ASP.net的Web API进行用户身份验证。 [英] ASP.net web API for user authentication.
问题描述
我必须写一个API,验证基于我们的用户访问管理供应商生成的唯一令牌用户。
I have to write an api for authenticating the user based on a unique token generated by our user access management providers.
它的过程,我们在PHP开发的应用程序用于管理与身份验证的用户名和密码的用户。在那PHP应用程序,我们有其他的.NET和Java应用程序的链接。当点击该链接时,第三方用户访问管理联络这又赋予了独特的令牌像它作为查询字符串参数到.NET应用程序传递一个GUID。在我们的.NET应用程序的开发方式太旧,2008年它使用VB脚本来验证对第三方用户管理应用程序,它唯一标记。
The process it that we have applications developed in php which manages authenticating the user with Username and password. On that php application we have links for other .net and java applications . When the link is clicked , the 3rd party user access management is contacted which in turn gives a unique token something like a guid which is passed as a query string parameter to the .net application. In our .net application is was developed way too old in 2008 it uses a vb script to authenticate that unique token against the 3rd party user management application.
我已经做了很多的研究,并试图写一个asp.net MVC4网页API摆脱VB脚本,并使其扩展。请让我知道,如果我的做法是正确的还是应该用什么来完成下面的要求
I have done a lot of research and was trying to write a asp.net MVC4 Web Api to get rid of the vb script and make it extendable. Please let me know if my approach is right or what should be used to accomplish the below requirements
- API应该能够满足任何数量的设置在主机的PHP应用程序的链接。
- 使用此API进行身份验证令牌将是Java和.NET的其他应用程序。
- 我说的对在选择mvc4网页API来完成相同的
- 如果是的话那么哪种类型的验证应该使用(基本,表单等)
- 有什么样code去看看,因为我发现有很多的例子,但不能将我的场景,相关的。
这些Java和.NET应用程序应该在此基础上从PHP应用程序传递的唯一令牌只是身份验证。
These java and .net applications should just authenticate based on the unique token which is passed on from the php application.
推荐答案
我发现这个链接是超级简单实用来决定使用什么。我认为他已经在一个非常简单的方式提到。
I found this link to be super simple and useful to decide what to use . I think he has mentioned it in a very simple way .
我一直在寻找这种从过去的3到4天的解释,终于得到了它。虽然它不具备的OpenID和OAuth提及的实际执行,这是值得一读。
I have been searching for this kind of an explanation from past 3 to 4 days and finally got it. Though it does not have an actual implementation mentioned for OpenID and OAuth, it is worth reading.
http://jamiekurtz.com/2013 / 01/14 / ASP网的web-API的安全基础/
这篇关于ASP.net的Web API进行用户身份验证。的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!
