堆栈内存溢出
  繁体   English   中英

C#Web API OWIN身份验证

[英]c# web api owin authentication

 原文  2015-12-15 16:06:28       c#/ authentication/ asp.net-web-api/ owin

问题描述

我对WebAPi身份认证非常陌生,即使OWIN似乎很受欢迎。 我不明白为什么我应该使用EntityFramework进行OWIN身份验证,因为ApplicationDbContext从IdentityDbContext隐隐,而IdentityDbContext在EntityFramework命名空间中。 下面是在WebApi项目模板中选择“个人用户帐户”时自动创建的过程: 

public partial class Startup
{
    public static OAuthAuthorizationServerOptions OAuthOptions { get; private set; }

    public static string PublicClientId { get; private set; }

    // For more information on configuring authentication, please visit http://go.microsoft.com/fwlink/?LinkId=301864
    public void ConfigureAuth(IAppBuilder app)
    {
        // Configure the db context and user manager to use a single instance per request
        app.CreatePerOwinContext(ApplicationDbContext.Create);
        app.CreatePerOwinContext<ApplicationUserManager>(ApplicationUserManager.Create);

        // Enable the application to use a cookie to store information for the signed in user
        // and to use a cookie to temporarily store information about a user logging in with a third party login provider
        app.UseCookieAuthentication(new CookieAuthenticationOptions());
        app.UseExternalSignInCookie(DefaultAuthenticationTypes.ExternalCookie);

        // Configure the application for OAuth based flow
        PublicClientId = "self";
        OAuthOptions = new OAuthAuthorizationServerOptions
        {
            TokenEndpointPath = new PathString("/Token"),
            Provider = new ApplicationOAuthProvider(PublicClientId),
            AuthorizeEndpointPath = new PathString("/api/Account/ExternalLogin"),
            AccessTokenExpireTimeSpan = TimeSpan.FromDays(14),
            // In production mode set AllowInsecureHttp = false
            AllowInsecureHttp = true
        };

        // Enable the application to use bearer tokens to authenticate users
        app.UseOAuthBearerTokens(OAuthOptions);

        // Uncomment the following lines to enable logging in with third party login providers
        //app.UseMicrosoftAccountAuthentication(
        //    clientId: "",
        //    clientSecret: "");

        //app.UseTwitterAuthentication(
        //    consumerKey: "",
        //    consumerSecret: "");

        //app.UseFacebookAuthentication(
        //    appId: "",
        //    appSecret: "");

        //app.UseGoogleAuthentication(new GoogleOAuth2AuthenticationOptions()
        //{
        //    ClientId = "",
        //    ClientSecret = ""
        //});
    }
}

在ConfigureAuth过程中,引用了ApplicationDbContext。

您能否帮助我用OWIN编写简单的身份验证,而不使用EntityFramework?

谢谢。

1 个解决方案

解决方案1
 3  2015-12-15 18:36:27

您不需要使用EF,是的,模板使用EF和ASPNET Identity进行身份验证,但是您可以开始使用黑色模板并在不使用EF的情况下添加它,请看下面的代码部分:

  1. Startup.cs 

public class Startup
{
    public void Configuration(IAppBuilder app)
    {
        HttpConfiguration config = new HttpConfiguration();
        ConfigureOAuth(app);

        WebApiConfig.Register(config);
        app.UseCors(Microsoft.Owin.Cors.CorsOptions.AllowAll);
        app.UseWebApi(config);
    }

    public void ConfigureOAuth(IAppBuilder app) 
    {
        OAuthAuthorizationServerOptions OAuthServerOptions = new OAuthAuthorizationServerOptions()
        {
            AllowInsecureHttp = true,
            TokenEndpointPath = new PathString("/token"),
            AccessTokenExpireTimeSpan = TimeSpan.FromDays(1),
            Provider = new SimpleAuthorizationServerProvider()
        };

        // Token Generation
        app.UseOAuthAuthorizationServer(OAuthServerOptions);
        app.UseOAuthBearerAuthentication(new OAuthBearerAuthenticationOptions());
    }
}
  1. SimpleAuthorizationServerProvider.cs 

public class SimpleAuthorizationServerProvider : OAuthAuthorizationServerProvider
{
    public override async Task ValidateClientAuthentication(OAuthValidateClientAuthenticationContext context)
    {
        context.Validated();
    }

    public override async Task GrantResourceOwnerCredentials(OAuthGrantResourceOwnerCredentialsContext context)
    {

        context.OwinContext.Response.Headers.Add("Access-Control-Allow-Origin", new[] { "*" });
        if (context.UserName != "Admin")
        {
            context.SetError("upps!", "Wrong data");
            return;
        }

        var identity = new ClaimsIdentity(context.Options.AuthenticationType);
        identity.AddClaim(new Claim("sub", context.UserName));
        identity.AddClaim(new Claim("role", "user"));

        context.Validated(identity);
    }
}

另外,您可以在此处下载一个简单的示例: http : //1drv.ms/1mmaqtn

问候,

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 在MVC和Web Api中进行Owin认证 C#OWIN Web API路由索引页面 Swagger 在 OWIN 启动中不起作用 Web API C# Web API 2 OWIN Bearer令牌自定义身份验证 使用C#Web API的Microsoft Azure身份验证 具有OAuth和基本身份验证的C#Web Api 在 C# 中使用基本身份验证调用 WEB API 如何在Web API中将Windows身份验证与Owin令牌身份验证结合使用? 无法在C#WEB API REST服务单元测试中模拟Owin上下文 是否可以在WinForms(C#)中运行自托管的OWIN Web API?
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM