Esempi in C# (CSharp) per OAuthPrincipalAuthorizationPolicy

Linguaggio di programmazione: C# (CSharp)

Classe/tipologia: OAuthPrincipalAuthorizationPolicy

Esempi su hotexamples.com: 3

{shortObject} in {lang}: {examplesCount,plural,one{1 esempio trovato. Questo è il miglior esempio reale in {lang} per {object}, estratto da progetti open source. Lo} other{{examplesCount} esempi trovati. Questi sono i migliori esempi reali in {lang} per {object}, estratti da progetti open source. Li}} puoi valutare, per aiutarci a migliorare la qualità dei nostri esempi.

Esempio n. 1

Mostra file

    protected override bool CheckAccessCore(OperationContext operationContext)
    {
        if (!base.CheckAccessCore(operationContext))
        {
            return(false);
        }

        HttpRequestMessageProperty httpDetails = operationContext.RequestContext.RequestMessage.Properties[HttpRequestMessageProperty.Name] as HttpRequestMessageProperty;
        Uri             requestUri             = operationContext.RequestContext.RequestMessage.Properties["OriginalHttpRequestUri"] as Uri;
        ServiceProvider sp = Constants.CreateServiceProvider();

        try {
            var auth = sp.ReadProtectedResourceAuthorization(httpDetails, requestUri);
            if (auth != null)
            {
                var accessToken = Global.DataContext.OAuthTokens.Single(token => token.Token == auth.AccessToken);

                var principal = sp.CreatePrincipal(auth);
                var policy    = new OAuthPrincipalAuthorizationPolicy(principal);
                var policies  = new List <IAuthorizationPolicy> {
                    policy,
                };

                var securityContext = new ServiceSecurityContext(policies.AsReadOnly());
                if (operationContext.IncomingMessageProperties.Security != null)
                {
                    operationContext.IncomingMessageProperties.Security.ServiceSecurityContext = securityContext;
                }
                else
                {
                    operationContext.IncomingMessageProperties.Security = new SecurityMessageProperty {
                        ServiceSecurityContext = securityContext,
                    };
                }

                securityContext.AuthorizationContext.Properties["Identities"] = new List <IIdentity> {
                    principal.Identity,
                };

                // Only allow this method call if the access token scope permits it.
                string[] scopes = accessToken.Scope.Split('|');
                if (scopes.Contains(operationContext.IncomingMessageHeaders.Action))
                {
                    return(true);
                }
            }
        } catch (ProtocolException ex) {
            Global.Logger.Error("Error processing OAuth messages.", ex);
        }

        return(false);
    }

Esempio n. 2

Mostra file

File: OAuthAuthorizationManager.cs Progetto: mkiran1992/OAuthPoc

        /// <summary>
        /// This method authorizes the OAuth request. The token is extracted from the header and the scope is checked.
        /// For the demonstration pourposes the scope is the URL of the service. In real world applications the scope would be the functional entity being accessed (eg. the calendar, the fotos etc...).
        /// </summary>
        /// <param name="operationContext"></param>
        /// <returns></returns>
        protected override bool CheckAccessCore(OperationContext operationContext)
        {
            if (!base.CheckAccessCore(operationContext)) {
                return false;
            }

            HttpRequestMessageProperty httpDetails = operationContext.RequestContext.RequestMessage.Properties[HttpRequestMessageProperty.Name] as HttpRequestMessageProperty;
            Uri requestUri = operationContext.RequestContext.RequestMessage.Properties.Via;
            ServiceProvider sp = Constants.CreateServiceProvider();
            try {
                var auth = sp.ReadProtectedResourceAuthorization(httpDetails, requestUri);
                if (auth != null) {
                    var accessToken = Global.AuthTokens.Single(token => token.Token == auth.AccessToken);

                    var principal = sp.CreatePrincipal(auth);
                    var policy = new OAuthPrincipalAuthorizationPolicy(principal);
                    var policies = new List<IAuthorizationPolicy> {
                    policy,
                };

                    var securityContext = new ServiceSecurityContext(policies.AsReadOnly());
                    if (operationContext.IncomingMessageProperties.Security != null) {
                        operationContext.IncomingMessageProperties.Security.ServiceSecurityContext = securityContext;
                    } else {
                        operationContext.IncomingMessageProperties.Security = new SecurityMessageProperty {
                            ServiceSecurityContext = securityContext,
                        };
                    }

                    securityContext.AuthorizationContext.Properties["Identities"] = new List<IIdentity> {
                    principal.Identity,
                };

                    // Only allow this method call if the access token scope permits it.
                    string[] scopes = accessToken.Scope.Split('|');

                    //extracting the URL which is demanded
                    var action = "http://" + operationContext.IncomingMessageProperties.Via.Authority + operationContext.IncomingMessageProperties.Via.AbsolutePath;

                    //comparing the SCOPE and the demanded URL
                    if (scopes.Contains(action)) {
                        return true;
                    }
                }
            } catch (ProtocolException ex) {
                Debug.WriteLine(ex.Message);
            }

            return false;
        }

Esempio n. 3

Mostra file

File: OAuthAuthorizationManager.cs Progetto: jongalloway/dotnetopenid

	protected override bool CheckAccessCore(OperationContext operationContext) {
		if (!base.CheckAccessCore(operationContext)) {
			return false;
		}

		HttpRequestMessageProperty httpDetails = operationContext.RequestContext.RequestMessage.Properties[HttpRequestMessageProperty.Name] as HttpRequestMessageProperty;
		Uri requestUri = operationContext.RequestContext.RequestMessage.Properties["OriginalHttpRequestUri"] as Uri;
		ServiceProvider sp = Constants.CreateServiceProvider();
		try {
			var auth = sp.ReadProtectedResourceAuthorization(httpDetails, requestUri);
			if (auth != null) {
				var accessToken = Global.DataContext.OAuthTokens.Single(token => token.Token == auth.AccessToken);

				var principal = sp.CreatePrincipal(auth);
				var policy = new OAuthPrincipalAuthorizationPolicy(principal);
				var policies = new List<IAuthorizationPolicy> {
					policy,
				};

				var securityContext = new ServiceSecurityContext(policies.AsReadOnly());
				if (operationContext.IncomingMessageProperties.Security != null) {
					operationContext.IncomingMessageProperties.Security.ServiceSecurityContext = securityContext;
				} else {
					operationContext.IncomingMessageProperties.Security = new SecurityMessageProperty {
						ServiceSecurityContext = securityContext,
					};
				}

				securityContext.AuthorizationContext.Properties["Identities"] = new List<IIdentity> {
					principal.Identity,
				};

				// Only allow this method call if the access token scope permits it.
				string[] scopes = accessToken.Scope.Split('|');
				if (scopes.Contains(operationContext.IncomingMessageHeaders.Action)) {
					return true;
				}
			}
		} catch (ProtocolException ex) {
			Global.Logger.Error("Error processing OAuth messages.", ex);
		}

		return false;
	}