

How to add roles to the asp identity bearer token

 原文  2015-02-06 13:05:39       asp.net/ asp.net-web-api/ access-token/ user-roles/ bearer-token

Question

I implemented OWIN bearer token authorization, and based on this article: http://bitoftech.net/2014/06/01/token-based-authentication-asp-net-web-api-2-owin-asp-net-identity/ , and now i want to add roles to the bearer token so that i can be able retrieve it on the controller like am doing with the userName... identity.AddClaim(new Claim(ClaimTypes.Name, context.UserName)); and was able to get the username of the current user with User.Identity.Name

3 answers

solution1
 1  2015-02-06 15:07:18

Check my latest post on bitoftech where I read Roles once I generate token, or you can assign roles manually using the ClaimsType.Role like you assign the UserName. Hope this answers your question.

solution2
 1  2015-02-07 11:46:43

http://forums.asp.net/t/1998896.aspx?Cannot+assign+claims+identity+to+a+variable+using+asp+net+WebAPI+with+Oauth+

http://nareshjois.com/custom-information-in-asp-net-identity-cookie-ticket/

i managed to add and read new roles manually by creating a new column in the asp identity AspNetUsers table named RoleName and i added roles directly... 

public override async Task GrantResourceOwnerCredentials(OAuthGrantResourceOwnerCredentialsContext context)
        {

            context.OwinContext.Response.Headers.Add("Access-Control-Allow-Origin", new[] { "*" });

            using (AuthRepo _repo = new AuthRepo())
            {
                UserProfile user = await _repo.FindUser(context.UserName, context.Password);

                if (user == null)
                {
                    context.SetError("invalid_grant", "The user name or password is incorrect.");
                    return;
                }

                /*var claims = new List<Claim>
                {
                    new Claim(ClaimTypes.GivenName, user.FirstName),
                };*/

                var identity = new ClaimsIdentity(context.Options.AuthenticationType);
                identity.AddClaim(new Claim("sub", context.UserName));
                identity.AddClaim(new Claim("role", "user"));
                identity.AddClaim(new Claim(ClaimTypes.Name, context.UserName));
                identity.AddClaim(new Claim("RoleName", user.RoleName));

                context.Validated(identity);
            }
        }

i then could read a role associated with each user like so 

var cp = User as ClaimsPrincipal;   //var cp = (ClaimsPrincipal)User;
var roleName = ((Claim)cp.Claims.SingleOrDefault(x => x.Type == "RoleName")).Value.ToString();

I PERSONALLY FIND THIS EASIER TO MAINTAIN...

solution3
 0  2016-01-13 14:04:45

You can add a function to do so. 

 public static AuthenticationProperties CreateProperties(string userName, string Roles)
{
    IDictionary<string, string> data = new Dictionary<string, string>
    {
        { "userName", userName },
        {"roles",Roles}
    };
    return new AuthenticationProperties(data);
}

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question How to Validate a bearer token in ASP.NET Identity 2.0? Add Claims to Asp.Net Web API 2 Bearer Token in ASP.net Identity? Where and how to add a Bearer Token to upload an image to ASP.NET? ASP.net OWIN OAuth middleware with bearer token and changing roles ASP.NET Identity + Bearer Token + Multi-Tenant unable to add roles in asp.net identity This Identity Bearer token is not being recognized Generate Identity from bearer token Identity server - bearer token authentication - how to trace failed authorization? How to add bearer token authentication to typed HttpClient in Asp.Net Core 6
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM