WebAPI+OAuth

1,NuGet 添加
Microsoft.Owin.Host.SystemWeb
Microsoft.Owin.Cors
Microsoft.Owin.Security.OAuth

2,添加 Owin Startup 类

3,在 Startup类中的Configuration方法中添加

app.UseCors(CorsOptions.AllowAll);//允许跨域
var option = new OAuthAuthorizationServerOptions()
{
AllowInsecureHttp = true,
TokenEndpointPath = new PathString("/token"), //获取 access_token 授权服务请求地址
AccessTokenExpireTimeSpan = TimeSpan.FromDays(1), //access_token 过期时间
Provider = new SimpleAuthorizationServerProvider(), //access_token 相关授权服务
};
app.UseOAuthAuthorizationServer(option);
app.UseOAuthBearerAuthentication(new OAuthBearerAuthenticationOptions());

　　

4,新增SimpleAuthorizationServerProvider类

public class SimpleAuthorizationServerProvider : OAuthAuthorizationServerProvider
{
public override Task ValidateClientAuthentication(OAuthValidateClientAuthenticationContext context)
{
context.Validated();
return Task.FromResult<object>(null);
}
public override async Task GrantResourceOwnerCredentials(OAuthGrantResourceOwnerCredentialsContext context)
{
//context.UserName
//context.Password
//if (用户名密码错误)
//{
// context.SetError("invalid_grant", "The username or password is incorrect");
// return;
//}

var identity = new ClaimsIdentity(context.Options.AuthenticationType);
identity.AddClaim(new Claim("sub", context.UserName));
identity.AddClaim(new Claim("role", "user"));

context.Validated(identity);
}
}

　　

5,在需要的地方加[Authorize]标签