注册
登录
区块链扩展技术
具有[授权]的环境相关控制器
返回
具有[授权]的环境相关控制器
作者:
明月清风上善若水自由如风
发布时间:
2024-02-23 03:45:15 (1月前)
转自:
<p> <br/> 要将控制器标记为需要授权,您通常会将其装饰为:</p><p>[授权]<br/>public class MyController:Controller<br/>我们的身份验证是通过第三方提供商并给予它的方式……<br/> <br/></p>
收藏
举报
2 条回复
0#
回复此人
纾潆锦袖迷子
|
2019-08-31 10-32
<div class =“post-text”itemprop =“text”> <P> 如果您使用的是Asp.NET Core,请按照此处的文档: </p> <P> <a href="https://docs.microsoft.com/en-us/aspnet/core/security/authorization/policies?view=aspnetcore-2.1" rel="nofollow noreferrer"> https://docs.microsoft.com/en-us/aspnet/core/security/authorization/policies?view=aspnetcore-2.1 </A> <a href="https://docs.microsoft.com/en-us/aspnet/core/security/authorization/dependencyinjection?view=aspnetcore-2.1" rel="nofollow noreferrer"> https://docs.microsoft.com/en-us/aspnet/core/security/authorization/dependencyinjection?view=aspnetcore-2.1 </A> </p> <P> 您可以像这样制定自定义政策: </p> <pre> <code> public class EnvironmentAuthorize : IAuthorizationRequirement { public string Environment { get; set; } public EnvironmentAuthorize(string env) { Environment = env; } } public class EnvironmentAuthorizeHandler : AuthorizationHandler<EnvironmentAuthorize> { private readonly IHostingEnvironment envionment; public EnvironmentAuthorizeHandler(IHostingEnvironment env) { envionment = env; } protected override Task HandleRequirementAsync(AuthorizationHandlerContext context, EnvironmentAuthorize requirement) { if (requirement.Environment != envionment.EnvironmentName) { context.Succeed(requirement); } return Task.CompletedTask; } } </code> </pre> <P> 在de Startup.cs中: </p> <pre> <code> services.AddAuthorization(options => { options.AddPolicy("ProductionOnly", policy => policy.Requirements.Add(new EnvironmentAuthorize("Production"))); }); services.AddSingleton<IAuthorizationHandler, EnvironmentAuthorizeHandler>(); </code> </pre> <P> 在控制器中: </p> <pre> <code> [Authorize(Policy = "ProductionOnly")] public class MyController : Controller </code> </pre> <P> 虽然这是可能的,但我不能推荐这个,在不同的环境中有不同的行为 的<strong> 真 </强> 一个噩梦。 </p> </DIV>
编辑
登录
后才能参与评论
