Ejemplos de OAuthPrincipal.CreatePrincipal en C# (CSharp)

Lenguaje de programación: C# (CSharp)

Clase / Tipo: OAuthPrincipal

Método / Función: CreatePrincipal

Ejemplos en hotexamples.com: 2

C# (CSharp) OAuthPrincipal.CreatePrincipal - 2 ejemplos encontrados. Estos son los ejemplos en C# (CSharp) del mundo real mejor valorados de OAuthPrincipal.CreatePrincipal extraídos de proyectos de código abierto. Puedes valorar ejemplos para ayudarnos a mejorar la calidad de los ejemplos.

Métodos usados con frecuencia

Mostrar Ocultar

CreatePrincipal(2)

Métodos usados con frecuencia

CreatePrincipal (2)

Ejemplo n.º 1

Mostrar archivo

Archivo: ServiceProvider.cs Proyecto: terry2012/DSV

        /// <summary>
        /// Creates a security principal that may be used.
        /// </summary>
        /// <param name="request">The request.</param>
        /// <returns>The <see cref="IPrincipal"/> instance that can be used for access control of resources.</returns>
        public IPrincipal CreatePrincipal(AccessProtectedResourceRequest request)
        {
            Requires.NotNull(request, "request");

            IServiceProviderAccessToken accessToken = this.TokenManager.GetAccessToken(request.AccessToken);

            return(OAuthPrincipal.CreatePrincipal(accessToken.Username, accessToken.Roles));
        }

Ejemplo n.º 2

Mostrar archivo

Archivo: ResourceServer.cs Proyecto: terry2012/DSV

        /// <summary>
        /// Discovers what access the client should have considering the access token in the current request.
        /// </summary>
        /// <param name="httpRequestInfo">The HTTP request info.</param>
        /// <param name="cancellationToken">The cancellation token.</param>
        /// <param name="requiredScopes">The set of scopes required to approve this request.</param>
        /// <returns>
        /// The principal that contains the user and roles that the access token is authorized for.  Never <c>null</c>.
        /// </returns>
        /// <exception cref="ProtocolFaultResponseException">Thrown when the client is not authorized.  This exception should be caught and the
        /// <see cref="ProtocolFaultResponseException.ErrorResponseMessage" /> message should be returned to the client.</exception>
        public virtual async Task <IPrincipal> GetPrincipalAsync(HttpRequestBase httpRequestInfo = null, CancellationToken cancellationToken = default(CancellationToken), params string[] requiredScopes)
        {
            AccessToken accessToken = await this.GetAccessTokenAsync(httpRequestInfo, cancellationToken, requiredScopes);

            // Mitigates attacks on this approach of differentiating clients from resource owners
            // by checking that a username doesn't look suspiciously engineered to appear like the other type.
            ErrorUtilities.VerifyProtocol(accessToken.User == null || string.IsNullOrEmpty(this.ClientPrincipalPrefix) || !accessToken.User.StartsWith(this.ClientPrincipalPrefix, StringComparison.OrdinalIgnoreCase), ResourceServerStrings.ResourceOwnerNameLooksLikeClientIdentifier);
            ErrorUtilities.VerifyProtocol(accessToken.ClientIdentifier == null || string.IsNullOrEmpty(this.ResourceOwnerPrincipalPrefix) || !accessToken.ClientIdentifier.StartsWith(this.ResourceOwnerPrincipalPrefix, StringComparison.OrdinalIgnoreCase), ResourceServerStrings.ClientIdentifierLooksLikeResourceOwnerName);

            string principalUserName = !string.IsNullOrEmpty(accessToken.User)
                                ? this.ResourceOwnerPrincipalPrefix + accessToken.User
                                : this.ClientPrincipalPrefix + accessToken.ClientIdentifier;

            return(OAuthPrincipal.CreatePrincipal(principalUserName, accessToken.Scope));
        }