在ServiceStack服务上进行身份验证后访问客户端上的AuthSession

Question

在ServiceStack服务上进行身份验证后访问客户端上的AuthSession

rep*_*rat 4 authentication asp.net-mvc servicestack

我对会话文档有点困惑,所以让我说我已经从客户端发送身份验证数据并检索ss-id和ss-pid,如下所示:

var client = new JsonServiceClient("http://somewhere/theAPI/");
var response = client.Post(new Auth() {UserName = "myuser", Password = "password123"});
var myCookie= client.CookieContainer.GetCookies(new Uri("http://somewhere/theAPI"));

Run Code Online (Sandbox Code Playgroud)

我如何从服务栈中检索姓氏,电子邮件等的AuthSession信息？我需要它存储在其他地方,如在memcache服务器,并从中检索？

或者我需要在客户端构建我的身份验证？并只是使用API来检索数据？

Answer 1

Pau*_*ice 5

假设您已经创建了自定义AuthUserSession,例如:

/// <summary>
/// Create your own strong-typed Custom AuthUserSession where you can add additional AuthUserSession 
/// fields required for your application. The base class is automatically populated with 
/// User Data as and when they authenticate with your application. 
/// </summary>
public class CustomUserSession : AuthUserSession {
    public string CustomId { get; set; }
}

Run Code Online (Sandbox Code Playgroud)

您在配置AuthFeature插件时注册了自定义AuthUserSession,如下所示:

public override void Configure(Container container)
{
    //Register all Authentication methods you want to enable for this web app.            
    Plugins.Add(new AuthFeature(
        () => new CustomUserSession(), //Use your own typed Custom UserSession type
        new IAuthProvider[] {
            new CredentialsAuthProvider(),              //HTML Form post of UserName/Password credentials
            // and any other auth providers you need
        }));
}

Run Code Online (Sandbox Code Playgroud)

然后,您可以在您创建的服务中将此数据公开给客户端. SocialBotstrapApi提供对服务器上当前会话信息的访问,如下所示: 使用它作为模型来创建UserAuth服务,该服务仅返回当前用户的信息.

public abstract class AppServiceBase : Service {
    private CustomUserSession userSession;
    protected CustomUserSession UserSession {
        get {
            return base.SessionAs<CustomUserSession>();
        }
    }
}


[Route("/userauths")]
public class UserAuths
{
    public int[] Ids { get; set; }
}

public class UserAuthsResponse
{
    public UserAuthsResponse()
    {
        this.Users = new List<User>();
        this.UserAuths = new List<UserAuth>();
        this.OAuthProviders = new List<UserOAuthProvider>();
    }
    public CustomUserSession UserSession { get; set; }

    public List<User> Users { get; set; }

    public List<UserAuth> UserAuths { get; set; }

    public List<UserOAuthProvider> OAuthProviders { get; set; }
}

//Implementation. Can be called via any endpoint or format, see: http://servicestack.net/ServiceStack.Hello/
public class UserAuthsService : AppServiceBase
{
    public object Any(UserAuths request)
    {
        var response = new UserAuthsResponse {
            UserSession = base.UserSession,
            Users = Db.Select<User>(),
            UserAuths = Db.Select<UserAuth>(),
            OAuthProviders = Db.Select<UserOAuthProvider>(),
        };

        response.UserAuths.ForEach(x => x.PasswordHash = "[Redacted]");
        response.OAuthProviders.ForEach(x =>
            x.AccessToken = x.AccessTokenSecret = x.RequestTokenSecret = "[Redacted]");
        if (response.UserSession != null)
            response.UserSession.ProviderOAuthAccess.ForEach(x =>
            x.AccessToken = x.AccessTokenSecret = x.RequestTokenSecret = "[Redacted]");

        return response;
    }
}

Run Code Online (Sandbox Code Playgroud)

归档时间：	12 年，3 月前
查看次数：	647 次
最近记录：	11 年，10 月前