zoukankan      html  css  js  c++  java

  • ASP.NET MVC WEB API OAuth2Authorize

    using System;
    using System.Net;
    using System.Security.Cryptography;
    using System.Security.Cryptography.X509Certificates;
    using System.Security.Principal;
    using System.ServiceModel.Channels;
    using System.Threading;
    using System.Web.Http;
    using System.Web.Http.Controllers;
    using System.Web.Http.Filters;
    using DotNetOpenAuth.OAuth2;
     
    namespace ProjectName.Web.Controllers.ActionFilters
    {
    /// <summary>
    /// ActionFilter to authorize requests using OAuth2
    /// </summary>
    public class OAuth2Authorize : AuthorizationFilterAttribute
    {
    /// <summary>
    /// Called when [authorization].
    /// </summary>
    /// <param name="actionContext">The action context.</param>
    public override void OnAuthorization(HttpActionContext actionContext)
    {
    // get public / private key from certificate
    var store = new X509Store(StoreLocation.LocalMachine);
    store.Open(OpenFlags.ReadOnly);
    var certCollection = store.Certificates;
    var currentCerts = certCollection.Find(X509FindType.FindByTimeValid, DateTime.Now, false);
    var signingCert = currentCerts.Find(X509FindType.FindBySubjectDistinguishedName, "CN=*.yourdomain.com, OU=Domain Control Validated, O=*.yourdomain.com", false);
    var cert = signingCert[0];
    store.Close();
     
    var publicKey = (RSACryptoServiceProvider)cert.PublicKey.Key;
    var privateKey = (RSACryptoServiceProvider)cert.PrivateKey;
     
    using (var signing = publicKey)
    using (var encrypting = privateKey)
    {
    base.OnAuthorization(actionContext);
     
    // TODO FIXME dnoa doesn't support HttpRequestMessage - manually creating HttpRequestMessageProperty until they do
    var request = new HttpRequestMessageProperty();
    request.Headers[HttpRequestHeader.Authorization] = actionContext.Request.Headers.Authorization.ToString();
    var requestUri = actionContext.Request.RequestUri;
     
    var resourceServer = new ResourceServer(new StandardAccessTokenAnalyzer(signing, encrypting));
    IPrincipal result;
     
    var response = resourceServer.VerifyAccess(request, requestUri, out result);
     
    if (response != null)
    {
    actionContext.Response = actionContext.ControllerContext.Request.CreateResponse(HttpStatusCode.Forbidden);
    return;
    }
     
    var principal = null; // create your principal using result.Identity.Name if needed
    Thread.CurrentPrincipal = principal;
    }
    }
    }
    }
  • 相关阅读:
    LeetCode 剑指offer 面试题05. 替换空格
    WebSocket整合SSM(Spring,Struts2,Maven)
    Eclipse常用20个快捷键
    JDK、JRE、JVM三者间的联系与区别
    Java集合框架详解(全)
    Java开发环境配置(Jdk、Tomcat、eclipse)
    Java面向对象概述及三大特征(封装,继承和多态)
    程序员之歌
    UML2.0最新版入门图解
    java单元测试,ssh(spring,struts2,hibernate)框架整合junit4
  • 原文地址:https://www.cnblogs.com/fx2008/p/2819546.html
Copyright © 2011-2022 走看看