/// <summary> /// Validates the password for a username token. /// </summary> private void VerifyPassword(string userName, string password) { if (String.IsNullOrEmpty(userName)) { // an empty username is not accepted. throw ServiceResultException.Create(StatusCodes.BadIdentityTokenInvalid, "Security token is not a valid username token. An empty username is not accepted."); } if (String.IsNullOrEmpty(password)) { // 空的密码不被允许 throw ServiceResultException.Create(StatusCodes.BadIdentityTokenRejected, "Security token is not a valid username token. An empty password is not accepted."); } if (!DictionaryIdentity.ContainsKey(userName)) { // 账户名验证失败 throw ServiceResultException.Create(StatusCodes.BadUserAccessDenied, "您输入的账户不存在,禁止登录"); } if (DictionaryIdentity[userName] != password) { // 密码验证失败 throw ServiceResultException.Create(StatusCodes.BadUserAccessDenied, "您输入的账户不存在,禁止登录"); } }
public DataAccessServer() { // 添加允许登录的用户名 DictionaryIdentity.Add("admin", "123456"); DictionaryIdentity.Add("hushaolin", "1234567890"); }