我也在努力解决同样的问题,经过一番研究后发现这篇博客文章让我滚动:
http://pfelix.wordpress.com/2011/04/21/wcf-web-api-self-hosting-https-and-http -basic-authentication/
简而言之,您需要做一些工作才能允许主体流向服务调用。
I was struggling with this same thing, and after some research found this blog post that got me rolling:
http://pfelix.wordpress.com/2011/04/21/wcf-web-api-self-hosting-https-and-http-basic-authentication/
In short, there is some work you need to do to allow the Principal to flow through to the service call.
上有一个完整的可下载示例,
MSDN WCF 数据服务
其中包含 PowerPivot 客户端的基本身份验证https://code.msdn.microsoft.com/office/WCF-Data-Service-with-547e9341
更新
好的,现在我已经使用了链接中的代码(我当时正在研究我发布了)我知道它可以工作,所以这里是代码示例:
步骤 1:编写一个 HTTP 处理程序来处理所有请求并执行身份验证(或发出 401 质询)。
namespace WebHostBasicAuth.Modules { public class BasicAuthHttpModule : IHttpModule { private const string Realm = "My Realm"; public void Init(HttpApplication context) { // Register event handlers context.AuthenticateRequest += OnApplicationAuthenticateRequest; context.EndRequest += OnApplicationEndRequest; } private static void SetPrincipal(IPrincipal principal) { Thread.CurrentPrincipal = principal; if (HttpContext.Current != null) { HttpContext.Current.User = principal; } } // TODO: Here is where you would validate the username and password. private static bool CheckPassword(string username, string password) { return username == "user" && password == "password"; } private static void AuthenticateUser(string credentials) { try { var encoding = Encoding.GetEncoding("iso-8859-1"); credentials = encoding.GetString(Convert.FromBase64String(credentials)); int separator = credentials.IndexOf(':'); string name = credentials.Substring(0, separator); string password = credentials.Substring(separator + 1); if (CheckPassword(name, password)) { var identity = new GenericIdentity(name); SetPrincipal(new GenericPrincipal(identity, null)); } else { // Invalid username or password. HttpContext.Current.Response.StatusCode = 401; } } catch (FormatException) { // Credentials were not formatted correctly. HttpContext.Current.Response.StatusCode = 401; } } private static void OnApplicationAuthenticateRequest(object sender, EventArgs e) { var request = HttpContext.Current.Request; var authHeader = request.Headers["Authorization"]; if (authHeader != null) { var authHeaderVal = AuthenticationHeaderValue.Parse(authHeader); // RFC 2617 sec 1.2, "scheme" name is case-insensitive if (authHeaderVal.Scheme.Equals("basic", StringComparison.OrdinalIgnoreCase) && authHeaderVal.Parameter != null) { AuthenticateUser(authHeaderVal.Parameter); } } } // If the request was unauthorized, add the WWW-Authenticate header // to the response. private static void OnApplicationEndRequest(object sender, EventArgs e) { var response = HttpContext.Current.Response; if (response.StatusCode == 401) { response.Headers.Add("WWW-Authenticate", string.Format("Basic realm=\"{0}\"", Realm)); } } public void Dispose() { } } }
步骤 2:通过 web.config 使用 IIS 配置新处理程序。
<system.webServer> <modules> <add name="BasicAuthHttpModule" type="WebHostBasicAuth.Modules.BasicAuthHttpModule, YourAssemblyName"/> </modules> ...
对于 Excel PowerPivot 很重要
请参阅此错误:PowerPivot 未将基本身份验证中的授权标头发送到 OData Svc
There's a full downloadable sample on MSDN
WCF Data Service with basic authentication for PowerPivot clients
https://code.msdn.microsoft.com/office/WCF-Data-Service-with-547e9341
Update
Okay, now I've used the code in the link (that I was researching at the time I posted) I know that it works, so here's the code example:
Step 1: Write an HTTP handler to handle all requests and perform the authentication (or issuance of a 401 challenge).
Step 2: Configure your new handler with IIS via your web.config.
Important for Excel PowerPivot
See this bug: PowerPivot not sending Authorization header in Basic Authentication to OData Svc
由于您还没有绑定你的真实邮箱,如果其他用户或者作者回复了您的评论,将不能在第一时间通知您!
暂无简介
文章 0 评论 0
接受
发布评论
评论(2)
我也在努力解决同样的问题,经过一番研究后发现这篇博客文章让我滚动:
http://pfelix.wordpress.com/2011/04/21/wcf-web-api-self-hosting-https-and-http -basic-authentication/
简而言之,您需要做一些工作才能允许主体流向服务调用。
I was struggling with this same thing, and after some research found this blog post that got me rolling:
http://pfelix.wordpress.com/2011/04/21/wcf-web-api-self-hosting-https-and-http-basic-authentication/
In short, there is some work you need to do to allow the Principal to flow through to the service call.
上有一个完整的可下载示例,
MSDN WCF 数据服务
其中包含 PowerPivot 客户端的基本身份验证https://code.msdn.microsoft.com/office/WCF-Data-Service-with-547e9341
更新
好的,现在我已经使用了链接中的代码(我当时正在研究我发布了)我知道它可以工作,所以这里是代码示例:
步骤 1:编写一个 HTTP 处理程序来处理所有请求并执行身份验证(或发出 401 质询)。
步骤 2:通过 web.config 使用 IIS 配置新处理程序。
对于 Excel PowerPivot 很重要
请参阅此错误:PowerPivot 未将基本身份验证中的授权标头发送到 OData Svc
There's a full downloadable sample on MSDN
WCF Data Service with basic authentication for PowerPivot clients
https://code.msdn.microsoft.com/office/WCF-Data-Service-with-547e9341
Update
Okay, now I've used the code in the link (that I was researching at the time I posted) I know that it works, so here's the code example:
Step 1: Write an HTTP handler to handle all requests and perform the authentication (or issuance of a 401 challenge).
Step 2: Configure your new handler with IIS via your web.config.
Important for Excel PowerPivot
See this bug: PowerPivot not sending Authorization header in Basic Authentication to OData Svc