C# (CSharp) TideScraper.Core.Security AuthorizeRequestData示例

示例#1

文件： AuthorizeWebRequest.cs 项目： micahlmartin/TideScraper

        public AuthorizationResult Authorize(HttpRequestBase request)
        {
            var requestData = new AuthorizeRequestData(request.Form);

            if (!VerifyDataIsIntact(requestData))
            {
                return(AuthorizationResult.MissingData);
            }

            if (!VerifyTimestamp(requestData.Timestamp))
            {
                return(AuthorizationResult.Expired);
            }

            var consumer = _consumerRepository.GetConsumerByPublicKey(requestData.PublicKey);

            if (consumer == null)
            {
                return(AuthorizationResult.NonExistantConsumer);
            }

            if (!VerifySignature(consumer.PrivateKey, requestData))
            {
                return(AuthorizationResult.BadSignature);
            }

            return(AuthorizationResult.Success);
        }

示例#2

文件： AuthorizeWebRequest.cs 项目： micahlmartin/TideScraper

        private bool VerifyDataIsIntact(AuthorizeRequestData data)
        {
            if (string.IsNullOrWhiteSpace(data.PublicKey) ||
                string.IsNullOrWhiteSpace(data.Signature) ||
                string.IsNullOrWhiteSpace(data.SignatureMethod) ||
                string.IsNullOrWhiteSpace(data.Timestamp))
                return false;

            return true;
        }

示例#3

文件： AuthorizeWebRequest.cs 项目： micahlmartin/TideScraper

        private bool VerifyDataIsIntact(AuthorizeRequestData data)
        {
            if (string.IsNullOrWhiteSpace(data.PublicKey) ||
                string.IsNullOrWhiteSpace(data.Signature) ||
                string.IsNullOrWhiteSpace(data.SignatureMethod) ||
                string.IsNullOrWhiteSpace(data.Timestamp))
            {
                return(false);
            }

            return(true);
        }

示例#4

文件： AuthorizeWebRequest.cs 项目： micahlmartin/TideScraper

        private bool VerifySignature(string privateKey, AuthorizeRequestData requestData)
        {
            var signatureGenerator = _signatureGeneratorFactory.GetGenerator(requestData.SignatureMethod);
            var signature = requestData.Signature;

            var data = requestData.GetDataForSignature();

            var hash = signatureGenerator.Generate(privateKey, data);

            if (hash == signature)
                return true;

            return false;
        }

示例#5

文件： AuthorizeWebRequest.cs 项目： micahlmartin/TideScraper

        private bool VerifySignature(string privateKey, AuthorizeRequestData requestData)
        {
            var signatureGenerator = _signatureGeneratorFactory.GetGenerator(requestData.SignatureMethod);
            var signature          = requestData.Signature;

            var data = requestData.GetDataForSignature();

            var hash = signatureGenerator.Generate(privateKey, data);

            if (hash == signature)
            {
                return(true);
            }

            return(false);
        }

示例#6

文件： AuthorizeWebRequest.cs 项目： micahlmartin/TideScraper

        public AuthorizationResult Authorize(HttpRequestBase request)
        {
            var requestData = new AuthorizeRequestData(request.Form);

            if (!VerifyDataIsIntact(requestData))
                return AuthorizationResult.MissingData;

            if (!VerifyTimestamp(requestData.Timestamp))
                return AuthorizationResult.Expired;

            var consumer = _consumerRepository.GetConsumerByPublicKey(requestData.PublicKey);
            if (consumer == null)
                return AuthorizationResult.NonExistantConsumer;

            if (!VerifySignature(consumer.PrivateKey, requestData))
                return AuthorizationResult.BadSignature;

            return AuthorizationResult.Success;
        }