ASP.NET MVC - 自定义 IIdentity 或 IPrincipal with Windows Authen - ASP.NET MVC - Custom IIdentity or IPrincipal with Windows Authentication 小贝子编程网

我正在开发一个具有Windows身份验证的登录内部网站。但是，我想扩展 IPrincipal 以具有其他属性。例如，我想使用活动而不是角色来隐藏某些链接等，以@User.FirstName或User.AuthorizedActivity("Admin/Permissions/Edit")(将从数据库中检索)获取用户的名字。在过去的 2 天里，我真的有一段时间弄清楚这一点，并使用 Windows 身份验证找到了很多信息。

我的自定义主体和基本视图页面设置：

namespace Intranet_v2.Helpers
{ 
public interface ICustomPrincipal : IPrincipal
{
Guid UserGuid { get; set; }
string FirstName { get; set; }
string LastName { get; set; }
string FullName { get; set; }
}
public class CustomPrincipal : ICustomPrincipal
{
public IIdentity Identity { get; private set; }
public bool IsInRole(string role) { return false; }
public CustomPrincipal(string identity)
{
this.Identity = new GenericIdentity(identity);
}
public Guid UserGuid { get; set; }
public string FirstName { get; set; }
public string LastName { get; set; }
public string FullName { get; set; }
}
public class CustomPrincipalSerializeModel
{
public Guid UserGuid { get; set; }
public string FirstName { get; set; }
public string LastName { get; set; }
public string FullName { get; set; }
}
public class BaseController : Controller
{
protected virtual new CustomPrincipal User
{   
get { return HttpContext.User as CustomPrincipal; }
}
}
public abstract class BaseViewPage : WebViewPage
{
public virtual new CustomPrincipal User
{
get { return base.User as CustomPrincipal; }
}
}
public abstract class BaseViewPage<TModel> : WebViewPage<TModel>
{
public virtual new CustomPrincipal User
{
get { return base.User as CustomPrincipal; }
}
}
}

Views Web.Config BaseViewPage：

<system.web.webPages.razor>
<host factoryType="System.Web.Mvc.MvcWebRazorHostFactory, System.Web.Mvc, Version=5.2.3.0, Culture=neutral, PublicKeyToken=31BF3856AD364E35" />
<pages pageBaseType="Intranet_v2.Helpers.BaseViewPage">
<namespaces>
<add namespace="System.Web.Mvc" />
<add namespace="System.Web.Mvc.Ajax" />
<add namespace="System.Web.Mvc.Html" />
<add namespace="System.Web.Optimization"/>
<add namespace="System.Web.Routing" />
<add namespace="Intranet_v2" />
</namespaces>
</pages>

我认为我的主要问题是我不知道在protected void Application_PostAuthenticateRequest(object sender, EventArgs args)中为我的Global.asax.cs文件做什么。我在这里设置它有一个糟糕的尝试：

protected void Application_PostAuthenticateRequest(object sender, EventArgs args)
{
//var application = (HttpApplication)sender;
var context = application.Context;
if (context.User != null || !context.User.Identity.IsAuthenticated) return;
var formsIdentity = (FormsIdentity)context.User.Identity;
if (formsIdentity == null) return;
var ticket = formsIdentity.Ticket;

JavaScriptSerializer serializer = new JavaScriptSerializer();
CustomPrincipalSerializeModel serializeModel = serializer.Deserialize<CustomPrincipalSerializeModel>(ticket.UserData);
CustomPrincipal newUser = new CustomPrincipal(ticket.Name);
newUser.UserGuid = serializeModel.UserGuid;
newUser.FirstName = serializeModel.FirstName;
newUser.LastName = serializeModel.LastName;
newUser.FullName = serializeModel.FullName;
var values = ticket.UserData.Split('|');
var roles = values[1].Split(',');
context.User = new GenericPrincipal(new GenericIdentity(ticket.Name, "Forms"), roles);
}

现在我处于@User.Name 现在为空的地步。我对此感到非常困惑。任何帮助，不胜感激。我的protected void Application_PostAuthenticateRequest(object sender, EventArgs args)完全不正常。

我想做的只是依靠Windows身份验证来执行它通常执行的操作，并向HttpContext.Current.User添加一些额外的属性。任何帮助不胜感激...我不能是唯一一个试图这样做的人。

我通常做的只是稍后请求额外的用户信息。例如，使用扩展方法，例如：

public static class PrincipalExtensions
{
private static void Initialize(string userName)
{
var userRecord = //Get user information from DB;
var session = HttpContext.Current.Session;
if (session != null)
{
session.Add("UserID", userRecord.ID);
session.Add("UserEmail", userRecord.Email);
//And so on
}
}
public static long? GetUserID(this IPrincipal user)
{
var id = HttpContext.Current.Session["UserID"] as long?;
if (id == null)
Initialize();
return (long)HttpContext.Current.Session["UserID"];
}
}

这大致是我在我的一些项目中实现的;而不是利用登录过程并将其存储在cookie中，系统可以延迟加载信息并在需要信息时缓存在会话中。

ASP.NET MVC - 自定义 IIdentity 或 IPrincipal with Windows Authen

相关内容

最新更新

热门标签：