如何在.NET Core的基于策略的授权中添加应用逻辑
[英]How to add application logic in policy based authorization in .NET Core
问题描述
我有当前的设置工作,但我收到这样的错误:
An attempt was made to use the context instance while it is being configured.
A DbContext instance cannot be used inside 'OnConfiguring' since it is still being configured at this point.
This can happen if a second operation is started on this context instance before a previous operation completed.
Any instance members are not guaranteed to be thread safe.
我创建了IAuthorizationRequirement
public class ValidGroupsRequirement : IAuthorizationRequirement
{
private IAuthenticationService _authenticationService;
public async Task<bool> ValidateAccess(IAuthenticationService authenticationService, List<string> groups)
{
_authenticationService = authenticationService;
var result = await _authenticationService.AllGroupsExist(groups);
return result;
}
}
还有AuthorizationHandler
public class GroupsValidationHandler : AuthorizationHandler<ValidGroupsRequirement>
{
private readonly IAuthenticationService authenticationService;
public GroupsValidationHandler(IAuthenticationService authenticationService)
{
this.authenticationService = authenticationService;
}
protected override async Task HandleRequirementAsync(AuthorizationHandlerContext context, ValidGroupsRequirement requirement)
{
var userGroups = context.User.FindAll("groups").Select(X => X.Value).ToList();
var result = await requirement.ValidateAccess(authenticationService, userGroups);
if (result)
{
context.Succeed(requirement);
}
else
{
context.Fail();
var filterContext = context.Resource as DefaultHttpContext;
var response = filterContext.HttpContext.Response;
response.OnStarting(async () =>
{
filterContext.HttpContext.Response.StatusCode = 401;
});
}
}
}
我已经在Program.cs中注册了它们
builder.Services.AddAuthorization(options =>
{
options.AddPolicy("ValidateGroups", policy =>
{
policy.RequireAuthenticatedUser();
policy.AddRequirements(new ValidGroupsRequirement());
});
options.InvokeHandlersAfterFailure = false;
});
builder.Services.AddScoped<IAuthenticationService, AuthenticationService>();
我在身份验证服务中遇到错误。
因为我将它传递给要求,是否有可能不正确处理它?
我知道有一种方法可以在没有要求的情况下创建处理程序,但是 context.Succeed() 方法只接受要求。 我应该如何在program.cs中注册它
谢谢
1 个解决方案
解决方案1
0 2023-01-13 08:45:51
测试后没有遇到你的问题,一切正常,只是不能使用_authenticationService.AllGroupsExist() ,所以我直接output result为true来替换你的IAuthenticationService好像没有提供这个方法,你自定义了吗?
我根据这个文档注册了Handler程序:
builder.Services.AddTransient<IAuthorizationHandler, GroupsValidationHandler>();
然后授权某些操作:
[Authorize(Policy = "ValidateGroups")]
一切都在正常执行。
您能否提供一个重现该问题的最小示例?
如何创建包含2x逻辑规则的ASP.NET Core授权策略?
[英]How to create an ASP.NET Core Authorization Policy that contains 2x logic rules?
如何访问 ASP.NET Core 2 使用 AuthorizationHandlerContext 的自定义基于策略的授权中的当前 HttpContext
[英]How to access current HttpContext in ASP.NET Core 2 Custom Policy-Based Authorization with AuthorizationHandlerContext
如何向 ASP.NET CORE 授权策略添加 OR 子句?
[英]How can I add an OR clause to a ASP.NET CORE Authorization Policy?
如何在.NET Core中正确设置WEB API的策略授权
[英]How to correctly setup Policy Authorization for WEB API in .NET Core
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.
相关问题
如何在ASP.NET Core中修复基于策略的授权
基于JWT的.Net MVC核心策略的授权
如何创建包含2x逻辑规则的ASP.NET Core授权策略?
基于ASP.NET核心自定义策略的授权 - 不清楚
ASP.NET Core中基于策略的授权(异步)
asp.net core 2.0 - 基于声明和策略的授权
基于策略的授权不适用于asp.net核心
如何访问 ASP.NET Core 2 使用 AuthorizationHandlerContext 的自定义基于策略的授权中的当前 HttpContext
如何向 ASP.NET CORE 授权策略添加 OR 子句?
如何在.NET Core中正确设置WEB API的策略授权
相关标签