asp.net core模塊學習

時間  2019-12-12
標籤 asp.net asp core 模塊 學習 欄目 ASP 简体版
原文   原文鏈接

1、配置管理web

2、管道數據庫

3、認證與受權json

4、MVCDemoapi

5、IdentityServer4服務器

 

 

1、配置管理cookie

1,讀取內存配置mvc

using System;
using Microsoft.Extensions.Configuration;
using System.Collections.Generic;
namespace ConsoleApp1
{
    class Program
    {
        static void Main(string[] args)
        {

            Dictionary<string, string> dic = new Dictionary<string, string>() {
                { "name","hunter"},
                { "age","10"}
            };

            var builder = new ConfigurationBuilder()
                .AddInMemoryCollection(dic)//當age沒有值的時候使用dic裏面的值
                .AddCommandLine(args);

            var configuration = builder.Build();

            Console.WriteLine($"name:{configuration["name"]}");
            Console.WriteLine($"age:{configuration["age"]}");

            Console.ReadKey();
        }
    }
}
demo

2,讀取json文件app

using System;
using Microsoft.Extensions.Configuration;
using System.Collections.Generic;
namespace ConsoleApp1
{
    class Program
    {
        static void Main(string[] args)
        {
            var builder = new ConfigurationBuilder()
                .AddJsonFile("class.json");

            var configuration = builder.Build();

            Console.WriteLine($"no:{configuration["no"]}");
            Console.WriteLine($"name:{configuration["name"]}");
            Console.WriteLine("student:");
            Console.WriteLine($"no:{configuration["student:0:no"]},name:{configuration["student:0:name"]}");
            Console.WriteLine($"no:{configuration["student:1:no"]},name:{configuration["student:1:name"]}");

            Console.ReadKey();
        }
    }
}
demo 
{
  "no": "1",
  "name": "asp.net core",
  "student": [
    {
      "no": "1",
      "name": "張三"
    },
    {
      "no": "2",
      "name": "張三"
    }
  ]
}
class.json

3,讀取appsettings.jsonasp.net

using System;
using System.Collections.Generic;
using System.Linq;
using System.Threading.Tasks;
using Microsoft.AspNetCore.Mvc;
using Microsoft.Extensions.Configuration;

namespace WebApplication1.Controllers
{
    public class HomeController : Controller
    {
        private IConfiguration _configuration;
        public HomeController(IConfiguration configuration)
        {
            _configuration = configuration;
        }

        public IActionResult Index()
        {
            Class c = new Class();
            _configuration.Bind(c);

            return View();
        }
    }
}
構造注入iconfiguration 
using System;
using System.Collections.Generic;
using System.Linq;
using System.Threading.Tasks;

namespace WebApplication1
{
    public class Class
    {
        public string no { get; set; }
        public string name { get; set; }
        public IEnumerable<student> student { get; set; }
    }

    public class student {
        public string no { get; set; }
        public string name { get; set; }
    }
}
Class類 
{
  "no": "1",
  "name": "asp.net core",
  "student": [
    {
      "no": "1",
      "name": "張三"
    },
    {
      "no": "2",
      "name": "張三"
    }
  ]
}
appsettings.json

 

2、管道async

 1 using System;
 2 using System.Collections.Generic;
 3 using System.Linq;
 4 using System.Threading.Tasks;
 5 using Microsoft.AspNetCore.Builder;
 6 using Microsoft.AspNetCore.Hosting;
 7 using Microsoft.Extensions.Configuration;
 8 using Microsoft.Extensions.DependencyInjection;
 9 using Microsoft.AspNetCore.Http;
10 
11 namespace test2
12 {
13     public class Startup
14     {
15         public Startup(IConfiguration configuration)
16         {
17             Configuration = configuration;
18         }
19 
20         public IConfiguration Configuration { get; }
21 
22         // This method gets called by the runtime. Use this method to add services to the container.
23         public void ConfigureServices(IServiceCollection services)
24         {
25             services.AddMvc();
26         }
27 
28         // This method gets called by the runtime. Use this method to configure the HTTP request pipeline.
29         public void Configure(IApplicationBuilder app, IHostingEnvironment env)
30         {
31             if (env.IsDevelopment())
32             {
33                 app.UseDeveloperExceptionPage();
34             }
35             else
36             {
37                 app.UseExceptionHandler("/Home/Error");
38             }
39 
40             //管道被截斷 url:http://ip:port/test
41             app.Map("/test",testApp=>{
42                 testApp.Run(async(context)=>{
43                     await context.Response.WriteAsync("test");
44                 });
45             });
46 
47             //管道插入
48             app.Use(async (context,next)=>{
49                 await context.Response.WriteAsync("1");
50                 await next.Invoke();
51             });
52 
53             //管道插入
54             app.Use(next=>{
55                 return (context)=>{
56                     return context.Response.WriteAsync("2");
57                 };
58             });
59 
60            
61             app.UseStaticFiles();
62 
63             app.UseMvc(routes =>
64             {
65                 routes.MapRoute(
66                     name: "default",
67                     template: "{controller=Home}/{action=Index}/{id?}");
68             });
69         }
70     }
71 }
Startup

1,模擬RequestDelegete

using System;
using System.Collections.Generic;
using System.Threading.Tasks;
namespace test3
{
    class Program
    {
        public static List<Func<RequestDelegete,RequestDelegete>> _list=new List<Func<RequestDelegete, RequestDelegete>>();
        static void Main(string[] args)
        {
            Use(next=>{
                return (context)=>{
                    Console.WriteLine(1);
                    return Task.CompletedTask;
                    //return next.Invoke(context);
                };
            });

            Use(next=>{
                return (context)=>{
                    Console.WriteLine(2);
                    return next.Invoke(context);
                };
            });

            RequestDelegete end=(context)=>{
                Console.WriteLine("end");
                return Task.CompletedTask;};
            
            _list.Reverse();
            foreach(var item in _list)
            {
                end=item.Invoke(end);
            }
            end.Invoke(new Context());

            Console.ReadKey();
        }

        public static void Use(Func<RequestDelegete,RequestDelegete> func)
        {
            _list.Add(func);
        }

    }
}
Program 
using System;
using System.Threading.Tasks;

namespace test3
{
        public delegate Task RequestDelegete(Context context);
}
RequestDelegete 
namespace test3
{
    public class Context
    {
        
    }
}
Context

 

3、認證與受權

1,Cookie-based認證

①註冊Cookie認證

using System;
using System.Collections.Generic;
using System.Linq;
using System.Threading.Tasks;
using Microsoft.AspNetCore.Builder;
using Microsoft.AspNetCore.Hosting;
using Microsoft.Extensions.Configuration;
using Microsoft.Extensions.DependencyInjection;
using Microsoft.AspNetCore.Authentication;
using Microsoft.AspNetCore.Authentication.Cookies;


namespace cookieBased
{
    public class Startup
    {
        public Startup(IConfiguration configuration)
        {
            Configuration = configuration;
        }

        public IConfiguration Configuration { get; }

        // This method gets called by the runtime. Use this method to add services to the container.
        public void ConfigureServices(IServiceCollection services)
        {
            //註冊
            services.AddAuthentication(CookieAuthenticationDefaults.AuthenticationScheme)
                    .AddCookie(option=>{
                        option.LoginPath="/Login/Index";
                    });

            services.AddMvc();
        }

        // This method gets called by the runtime. Use this method to configure the HTTP request pipeline.
        public void Configure(IApplicationBuilder app, IHostingEnvironment env)
        {
            if (env.IsDevelopment())
            {
                app.UseDeveloperExceptionPage();
            }
            else
            {
                app.UseExceptionHandler("/Home/Error");
            }

            app.UseStaticFiles();

            //添加認證中間件
            app.UseAuthentication();

            app.UseMvc(routes =>
            {
                routes.MapRoute(
                    name: "default",
                    template: "{controller=Home}/{action=Index}/{id?}");
            });
        }
    }
}
Startup

②實現登陸與註銷

using System;
using System.Collections.Generic;
using System.Diagnostics;
using System.Linq;
using System.Threading.Tasks;
using Microsoft.AspNetCore.Mvc;
using cookieBased.Models;
using Microsoft.AspNetCore.Authentication;
using Microsoft.AspNetCore.Authentication.Cookies;
using System.Security.Claims;

namespace cookieBased.Controllers
{
    public class LoginController:Controller
    {
        [HttpGet]
        public IActionResult Index(string returnUrl)
        {
            ViewData["returnUrl"]=returnUrl;
            return View();
        }

        [HttpPost]
        public IActionResult LoginIn(string returnUrl)
        {
            ClaimsIdentity identity=new ClaimsIdentity (new List<Claim>(){
                new Claim(ClaimTypes.Name,"hunter"),
                new Claim(ClaimTypes.Role,"admin")
            },CookieAuthenticationDefaults.AuthenticationScheme);
            HttpContext.SignInAsync(CookieAuthenticationDefaults.AuthenticationScheme,new ClaimsPrincipal(identity));

            var user= HttpContext.User.Identity.Name;
            var b= HttpContext.User.Identity.IsAuthenticated;

            return Redirect(returnUrl);
        }

        [HttpPost]
        public IActionResult LoginOut()
        {
            HttpContext.SignOutAsync(CookieAuthenticationDefaults.AuthenticationScheme);
            return Redirect("/");
        }

    }
}
LoginController

案例下載:https://pan.baidu.com/s/15etE9CNfzDLCHW6ZHc-euw

 

2,JWT認證

jwt驗證網站: https://jwt.io/

namespace JwtAuthenticate.Models
{
    public class JwtSettings
    {
        //token是誰頒發的
        public string Issure{get;set;}
        //能夠給那些客戶端使用
        public string Audience{get;set;}
        //須要加密的Secretkey
        public string Secretkey{get;set;}
    }
}
JwtAuthenticate.Models.JwtSettings 
{
  "Logging": {
    "IncludeScopes": false,
    "Debug": {
      "LogLevel": {
        "Default": "Warning"
      }
    },
    "Console": {
      "LogLevel": {
        "Default": "Warning"
      }
    }
  },
  "JwtSettings":{
    "Audience":"http://localhost:5000",
    "Issure":"http://localhost:5000",
    "SecretKey":"11111111111111111"
  }
}
appsettings.json 
using System;
using System.Collections.Generic;
using System.Linq;
using System.Threading.Tasks;
using Microsoft.AspNetCore.Builder;
using Microsoft.AspNetCore.Hosting;
using Microsoft.Extensions.Configuration;
using Microsoft.Extensions.DependencyInjection;
using Microsoft.Extensions.Logging;
using Microsoft.Extensions.Options;
using JwtAuthenticate.Models;
using Microsoft.AspNetCore.Authentication.JwtBearer;
using Microsoft.IdentityModel.Tokens;
using System.Text;

namespace JwtAuthenticate
{
    public class Startup
    {
        public Startup(IConfiguration configuration)
        {
            Configuration = configuration;
        }

        public IConfiguration Configuration { get; }

        // This method gets called by the runtime. Use this method to add services to the container.
        public void ConfigureServices(IServiceCollection services)
        {
            //將配置文件jwtSettings註冊進來
            //public AuthorizeController(IOptions<JwtSettings> jwtSettings)會使用到
            services.Configure<JwtSettings>(Configuration.GetSection("jwtSettings"));

            var jwtSettings=new JwtSettings();
            Configuration.Bind("JwtSettings",jwtSettings);
            
            services.AddAuthentication(options=>{//配置Authentication
                options.DefaultAuthenticateScheme=JwtBearerDefaults.AuthenticationScheme;
                options.DefaultChallengeScheme=JwtBearerDefaults.AuthenticationScheme;
            })
            .AddJwtBearer(options=>{//配置JwtBearer
                options.TokenValidationParameters=new TokenValidationParameters{
                    ValidIssuer=jwtSettings.Issure,
                    ValidAudience=jwtSettings.Audience,
                    IssuerSigningKey=new SymmetricSecurityKey(Encoding.UTF8.GetBytes(jwtSettings.Secretkey))
                };
            });

            services.AddMvc();
        }

        // This method gets called by the runtime. Use this method to configure the HTTP request pipeline.
        public void Configure(IApplicationBuilder app, IHostingEnvironment env)
        {
            if (env.IsDevelopment())
            {
                app.UseDeveloperExceptionPage();
            }

            app.UseAuthentication();
            app.UseMvc();
        }
    }
}
Startup 
using System;
using System.Collections.Generic;
using System.Linq;
using System.Threading.Tasks;
using Microsoft.AspNetCore.Mvc;
using Microsoft.AspNetCore.Authorization;
using JwtAuthenticate.Models;
using System.Security.Claims;
using Microsoft.IdentityModel.Tokens;
using System.Text;
using Microsoft.Extensions.Options;
using System.IdentityModel.Tokens.Jwt;

namespace JwtAuthenticate.Controllers
{

    [Route("api/[controller]")]
    public class AuthorizeController:Controller
    {
        private JwtSettings _jwtSettings;
        public AuthorizeController(IOptions<JwtSettings> jwtSettings)
        {
            _jwtSettings=jwtSettings.Value;
        }

        [HttpGet]
        public string A()
        {
            return "a";
        }

        [HttpPost]
        public IActionResult Token([FromBody]LoginViewModel model)
        {
            if(!ModelState.IsValid)return BadRequest();
            if(!(model.UserName=="hunter"&&model.Password=="123456"))return BadRequest();
            
            var claims=new Claim[]{
                new Claim(ClaimTypes.Name,"hunter"),
                new Claim(ClaimTypes.Role,"admin")
            };

            var key=new SymmetricSecurityKey(Encoding.UTF8.GetBytes(_jwtSettings.Secretkey));
            var creds=new SigningCredentials(key,SecurityAlgorithms.HmacSha256);
            var token=new JwtSecurityToken(
                _jwtSettings.Issure
                ,_jwtSettings.Audience
                ,claims,DateTime.Now,DateTime.Now.AddMinutes(30)
                ,creds);
            return Ok(new {token=new JwtSecurityTokenHandler().WriteToken(token)});
        }
        
    }
}
AuthorizeController

 

3,基於Claim的Jwt認證

①加上authorize標籤

using System;
using System.Collections.Generic;
using System.Linq;
using System.Threading.Tasks;
using Microsoft.AspNetCore.Mvc;
using Microsoft.AspNetCore.Authorization;

namespace JwtAuthenticate.Controllers
{

    [Route("api/[controller]")]
    public class ValuesController : Controller
    {
    
        [Authorize(Policy="values.Get")]
        
        // GET api/values
        [HttpGet] 
        public IEnumerable<string> Get()
        {
            return new string[] { "value1", "value2" };
        }

         [Authorize(Policy="values.Get")]
        // GET api/values/5
        [HttpGet("{id}")]
        public string Get(int id)
        {
            return "value";
        }

        [Authorize(Policy="values.Post")]
        // POST api/values
        [HttpPost]
        public void Post([FromBody]string value)
        {
        }

        [Authorize(Policy="values.Put")]
        // PUT api/values/5
        [HttpPut("{id}")]
        public void Put(int id, [FromBody]string value)
        {
        }

        [Authorize(Policy="values.Delete")]
        // DELETE api/values/5
        [HttpDelete("{id}")]
        public void Delete(int id)
        {
        }
    }
}
ValuesController

②設置Policy

using System;
using System.Collections.Generic;
using System.Linq;
using System.Threading.Tasks;
using Microsoft.AspNetCore.Builder;
using Microsoft.AspNetCore.Hosting;
using Microsoft.Extensions.Configuration;
using Microsoft.Extensions.DependencyInjection;
using Microsoft.Extensions.Logging;
using Microsoft.Extensions.Options;
using JwtAuthenticate.Models;
using Microsoft.AspNetCore.Authentication.JwtBearer;
using Microsoft.IdentityModel.Tokens;
using System.Text;

namespace JwtAuthenticate
{
    public class Startup
    {
        public Startup(IConfiguration configuration)
        {
            Configuration = configuration;
        }

        public IConfiguration Configuration { get; }

        // This method gets called by the runtime. Use this method to add services to the container.
        public void ConfigureServices(IServiceCollection services)
        {
            //將配置文件jwtSettings註冊進來
            //public AuthorizeController(IOptions<JwtSettings> jwtSettings)會使用到
            services.Configure<JwtSettings>(Configuration.GetSection("jwtSettings"));

            var jwtSettings=new JwtSettings();
            Configuration.Bind("JwtSettings",jwtSettings);
            
            services.AddAuthentication(options=>{//配置Authentication
                options.DefaultAuthenticateScheme=JwtBearerDefaults.AuthenticationScheme;
                options.DefaultChallengeScheme=JwtBearerDefaults.AuthenticationScheme;
            })
            .AddJwtBearer(options=>{//配置JwtBearer
                options.TokenValidationParameters=new TokenValidationParameters{
                    ValidIssuer=jwtSettings.Issure,
                    ValidAudience=jwtSettings.Audience,
                    IssuerSigningKey=new SymmetricSecurityKey(Encoding.UTF8.GetBytes(jwtSettings.Secretkey))
                };
            });

            //設置policy
            services.AddAuthorization(option=>{
                option.AddPolicy("values.Get",policy=>{policy.RequireClaim("values.Get");});
                option.AddPolicy("values.Post",policy=>{policy.RequireClaim("values.Post");});
                option.AddPolicy("values.Delete",policy=>{policy.RequireClaim("values.Delete");});
                option.AddPolicy("values.Put",policy=>{policy.RequireClaim("values.Put");});
            });

            services.AddMvc();
        }

        // This method gets called by the runtime. Use this method to configure the HTTP request pipeline.
        public void Configure(IApplicationBuilder app, IHostingEnvironment env)
        {
            if (env.IsDevelopment())
            {
                app.UseDeveloperExceptionPage();
            }

            app.UseAuthentication();
            app.UseMvc();
        }
    }
}
Startup

③受權

只能訪問values.Get和values.Put了

using System;
using System.Collections.Generic;
using System.Linq;
using System.Threading.Tasks;
using Microsoft.AspNetCore.Mvc;
using Microsoft.AspNetCore.Authorization;
using JwtAuthenticate.Models;
using System.Security.Claims;
using Microsoft.IdentityModel.Tokens;
using System.Text;
using Microsoft.Extensions.Options;
using System.IdentityModel.Tokens.Jwt;

namespace JwtAuthenticate.Controllers
{

    [Route("api/[controller]")]
    public class AuthorizeController:Controller
    {
        private JwtSettings _jwtSettings;
        public AuthorizeController(IOptions<JwtSettings> jwtSettings)
        {
            _jwtSettings=jwtSettings.Value;
        }

