MVC3 中的会话级身份验证

发布于 2024-12-26 14:21:21 字数 573 浏览 0 评论 0原文

我正在将音频文件从 Windows Phone 客户端分块上传到 MVC3 应用程序，

我编写了一个带有 HttpPost 属性装饰 Action 的控制器，用于处理传入的块。

该操作的签名是：

[HttpPost]
public JsonResult RecieveChunk(string id, [ModelBinder(typeof(AudioChunkModelBinder))] byte[] audio)

id 在本例中，是文件上传会话的 ID，大概会在实际块 POST 涌入之前由客户端和服务器协商在

Windows Phone 端，HttpWebRequest 的实例正在执行上传工作，当前没有进行身份验证。

在服务器上，我需要能够知道每个帖子来自谁。

有没有办法让我从 MVC3 站点获取某种访问令牌，以便能够 POST 到站点的特定 Uri，但不需要发送用户 ID 和密码作为 Uri 的一部分？

在我的场景中，什么是适合我的身份验证方法？

原文

I am uploading audio file in chunks from a Windows Phone client to an MVC3 application

I have written a Controller with an HttpPost attribute decorated Action, that is processing an incoming chunks.

The action's signature is:

[HttpPost]
public JsonResult RecieveChunk(string id, [ModelBinder(typeof(AudioChunkModelBinder))] byte[] audio)

id in this case, is an id of a file upload session, that presumably will get negotioated by client and server before actual chunk POSTs will come pouring in.

On the Windows Phone side, an instance of HttpWebRequest is doing the upload work with no authentication currently in place.

On the server, I need to be able to know, from whom each post is coming from.

Is there a way for me to obtain a some kind of an access token from an MVC3 site to be able to POST to a site's specific Uri, but without a need to send a user ID and a Password as a part of a Uri?

What can be an authentication approach for me in my scenario?

分享到QQ

分享到微博