38 lines
1.5 KiB
C#
38 lines
1.5 KiB
C#
|
// Copyright (c) Microsoft Corporation. All rights reserved. See License.txt in the project root for license information.
|
|||
|
|
|
|||
|
|
using System.Net.Http;
|
|||
|
|
using System.Security.Principal;
|
|||
|
|
using System.ServiceModel;
|
|||
|
|
using System.ServiceModel.Security;
|
|||
|
|
using System.Threading;
|
|||
|
|
using System.Threading.Tasks;
|
|||
|
|
using System.Web.Http.SelfHost;
|
|||
|
|
|
|||
|
|
namespace System.Web.Http
|
|||
|
|
{
|
|||
|
|
public class CustomMessageHandler : DelegatingHandler
|
|||
|
|
{
|
|||
|
|
protected override Task<HttpResponseMessage> SendAsync(HttpRequestMessage request, CancellationToken cancellationToken)
|
|||
|
|
{
|
|||
|
|
IPrincipal originalPrincipal = Thread.CurrentPrincipal;
|
|||
|
|
|
|||
|
|
// here you can see the requestor's identity via the request message
|
|||
|
|
// convert the Generic Identity to some IPrincipal object, and set it in the request's property
|
|||
|
|
// later the authorization filter will use the role information to authorize request.
|
|||
|
|
SecurityMessageProperty property = request.GetSecurityMessageProperty();
|
|||
|
|
if (property != null)
|
|||
|
|
{
|
|||
|
|
ServiceSecurityContext context = property.ServiceSecurityContext;
|
|||
|
|
|
|||
|
|
if (context.PrimaryIdentity.Name == "username")
|
|||
|
|
{
|
|||
|
|
Thread.CurrentPrincipal = new GenericPrincipal(context.PrimaryIdentity, new string[] { "Administrators" });
|
|||
|
|
}
|
|||
|
|
}
|
|||
|
|
|
|||
|
|
return base.SendAsync(request, cancellationToken)
|
|||
|
|
.Finally(() => Thread.CurrentPrincipal = originalPrincipal);
|
|||
|
|
}
|
|||
|
|
}
|
|||
|
|
}
|