stackoom
  简体   繁体   中英

How can I authorize a SignalR Hub using Azure Mobile Apps Authentication

 原文  2016-08-08 11:15:30       asp.net/ .net/ azure/ signalr

Question

I have my mobile app using Facebook Auth through azure. The auth works fine for the ApiControllers with the [MobileApiController] flag.

I can't seem to find how to make my SignalR Hub authorize - the Authorize attribute blocks access from users. All the articles I have found seem to be old and using the deprecated Azure Mobile Services which is different and not compatible.

I have configured my SignalR client to connect as long-polling with the x-zumo-auth header set.

1 answers

solution1
 1 ACCPTED  2016-08-15 23:31:33

I ended up making a custom SignalR authentication attribute. Code below for anyone else interested. 

  public class HubAuthorizeAttribute : AuthorizeAttribute
  {
    public HubAuthorizeAttribute()
    {
    }

    public override bool AuthorizeHubConnection(HubDescriptor hubDescriptor, IRequest request)
    {
        var owinContext = request.GetHttpContext().GetOwinContext();

        ClaimsPrincipal claimsPrincipalFromToken;
        var options = Startup.AuthenticationOptions;

        string tokenFromHeader = request.Headers[AppServiceAuthenticationHandler.AuthenticationHeaderName];
        if (!string.IsNullOrEmpty(tokenFromHeader))
        {
            bool claimsAreValid = options.TokenHandler.TryValidateLoginToken(tokenFromHeader, options.SigningKey, options.ValidAudiences, options.ValidIssuers, out claimsPrincipalFromToken);
            if (claimsAreValid)
            {
                var identity = claimsPrincipalFromToken.Identity as ClaimsIdentity;

                request.Environment["server.User"] = new ClaimsPrincipal(identity);
                return true;
            }
        }

        return false;
    }

    public override bool AuthorizeHubMethodInvocation(IHubIncomingInvokerContext hubIncomingInvokerContext, bool appliesToMethod)
    {
        var connectionId = hubIncomingInvokerContext.Hub.Context.ConnectionId;
        // check the authenticated user principal from environment
        var environment = hubIncomingInvokerContext.Hub.Context.Request.Environment;
        var principal = environment["server.User"] as ClaimsPrincipal;
        if (principal != null && principal.Identity != null && principal.Identity.IsAuthenticated)
        {
            // create a new HubCallerContext instance with the principal generated from token
            // and replace the current context so that in hubs we can retrieve current user identity
            hubIncomingInvokerContext.Hub.Context = new HubCallerContext(new ServerRequest(environment), connectionId);
            return true;
        }
        else
        {
            return false;
        }
    }
}

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question How to Authorize SignalR Hub Connection using Cookie? How can I pass Data from Hub to view using signalr SignalR - How can I call Hub Method on server from server SIgnalR - How can I use an Hub stored in a folder? Can I debug OnConnected method in SignalR Hub? SignalR can't connect to hub when using Azure Service Bus backplane How can I access the user's Claims in Identity 2 when using SignalR Hub with an ASP.NET MVC 5 project? How to connect to SignalR Hub continuously using javascript? Azure Mobile Client custom authentication unable to access controllers with [Authorize] attribute Azure Mobile Apps - Custom authentication - Unable to login
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM