問題描述

我正在使用帶有 JWTBearerAuthentication 的 Owin 來授權用戶并驗證他們的令牌.我是這樣做的:

I'm using Owin with JWTBearerAuthentication to authorize users and validate their tokens. I'm doing it like this:

public class Startup
{
    public void Configuration(IAppBuilder app)
    {
        HttpConfiguration config = new HttpConfiguration();
        config.MapHttpAttributeRoutes();

        config.Routes.MapHttpRoute(
            name: "DefaultApi",
            routeTemplate: "api/{controller}/{id}",
            defaults: new { id = RouteParameter.Optional }
        );

        ConfigureOAuth(app);
        app.UseWebApi(config);
    }

    private void ConfigureOAuth(IAppBuilder app)
    {
        string issuer = ConfigurationManager.AppSettings.Get("auth_issuer");
        string audience = ConfigurationManager.AppSettings.Get("auth_clientId");
        byte[] secret = TextEncodings.Base64Url.Decode(ConfigurationManager.AppSettings.Get("auth_secret"));

        app.UseJwtBearerAuthentication(new JwtBearerAuthenticationOptions 
        {
            AuthenticationMode = AuthenticationMode.Active,
            AllowedAudiences = new [] { audience },
            IssuerSecurityTokenProviders = new IIssuerSecurityTokenProvider[]
            {
                new SymmetricKeyIssuerSecurityTokenProvider(issuer, secret)
            }
        });
    }
}

但是，我的令牌中有一些自定義聲明，并希望在我的 ApiController 中使用它們的值，如下所示:

However, I have some custom claims in my token, and want to use their values in my ApiController, which looks like this:

[RoutePrefix("endpoint")]
public class MyApiController : ApiController
{
    [Route("action")]
    [Authorize]
    public IHttpActionResult Post(string someValue)
    {
        bool res = DoSomeAction.withTheString(someValue);

        if (res)
        {
            return Ok<string>(someValue);
        }

        return InternalServerError();
    }
}

有沒有類似 User.Claims["myCustomClaim"].Value 的東西，它提供所有聲明的值?

Is there anything like User.Claims["myCustomClaim"].Value, which provides the values of all claims?

謝謝你，盧卡斯

推薦答案

這樣的事情可能會有所幫助:

Something like this might help:

var identity = User.Identity as ClaimsIdentity;

        return identity.Claims.Select(c => new
        {
            Type = c.Type,
            Value = c.Value
        });

這篇關于使用 Owin 從 JWT 獲取自定義聲明的文章就介紹到這了，希望我們推薦的答案對大家有所幫助，也希望大家多多支持html5模板網！