asp.net - OWIN WebApi Entity Framework with OAuth Identity -

-

i'm experimenting self hosted owin webapi/entity framework project

i've created startup class , configured both owin , webapi using useoauthbearerauthentication , useoauthauthorizationserver provider defined class deriving oauthauthorizationserverprovider

 provider = new applicationoauthserverprovider() // :oauthauthorizationserverprovider

this class overrides 

 public override async task grantresourceownercredentials(oauthgrantresourceownercredentialscontext context)     {}

validate user creates claimsidentity returning token encoding associated claims in case nameidentifier, name , role (role "admin")

everything works expected , token returned. i'd take advantage of associated claims inside apicontroller. problem user.identityobject has authentiationtype isauthenticated , name properties associated claims not there , can't name property. see using 

[authorize (roles="admin")]

i'm able access apicontroller role claim available somewhere other claims i'm not able access;

is there way solve issue???

 [authorize (roles="admin")] public class testcontroller : apicontroller {      public async task<account> get()     {         var principal = user.identity;         .... find , return data user id     }  }

here classes i've used

    public class startup     {     // method required.     public void configuration(iappbuilder app)     {         // use cors on server level         app.usecors(microsoft.owin.cors.corsoptions.allowall);          // configure owin authenticate incoming requests.         configureauth(app);         // use extension method provided webapi.owin library.         app.usewebapi(configurewebapi());     }      private void configureauth(iappbuilder app)     {         // make sure single instance of ef context created per owincontext.         app.createperowincontext<applicationdbcontext>(applicationdbcontext.create);          var oauthoptions = new oauthauthorizationserveroptions{             tokenendpointpath = new pathstring("/token"),             provider = new applicationoauthserverprovider(),              accesstokenexpiretimespan = timespan.fromdays(14),             // debug             allowinsecurehttp = true         };          // server added options object, specifies other configuration items,          // , passed middleware pipeline.         app.useoauthauthorizationserver(oauthoptions);          // indicate want return bearer tokens          // passing default implementation oauthbearerauthenticationoptions,         app.useoauthbearerauthentication(new oauthbearerauthenticationoptions());     }      private httpconfiguration configurewebapi()     {         var config = new httpconfiguration();          //add json formetters          // configure api routes         config.routes.maphttproute(             "defaultapi",             "api/{controller}/{id}",             new { id = routeparameter.optional });           return config;     } }

applicationoauthserverprovider class

public class applicationoauthserverprovider : oauthauthorizationserverprovider {     public override async task validateclientauthentication(oauthvalidateclientauthenticationcontext context)     {         // call required...         await task.fromresult(context.validated());     }      public override async task grantresourceownercredentials(oauthgrantresourceownercredentialscontext context)     {           if (context.password == "password")         {             // create or retrieve claimsidentity represent              // claimsidentity created represent user data, including claims user should have.              claimsidentity identity = new claimsidentity(context.options.authenticationtype);             identity.addclaim(new claim(claimtypes.nameidentifier, "120"));             identity.addclaim(new claim(claimtypes.name, context.username));             identity.addclaim(new claim(claimtypes.role, "admin"));              // claimsidentity encoded access token             context.validated(identity);           }         else         {             context.seterror("invalid_grant", "the user name or password incorrect.");             context.rejected();         }      } }


Comments

Post a Comment

Popular posts from this blog

Fail to load namespace Spring Security http://www.springframework.org/security/tags -

-
i have problem namespace of spring security on xhtml page. don't understand why can't load uri, , have following issue: whitelabel error page application has no explicit mapping /error, seeing fallback. tue jul 21 16:58:12 utc 2015 there unexpected error (type=not found, status=404). please need help! possible uri has been changed? best regards you using incorrect namespace url. correct url http://www.springframework.org/schema/security the error page seeing spring source website since not recognize url. try visiting http://www.springsource.org/security/tags in browser update : spring security tags used in jsp page correct tag lib declaration is: <%@ taglib prefix="sec" uri="http://www.springframework.org/security/tags" %>
Read more

sql - MySQL query optimization using coalesce -

-
can explain me why second query faster first? (first 1 takes around 40 seconds, second 1 less 0.1) select releases.feature_code, releases.platform_id, version, release_date, general_available, uri, filesize, display_name, feature_name.full_name, if ((select exists(select 1 release_exceptions releases.feature_code = release_exceptions.feature_code , releases.platform_id = release_exceptions.platform_id , releases.version = release_exceptions.version) = 1), 1, 0) release_exceptions releases left outer join platform using(platform_id) left outer join feature_name using(feature_code) order version desc; ~~~ query 2 ------------------ ~~~ select feature_code, version, release_date, general_available, platform_id, uri, filesize, display_name, feature_name.full_name, coalesce(release_exceptions, 0) release_exceptions mus.releases left outer join ( select distinct feature_code, version, platform_id, 1 release_exceptions mus.release_exceptions ) release_exceptions using ...
Read more

unity3d - Unity local avoidance in user created world -

-
i'm using unity3d networked multiplayer online game have large complex 3d terrain scene forest, trees, cliff, hills, mountains, bounders, etc. players can build structures sort of minecraft, , put them anywhere in scene, or move them around anytime. aside human controlled players, there automated ai players , objects animals roaming around scene following path. the problem how make these automated ai players , animals, able navigate around static , dynamic player created structures, because path follow can blocked player created structures, or other players , other ai objects, cliffs etc. have find away around them or on track if tumble down off high cliff example. so made navmesh , used navagents, takes care of static, non moving objects, how make ai players navigate around each other , dynamic structures created players can number in hundreds? i thought of adding navmeshobstacle everything, result in being attached hundreds of objects since user created structures b...
Read more