0
我只能在客户端进行身份验证时才能访问服务,我只能访问Authenticate属性,但因为无法验证而无法访问服务,所以无法正常工作。我将Request Authenticate属性放在请求DTO,服务的顶部和Action之前。下面是我想保护ServiceStack验证属性不检查用户是否通过验证
[Authenticate]
public class HelloService : Service
{
public const string HelloServiceCounterKey = "HelloServiceCounter";
public object Any(HelloRequest request)
{
var userSession = SessionAs<AppHost.CustomUserSession>();
Session.Set(HelloServiceCounterKey, Session.Get<int>(HelloServiceCounterKey) + 1);
var roles = string.Join(", ", userSession.Roles.ToArray());
return new HelloResponse { Result = "Hello, " + request.Name + ", your role(s): " + roles };
}
}
我有这样的服务的一些代码我APPHOST配置(Funq.Container容器)
Plugins.Add(new AuthFeature(
() => new CustomUserSession(),
new[] { new CustomCredentialsAuthProvider() }
));
public class CustomUserSession : AuthUserSession
{
public string CompanyName { get; set; }
}
public class CustomCredentialsAuthProvider : CredentialsAuthProvider
{
public override bool TryAuthenticate(IServiceBase authService, string userName, string password)
{
if (!Membership.ValidateUser(userName, password)) return false;
var session = (CustomUserSession)authService.GetSession(false);
session.CompanyName = "Company from DB";
session.UserAuthId = userName;
session.IsAuthenticated = true;
// add roles
session.Roles = new List<string>();
if (session.UserAuthId == "admin") session.Roles.Add(RoleNames.Admin);
session.Roles.Add("User");
return true;
}
}
当访问在
var roles = string.Join(", ", userSession.Roles.ToArray());
行服务
obviosly返回NULL,因为尚未进行身份验证。
应该怎么做这种情况下的验证属性?
我已经配置我的身份验证提供者CustomCredentialsAuthProvider和我添加的代码到原来的问题@pedro希望你能帮助我 –
仍然不工作,我仍然可以不认证@Pedro –
访问该服务去看一下我的更新 –