-
Notifications
You must be signed in to change notification settings - Fork 1
Tutorial:QuickStarted with ASP.NET Core WebAPI
Psyche edited this page Oct 22, 2020
·
3 revisions
In this chapter, you will learn:
- Configure authorization service
- Use databse authorization
- AuthHandler example code
Base Endpoint authorization framework
Project Nuget address:
https://www.nuget.org/packages/Cyaim.Authentication/
Nuget run command.
Install-Package Cyaim.Authentication -Version 1.0.0
In "Startup.cs" -> "ConfigureServices" Method,the method last add code.
services.ConfigureAuth(x =>
{
x.SourceLocation = ParameterLocation.Header;
x.PreAccessEndPointKey = "Sys";
});
In "Configure" Method add middleware.
AuthMiddleware must add above UseEndpoints.
app.UseAuth();
In need of authorization Controller or Action mark:
[AuthEndPoint()]
In not authorization Action mark:
[AuthEndPoint(allowGuest: true)]
Here operation PostgreSQL and redis, You can replace it with something you like.
using System;
using System.IO;
using System.Linq;
using System.Threading.Tasks;
using Newtonsoft.Json;
using static Cyaim.Authentication.Infrastructure.Helpers.URLStructHelper;
public class Auth
{
static Auth()
{
_npgsqlDapperHelper = NpgsqlDapperHelper.Helper("Your databse connection string");
_redisHelper = new RedisHelper("Your redis connection string", "Auth", 0);
}
private readonly static NpgsqlDapperHelper _npgsqlDapperHelper;
private readonly static RedisHelper _redisHelper;
const string ROUTE = "/api/v1/{controller}/{action}";
public static async Task<AuthEndPointAttribute[]> GetAuthEndPointByUser(string authKey, HttpContext httpContext, AuthOptions authOptions)
{
string personId = GetUserIdByRedis(authKey);
if (personId == null)
{
// to do request is not login
personId = "sys_guest";
}
URLStruct urlStruct = GetUrlStruct(ROUTE, httpContext.Request.Path);
// Adopt request URL search watching endpoint
var watchep = authOptions.WatchAuthEndPoint.FirstOrDefault(x =>
x.Routes != null &&
x.ControllerName?.ToLower() == urlStruct.Controller.ToLower() + "controller" &&
x.Routes.Any(r => r.Template?.ToLower() == urlStruct.Action?.ToLower()));
if (watchep == null)
{
//This means that the request is not listening
//goto GoNonAccess;
Console.WriteLine($@"Endpoint -> {httpContext.Request.Path} not databse watching range.");
goto NonAccessWatch;
}
//----------Begin database query user authorization code----------
if(user permission == false)
{
goto GoNonAccess;
}
//----------End your code----------
return new AuthEndPointAttribute[1] { watchep };
//Non Access
GoNonAccess: return new AuthEndPointAttribute[0];
//Non watching range
NonAccessWatch: return null;
}
/// <summary>
/// From redis get token
/// </summary>
/// <param name="authKey"></param>
public static string GetUserIdByRedis(string authKey)
{
var personId = _redisHelper.StringGet(authKey);
return personId;
}
}
In "Startup.cs" -> "ConfigureServices" Method,the method last replace code.
services.ConfigureAuth(x =>
{
x.SourceLocation = ParameterLocation.Header;
x.ExtractDatabaseAuthEndPoints = new AuthOptions.ExtractAuthEndPointsHandler(Auth.GetAuthEndPointByUser);
x.PreAccessEndPointKey = "Sys";
});