c# - WCF Custom Authorization -

-

basically, i'm creating first ever wcf web service , i'm looking implement custom authentication , authorization. authentication seems working well, want able store roles , permissions using custom authorization well.

my authentication done overriding usernamepasswordvalidator , making use of validate method.

validate(string username, string password)

now i've tried implementing authorization using iauthorizationpolicy interface

public class authorizationpolicy : iauthorizationpolicy {     private string _id;      public string id     {         { return this._id; }     }      public claimset issuer     {         { return claimset.system; }     }      public authorizationpolicy()     {         _id = guid.newguid().tostring();     }      public bool evaluate(evaluationcontext context, ref object state)     {         iidentity client = getclientidentity(context);         context.properties["principal"] = new customprincipal(client);          return true;     }      private iidentity getclientidentity(evaluationcontext evaluationcontext)     {         object obj;         if (!evaluationcontext.properties.trygetvalue("identities", out obj))             throw new exception("no identity found");          ilist<iidentity> identities = obj ilist<iidentity>;         if (identities == null || identities.count <= 0)             throw new exception("no identity found");          return identities[0];     } }

and i've implemented customprincipal using iprincipal interface.

public class customprincipal : iprincipal {     iidentity _identity;     string[] _roles;      public customprincipal(iidentity identity)     {         _identity = identity;     }      public static customprincipal current     {                 {             return thread.currentprincipal customprincipal;         }     }      public iidentity identity     {         { return _identity; }     }      public string[] roles     {                 {             if (_roles == null)             {                 ensureroles();             }              return _roles;         }     }      public bool isinrole(string role)     {         ensureroles();          return _roles.contains(role);     }      protected virtual void ensureroles()     {         usermanager usermanager = new usermanager();         int userpermissions = usermanager.userpermissions(_identity.name);          if (userpermissions == 1)             _roles = new string[1] { "admin" };         else             _roles = new string[1] { "user" };     } }

my app.config has been updated required, , evaluate method in authorizationpolicy called expected.

however, i'm stuck. how go implementing roles , permissions here?

i suggest opt message inspector.

the logic follows:

  1. client have message inspector set required headers each request.
  2. server side message inspector intercept request , read headers , authentication , authorization.
  3. you can have couple of services user , role service can invoked in server validate credentials in header , set identity request.
  4. these services accessing store through dal , in inproc mode.

Comments

Post a Comment

Popular posts from this blog

c++ - OpenMP unpredictable overhead -

-
i have simple openmp code runs 4 empty threads , reports time: #include "omp.h" #include <sys/time.h> #include <cstdio> double start_time; void process_thread() { } int main(){ struct timeval tv; gettimeofday(&tv, null); start_time = 1000*((double)tv.tv_sec + 1e-6*(double)tv.tv_usec); printf("beginning time: %.3fms ",start_time-start_time); #pragma omp parallel schedule(static,1) for(int i=0;i<4;i++) process_thread(); gettimeofday(&tv, null); double cur_time = 1000*((double)tv.tv_sec + 1e-6*(double)tv.tv_usec); printf("finishing time: %.3fms\n\n",cur_time-start_time); } without openmp running time small , consistent: beginning time: 0.000ms finishing time: 0.050ms beginning time: 0.000ms finishing time: 0.050ms beginning time: 0.000ms finishing time: 0.049ms beginning time: 0.000ms finishing time: 0.049ms beginning time: 0.000ms finishing time: 0.050ms beginnin...
Read more

ruby on rails - RuntimeError: Circular dependency detected while autoloading constant - ActiveAdmin.register Role -

-
i using activeadmin , have file doing this: activeadmin.register role something--- end however, server gives me error: runtimeerror: circular dependency detected while autoloading constant role /library/ruby/gems/2.0.0/gems/activesupport-4.0.10/lib/active_support/dependencies.rb:461:in `load_missing_constant' /library/ruby/gems/2.0.0/gems/activesupport-4.0.10/lib/active_support/dependencies.rb:184:in `const_missing' ~/desktop/boxfox/app/admin/role.rb:1:in `<top (required)>' /library/ruby/gems/2.0.0/gems/activesupport-4.0.10/lib/active_support/dependencies.rb:424:in `load' /library/ruby/gems/2.0.0/gems/activesupport-4.0.10/lib/active_support/dependencies.rb:424:in `block in load_file' /library/ruby/gems/2.0.0/gems/activesupport-4.0.10/lib/active_support/dependencies.rb:616:in `new_constants_in' /library/ruby/gems/2.0.0/gems/activesupport-4.0.10/lib/active_support/dependencies.rb:423:in `load_file' /library/ruby/gems/2.0.0/gems/activesuppor...
Read more

javascript - Wordpress slider, not displayed 100% width -

-
so im making first wordpress theme scratch going fine got problem. want slider on homepage 1 thing wrong. im setting width of image 100% !important doesnt go 100% width. makes image wider not 100%. example here: http://bit.ly/11ouebg see image doesnt contain whole width. can see background-color. really weird, im using meteor slides. i hope can me out :d
Read more