PROSAGA码农传奇-区块链扩展技术-在非MVC Asp.Net Core 2.x中基于授权头方案动态进行身份验证

在非MVC Asp.Net Core 2.x中基于授权头方案动态进行身份验证

作者: 大魔王
发布时间: 2024-12-13 11:42:45 (1月前)
转自：

<div class =“post-text”itemprop =“text”>
  <P>
    我最终定义了一个基于的简单中间件
    <a href="https://github.com/aspnet/Security/issues/1469#issuecomment-334982498" rel="nofollow noreferrer">
      https://github.com/aspnet/Security/issues/1469#issuecomment-334982498
    </A>
  </p>
   <pre>
    <code>
      app.Use(async (context, next) =>
{
    var authHeader = AuthenticationHeaderValue.Parse(context.Request.Headers[HeaderNames.Authorization]);
    var schemeName = authHeader?.Scheme ?? string.Empty;

var provider = context.RequestServices.GetService<IAuthenticationSchemeProvider>();
    var scheme = await provider.GetSchemeAsync(schemeName);

if (scheme != null)
    {
        var result = await context.AuthenticateAsync(scheme.Name);
        if (result.Succeeded)
        {
            context.User = result.Principal;
        }
    }

await next.Invoke();
});

</code>
  </pre>
  <P>
    从2.1开始，可以添加自定义方案策略并使用转发默认方案
     <code>
      AuthenticationSchemeOptions.ForwardDefaultSelector
    </code>
    ，见：
    <a href="https://github.com/aspnet/Security/issues/1469#issuecomment-399239254" rel="nofollow noreferrer">
      https://github.com/aspnet/Security/issues/1469#issuecomment-399239254
    </A>
  </p>
</DIV>