非对称认证方式 可以用在 asp.net webapi 的安全机制里面
2015-09-11 23:10
656 查看
//Client端调用
static void Main(string[] args)
{
string publicKey = "DpLMCOihcYI2i6DaMbso9Dzo1miy70G/3+UibTttjLSiJ3cco";
publicKey += "Kaen3Fecywdf7DrkcfkG3KjeMbZ6djBihD/4A==";
string privateKey = "W9cE42m+fmBXXvTpYDa2CXIme7DQmk3FcwX0zqR7fmj";
privateKey += "D6PHHliwdtRb5cOUaxpPyh+3C6Y5Z34uGb2DWD/Awiw==";
using (HttpClient client = new HttpClient())
{ // Step 2-a
int counter = 33;
Uri uri = new Uri("http://localhost:54400/api/employees/12345");
client.DefaultRequestHeaders.Add("X-PSK", publicKey); client.DefaultRequestHeaders.Add("X-Counter", String.Format("{0}", counter));
// Step 2-b
DateTime epochStart = new DateTime(1970, 01, 01, 0, 0, 0, 0, DateTimeKind.Utc);
TimeSpan ts = DateTime.UtcNow - epochStart;
string stamp = Convert.ToUInt64(ts.TotalSeconds).ToString();
client.DefaultRequestHeaders.Add("X-Stamp", stamp);
string data = String.Format("{0}{1}{2}{3}{4}", publicKey, counter, stamp, uri.ToString(), "GET");
// Step 2-c byte[] signature = Encoding.UTF8.GetBytes(data); using (HMACSHA256 hmac = new HMACSHA256(Convert.FromBase64String(privateKey))) { byte[] signatureBytes = hmac.ComputeHash(signature); client.DefaultRequestHeaders.Add("X-Signature", Convert.ToBase64String(signatureBytes)); }
var httpMessage = client.GetAsync(uri).Result; if (httpMessage.IsSuccessStatusCode) Console.WriteLine(httpMessage.Content.ReadAsStringAsync().Result);
}
}
//Server端认真
public class PskHandler : DelegatingHandler
{
protected override async Task<HttpResponseMessage> SendAsync(HttpRequestMessage request, CancellationToken cancellationToken)
{
string privateKey = "W9cE42m+fmBXXvTpYDa2CXIme7DQmk3FcwX0zqR7fmj"; privateKey += "D6PHHliwdtRb5cOUaxpPyh+3C6Y5Z34uGb2DWD/Awiw==";
var headers = request.Headers;
if (headers.Contains("X-PSK") && headers.Contains("X-Counter") && headers.Contains("X-Stamp") && headers.Contains("X-Signature"))
{
string publicKey = headers.GetValues("X-PSK").First(); string counter = headers.GetValues("X-Counter").First(); ulong stamp = Convert.ToUInt64(headers.GetValues("X-Stamp").First()); string incomingSignature = headers.GetValues("X-Signature").First();
string data = String.Format("{0}{1}{2}{3}{4}", publicKey, counter, stamp, request.RequestUri.ToString(), request.Method.Method);
byte[] signature = Encoding.UTF8.GetBytes(data); using (HMACSHA256 hmac = new HMACSHA256(Convert.FromBase64String(privateKey)))
{
byte[] signatureBytes = hmac.ComputeHash(signature); if (incomingSignature.Equals(Convert.ToBase64String(signatureBytes), StringComparison.Ordinal))
{
DateTime epochStart = new DateTime(1970, 01, 01, 0, 0, 0, 0, DateTimeKind.Utc); TimeSpan ts = DateTime.UtcNow - epochStart;
if (Convert.ToUInt64(ts.TotalSeconds) - stamp <= 3) return await base.SendAsync(request, cancellationToken);
}
}
}
return request.CreateResponse(HttpStatusCode.Unauthorized);
}
}
内容来自用户分享和网络整理,不保证内容的准确性,如有侵权内容,可联系管理员处理 
相关文章推荐
- asp.net mvc 页面传值的方法总结
- asp web api 怎么使用put和delete。
- Asp.net中GridView使用详解
- Asp文件锁定脚本
- metasploit - psexec_ntdsgrab / libesedb / ntdsxtract
- asp返回json串:string类型严格使用双引号包含
- asp.net mvc 缓存
- ASP.NET 5 Beta7发布
- ASP.NET MVC 5– 采用Wijmo MVC 5模板1创建应用程序分钟
- ASP.NET 邮件发送 System.Net.Mail
- 【ASP.NET】解除asp.net或者webservice限制上传文件大小和时间的限制
- asp.net发送邮件示例
- request.querystring 在asp.net的前台html中如何获取
- 错误 1 未知的服务器标记“asp:ScriptManager”。
- Aspose.words Mail Merge之Nest Mail merge
- 【ASP.NET Web API教程】6.1 媒体格式化器
- Dom的基本操作回顾
- ASP.NET MVC5网站开发概述(一)
- ASP.NET Form Authentication - Membership Authentication
- ASP.NET Head部分 数据绑定