asp.net web api - webapi-use claims with windows authentication -


the method has been secured roles=admin:

[authorize(roles = "admin")] public class valuescontroller : apicontroller {      // api/values             public ienumerable<string> get()     {         return new string[] { "value1", "value2" };     }}

i use claims webapi project individual user account selected claim admin injected in

public class applicationuser : identityuser {     public async task<claimsidentity> generateuseridentityasync(usermanager<applicationuser> manager, string authenticationtype)     {         // note authenticationtype must match 1 defined in cookieauthenticationoptions.authenticationtype         var useridentity = await manager.createidentityasync(this, authenticationtype);          // add custom user claims here         useridentity.addclaim(new claim(claimtypes.role, "admin"));          return useridentity;     } }

now want test windows authentication option iauthenticationfilter implemented:

public class customauthenticationfilter : iauthenticationfilter {     public bool allowmultiple { { return true; } }     public task authenticateasync(httpauthenticationcontext context, cancellationtoken cancellationtoken)     {         var windowsprincipal = context.principal windowsprincipal;         if (windowsprincipal != null)         {             var name = windowsprincipal.identity.name;             // todo: fetch claims db (i guess based on name)             var identity = new claimsidentity(windowsprincipal.identity);              identity.addclaim(new claim(claimtypes.role, "admin"));              var claimsprincipal = new claimsprincipal(identity);             // here punchline - we're replacing original windows principal              // our own claims principal               context.principal = claimsprincipal;         }          return task.fromresult(0);     }      public task challengeasync(httpauthenticationchallengecontext context, cancellationtoken cancellationtoken)     {         return task.fromresult(0);     } }

and added class webapiconfig:

public static class webapiconfig {     public static void register(httpconfiguration config)     {         // web api configuration , services         config.filters.add(new customauthenticationfilter());          ...     } }

the claim admin in user.identity.claims when debugging webapi project, not authorized in method /api/values/get.

any idea?

the default identity roleclaimtype identity/claims/groupsid not role.

enter image description here

by setting roleclaimtype identity/claims/role in claimsidentity constructor, can passing [authorize(roles = "admin")]

public task authenticateasync(httpauthenticationcontext context, cancellationtoken cancellationtoken)     {         var windowsprincipal = context.principal windowsprincipal;         if (windowsprincipal != null)         {             var name = windowsprincipal.identity.name;              // todo: fetch claims db (i guess based on name)                             var identity = new claimsidentity(windowsprincipal.identity,                 null,                 "negotiate",                 "http://schemas.xmlsoap.org/ws/2005/05/identity/claims/name",                 "http://schemas.microsoft.com/ws/2008/06/identity/claims/role");             //identity              identity.addclaim(new claim(claimtypes.role, "admin"));              var claimsprincipal = new claimsprincipal(identity);             // here punchline - we're replacing original windows principal              // our own claims principal               context.principal = claimsprincipal;         }          return task.fromresult(0);     }

here new identity:

enter image description here


Comments

Post a Comment

Popular posts from this blog

ubuntu - PHP script to find files of certain extensions in a directory, returns populated array when run in browser, but empty array when run from terminal -

i running os ububtu 16.04. ultimate goal able run php script cron job every minute. here php script located @ /var/www/html/tests/test/index.php : <?php $directorypath = $_server['document_root']."/tests/test/data/"; echo "directorypath: $directorypath<br><br>";//check $imagefilepathsarray = glob($directorypath . "*.{png,gif}", glob_brace); echo "<br><br>imagefilepathsarray: "; print_r($imagefilepathsarray);//check ?> when open php script in browser visiting url my-ip-address/tests/test/index.php , get: directorypath: /var/www/html/tests/test/data/ imagefilepathsarray:array( [0] => /var/www/html/tests/test/data/pic.png [1] => /var/www/html/tests/test/data/pic.gif ) before writing cron job in crontab file, need check if can run anywhere using terminal . opened ubuntu terminal @ /home/ location, , executed in terminal: sudo php /var/www/html/tests/test/index.php i got following out...
Read more

php - How can i create a user dashboard -

today have questions you, want create user dashboard site, include (obviously), users data, example -email -username -and others stuff how can information, , print them in html page? if can, how can these information via php sessions? shuld use session? example, if user login, , start new session ( session_start() ), how can data print in dashboard? should use php "project"? in advice, have day , thank time!
Read more

javascript - How to detect toggling of the fullscreen-toolbar in jQuery Mobile? -

i have jquery mobile page fixed full-screen toolbar, data-tap-toggle enabled. straight under toolbar have positioned banner should slide upwards when toolbar hiding , slide downward when toolbar showing. jquery mobile toggles toolbar applying , removing ui-fixed-hidden class - sadly, can't find in documentation of toolbar widget toggle , hide or show event that. how can detect when toolbar toggled, reposition banner? .banner { position: fixed; background-color: darkseagreen; top: 46px; min-height: 48px; width: 100%; text-align: center; line-height: 48px; } <!doctype html> <html> <head> <meta charset="utf-8"> <meta name="viewport" content="width=device-width, initial-scale=1, user-scalable=no"> <link rel="stylesheet" href="https://code.jquery.com/mobile/1.4.5/jquery.mobile-1.4.5.css"> <script src="https://code.jquery.com/jquery-1....
Read more