验证用户和管理自己的资源，微软Azure [英] Authenticate users and manage their resources in Microsoft Azure

问题描述

我想创建一个MVC应用程序，用户可以用自己的Azure订阅，之后我的应用程序可以管理自己的资源托管在微软的Azure授权（VM-S，Web站点等。）

I would like to create an MVC application, where users can be authorized with their Azure subscription and after that my application can manage their resources hosted in Microsoft Azure (VM-s, Web Sites, etc.)

我的想法是在我的订阅创建一个新的Active Directory。在广告中，我创建一个应用程序。在该应用程序的配置选项卡我给了允许到Windows Azure服务管理API和委派Acccess的Azure服务管理（preVIEW）权限。

My idea is to create a new Active Directory in my subscription. Under the AD, I create an application. At the Configure tab of that application I gave permission to Windows Azure Service Management API and delegated the Acccess Azure Service Management (preview) permission.

要验证我所需要的客户端ID，重定向URL，从这里的租户ID的用户。

To authenticate the user I need the Client ID, the Redirect URL and the Tenant ID from here.

我的问题是，用这种方法我可以验证每一个用户和管理自己的资源呢？我想使用Windows Azure管理库为.NET的NuGet来执行这些操作。

My question is that with this method can I authenticate every user and manage their resources? I would like to use the Windows Azure Management Libraries for .NET nuGet to perform these operations.

我不想让他们上传publishsettings文件，我想他们的OAuth的2.0授权code格兰特流写的在这篇文章。

I don't want to ask them to upload the publishsettings file, I would like to authenticate them with the OAuth 2.0 Authorization Code Grant flow written in this article.

是我的工作流程是否正确？我可以用这种方式进行身份验证每一个用户和管理锡尔资源？

Is my workflow correct? Can I authenticate every user and manage thir resources in this way?

非常感谢你！

推荐答案

我不这么认为。如果我没有记错的话，你的客户需要做到这一点在他们的广告，即批订阅管理访问你的应用程序。

I don't think so. If I am not mistaken, your clients need to do this in their AD i.e. grant Subscription Management access to your application.

这篇关于验证用户和管理自己的资源，微软Azure的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！