Home > Developer > .Net Core

ASP. net http module and processing program module implementation (1)

Source: Internet
Author: User
Developer on Alibaba Coud: Build your first app with APIs, SDKs, and tutorials on the Alibaba Cloud. Read more >

Implement an HTTP module that provides security services

Now we implement an HTTP module that provides security services for our Web applications. The HTTP module provides a customized identity authentication service. It will receive the identity credential in the HTTP request and determine whether the credential is valid. If valid, what are the user-related roles? The User. Identity object is used to associate these roles with the User IDs that access our Web application page.

The code of the HTTP module is as follows:

 
 
    
  
  
  1. Using System;
    2. 
  
  
  2. Using System. Web;
    3. 
  
  
  3. Using System. Security. Principal;
    4. 
  
  
  4.  
    5. 
  
  
  5. Namespace SecurityModules
    6. 
  
  
  6. {
    7. 
  
  
  7. /// Overall description of Class1.
    8. 
  
  
  8.  
    9. 
  
  
  9. Public class CustomAuthenticationModule: IHttpModule
    10. 
  
  
  10. {
    11. 
  
  
  11. Public CustomAuthenticationModule ()
    12. 
  
  
  12. {
    13. 
  
  
  13. }
    14. 
  
  
  14. Public void Init (HttpApplication r_objApplication)
    15. 
  
  
  15. {
    16. 
  
  
  16. // Register the event handler with the Application object.
    17. 
  
  
  17. R_objApplication.AuthenticateRequest + =
    18. 
  
  
  18. New EventHandler (this. AuthenticateRequest );
    19. 
  
  
  19. }
    20. 
  
  
  20.  
    21. 
  
  
  21. Public void Dispose ()
    22. 
  
  
  22. {
    23. 
  
  
  23. // This field is empty because we do not need to perform any operations.
    24. 
  
  
  24. }
    25. 
  
  
  25.  
    26. 
  
  
  26. Private void AuthenticateRequest (object r_objSender, EventArgs r_objEventArgs)
    27. 
  
  
  27. {
    28. 
  
  
  28. // Identify the user's creden。 and find out the user role ..
    29. 
  
  
  29. 1. HttpApplicationObjApp= (HttpApplication) r_objSender;
    30. 
  
  
  30. 2. HttpContextObjContext= (HttpContext) objApp. Context;
    31. 
  
  
  31. 3. if (objApp. Request ["userid"] = null) |
    32. 
  
  
  32. 4. (objApp. Request ["password"] = null ))
    33. 
  
  
  33. 5 .{
    34. 
  
  
  34. 6. objContext. Response. Write ("<H1> Credentials not provided </H1> ");
    35. 
  
  
  35. 7. objContext. Response. End ();
    36. 
  
  
  36. 8 .}
    37. 
  
  
  37.  
    38. 
  
  
  38. 9. stringUserid="";
    39. 
  
  
  39. 10.Userid=ObjApp. Request ["userid"]. ToString ();
    40. 
  
  
  40. 11. stringPassword="";
    41. 
  
  
  41. 12.Password=ObjApp. Request ["password"]. ToString ();
    42. 
  
  
  42. 
  
  
  43. 13. string [] strRoles;
    44. 
  
  
  44. 14.StrRoles=AuthenticateAndGetRoles(Userid, password );
    45. 
  
  
  45. 15. if ((StrRoles= Null) | (strRoles. GetLength (0) = 0 ))
    46. 
  
  
  46. 16 .{
    47. 
  
  
  47. 17. objContext. Response. Write ("<H1> We are sorry but we cocould not
    48. 
  
  
  48. Find this user id and password in our database </H1> ");
    49. 
  
  
  49. 18. objApp. CompleteRequest ();
    50. 
  
  
  50. 19 .}
    51. 
  
  
  51.  
    52. 
  
  
  52. 20. GenericIdentityObjIdentity=NewGenericIdentity (userid,
    53. 
  
  
  53. "CustomAuthentication ");
    54. 
  
  
  54. 21.ObjContext. User=NewGenericPrincipal (objIdentity, strRoles );
    55. 
  
  
  55. }
    56. 
  
  
  56.  
    57. 
  
  
  57. Private string [] AuthenticateAndGetRoles (string r_strUserID, string r_strPassword)
    58. 
  
  
  58. {
    59. 
  
  
  59. String []StrRoles=Null;
    60. 
  
  
  60. If (r_strUserID.Equals ("Steve") & (r_strPassword.Equals ("15 seconds ")))
    61. 
  
  
  61. {
    62. 
  
  
  62. StrRoles=NewString [1];
    63. 
  
  
  63. StrRoles [0] = "Administrator ";
    64. 
  
  
  64. }
    65. 
  
  
  65. Else if (r_strUserID.Equals ("Mansoor") & (r_strPassword.Equals ("mas ")))
    66. 
  
  
  66. {
    67. 
  
  
  67. StrRoles=NewString [1];
    68. 
  
  
  68. StrRoles [0] = "User ";
    69. 
  
  
  69. }
    70. 
  
  
  70. Return strRoles;
    71. 
  
  
  71. }
    72. 
  
  
  72. }
    73. 
  
  
  73. }
    74.


This article is an English version of an article which is originally in the Chinese language on aliyun.com and is provided for information purposes only. This website makes no representation or warranty of any kind, either expressed or implied, as to the accuracy, completeness ownership or reliability of the article or any translations thereof. If you have any concerns or complaints relating to the article, please send an email, providing a detailed description of the concern or complaint, to info-contact@alibabacloud.com. A staff member will contact you within 5 working days. Once verified, infringing content will be removed immediately.

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

Get Started for Free

  • Sales Support

    1 on 1 presale consultation

    Chat Contact Sales

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

    Open a Ticket

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.

    Learn More