        [HttpGet]
        public string A()
        {
            return "a";
        }

        [HttpPost]
        public IActionResult Token([FromBody]LoginViewModel model)
        {
            if(!ModelState.IsValid)return BadRequest();
            if(!(model.UserName=="hunter"&&model.Password=="123456"))return BadRequest();
            
            var claims=new Claim[]{
                new Claim(ClaimTypes.Name,"hunter"),
                new Claim("values.Get","true"),
                new Claim("values.Put","true")
            };

            var key=new SymmetricSecurityKey(Encoding.UTF8.GetBytes(_jwtSettings.Secretkey));
            var creds=new SigningCredentials(key,SecurityAlgorithms.HmacSha256);
            var token=new JwtSecurityToken(
                _jwtSettings.Issure
                ,_jwtSettings.Audience
                ,claims,DateTime.Now,DateTime.Now.AddMinutes(30)
                ,creds);
            return Ok(new {token=new JwtSecurityTokenHandler().WriteToken(token)});
        }
        
    }
}
AuthorizeController

案例下載:https://pan.baidu.com/s/1NKJNVMIHeVdPFcua_eH1sQ 

 

 

4、MVCDemo

使用 dotnet new mvc -au individual -uld 建立mvc模板

1,項目啓動建立種子數據

using Microsoft.Extensions.DependencyInjection;
using Microsoft.EntityFrameworkCore;
using System;
using System.Linq;
using Microsoft.AspNetCore.Identity;
using mvcDemo2.Data;

namespace mvcDemo2.Data
{
    public class DbContextSeed
    {
        public void Seed(DemoDbContext context,IServiceProvider service)
        {
            if(!context.Users.Any())
            {
                var usermanager=service.GetRequiredService<UserManager<DemoUser>>();
                var result= usermanager.CreateAsync(new DemoUser (){
                    UserName="admin",
                    NormalizedUserName="admin"
                },"123456").Result;
                if(!result.Succeeded)throw new Exception("建立管理員失敗");
            }
        }
    }
}
DbContextSeed 
using System;
using Microsoft.AspNetCore.Hosting;
using Microsoft.EntityFrameworkCore;
using Microsoft.Extensions.DependencyInjection;
using Microsoft.Extensions.Logging;
namespace mvcDemo2.Data
{
    public static class WebHostMigrationExtensions
    {
        public static  IWebHost MigrationDbContext<TContext>(this IWebHost webhost,Action<TContext,IServiceProvider> sedder)
        where TContext:DbContext
        {
            //使用依賴注入,而且在此using中有效
            using(var scope=webhost.Services.CreateScope()) 
            {
                var service= scope.ServiceProvider;
                var logger= service.GetRequiredService<ILogger<TContext>>();
                var context=service.GetRequiredService<TContext>();
                try
                {
                    //當數據庫不存在會建立數據庫
                    context.Database.Migrate();
                    sedder(context,service);
                }
                catch (System.Exception ex)
                {
                    logger.LogError(ex.Message);
                }
            }
            return webhost;
        }
    }
}
WebHostMigrationExtensions 
using System;
using System.Collections.Generic;
using System.IO;
using System.Linq;
using System.Threading.Tasks;
using Microsoft.AspNetCore;
using Microsoft.AspNetCore.Hosting;
using Microsoft.Extensions.Configuration;
using Microsoft.Extensions.Logging;
using mvcDemo2.Data;

namespace mvcDemo2
{
    public class Program
    {
        public static void Main(string[] args)
        {
            BuildWebHost(args)
            .MigrationDbContext<DemoDbContext>((context,service)=>{
                new DbContextSeed().Seed(context,service);
            })
            .Run();
        }

        public static IWebHost BuildWebHost(string[] args) =>
            WebHost.CreateDefaultBuilder(args)
                .UseStartup<Startup>()
                .Build();
    }
}
Program

案例下載:https://pan.baidu.com/s/1y1B3Vnudkke71eIuPQ937A

 

5、IdentityServer4

1,OAuth2.0密碼登陸模式(內存操做)

 ①IdentityServerCenter

nuget: IdentityServer4 

using System.Collections.Generic;
using IdentityServer4.Models;
using IdentityServer4.Test;
namespace IdentityServerCenter
{
    public class Config
    {
        //全部能夠訪問的對象
        public static IEnumerable<ApiResource> GetApiResource(){
            return new  List<ApiResource>(){
                new ApiResource("api","api resource")
            };
        }

        //客戶端配置 
        public static IEnumerable<Client> GetClient(){
            return new List<Client>(){
                new Client(){
                    ClientId="123",
                    AllowedGrantTypes={GrantType.ResourceOwnerPassword},//訪問模式
                    RequireConsent=false,
                    ClientSecrets={
                        new Secret("secret".Sha256())
                    },
                    AllowedScopes={"api"},//能夠訪問的resource
                    //AllowOfflineAccess=true,//使用refresh_token
                    AccessTokenLifetime=10
                }


            };
        }
         public static List<TestUser> GetUsers(){
            return new List<TestUser>(){
                new TestUser(){
                    SubjectId="1",
                    Username="hunter",
                    Password="123456"
                }
            };
        }
       

    }
}
Config 
using System;
using System.Collections.Generic;
using System.Linq;
using System.Threading.Tasks;
using Microsoft.AspNetCore.Builder;
using Microsoft.AspNetCore.Hosting;
using Microsoft.Extensions.Configuration;
using Microsoft.Extensions.DependencyInjection;
using Microsoft.Extensions.Logging;
using Microsoft.Extensions.Options;
using IdentityServer4;

namespace IdentityServerCenter
{
    public class Startup
    {
        public Startup(IConfiguration configuration)
        {
            Configuration = configuration;
        }

        public IConfiguration Configuration { get; }

        // This method gets called by the runtime. Use this method to add services to the container.
        public void ConfigureServices(IServiceCollection services)
        {
            services.AddIdentityServer()
            .AddDeveloperSigningCredential()//設置臨時簽名憑證
            .AddInMemoryApiResources(Config.GetApiResource())//添加api資源
            .AddInMemoryClients(Config.GetClient())//添加客戶端
            .AddTestUsers(Config.GetUsers());//添加測試用戶

            services.AddMvc();
        }

        // This method gets called by the runtime. Use this method to configure the HTTP request pipeline.
        public void Configure(IApplicationBuilder app, IHostingEnvironment env)
        {
            if (env.IsDevelopment())
            {
                app.UseDeveloperExceptionPage();
            }

            app.UseIdentityServer();
            app.UseMvc();
        }
    }
}
Startup

②ApiResource

nuget: IdentityServer4.AccessTokenValidation 

using System;
using System.Collections.Generic;
using System.Linq;
using System.Threading.Tasks;
using Microsoft.AspNetCore.Builder;
using Microsoft.AspNetCore.Hosting;
using Microsoft.Extensions.Configuration;
using Microsoft.Extensions.DependencyInjection;
using Microsoft.Extensions.Logging;
using Microsoft.Extensions.Options;
using IdentityServer4.AccessTokenValidation;

namespace ApiResource
{
    public class Startup
    {
        public Startup(IConfiguration configuration)
        {
            Configuration = configuration;
        }

        public IConfiguration Configuration { get; }

        // This method gets called by the runtime. Use this method to add services to the container.
        public void ConfigureServices(IServiceCollection services)
        {
            services.AddAuthentication("Bearer")//採用Bearer驗證類型
                    .AddIdentityServerAuthentication(Options=>{
                        Options.ApiName="api";
                        Options.Authority="http://localhost:5000";
                        Options.RequireHttpsMetadata=false;//是否須要https
                    });

