C# (CSharp) Infobasis.Api.WebApiAuthentication JWTAuthenticationIdentity Beispiele

Beispiel #1

Datei: AuthenticationFilter.cs Projekt: liweifengGit/newERP

        /// <summary>
        /// Parses the Authorization header and creates user credentials
        /// </summary>
        /// <param name="actionContext"></param>
        protected virtual JWTAuthenticationIdentity ParseAuthorizationHeader(HttpActionContext actionContext)
        {
            string authHeader = null;
            var    auth       = actionContext.Request.Headers.Authorization;

            if (auth != null && auth.Scheme == "Bearer")
            {
                authHeader = auth.Parameter;
            }

            if (string.IsNullOrEmpty(authHeader))
            {
                return(null);
            }

            /*
             * byte[] byteValue = Convert.FromBase64String(authHeader);
             * authHeader = System.Text.Encoding.Default.GetString(byteValue);
             * //authHeader = Encoding.Default.GetString(Convert.FromBase64String(authHeader));
             *
             * var tokens = authHeader.Split(':');
             * if (tokens.Length < 2)
             *  return null;
             */

            JWTAuthenticationIdentity identity = new JWTAuthenticationIdentity(authHeader);

            return(identity);
        }

Beispiel #2

Datei: AuthenticationFilter.cs Projekt: liweifengGit/newERP

        /// <summary>
        /// Base implementation for user authentication - you probably will
        /// want to override this method for application specific logic.
        ///
        /// The base implementation merely checks for username and password
        /// present and set the Thread principal.
        ///
        /// Override this method if you want to customize Authentication
        /// and store user data as needed in a Thread Principle or other
        /// Request specific storage.
        /// </summary>
        /// <param name="username"></param>
        /// <param name="password"></param>
        /// <param name="actionContext"></param>
        /// <returns></returns>
        protected virtual bool OnAuthorizeUser(JWTAuthenticationIdentity identity, HttpActionContext actionContext)
        {
            if (actionContext.ActionDescriptor.GetCustomAttributes <AllowAnonymousAttribute>().Count > 0)   // 允许匿名访问
            {
                return(true);
            }

            if (string.IsNullOrEmpty(identity.Name) || string.IsNullOrEmpty(identity.AccessToken))
            {
                return(false);
            }

            string    accessToken = identity.AccessToken;
            UserToken userToken   = UserToken.ParseAccessToken(accessToken);

            if (userToken == null)
            {
                return(false);
            }

            //UnitOfWork unitOfWork = new UnitOfWork();

            //var _repository = unitOfWork.Repository<User>();
            UserInfo userInfo = UserInfo.LogonAs(accessToken);

            //Infobasis.Api.Data.UserInfo.LogonAs(accessToken);
            //var user = _repository.Get(filter: item => item.ID == userToken.ID && item.CompanyID == userToken.CompanyID).FirstOrDefault();

            if (userInfo == null)
            {
                return(false);
            }

            if (userInfo.AccessToken != identity.AccessToken)
            {
                return(false);
            }

            if (userInfo.UserName != userToken.UserName)
            {
                return(false);
            }

            if (!userInfo.Enabled)
            {
                return(false);
            }

            if (userInfo.TokenCreationDate != null && userInfo.TokenCreationDate != DateTime.MinValue && (DateTime.Now - userInfo.TokenCreationDate).TotalSeconds > WebApiApplication.TOKENEXPIREDSECONDS)
            {
                return(false);
            }

            identity.CompanyID   = userInfo.CompanyID;
            identity.UserID      = userInfo.UserID;
            identity.AccessToken = userInfo.AccessToken;

            return(true);
        }