ASP.NET MVC的Windows Authentiaction和的DirectoryServices - 当前用户获取邮件地址引发InvalidCastException [英] ASP.NET MVC Windows Authentiaction and DirectoryServices - Get Mail Address of the current user throws an InvalidCastException
问题描述
我使用ASP.NET MVC 4和Windows身份验证。
当我使用VisualStudio的一切工作正常,但是当我部署我的网站会抛出异常。
I am using ASP.NET MVC 4 and Windows Authentication. When I am using VisualStudio everything works fine, but when I deploy my site an exception is thrown.
var emailAddress = UserPrincipal.Current.EmailAddress;
抛出:
无法投类型的对象
System.DirectoryServices.AccountManagement.GroupPrincipal到类型
System.DirectoryServices.AccountManagement.UserPrincipal。
Unable to cast object of type 'System.DirectoryServices.AccountManagement.GroupPrincipal' to type 'System.DirectoryServices.AccountManagement.UserPrincipal'.
剩下的工作正常。用户可以进行身份验证,我可以得到的用户名等。
The rest works fine. Users can authenticate and I can get the users name etc.
编辑:
我启用了模拟的IIS。
现在,我得到以下异常:
I enabled Impersonation on IIS. Now I get the following exception:
[DirectoryServicesCOMException(0x80072020):一个操作错误
发生。 ] System.DirectoryServices.DirectoryEntry.Bind(布尔
throwIfFail)781 System.DirectoryServices.DirectoryEntry.Bind()
+44 System.DirectoryServices.DirectoryEntry.get_AdsObject()+42 System.DirectoryServices.PropertyValueCollection.PopulateList()+29结果
System.DirectoryServices.PropertyValueCollection..ctor(的DirectoryEntry
进入,字符串propertyName的)+119结果
System.DirectoryServices.PropertyCollection.get_Item(字符串
propertyName的)+163结果
System.DirectoryServices.AccountManagement.PrincipalContext.DoLDAPDirectoryInitNoContainer()
535649 System.DirectoryServices.AccountManagement.PrincipalContext.DoDomainInit()
+51 System.DirectoryServices.AccountManagement.PrincipalContext.Initialize()
+141 System.DirectoryServices.AccountManagement.PrincipalContext.get_QueryCtx()
+42 System.DirectoryServices.AccountManagement.Principal.FindByIdentityWithTypeHelper(PrincipalContext
背景,类型principalType,Nullable`1 identityType,字符串
identityValue,日期时间refDate)+27结果
System.DirectoryServices.AccountManagement.Principal.FindByIdentityWithType(PrincipalContext
背景,类型principalType,IdentityType identityType,字符串
identityValue)+146结果
System.DirectoryServices.AccountManagement.UserPrincipal.FindByIdentity(PrincipalContext
背景下,IdentityType identityType,字符串identityValue)+44结果
System.DirectoryServices.AccountManagement.UserPrincipal.get_Current()
+390 Jericho.MVC.HtmlHelperExtensions.GetUser(的HtmlHelper的HtmlHelper)在
C:\\开发\\杰里科\\ Jericho.MVC \\ HtmlHelperExtensions.cs:48
[DirectoryServicesCOMException (0x80072020): An operations error occurred. ] System.DirectoryServices.DirectoryEntry.Bind(Boolean throwIfFail) +781 System.DirectoryServices.DirectoryEntry.Bind() +44 System.DirectoryServices.DirectoryEntry.get_AdsObject() +42 System.DirectoryServices.PropertyValueCollection.PopulateList() +29
System.DirectoryServices.PropertyValueCollection..ctor(DirectoryEntry entry, String propertyName) +119
System.DirectoryServices.PropertyCollection.get_Item(String propertyName) +163
System.DirectoryServices.AccountManagement.PrincipalContext.DoLDAPDirectoryInitNoContainer() +535649 System.DirectoryServices.AccountManagement.PrincipalContext.DoDomainInit() +51 System.DirectoryServices.AccountManagement.PrincipalContext.Initialize() +141 System.DirectoryServices.AccountManagement.PrincipalContext.get_QueryCtx() +42 System.DirectoryServices.AccountManagement.Principal.FindByIdentityWithTypeHelper(PrincipalContext context, Type principalType, Nullable`1 identityType, String identityValue, DateTime refDate) +27
System.DirectoryServices.AccountManagement.Principal.FindByIdentityWithType(PrincipalContext context, Type principalType, IdentityType identityType, String identityValue) +146
System.DirectoryServices.AccountManagement.UserPrincipal.FindByIdentity(PrincipalContext context, IdentityType identityType, String identityValue) +44
System.DirectoryServices.AccountManagement.UserPrincipal.get_Current() +390 Jericho.MVC.HtmlHelperExtensions.GetUser(HtmlHelper htmlHelper) in C:\Development\Jericho\Jericho.MVC\HtmlHelperExtensions.cs:48
我该怎么办?
推荐答案
将 IIS应用程序池标识为网络服务并使用:
var identityName = HttpContext.Current.User.Identity.Name;
using (HostingEnvironment.Impersonate())
{
using (var context = new PrincipalContext(ContextType.Domain, "yourDomain", null, ContextOptions.Negotiate | ContextOptions.SecureSocketLayer))
using (var userPrincipal = UserPrincipal.FindByIdentity(context, IdentityType.SamAccountName, identityName))
{
emailAddress = userPrincipal.EmailAddress;
lastname = userPrincipal.Surname;
firstname = userPrincipal.GivenName;
}
}
这篇关于ASP.NET MVC的Windows Authentiaction和的DirectoryServices - 当前用户获取邮件地址引发InvalidCastException的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!