            services.AddMvc();
        }

        // This method gets called by the runtime. Use this method to configure the HTTP request pipeline.
        public void Configure(IApplicationBuilder app, IHostingEnvironment env)
        {
            if (env.IsDevelopment())
            {
                app.UseDeveloperExceptionPage();
            }
            //加上認證中間件
            app.UseAuthentication();
            app.UseMvc();
        }
    }
}
Startup 
using System;
using System.Collections.Generic;
using System.IO;
using System.Linq;
using System.Threading.Tasks;
using Microsoft.AspNetCore;
using Microsoft.AspNetCore.Hosting;
using Microsoft.Extensions.Configuration;
using Microsoft.Extensions.Logging;

namespace ApiResource
{
    public class Program
    {
        public static void Main(string[] args)
        {
            BuildWebHost(args).Run();
        }

        public static IWebHost BuildWebHost(string[] args) =>
            WebHost.CreateDefaultBuilder(args)
                .UseStartup<Startup>()
                .UseUrls("http://localhost:5001")
                .Build();
    }
}
Program 
using System;
using System.Collections.Generic;
using System.Linq;
using System.Threading.Tasks;
using Microsoft.AspNetCore.Mvc;
using Microsoft.AspNetCore.Authorization;

namespace ApiResource.Controllers
{
    [Route("api/[controller]")]
    [Authorize]
    public class ValuesController : Controller
    {
        // GET api/values
        [HttpGet]
        public IEnumerable<string> Get()
        {
            return new string[] { "value1", "value2" };
        }

        // GET api/values/5
        [HttpGet("{id}")]
        public string Get(int id)
        {
            return "value";
        }

        // POST api/values
        [HttpPost]
        public void Post([FromBody]string value)
        {
        }

        // PUT api/values/5
        [HttpPut("{id}")]
        public void Put(int id, [FromBody]string value)
        {
        }

        // DELETE api/values/5
        [HttpDelete("{id}")]
        public void Delete(int id)
        {
        }
    }
}
Controllers

③ThreeClient

nuget: IdentityModel 

using System;
using IdentityModel.Client;
using System.Net.Http;

namespace ThreeClient
{
    class Program
    {
        static void Main(string[] args)
        {
            //訪問受權服務器
            var diso= DiscoveryClient.GetAsync("http://localhost:5000").Result;
            if(diso.IsError)
            {
                Console.WriteLine(diso.Error);
            }
            var tokenClient=new TokenClient(diso.TokenEndpoint,"123","secret");
            var res= tokenClient.RequestResourceOwnerPasswordAsync("hunter","123456").Result;
            if(res.IsError)
            {
                Console.WriteLine(res.Error);
            }
            else
            {
                Console.WriteLine(res.Json);
            }

            //訪問資源服務器
            var client=new HttpClient();
            client.SetBearerToken(res.AccessToken);
            var result= client.GetAsync("http://localhost:5001/api/values").Result;
            if(result.IsSuccessStatusCode)
            {
                Console.WriteLine(result.Content.ReadAsStringAsync().Result);
            }
            else
            {
                Console.WriteLine("失敗");
            }

        }
    }
}
Program

案例下載:https://pan.baidu.com/s/1zoX3P5yuktW_HaaOGRGFOQ

 

2,刷新token

 

3,OAuth2.0密碼模式(數據庫操做)

 

4,OIDC(內存模式)

①介紹

OpenID Connect是OpenID的升級版,簡稱OIDC。OIDC使用OAuth2的受權服務器來爲第三方客戶端提供用戶的身份認證,並把對應的身份認證信息傳遞給客戶端 。

OAuth2.0主要用於受權。OIDC主要用來認證

 

 

5,OIDC(數據庫模式)

相關文章
相關標籤/搜索
每日一句
    每一个你不满意的现在,都有一个你没有努力的曾经。
本站公眾號
   歡迎關注本站公眾號,獲取更多信息
聯繫我們 最近搜索 最新文章 沪ICP备13005482号-10 MyBatis教程 SQL 教程 MySQL教程 Java 教程 Thymeleaf 教程 Hibernate教程 Spring教程 Redis教程