c# - How do i set up a default for ActiveAuthenticationSchemes? -


in asp.net core 2 project, have custom authenticationhandler middleware want plug in. 

public class basicauthenticationmiddleware : authenticationhandler<authenticationschemeoptions> {     public basicauthenticationmiddleware(ioptionsmonitor<authenticationschemeoptions> options,         iloggerfactory logger, urlencoder encoder, isystemclock clock)         : base(options, logger, encoder, clock)     {     }     protected override task<authenticateresult> handleauthenticateasync()     {         var principal = new genericprincipal(new genericidentity("user"), null);         var ticket = new authenticationticket(principal, new authenticationproperties(), "basicauth");         return task.fromresult(authenticateresult.success(ticket));     } }

in startup have following:

public void configureservices(iservicecollection services) {     services.addmvc();     services.addauthentication(options =>     {         options.defaultauthenticatescheme = "basicauth";         options.defaultchallengescheme = "basicauth";         options.addscheme("basicauth", x => {             x.displayname = "basicauthenticationmiddleware";             x.handlertype = typeof(basicauthenticationmiddleware);         });     }); }

and view controller:

[route("api/[controller]")] public class valuescontroller : controller {     // api/values/works     [httpget]     [route("works")]     [authorize(activeauthenticationschemes = "basicauth")]     public string works()     {         return "works";     }      // api/values/doesnotwork     [httpget]     [route("doesnotwork")]     [authorize]     public string doesnotwork()     {         return "does not work";     }  }

my authenticator handleauthenticateasync called when specify activeauthenticationschemes scheme name, otherwise not. have demo app showing behavior here: https://github.com/johnpaguirre/authenticationschemaproblem

i want basicauthenticationmiddleware log in demo logic. how can make activeauthenticationschemes default "basicauth" requests?

anyone have ideas on missing?

i don't think can set default, have other options.

  1. create own custom authorisation attribute:

    public class basicauthauthorizeattribute : authorizeattribute {     public basicauthauthorizeattribute()     {         activeauthenticationschemes = "basicauth";     } }

    and use on actions before:

    [basicauthauthorize] public string someaction() {     //snip }

  2. add authorize attribute actions , override needed. that, in `` method:

    public void configureservices(iservicecollection services) {     services.addmvc(options =>     {         options.filters.add(new authorizeattribute         {             activeauthenticationschemes = "basicauth"          });      });      //snip }

    and overriding it:

    [allowanonymous] public string unsecureaction() {     //snip }

Comments

Post a Comment

Popular posts from this blog

Is there a better way to structure post methods in Class Based Views -

i'm using class based views in django , never specify url in ajax calls , omit action parameter in form because know these requests go through post method of class based view. notice view - profile page make many requests depending on user updating on page - post method become convoluted , if/else mess example: def post(self, request, *args, **kwargs): # handle user changing available date if request.post.get('availabledate') != none: self.updateavailabledate(request) return jsonresponse({'result':'success'}) if request.post.get('newprojectname') != none: creative_user = creativeuserprofile.objects.get(id = request.user.id) project = project.create_project(creative_user, request.post['newprojectname']) project.save() return jsonresponse({'projectid': project.id }) if request.post.get('projectimage') != none , request.files['file']: proj...
Read more

Python Tornado package error when running server -

we running tornado tcp server on windows server 2012 machine. machine handles both http-based dashboard , 21 tcp websocket connected clients. in logs see following error. seems @ low level of websocket13 protocol. networking standpoint mean? why write buffer not greater or equal 0? [error] [2017-08-17 11:54:14 am] [tornado.application] exception in callback <bound method websocketprotocol13.periodic_ping of <tornado.websocket.websocketprotocol13 object @ 0x01d7ad30>> traceback (most recent call last): file "c:\python27\lib\site-packages\tornado\ioloop.py", line 1026, in _run return self.callback() file "c:\python27\lib\site-packages\tornado\websocket.py", line 1030, in periodic_ping self.write_ping(b'') file "c:\python27\lib\site-packages\tornado\websocket.py", line 790, in write_ping self._write_frame(true, 0x9, data) file "c:\python27\lib\site-packages\tornado\websocket.py", line 768, in _writ...
Read more

php - Cannot override Laravel Spark authentication with own implementation -

during login process of laravel spark need request token of remote api. api stores exact same users , passwords laravel spark application. therefore need username , non hashed password of user during authentication process. i thought overriding authenticated method solution problem. in routes/web.php override post /login endpoint , pointing endpoint own logincontroller: <?php namespace app\http\controllers\auth; use illuminate\support\facades\log; use illuminate\http\request; use laravel\spark\http\controllers\auth\logincontroller sparklogincontroller; class logincontroller extends sparklogincontroller { /** * create new login controller instance. * * @return void */ public function __construct() { parent::__construct(); } /** * handle successful authentication attempt. * * @param request $request * @param \illuminate\contracts\auth\authenticatable $user * @return response */ public fu...
Read more